$ rpki-client -vvf repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/3130332e39372e342e302f32342d3234203d3e20313336313237.roa File: 3130332e39372e342e302f32342d3234203d3e20313336313237.roa (raw, json) Hash identifier: Jatff9pdbxHcTIoc61FwpQ4zDvedkS7YEGoxT4EFfu8= Subject key identifier: 37:4D:58:5A:50:1F:2D:BF:FE:5C:08:4C:19:48:97:34:B3:C4:54:F0 Certificate issuer: /CN=8C888E996588527BC5EF8ABD293676C3463A1A22 Certificate serial: 5B5C7BBE980DAD55D6129F65F263431F3F44C59B Authority key identifier: 8C:88:8E:99:65:88:52:7B:C5:EF:8A:BD:29:36:76:C3:46:3A:1A:22 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C888E996588527BC5EF8ABD293676C3463A1A22.cer Subject info access: rsync://repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/3130332e39372e342e302f32342d3234203d3e20313336313237.roa Signing time: Fri 18 Oct 2024 03:00:02 +0000 ROA not before: Fri 18 Oct 2024 02:55:02 +0000 ROA not after: Fri 17 Oct 2025 03:00:02 +0000 asID: 136127 IP address blocks: 103.97.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/8C888E996588527BC5EF8ABD293676C3463A1A22.crl rsync://repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/8C888E996588527BC5EF8ABD293676C3463A1A22.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C888E996588527BC5EF8ABD293676C3463A1A22.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:5c:7b:be:98:0d:ad:55:d6:12:9f:65:f2:63:43:1f:3f:44:c5:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C888E996588527BC5EF8ABD293676C3463A1A22 Validity Not Before: Oct 18 02:55:02 2024 GMT Not After : Oct 17 03:00:02 2025 GMT Subject: CN=374D585A501F2DBFFE5C084C19489734B3C454F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:da:52:e2:ff:43:eb:f5:cc:a9:0a:bb:26:90: 97:57:35:55:f7:98:b3:2d:cb:06:f1:22:00:e7:4a: 32:42:8b:bb:89:a3:89:24:cd:3e:dd:52:87:5d:73: 42:c1:46:14:69:70:4c:2d:34:f5:27:64:2c:49:95: 53:ab:9a:b1:05:80:04:b1:1d:68:c1:99:d7:41:ab: ac:5e:78:c2:27:ba:0e:3a:32:d0:d1:f4:1a:0a:e8: c0:ae:9e:79:5e:f0:16:b1:75:81:7e:5e:04:ef:df: 88:c4:bf:79:08:8b:4a:d1:a2:98:23:7a:02:d5:23: 8d:80:33:fd:6f:78:3a:31:31:2b:05:d1:4e:26:6e: f0:21:31:b6:4f:b2:0a:3a:ad:c5:55:2a:d0:71:b2: 7c:75:73:bb:6e:64:76:ef:0d:43:ee:b6:97:41:ec: 2c:49:1e:e7:08:07:07:b4:2d:e9:22:b6:4a:0e:d2: 4a:66:b8:85:13:e8:e2:e5:14:9c:a6:28:98:8b:d9: 42:55:c1:21:95:db:fc:3f:57:fb:42:0a:e2:0f:8f: 85:8c:3b:5d:22:a6:4d:6b:65:bd:b2:2e:ad:77:4e: 6b:2a:39:20:cc:8e:ad:b0:af:76:d1:1b:bc:ae:f9: 6c:b2:6b:4e:2d:a8:09:0c:c4:2e:60:0b:5f:81:62: f9:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:4D:58:5A:50:1F:2D:BF:FE:5C:08:4C:19:48:97:34:B3:C4:54:F0 X509v3 Authority Key Identifier: keyid:8C:88:8E:99:65:88:52:7B:C5:EF:8A:BD:29:36:76:C3:46:3A:1A:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/8C888E996588527BC5EF8ABD293676C3463A1A22.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C888E996588527BC5EF8ABD293676C3463A1A22.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/3130332e39372e342e302f32342d3234203d3e20313336313237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.97.4.0/24 Signature Algorithm: sha256WithRSAEncryption 79:bc:36:d9:45:5d:5c:0f:68:59:f9:2e:8b:12:13:ab:d8:44: 09:6a:fe:d9:c8:95:57:c6:e2:00:51:bc:f8:70:d7:1e:20:1a: 25:5f:29:27:cd:29:64:45:15:90:e6:1a:ef:be:f1:df:9b:6d: c6:5b:db:45:f5:36:56:17:27:e7:e0:ab:21:96:fb:4c:9c:06: 51:e5:ed:09:17:47:db:67:aa:c3:af:fc:93:20:d9:a8:61:4e: cd:f7:a3:7f:36:d9:bc:06:4d:eb:d5:04:7c:16:fe:eb:d5:15: da:41:92:94:f8:52:d5:d7:7f:e6:2d:9c:df:5d:eb:35:62:f4: bc:00:7c:a7:e7:2f:4e:3d:a5:01:7b:ae:2a:e2:32:91:1e:31: 1b:96:7f:56:21:59:64:b1:3c:6c:2b:69:66:59:b5:da:2d:73: 20:ac:39:65:48:3e:1f:43:cd:58:9c:2d:91:86:6d:12:81:92: d9:9c:8b:73:1e:e1:13:72:17:8c:cc:41:c1:f0:ab:d3:e4:d5: 57:16:87:4a:5a:53:88:0e:80:2b:0b:85:ef:45:c4:f1:8b:b4: 9b:63:b2:9d:7a:1a:e5:8a:2b:57:b7:3e:fe:b6:a5:0c:20:e0: c1:75:bc:fb:e7:b1:dc:56:7b:ae:1f:ae:bb:79:79:98:74:ef: e4:db:ac:33 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUW1x7vpgNrVXWEp9l8mNDHz9ExZswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEM4ODhFOTk2NTg4NTI3QkM1RUY4QUJEMjkzNjc2QzM0 NjNBMUEyMjAeFw0yNDEwMTgwMjU1MDJaFw0yNTEwMTcwMzAwMDJaMDMxMTAvBgNV BAMTKDM3NEQ1ODVBNTAxRjJEQkZGRTVDMDg0QzE5NDg5NzM0QjNDNDU0RjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC62lLi/0Pr9cypCrsmkJdXNVX3 mLMtywbxIgDnSjJCi7uJo4kkzT7dUoddc0LBRhRpcEwtNPUnZCxJlVOrmrEFgASx HWjBmddBq6xeeMInug46MtDR9BoK6MCunnle8BaxdYF+XgTv34jEv3kIi0rRopgj egLVI42AM/1veDoxMSsF0U4mbvAhMbZPsgo6rcVVKtBxsnx1c7tuZHbvDUPutpdB 7CxJHucIBwe0LekitkoO0kpmuIUT6OLlFJymKJiL2UJVwSGV2/w/V/tCCuIPj4WM O10ipk1rZb2yLq13TmsqOSDMjq2wr3bRG7yu+Wyya04tqAkMxC5gC1+BYvlXAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUN01YWlAfLb/+XAhMGUiXNLPEVPAwHwYDVR0j BBgwFoAUjIiOmWWIUnvF74q9KTZ2w0Y6GiIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NGIyNzMwMy05ZTNkLTRkNDItYWYyNS02YTBmMTE4MDhmMjcvMC84Qzg4OEU5OTY1 ODg1MjdCQzVFRjhBQkQyOTM2NzZDMzQ2M0ExQTIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEM4ODhFOTk2NTg4NTI3QkM1RUY4QUJEMjkzNjc2QzM0NjNB MUEyMi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0YjI3MzAzLTllM2QtNGQ0Mi1h ZjI1LTZhMGYxMTgwOGYyNy8wLzMxMzAzMzJlMzkzNzJlMzQyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTMzMzYzMTMyMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnYQQwDQYJKoZIhvcN AQELBQADggEBAHm8NtlFXVwPaFn5LosSE6vYRAlq/tnIlVfG4gBRvPhw1x4gGiVf KSfNKWRFFZDmGu++8d+bbcZb20X1NlYXJ+fgqyGW+0ycBlHl7QkXR9tnqsOv/JMg 2ahhTs33o3822bwGTevVBHwW/uvVFdpBkpT4UtXXf+YtnN9d6zVi9LwAfKfnL049 pQF7ririMpEeMRuWf1YhWWSxPGwraWZZtdotcyCsOWVIPh9DzVicLZGGbRKBktmc i3Me4RNyF4zMQcHwq9Pk1VcWh0paU4gOgCsLhe9FxPGLtJtjsp16GuWKK1e3Pv62 pQwg4MF1vPvnsdxWe64frrt5eZh07+TbrDM= -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:32 2024 by rpki-client on console-fra.rpki-client.org