$ rpki-client -vvf repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/3130332e37372e3230342e302f32332d3233203d3e203634323937.roa File: 3130332e37372e3230342e302f32332d3233203d3e203634323937.roa (raw, json) Hash identifier: oW/3rE8Cks1XxoiBUrrE9hpJZbI18VXj85etX8aBQRQ= Subject key identifier: 8D:7F:E8:82:39:C6:06:B4:F2:E3:C5:84:0A:B6:B9:96:2A:9F:F6:7E Certificate issuer: /CN=A7D1BD82113CD720C572AF99A8FB2940610AEC49 Certificate serial: 3DB1ED62805F6B70551428DA03862AEFEB3ECB1D Authority key identifier: A7:D1:BD:82:11:3C:D7:20:C5:72:AF:99:A8:FB:29:40:61:0A:EC:49 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A7D1BD82113CD720C572AF99A8FB2940610AEC49.cer Subject info access: rsync://repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/3130332e37372e3230342e302f32332d3233203d3e203634323937.roa Signing time: Sun 21 Apr 2024 15:00:00 +0000 ROA not before: Sun 21 Apr 2024 14:55:00 +0000 ROA not after: Sun 20 Apr 2025 15:00:00 +0000 asID: 64297 IP address blocks: 103.77.204.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/A7D1BD82113CD720C572AF99A8FB2940610AEC49.crl rsync://repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/A7D1BD82113CD720C572AF99A8FB2940610AEC49.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A7D1BD82113CD720C572AF99A8FB2940610AEC49.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:b1:ed:62:80:5f:6b:70:55:14:28:da:03:86:2a:ef:eb:3e:cb:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A7D1BD82113CD720C572AF99A8FB2940610AEC49 Validity Not Before: Apr 21 14:55:00 2024 GMT Not After : Apr 20 15:00:00 2025 GMT Subject: CN=8D7FE88239C606B4F2E3C5840AB6B9962A9FF67E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:96:01:0f:60:03:45:8d:34:05:a0:55:0b:d1: dc:ff:40:47:dc:52:c8:42:97:ab:60:ab:0f:59:5f: 2b:94:1c:ae:e9:46:7d:d1:16:1f:f0:dd:6f:f5:8b: c6:25:07:27:9b:cf:9c:01:49:3d:f3:09:10:0f:50: 85:f9:36:22:d3:75:b1:81:46:94:49:00:6d:d7:d5: 1a:bd:4b:8d:60:d6:a8:46:67:0d:0e:85:82:30:8c: 01:da:5a:59:bc:e7:3a:49:65:ca:f4:0c:ea:6f:d3: f5:27:a3:40:bc:88:dc:3e:f8:59:60:cb:ee:f9:3f: f2:06:46:95:7a:be:e5:27:c8:53:b5:30:db:30:98: b2:5f:b3:5e:cf:25:73:02:4c:d7:a8:36:3c:18:d0: 08:99:2e:e9:34:98:2f:23:16:86:3b:16:b2:ee:d7: c0:76:ed:90:7e:24:a3:83:d5:99:59:6c:b7:9e:bf: 4e:ae:63:e3:c2:40:61:ca:ff:47:5b:38:ce:22:5d: 6e:5d:d4:0c:a4:68:08:44:63:13:d5:c8:05:13:e8: 60:63:3a:73:28:2a:e6:40:34:f8:96:3d:be:bb:66: aa:45:b0:f2:b7:ee:c7:cd:f9:33:08:b7:1a:69:76: cc:b4:1c:5e:21:ac:a1:7f:8f:6d:e4:8c:53:6a:ca: 34:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:7F:E8:82:39:C6:06:B4:F2:E3:C5:84:0A:B6:B9:96:2A:9F:F6:7E X509v3 Authority Key Identifier: keyid:A7:D1:BD:82:11:3C:D7:20:C5:72:AF:99:A8:FB:29:40:61:0A:EC:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/A7D1BD82113CD720C572AF99A8FB2940610AEC49.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A7D1BD82113CD720C572AF99A8FB2940610AEC49.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/3130332e37372e3230342e302f32332d3233203d3e203634323937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.77.204.0/23 Signature Algorithm: sha256WithRSAEncryption 58:9e:e9:98:0a:55:f7:2e:af:b2:14:1e:de:1f:7f:7d:78:02: 0d:49:93:45:40:8e:41:4a:78:56:41:68:35:42:65:24:c4:6a: 75:5e:81:f4:07:36:d8:e9:68:7d:de:4f:10:52:64:f2:58:fa: 57:63:f9:1e:81:b6:f2:6c:5e:37:43:45:2d:36:ff:1c:cf:75: a4:dd:cc:66:86:b5:e5:b9:5b:c9:04:74:b1:f9:7e:57:25:a4: b8:ad:e3:07:cc:27:25:45:77:b3:1f:64:28:d6:a8:66:3f:56: f2:10:ac:a8:54:f6:a4:24:0e:37:22:b7:48:9d:89:c2:f2:fe: d6:22:42:57:3d:48:c2:90:2a:97:c7:2a:e0:d3:7c:0f:9c:6f: f7:e9:ff:f6:c0:35:28:08:37:ac:0c:0d:e7:bc:c1:e5:8a:4a: a0:8c:55:1c:ee:e0:79:26:79:d7:da:1e:13:03:92:26:c6:b5: 50:24:ce:c8:48:72:80:02:6e:c1:cf:a2:57:68:97:a2:c1:42: 4c:c5:98:15:85:1a:ee:d8:f6:7e:e9:bc:91:06:32:8d:e8:22: cd:e6:86:f9:57:14:89:58:44:30:b1:41:88:2d:3a:0b:7c:3c: 0b:16:1e:3f:b5:96:1f:b2:c1:e1:78:b1:f8:ba:bc:01:de:3f: a2:86:12:3b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPbHtYoBfa3BVFCjaA4Yq7+s+yx0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTdEMUJEODIxMTNDRDcyMEM1NzJBRjk5QThGQjI5NDA2 MTBBRUM0OTAeFw0yNDA0MjExNDU1MDBaFw0yNTA0MjAxNTAwMDBaMDMxMTAvBgNV BAMTKDhEN0ZFODgyMzlDNjA2QjRGMkUzQzU4NDBBQjZCOTk2MkE5RkY2N0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSlgEPYANFjTQFoFUL0dz/QEfc UshCl6tgqw9ZXyuUHK7pRn3RFh/w3W/1i8YlByebz5wBST3zCRAPUIX5NiLTdbGB RpRJAG3X1Rq9S41g1qhGZw0OhYIwjAHaWlm85zpJZcr0DOpv0/Uno0C8iNw++Flg y+75P/IGRpV6vuUnyFO1MNswmLJfs17PJXMCTNeoNjwY0AiZLuk0mC8jFoY7FrLu 18B27ZB+JKOD1ZlZbLeev06uY+PCQGHK/0dbOM4iXW5d1AykaAhEYxPVyAUT6GBj OnMoKuZANPiWPb67ZqpFsPK37sfN+TMItxppdsy0HF4hrKF/j23kjFNqyjSpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjX/ogjnGBrTy48WECra5liqf9n4wHwYDVR0j BBgwFoAUp9G9ghE81yDFcq+ZqPspQGEK7EkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 OWRhN2I2YS00ZTFhLTQxZmYtYjhlYi04YzM2NGNkMjY0YjEvMC9BN0QxQkQ4MjEx M0NENzIwQzU3MkFGOTlBOEZCMjk0MDYxMEFFQzQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTdEMUJEODIxMTNDRDcyMEM1NzJBRjk5QThGQjI5NDA2MTBB RUM0OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ5ZGE3YjZhLTRlMWEtNDFmZi1i OGViLThjMzY0Y2QyNjRiMS8wLzMxMzAzMzJlMzczNzJlMzIzMDM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzYzNDMyMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWdNzDANBgkqhkiG 9w0BAQsFAAOCAQEAWJ7pmApV9y6vshQe3h9/fXgCDUmTRUCOQUp4VkFoNUJlJMRq dV6B9Ac22Olofd5PEFJk8lj6V2P5HoG28mxeN0NFLTb/HM91pN3MZoa15blbyQR0 sfl+VyWkuK3jB8wnJUV3sx9kKNaoZj9W8hCsqFT2pCQONyK3SJ2JwvL+1iJCVz1I wpAql8cq4NN8D5xv9+n/9sA1KAg3rAwN57zB5YpKoIxVHO7geSZ519oeEwOSJsa1 UCTOyEhygAJuwc+iV2iXosFCTMWYFYUa7tj2fum8kQYyjegizeaG+VcUiVhEMLFB iC06C3w8CxYeP7WWH7LB4Xix+Lq8Ad4/ooYSOw== -----END CERTIFICATE-----Generated at Sun Nov 24 11:34:09 2024 by rpki-client on console-fra.rpki-client.org