$ rpki-client -vvf repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/3130332e37372e3230342e302f32342d3234203d3e203634323937.roa File: 3130332e37372e3230342e302f32342d3234203d3e203634323937.roa (raw, json) Hash identifier: xO1kZQrZJ2Uzb2KKql3ORvfEQsb7SD07YPbbi4hIjF4= Subject key identifier: 8F:9D:BB:C7:E6:85:2E:13:AB:4D:36:B5:81:68:F3:47:A6:8C:42:9A Certificate issuer: /CN=A7D1BD82113CD720C572AF99A8FB2940610AEC49 Certificate serial: 7229352EB45177C9FF21ED9BD5F4516404058578 Authority key identifier: A7:D1:BD:82:11:3C:D7:20:C5:72:AF:99:A8:FB:29:40:61:0A:EC:49 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A7D1BD82113CD720C572AF99A8FB2940610AEC49.cer Subject info access: rsync://repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/3130332e37372e3230342e302f32342d3234203d3e203634323937.roa Signing time: Sat 06 Apr 2024 04:00:00 +0000 ROA not before: Sat 06 Apr 2024 03:55:00 +0000 ROA not after: Sat 05 Apr 2025 04:00:00 +0000 asID: 64297 IP address blocks: 103.77.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/A7D1BD82113CD720C572AF99A8FB2940610AEC49.crl rsync://repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/A7D1BD82113CD720C572AF99A8FB2940610AEC49.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A7D1BD82113CD720C572AF99A8FB2940610AEC49.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:29:35:2e:b4:51:77:c9:ff:21:ed:9b:d5:f4:51:64:04:05:85:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A7D1BD82113CD720C572AF99A8FB2940610AEC49 Validity Not Before: Apr 6 03:55:00 2024 GMT Not After : Apr 5 04:00:00 2025 GMT Subject: CN=8F9DBBC7E6852E13AB4D36B58168F347A68C429A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:57:47:8d:70:ac:5f:4d:6b:70:52:ae:79:30: 54:24:a3:ae:39:ba:0f:db:ae:e8:83:d6:73:88:db: 53:94:c9:85:11:49:d1:74:9e:dd:da:a3:bc:38:83: 4e:ba:25:aa:65:44:5a:ed:29:e9:97:b7:8f:03:a1: a8:00:88:b7:8a:97:2f:c7:14:6e:45:8e:ae:90:f8: 4d:40:e5:65:74:a8:cb:80:2f:67:71:25:56:92:0f: 9d:86:16:e2:68:c8:db:69:b1:b8:78:21:45:b3:df: d6:42:32:c9:40:a5:8f:77:92:b4:aa:80:d1:ce:02: ee:40:fb:d8:af:b3:83:50:b8:07:5b:e5:1d:04:db: ec:0a:af:46:5b:8e:0c:34:02:63:b8:c4:a7:bc:39: 76:e5:92:cc:37:6e:05:a1:6f:1e:e7:21:e6:41:80: 08:a9:69:15:b5:e8:b8:b2:28:f2:70:79:51:89:1b: d4:e8:70:04:69:6e:0d:2a:3a:43:57:56:bd:f7:51: 23:c0:61:41:3c:ef:36:da:e1:bd:2c:bc:9a:a7:d7: 5e:ce:bc:03:11:f2:53:bf:1d:0c:bb:af:b9:a7:4b: 23:88:42:f6:a0:0f:b9:f5:dc:c8:bb:1e:83:03:e5: 83:67:2f:fc:b7:18:3a:90:b7:11:29:4d:3f:17:d5: 5a:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:9D:BB:C7:E6:85:2E:13:AB:4D:36:B5:81:68:F3:47:A6:8C:42:9A X509v3 Authority Key Identifier: keyid:A7:D1:BD:82:11:3C:D7:20:C5:72:AF:99:A8:FB:29:40:61:0A:EC:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/A7D1BD82113CD720C572AF99A8FB2940610AEC49.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A7D1BD82113CD720C572AF99A8FB2940610AEC49.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/3130332e37372e3230342e302f32342d3234203d3e203634323937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.77.204.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:2f:09:94:6f:81:b5:80:3e:fc:b4:0c:32:82:f9:8f:c6:13: 9a:4a:51:39:92:66:60:3e:2c:26:a7:1b:c0:34:2c:24:ff:0a: ac:65:3f:2a:03:4d:19:c8:d6:fc:8f:5e:aa:60:ab:f0:6f:18: 57:dd:b9:29:58:80:3c:f6:a9:52:ad:cd:32:4e:5b:8a:f5:42: 30:d3:52:f3:70:d1:8e:80:93:0b:79:77:74:fe:c7:37:4a:5e: d6:65:1f:de:dd:5a:af:b6:36:a2:9d:d7:bf:e0:14:8c:69:6c: a5:f5:47:ad:02:87:67:f5:cc:25:93:39:2a:c2:e2:c0:8b:b8: 4c:40:1b:5f:b4:a8:b4:86:e2:9d:47:c6:8d:97:4c:52:b5:45: 10:cd:24:8a:9e:5c:f9:fd:b0:a2:7b:9c:cb:bc:a5:4b:6b:c4: 96:e2:b0:81:5c:b6:75:6b:71:65:23:35:2a:2f:f0:59:1a:e9: 0f:1c:bc:8f:6c:f6:f3:13:2d:69:f9:cc:29:8d:c8:a3:a9:b9: 46:0a:08:b1:bd:4c:a9:6c:6a:d7:e9:89:a3:cc:60:a6:fd:e2: 24:1d:18:9b:aa:eb:e1:22:fe:22:31:87:a9:fb:ff:c6:1f:fc: 04:b7:8a:2e:44:a6:79:16:86:19:b7:c7:05:4f:c6:2b:55:2a: e6:6d:01:19 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcik1LrRRd8n/Ie2b1fRRZAQFhXgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTdEMUJEODIxMTNDRDcyMEM1NzJBRjk5QThGQjI5NDA2 MTBBRUM0OTAeFw0yNDA0MDYwMzU1MDBaFw0yNTA0MDUwNDAwMDBaMDMxMTAvBgNV BAMTKDhGOURCQkM3RTY4NTJFMTNBQjREMzZCNTgxNjhGMzQ3QTY4QzQyOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkV0eNcKxfTWtwUq55MFQko645 ug/bruiD1nOI21OUyYURSdF0nt3ao7w4g066JaplRFrtKemXt48DoagAiLeKly/H FG5Fjq6Q+E1A5WV0qMuAL2dxJVaSD52GFuJoyNtpsbh4IUWz39ZCMslApY93krSq gNHOAu5A+9ivs4NQuAdb5R0E2+wKr0Zbjgw0AmO4xKe8OXblksw3bgWhbx7nIeZB gAipaRW16LiyKPJweVGJG9TocARpbg0qOkNXVr33USPAYUE87zba4b0svJqn117O vAMR8lO/HQy7r7mnSyOIQvagD7n13Mi7HoMD5YNnL/y3GDqQtxEpTT8X1VqdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUj527x+aFLhOrTTa1gWjzR6aMQpowHwYDVR0j BBgwFoAUp9G9ghE81yDFcq+ZqPspQGEK7EkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 OWRhN2I2YS00ZTFhLTQxZmYtYjhlYi04YzM2NGNkMjY0YjEvMC9BN0QxQkQ4MjEx M0NENzIwQzU3MkFGOTlBOEZCMjk0MDYxMEFFQzQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTdEMUJEODIxMTNDRDcyMEM1NzJBRjk5QThGQjI5NDA2MTBB RUM0OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ5ZGE3YjZhLTRlMWEtNDFmZi1i OGViLThjMzY0Y2QyNjRiMS8wLzMxMzAzMzJlMzczNzJlMzIzMDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzNDMyMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdNzDANBgkqhkiG 9w0BAQsFAAOCAQEAjy8JlG+BtYA+/LQMMoL5j8YTmkpROZJmYD4sJqcbwDQsJP8K rGU/KgNNGcjW/I9eqmCr8G8YV925KViAPPapUq3NMk5bivVCMNNS83DRjoCTC3l3 dP7HN0pe1mUf3t1ar7Y2op3Xv+AUjGlspfVHrQKHZ/XMJZM5KsLiwIu4TEAbX7So tIbinUfGjZdMUrVFEM0kip5c+f2wonucy7ylS2vEluKwgVy2dWtxZSM1Ki/wWRrp Dxy8j2z28xMtafnMKY3Io6m5RgoIsb1MqWxq1+mJo8xgpv3iJB0Ym6rr4SL+IjGH qfv/xh/8BLeKLkSmeRaGGbfHBU/GK1Uq5m0BGQ== -----END CERTIFICATE-----Generated at Sun Nov 24 11:23:25 2024 by rpki-client on console-ams.rpki-client.org