$ rpki-client -vvf repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/3130332e38392e3135342e302f32342d3234203d3e20313333383030.roa File: 3130332e38392e3135342e302f32342d3234203d3e20313333383030.roa (raw, json) Hash identifier: 19hfbaESEw6CQnreLuKBlHH7tTyTFEttoS4e3oK+FXU= Subject key identifier: 77:C2:CF:83:74:41:4D:15:72:50:A2:1F:D7:3B:AF:BB:0B:4F:58:04 Certificate issuer: /CN=7376922C93BF667FFBBDAF0735AE73D1451B08C2 Certificate serial: 63E71730EEB1EA76EB03EC7062E12E8C6E5B5FD0 Authority key identifier: 73:76:92:2C:93:BF:66:7F:FB:BD:AF:07:35:AE:73:D1:45:1B:08:C2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7376922C93BF667FFBBDAF0735AE73D1451B08C2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/3130332e38392e3135342e302f32342d3234203d3e20313333383030.roa Signing time: Wed 17 Jul 2024 09:00:01 +0000 ROA not before: Wed 17 Jul 2024 08:55:01 +0000 ROA not after: Wed 16 Jul 2025 09:00:01 +0000 asID: 133800 IP address blocks: 103.89.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/7376922C93BF667FFBBDAF0735AE73D1451B08C2.crl rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/7376922C93BF667FFBBDAF0735AE73D1451B08C2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7376922C93BF667FFBBDAF0735AE73D1451B08C2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 02:44:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:e7:17:30:ee:b1:ea:76:eb:03:ec:70:62:e1:2e:8c:6e:5b:5f:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7376922C93BF667FFBBDAF0735AE73D1451B08C2 Validity Not Before: Jul 17 08:55:01 2024 GMT Not After : Jul 16 09:00:01 2025 GMT Subject: CN=77C2CF8374414D157250A21FD73BAFBB0B4F5804 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:eb:82:3c:54:55:75:2a:aa:f5:e6:74:b8:ba: c2:a7:ef:3b:bd:ed:d5:e9:ef:73:49:69:d8:d1:76: 01:74:d1:3c:de:e5:ee:d6:9e:74:4d:8d:61:c4:a5: c0:a0:44:fd:ff:47:84:6d:b3:37:97:50:92:5b:dd: 74:36:ab:0b:e6:62:94:6a:41:ae:48:b7:c1:ad:be: a4:25:4f:97:70:19:99:ab:ac:14:67:7b:c7:df:f0: 13:b9:9f:59:1a:28:dd:a1:c7:db:76:6b:05:43:48: 05:05:b6:c9:5b:d1:2d:58:01:f3:a8:6d:6e:a1:b1: a2:61:1f:72:8c:96:29:ef:56:60:13:12:4d:68:5d: ce:e7:bd:b2:e8:1e:1e:60:a5:28:62:0a:b7:f2:3e: ed:80:d9:e1:00:a6:c2:7a:a8:fd:44:f2:52:38:17: a0:7d:18:19:03:9a:b2:f4:87:91:28:bf:cc:88:96: a9:21:29:91:d0:0f:0c:30:b6:33:1a:3b:81:f0:25: ec:45:05:10:83:4d:fb:4f:3f:bd:a9:a6:fc:81:56: b6:b0:a9:2f:ca:cf:6e:4f:8a:35:79:0d:5f:d8:64: 6c:87:14:60:01:70:49:10:e5:28:ca:9f:16:fb:e4: 8d:1f:fe:b0:b4:86:f0:97:43:a3:7c:17:c7:cd:e2: 1c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:C2:CF:83:74:41:4D:15:72:50:A2:1F:D7:3B:AF:BB:0B:4F:58:04 X509v3 Authority Key Identifier: keyid:73:76:92:2C:93:BF:66:7F:FB:BD:AF:07:35:AE:73:D1:45:1B:08:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/7376922C93BF667FFBBDAF0735AE73D1451B08C2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7376922C93BF667FFBBDAF0735AE73D1451B08C2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/3130332e38392e3135342e302f32342d3234203d3e20313333383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.89.154.0/24 Signature Algorithm: sha256WithRSAEncryption 75:8f:71:e4:f6:56:22:7f:01:47:2e:cf:e1:1f:b6:fd:9a:f2: a8:86:a1:a7:58:46:85:94:ca:2f:0d:56:40:9e:c7:df:89:24: d8:a0:57:60:96:36:1a:5b:97:fa:f5:b3:41:c8:06:bb:b4:ba: b1:e5:3f:0e:1e:a2:0d:cf:fb:ed:52:c8:8e:17:d7:c2:d7:09: 1a:92:84:84:01:8c:0d:59:13:7d:41:16:39:1e:8e:db:78:f1: 74:cc:05:ae:fd:40:88:f6:c0:28:f6:45:ce:94:ef:ef:03:24: 85:87:a1:3a:f8:fa:90:ac:d3:af:e6:4e:05:e9:6a:ce:39:af: bf:92:02:bc:ce:f0:5a:c9:26:7c:ab:6f:73:42:e3:3c:8e:cd: 65:a8:5e:f5:c5:3a:a1:e5:96:a7:50:87:71:87:3a:40:61:ff: 71:9f:18:95:b1:b0:c7:34:0d:64:06:37:ec:49:66:fc:cc:06: 79:05:2c:8c:c3:17:dd:c6:5a:4b:67:8c:cc:ce:39:d0:61:1f: d0:dc:ea:c4:f4:d9:d2:92:1d:0a:f1:bb:73:38:fc:aa:31:7d: 36:9d:69:33:b9:42:d7:c3:d6:83:0c:1c:5d:43:28:a9:cc:89: 5c:53:2b:14:be:f1:3d:ae:04:87:1a:6d:ee:67:c1:99:2b:ab: 83:e9:ac:dc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUY+cXMO6x6nbrA+xwYuEujG5bX9AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzM3NjkyMkM5M0JGNjY3RkZCQkRBRjA3MzVBRTczRDE0 NTFCMDhDMjAeFw0yNDA3MTcwODU1MDFaFw0yNTA3MTYwOTAwMDFaMDMxMTAvBgNV BAMTKDc3QzJDRjgzNzQ0MTREMTU3MjUwQTIxRkQ3M0JBRkJCMEI0RjU4MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi64I8VFV1Kqr15nS4usKn7zu9 7dXp73NJadjRdgF00Tze5e7WnnRNjWHEpcCgRP3/R4RtszeXUJJb3XQ2qwvmYpRq Qa5It8GtvqQlT5dwGZmrrBRne8ff8BO5n1kaKN2hx9t2awVDSAUFtslb0S1YAfOo bW6hsaJhH3KMlinvVmATEk1oXc7nvbLoHh5gpShiCrfyPu2A2eEApsJ6qP1E8lI4 F6B9GBkDmrL0h5Eov8yIlqkhKZHQDwwwtjMaO4HwJexFBRCDTftPP72ppvyBVraw qS/Kz25PijV5DV/YZGyHFGABcEkQ5SjKnxb75I0f/rC0hvCXQ6N8F8fN4hwzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUd8LPg3RBTRVyUKIf1zuvuwtPWAQwHwYDVR0j BBgwFoAUc3aSLJO/Zn/7va8HNa5z0UUbCMIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDE3NmRkZC1hOTgwLTQzZDYtOTRhNy05NWVlZGE1Mzk2NjUvMC83Mzc2OTIyQzkz QkY2NjdGRkJCREFGMDczNUFFNzNEMTQ1MUIwOEMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzM3NjkyMkM5M0JGNjY3RkZCQkRBRjA3MzVBRTczRDE0NTFC MDhDMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkMTc2ZGRkLWE5ODAtNDNkNi05 NGE3LTk1ZWVkYTUzOTY2NS8wLzMxMzAzMzJlMzgzOTJlMzEzNTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1maMA0GCSqG SIb3DQEBCwUAA4IBAQB1j3Hk9lYifwFHLs/hH7b9mvKohqGnWEaFlMovDVZAnsff iSTYoFdgljYaW5f69bNByAa7tLqx5T8OHqINz/vtUsiOF9fC1wkakoSEAYwNWRN9 QRY5Ho7bePF0zAWu/UCI9sAo9kXOlO/vAySFh6E6+PqQrNOv5k4F6WrOOa+/kgK8 zvBaySZ8q29zQuM8js1lqF71xTqh5ZanUIdxhzpAYf9xnxiVsbDHNA1kBjfsSWb8 zAZ5BSyMwxfdxlpLZ4zMzjnQYR/Q3OrE9NnSkh0K8btzOPyqMX02nWkzuULXw9aD DBxdQyipzIlcUysUvvE9rgSHGm3uZ8GZK6uD6azc -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:21 2024 by rpki-client on console-fra.rpki-client.org