$ rpki-client -vvf repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/3130332e38392e3136342e302f32342d3234203d3e20313333383030.roa File: 3130332e38392e3136342e302f32342d3234203d3e20313333383030.roa (raw, json) Hash identifier: dpYs/5Z9KsHYepGTVhl5BzN1VZTKmrw6nRTQCg2byOU= Subject key identifier: 9A:A8:69:B9:44:9E:0A:DB:67:E7:9D:8A:44:5F:2C:86:AA:C9:87:42 Certificate issuer: /CN=7376922C93BF667FFBBDAF0735AE73D1451B08C2 Certificate serial: 6D609669AEB41CF56334580D7CDACA02CA105B23 Authority key identifier: 73:76:92:2C:93:BF:66:7F:FB:BD:AF:07:35:AE:73:D1:45:1B:08:C2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7376922C93BF667FFBBDAF0735AE73D1451B08C2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/3130332e38392e3136342e302f32342d3234203d3e20313333383030.roa Signing time: Wed 17 Jul 2024 08:00:01 +0000 ROA not before: Wed 17 Jul 2024 07:55:01 +0000 ROA not after: Wed 16 Jul 2025 08:00:01 +0000 asID: 133800 IP address blocks: 103.89.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/7376922C93BF667FFBBDAF0735AE73D1451B08C2.crl rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/7376922C93BF667FFBBDAF0735AE73D1451B08C2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7376922C93BF667FFBBDAF0735AE73D1451B08C2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 02:44:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:60:96:69:ae:b4:1c:f5:63:34:58:0d:7c:da:ca:02:ca:10:5b:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7376922C93BF667FFBBDAF0735AE73D1451B08C2 Validity Not Before: Jul 17 07:55:01 2024 GMT Not After : Jul 16 08:00:01 2025 GMT Subject: CN=9AA869B9449E0ADB67E79D8A445F2C86AAC98742 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f4:fc:34:bd:da:ec:cf:99:b9:2d:73:ed:66: 0d:05:d3:c0:9e:4d:2d:0e:60:90:38:e1:61:8a:66: f1:cf:f1:38:98:69:45:9e:c6:b7:3e:69:aa:47:de: fb:fb:6e:7e:3a:cb:80:a5:84:4d:1a:d1:83:be:a8: 32:18:b4:10:1c:26:b7:ca:c3:b6:d6:e8:53:59:bd: c0:4e:12:c8:c4:4f:42:43:22:90:08:00:89:e4:77: ea:69:d2:e1:ec:22:82:65:40:d5:d7:2b:2c:0e:0a: e3:24:34:6b:4b:e6:b6:1b:8f:09:dc:da:cc:11:9f: 7b:d1:92:98:2e:39:b6:00:63:5b:0e:6d:98:9d:50: 89:7a:34:93:49:cf:d7:18:b0:e7:b7:3a:00:a8:ca: 40:75:51:18:1e:e9:ad:b3:77:c2:bc:88:c1:da:1a: 11:55:3a:d1:f7:2c:9c:4c:25:94:cf:e0:be:c0:79: cc:53:e4:00:af:ff:32:5a:f1:d3:48:cf:39:79:37: c3:c0:bb:de:76:c6:c2:10:3b:7a:a1:5a:e4:b1:ef: 86:0a:d9:6e:90:35:f5:f9:fd:94:64:dc:5b:6a:46: 5e:dc:7a:22:77:bf:6b:93:47:da:2f:4d:ae:e7:b9: 63:57:43:07:76:87:96:7f:56:2c:24:2a:a7:dc:b6: 3c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:A8:69:B9:44:9E:0A:DB:67:E7:9D:8A:44:5F:2C:86:AA:C9:87:42 X509v3 Authority Key Identifier: keyid:73:76:92:2C:93:BF:66:7F:FB:BD:AF:07:35:AE:73:D1:45:1B:08:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/7376922C93BF667FFBBDAF0735AE73D1451B08C2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7376922C93BF667FFBBDAF0735AE73D1451B08C2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/3130332e38392e3136342e302f32342d3234203d3e20313333383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.89.164.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:b2:69:69:cb:75:b3:8d:a8:0e:09:32:4b:7e:d9:2a:db:a5: 8c:cc:19:e8:06:af:15:2e:71:a6:9a:d2:b4:19:7d:11:6d:5a: f1:25:63:db:d4:c3:70:b3:05:12:33:f4:7d:ee:67:81:c4:e3: 1b:be:e3:ed:90:8f:6a:29:12:8c:49:f8:8d:52:7f:e9:a3:0e: ea:c1:4e:bb:99:65:56:1c:ee:e0:3c:93:ce:ad:7d:2b:7e:14: dd:91:a1:e5:8d:d4:8d:ff:ed:fe:56:e1:5f:4b:1d:d9:79:d8: b6:e8:b2:bd:b8:ef:52:e6:1c:df:3c:95:02:57:3a:c8:d5:1a: da:f6:3a:86:e9:a5:b5:eb:f9:e5:d5:4d:34:09:5f:eb:54:dd: fd:d1:7f:ea:34:4a:de:f0:dd:10:dc:30:3a:d0:2f:bf:ba:f3: 33:34:21:54:4a:d3:7d:7b:47:3a:1d:a4:f8:cd:c7:c4:f0:48: ee:ff:fa:1c:8e:16:d9:1c:b8:f8:34:53:cf:0c:7b:e1:7d:d2: f0:bb:d0:40:0d:0c:ae:73:ac:08:51:09:4f:8f:54:f8:21:4d: d7:aa:47:2f:e9:11:af:ae:40:0c:7d:b6:db:46:d8:c9:75:81: b5:e2:f8:74:63:ca:3d:9f:ea:9a:87:75:96:b9:17:e5:1c:ac: e9:b4:ad:4c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbWCWaa60HPVjNFgNfNrKAsoQWyMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzM3NjkyMkM5M0JGNjY3RkZCQkRBRjA3MzVBRTczRDE0 NTFCMDhDMjAeFw0yNDA3MTcwNzU1MDFaFw0yNTA3MTYwODAwMDFaMDMxMTAvBgNV BAMTKDlBQTg2OUI5NDQ5RTBBREI2N0U3OUQ4QTQ0NUYyQzg2QUFDOTg3NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT9Pw0vdrsz5m5LXPtZg0F08Ce TS0OYJA44WGKZvHP8TiYaUWexrc+aapH3vv7bn46y4ClhE0a0YO+qDIYtBAcJrfK w7bW6FNZvcBOEsjET0JDIpAIAInkd+pp0uHsIoJlQNXXKywOCuMkNGtL5rYbjwnc 2swRn3vRkpguObYAY1sObZidUIl6NJNJz9cYsOe3OgCoykB1URge6a2zd8K8iMHa GhFVOtH3LJxMJZTP4L7AecxT5ACv/zJa8dNIzzl5N8PAu952xsIQO3qhWuSx74YK 2W6QNfX5/ZRk3FtqRl7ceiJ3v2uTR9ovTa7nuWNXQwd2h5Z/ViwkKqfctjxFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmqhpuUSeCttn552KRF8shqrJh0IwHwYDVR0j BBgwFoAUc3aSLJO/Zn/7va8HNa5z0UUbCMIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDE3NmRkZC1hOTgwLTQzZDYtOTRhNy05NWVlZGE1Mzk2NjUvMC83Mzc2OTIyQzkz QkY2NjdGRkJCREFGMDczNUFFNzNEMTQ1MUIwOEMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzM3NjkyMkM5M0JGNjY3RkZCQkRBRjA3MzVBRTczRDE0NTFC MDhDMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkMTc2ZGRkLWE5ODAtNDNkNi05 NGE3LTk1ZWVkYTUzOTY2NS8wLzMxMzAzMzJlMzgzOTJlMzEzNjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1mkMA0GCSqG SIb3DQEBCwUAA4IBAQAasmlpy3WzjagOCTJLftkq26WMzBnoBq8VLnGmmtK0GX0R bVrxJWPb1MNwswUSM/R97meBxOMbvuPtkI9qKRKMSfiNUn/pow7qwU67mWVWHO7g PJPOrX0rfhTdkaHljdSN/+3+VuFfSx3Zedi26LK9uO9S5hzfPJUCVzrI1Rra9jqG 6aW16/nl1U00CV/rVN390X/qNEre8N0Q3DA60C+/uvMzNCFUStN9e0c6HaT4zcfE 8Eju//ocjhbZHLj4NFPPDHvhfdLwu9BADQyuc6wIUQlPj1T4IU3Xqkcv6RGvrkAM fbbbRtjJdYG14vh0Y8o9n+qah3WWuRflHKzptK1M -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:21 2024 by rpki-client on console-fra.rpki-client.org