$ rpki-client -vvf repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/3130332e37302e36382e302f32342d3234203d3e20313335343634.roa File: 3130332e37302e36382e302f32342d3234203d3e20313335343634.roa (raw, json) Hash identifier: 2CoQGk4NMRfUrYnvT/UZsUPUuE84h2TZeseeJ7TfgPk= Subject key identifier: 53:81:BE:47:ED:0C:FD:98:E1:43:EA:38:72:1F:E5:92:B0:2F:B0:BB Certificate issuer: /CN=D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF Certificate serial: 79A13C7D361D012A7F6B2EC95C33586CA2D4AB66 Authority key identifier: D7:C7:C6:E5:33:C4:1C:36:D9:23:CD:C5:9F:FC:1B:04:36:C3:9F:AF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/3130332e37302e36382e302f32342d3234203d3e20313335343634.roa Signing time: Sat 16 Nov 2024 09:00:00 +0000 ROA not before: Sat 16 Nov 2024 08:55:00 +0000 ROA not after: Sat 15 Nov 2025 09:00:00 +0000 asID: 135464 IP address blocks: 103.70.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.crl rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:a1:3c:7d:36:1d:01:2a:7f:6b:2e:c9:5c:33:58:6c:a2:d4:ab:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF Validity Not Before: Nov 16 08:55:00 2024 GMT Not After : Nov 15 09:00:00 2025 GMT Subject: CN=5381BE47ED0CFD98E143EA38721FE592B02FB0BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:99:7f:43:22:17:0b:5d:e1:a6:f1:82:d3:6f: 89:88:ee:d1:f9:85:a7:41:5f:09:a0:a2:3e:2b:9d: 02:ec:7d:ec:f4:ea:2e:a5:f2:ae:63:a2:e0:0e:92: 67:40:e9:71:0f:c2:fe:35:85:36:43:4a:7c:d3:5c: aa:0a:2b:9b:fd:a7:96:71:43:52:60:1f:59:7b:39: 1b:0d:39:78:5a:09:c2:50:ce:f5:20:28:e6:96:e0: 23:74:1a:88:de:63:63:c7:d8:8d:78:83:71:98:ba: 92:13:51:6d:74:17:48:e9:6f:b5:fb:40:36:5f:76: 88:ba:0d:75:34:6a:90:be:2d:2b:7f:1d:76:63:56: cf:6d:02:00:48:4a:18:5c:f6:d5:93:13:f1:50:d9: d7:77:e1:a6:b1:ef:cd:50:e0:52:98:65:e9:20:0e: 41:b9:6b:7e:33:f5:35:8f:5f:29:0f:45:c7:a4:04: 87:6c:91:75:84:fe:02:d2:72:99:39:28:4a:34:75: 61:2d:10:2e:97:5e:ed:7f:8e:40:99:d2:55:40:3e: 50:1d:1c:01:3f:54:b9:33:36:a9:3d:32:62:fb:e3: 82:f9:76:c9:f3:68:93:59:f1:8c:5a:9b:39:15:f2: 83:d8:8a:38:98:f2:3a:78:c8:f3:fe:ba:be:82:9c: 61:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:81:BE:47:ED:0C:FD:98:E1:43:EA:38:72:1F:E5:92:B0:2F:B0:BB X509v3 Authority Key Identifier: keyid:D7:C7:C6:E5:33:C4:1C:36:D9:23:CD:C5:9F:FC:1B:04:36:C3:9F:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7C7C6E533C41C36D923CDC59FFC1B0436C39FAF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/519a8538-da43-4158-abc2-8e63a8e40899/0/3130332e37302e36382e302f32342d3234203d3e20313335343634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.70.68.0/24 Signature Algorithm: sha256WithRSAEncryption 77:96:06:7b:d5:b3:59:89:4e:f1:c5:dc:ef:f4:d2:3f:5d:3e: ed:4e:9b:96:00:f4:ed:f0:14:42:75:c6:a5:8f:9d:59:d8:83: c5:1c:c6:cb:c2:01:dc:27:f4:e9:a7:02:e2:d8:25:7d:a7:6f: dd:30:df:b3:b9:45:1b:50:de:14:b4:aa:73:e8:8c:f3:53:da: 09:f0:f9:d4:f0:a0:12:f0:ad:9e:95:45:41:70:1e:5d:f3:4e: 27:99:db:b3:6a:c3:64:71:08:e9:56:2a:7d:f4:96:67:5c:16: 08:0e:cf:3c:ef:63:73:be:68:38:32:b1:5c:28:fe:d8:bb:e8: cc:d6:e2:1a:da:8d:a6:67:f5:cc:0a:08:98:08:dd:c1:f5:aa: aa:0d:4e:94:9e:62:0e:b8:55:41:96:4e:68:6b:6a:c1:a4:47: 42:77:d4:4d:a2:67:1c:8c:7d:49:db:48:a4:aa:0d:a7:28:57: 59:17:04:54:1f:8b:09:74:4d:b9:25:01:56:20:21:d1:d9:2a: 1b:5f:7f:83:1c:36:86:bf:0a:c7:48:1b:51:e7:48:0e:ad:82: 26:a3:0f:0a:a3:d4:c8:48:24:aa:f3:20:8d:1a:5b:8b:a9:c2: ac:12:d9:f8:a6:72:73:62:5d:c0:e2:22:c3:fb:c7:c8:8c:cf: ee:64:62:79 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeaE8fTYdASp/ay7JXDNYbKLUq2YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDdDN0M2RTUzM0M0MUMzNkQ5MjNDREM1OUZGQzFCMDQz NkMzOUZBRjAeFw0yNDExMTYwODU1MDBaFw0yNTExMTUwOTAwMDBaMDMxMTAvBgNV BAMTKDUzODFCRTQ3RUQwQ0ZEOThFMTQzRUEzODcyMUZFNTkyQjAyRkIwQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/mX9DIhcLXeGm8YLTb4mI7tH5 hadBXwmgoj4rnQLsfez06i6l8q5jouAOkmdA6XEPwv41hTZDSnzTXKoKK5v9p5Zx Q1JgH1l7ORsNOXhaCcJQzvUgKOaW4CN0GojeY2PH2I14g3GYupITUW10F0jpb7X7 QDZfdoi6DXU0apC+LSt/HXZjVs9tAgBIShhc9tWTE/FQ2dd34aax781Q4FKYZekg DkG5a34z9TWPXykPRcekBIdskXWE/gLScpk5KEo0dWEtEC6XXu1/jkCZ0lVAPlAd HAE/VLkzNqk9MmL744L5dsnzaJNZ8YxamzkV8oPYijiY8jp4yPP+ur6CnGG1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUU4G+R+0M/ZjhQ+o4ch/lkrAvsLswHwYDVR0j BBgwFoAU18fG5TPEHDbZI83Fn/wbBDbDn68wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MTlhODUzOC1kYTQzLTQxNTgtYWJjMi04ZTYzYThlNDA4OTkvMC9EN0M3QzZFNTMz QzQxQzM2RDkyM0NEQzU5RkZDMUIwNDM2QzM5RkFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDdDN0M2RTUzM0M0MUMzNkQ5MjNDREM1OUZGQzFCMDQzNkMz OUZBRi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxOWE4NTM4LWRhNDMtNDE1OC1h YmMyLThlNjNhOGU0MDg5OS8wLzMxMzAzMzJlMzczMDJlMzYzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzYzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdGRDANBgkqhkiG 9w0BAQsFAAOCAQEAd5YGe9WzWYlO8cXc7/TSP10+7U6blgD07fAUQnXGpY+dWdiD xRzGy8IB3Cf06acC4tglfadv3TDfs7lFG1DeFLSqc+iM81PaCfD51PCgEvCtnpVF QXAeXfNOJ5nbs2rDZHEI6VYqffSWZ1wWCA7PPO9jc75oODKxXCj+2LvozNbiGtqN pmf1zAoImAjdwfWqqg1OlJ5iDrhVQZZOaGtqwaRHQnfUTaJnHIx9SdtIpKoNpyhX WRcEVB+LCXRNuSUBViAh0dkqG19/gxw2hr8Kx0gbUedIDq2CJqMPCqPUyEgkqvMg jRpbi6nCrBLZ+KZyc2JdwOIiw/vHyIzP7mRieQ== -----END CERTIFICATE-----Generated at Wed Nov 20 20:04:30 2024 by rpki-client on console-fra.rpki-client.org