$ rpki-client -vvf repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/3130332e35332e37362e302f32322d3234203d3e20313333383137.roa File: 3130332e35332e37362e302f32322d3234203d3e20313333383137.roa (raw, json) Hash identifier: VG/ACRZPp2r0hedLnYSdIksDAv+Mc1H+dIKcuSQ562M= Subject key identifier: 32:69:44:D2:D7:28:A1:66:85:16:94:4D:18:80:50:82:25:0A:F0:EC Certificate issuer: /CN=651790FFFC1688AFA384D136FC4792AD18879019 Certificate serial: 4A6190DBC07688221EAF9AE1EA882F37FB0E520D Authority key identifier: 65:17:90:FF:FC:16:88:AF:A3:84:D1:36:FC:47:92:AD:18:87:90:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/651790FFFC1688AFA384D136FC4792AD18879019.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/3130332e35332e37362e302f32322d3234203d3e20313333383137.roa Signing time: Mon 01 Jul 2024 01:02:39 +0000 ROA not before: Mon 01 Jul 2024 00:57:39 +0000 ROA not after: Mon 30 Jun 2025 01:02:39 +0000 asID: 133817 IP address blocks: 103.53.76.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.crl rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/651790FFFC1688AFA384D136FC4792AD18879019.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:61:90:db:c0:76:88:22:1e:af:9a:e1:ea:88:2f:37:fb:0e:52:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=651790FFFC1688AFA384D136FC4792AD18879019 Validity Not Before: Jul 1 00:57:39 2024 GMT Not After : Jun 30 01:02:39 2025 GMT Subject: CN=326944D2D728A1668516944D18805082250AF0EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:0f:ae:e6:67:41:97:c8:87:bb:92:aa:99:60: c0:1e:66:a7:62:0a:d0:8c:3c:2f:d9:15:3d:69:ba: 5a:b3:91:e0:de:e8:a7:21:a8:4e:62:9d:ad:82:b9: c2:15:d5:20:02:c8:ca:76:51:ef:27:c6:66:02:9b: c5:f9:26:cb:36:fc:47:35:f8:76:47:62:22:27:be: 06:8c:ea:15:7f:fe:f4:c6:36:31:aa:e6:ab:8a:49: cc:ae:b4:5e:1f:10:b0:53:c2:02:16:71:b9:1e:80: dd:68:f7:58:94:ee:bf:ad:f4:05:40:ed:9f:b0:c1: ca:22:24:0c:67:58:f8:6e:53:26:3f:44:80:07:f7: 01:69:19:2d:6a:8c:51:93:c2:84:e1:bf:37:e2:88: 60:1d:bf:fa:d5:67:be:a2:a2:70:a7:c9:17:58:92: 39:48:4a:e6:22:4d:ce:9a:33:ad:cf:d4:03:08:b1: 5c:41:46:0d:0f:83:8d:34:d4:e4:cd:2f:ca:4b:bd: da:eb:66:57:ca:5f:fb:e2:81:f3:3a:a5:e7:0c:e1: 07:e9:21:25:e6:69:01:b1:07:ff:fc:c3:81:96:8b: d9:69:05:33:e9:46:d0:39:18:56:0b:17:7c:88:43: 5c:71:f5:d1:aa:8f:ad:87:c0:e6:74:3c:0e:14:c5: 40:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:69:44:D2:D7:28:A1:66:85:16:94:4D:18:80:50:82:25:0A:F0:EC X509v3 Authority Key Identifier: keyid:65:17:90:FF:FC:16:88:AF:A3:84:D1:36:FC:47:92:AD:18:87:90:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/651790FFFC1688AFA384D136FC4792AD18879019.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/3130332e35332e37362e302f32322d3234203d3e20313333383137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.53.76.0/22 Signature Algorithm: sha256WithRSAEncryption 3c:16:1d:99:f3:29:d3:7c:2d:e2:bb:2b:0e:8e:74:4a:05:f3: ce:be:a0:19:fe:e2:20:6e:cc:d4:3b:3e:5a:e0:44:6d:b1:7b: ae:35:18:74:79:4f:31:a8:b0:d5:b4:af:8f:21:93:86:f5:54: 9e:57:a8:71:02:20:3b:44:14:3d:1b:ad:af:51:9a:fb:4a:60: a2:2b:d6:65:70:0c:d8:aa:51:7a:cd:07:4e:af:ee:f0:1a:c7: 9a:fa:f4:bc:91:b6:90:ad:9a:91:2a:86:e1:d4:89:03:71:1b: 2b:43:0d:42:b3:0c:4e:0d:96:b0:3f:64:06:15:bb:25:ff:75: 50:af:2c:cf:56:b4:fe:86:c4:0b:b9:4d:8e:e1:fa:0e:13:b9: 50:a2:d8:c2:3a:b9:ed:29:30:ea:68:a8:6c:29:a6:01:a7:71: ca:20:b0:89:d5:d2:e7:10:bf:59:99:1b:e8:7a:40:b9:04:7c: 7d:77:39:6d:9f:8c:39:4e:af:87:a4:1b:27:96:6b:4a:f9:54: e9:c0:49:50:1c:42:84:67:a2:28:4a:62:f3:ed:2a:84:8e:a8: ab:b6:87:1f:38:2c:8b:3d:21:d9:a5:78:67:70:10:ee:98:7b: 62:95:22:f1:59:0c:5e:cb:f8:f4:f2:78:1a:d0:6e:5f:7b:37: c5:ab:1d:13 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSmGQ28B2iCIer5rh6ogvN/sOUg0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjUxNzkwRkZGQzE2ODhBRkEzODREMTM2RkM0NzkyQUQx ODg3OTAxOTAeFw0yNDA3MDEwMDU3MzlaFw0yNTA2MzAwMTAyMzlaMDMxMTAvBgNV BAMTKDMyNjk0NEQyRDcyOEExNjY4NTE2OTQ0RDE4ODA1MDgyMjUwQUYwRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgD67mZ0GXyIe7kqqZYMAeZqdi CtCMPC/ZFT1pulqzkeDe6KchqE5ina2CucIV1SACyMp2Ue8nxmYCm8X5Jss2/Ec1 +HZHYiInvgaM6hV//vTGNjGq5quKScyutF4fELBTwgIWcbkegN1o91iU7r+t9AVA 7Z+wwcoiJAxnWPhuUyY/RIAH9wFpGS1qjFGTwoThvzfiiGAdv/rVZ76ionCnyRdY kjlISuYiTc6aM63P1AMIsVxBRg0Pg4001OTNL8pLvdrrZlfKX/vigfM6pecM4Qfp ISXmaQGxB//8w4GWi9lpBTPpRtA5GFYLF3yIQ1xx9dGqj62HwOZ0PA4UxUBXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMmlE0tcooWaFFpRNGIBQgiUK8OwwHwYDVR0j BBgwFoAUZReQ//wWiK+jhNE2/EeSrRiHkBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmY3ZWYzNC00OTkxLTRiYjEtOTZiNC1iZTQzZjFlY2FiYjQvMC82NTE3OTBGRkZD MTY4OEFGQTM4NEQxMzZGQzQ3OTJBRDE4ODc5MDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjUxNzkwRkZGQzE2ODhBRkEzODREMTM2RkM0NzkyQUQxODg3 OTAxOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY2ZjdlZjM0LTQ5OTEtNGJiMS05 NmI0LWJlNDNmMWVjYWJiNC8wLzMxMzAzMzJlMzUzMzJlMzczNjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzMzMzM4MzEzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmc1TDANBgkqhkiG 9w0BAQsFAAOCAQEAPBYdmfMp03wt4rsrDo50SgXzzr6gGf7iIG7M1Ds+WuBEbbF7 rjUYdHlPMaiw1bSvjyGThvVUnleocQIgO0QUPRutr1Ga+0pgoivWZXAM2KpRes0H Tq/u8BrHmvr0vJG2kK2akSqG4dSJA3EbK0MNQrMMTg2WsD9kBhW7Jf91UK8sz1a0 /obEC7lNjuH6DhO5UKLYwjq57Skw6miobCmmAadxyiCwidXS5xC/WZkb6HpAuQR8 fXc5bZ+MOU6vh6QbJ5ZrSvlU6cBJUBxChGeiKEpi8+0qhI6oq7aHHzgsiz0h2aV4 Z3AQ7ph7YpUi8VkMXsv49PJ4GtBuX3s3xasdEw== -----END CERTIFICATE-----Generated at Sun Nov 24 04:28:51 2024 by rpki-client on console-fra.rpki-client.org