$ rpki-client -vvf repo-rpki.idnic.net/repo/696a74df-d907-4aaf-a836-43e4e1968525/0/3130332e3135332e39372e302f32342d3234203d3e20313430343630.roa File: 3130332e3135332e39372e302f32342d3234203d3e20313430343630.roa (raw, json) Hash identifier: nKx2W2J5QqbAPLTUpYp/KQAECRR7E2z1uXn+5NBG7zs= Subject key identifier: 30:24:69:D5:0B:27:4D:13:72:9C:34:C0:F4:3F:FE:72:4D:52:FF:47 Certificate issuer: /CN=8D956CF1DF56850C9CF6173DF90141A9C6A46868 Certificate serial: 6A92939077561BBA2527A77B0A49C171A9048BA3 Authority key identifier: 8D:95:6C:F1:DF:56:85:0C:9C:F6:17:3D:F9:01:41:A9:C6:A4:68:68 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8D956CF1DF56850C9CF6173DF90141A9C6A46868.cer Subject info access: rsync://repo-rpki.idnic.net/repo/696a74df-d907-4aaf-a836-43e4e1968525/0/3130332e3135332e39372e302f32342d3234203d3e20313430343630.roa Signing time: Wed 28 Aug 2024 02:00:01 +0000 ROA not before: Wed 28 Aug 2024 01:55:01 +0000 ROA not after: Wed 27 Aug 2025 02:00:01 +0000 asID: 140460 IP address blocks: 103.153.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/696a74df-d907-4aaf-a836-43e4e1968525/0/8D956CF1DF56850C9CF6173DF90141A9C6A46868.crl rsync://repo-rpki.idnic.net/repo/696a74df-d907-4aaf-a836-43e4e1968525/0/8D956CF1DF56850C9CF6173DF90141A9C6A46868.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8D956CF1DF56850C9CF6173DF90141A9C6A46868.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 02:14:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:92:93:90:77:56:1b:ba:25:27:a7:7b:0a:49:c1:71:a9:04:8b:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D956CF1DF56850C9CF6173DF90141A9C6A46868 Validity Not Before: Aug 28 01:55:01 2024 GMT Not After : Aug 27 02:00:01 2025 GMT Subject: CN=302469D50B274D13729C34C0F43FFE724D52FF47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:07:5c:74:16:85:93:c0:d6:34:71:45:2c:46: 17:05:62:25:8c:c5:2e:32:7e:92:5d:a0:c9:bb:1a: 76:c9:8b:77:8d:75:27:c4:be:d2:9b:6c:67:3b:24: 33:8a:42:5a:c1:6f:de:a1:67:08:0a:bf:70:4f:f8: e7:c8:49:43:8c:60:f0:b0:c6:88:2b:02:6a:b1:51: 98:b7:a9:27:9b:23:ea:e5:11:71:68:40:73:5e:3e: a6:71:c0:14:e4:43:93:81:5e:38:e6:2e:7b:23:ec: fb:d7:8e:6c:6a:ba:af:74:cc:f1:5c:c3:ed:b8:e9: d4:03:c6:40:6d:41:6c:25:7a:17:e2:aa:94:eb:b3: 37:d5:86:9b:58:b3:89:70:11:cb:f1:8a:38:51:84: 14:20:7a:9e:88:35:98:4f:70:be:7b:4f:f4:4b:63: 60:ed:44:0b:2e:ec:c2:bd:2e:d6:a1:d5:39:9e:c3: 22:7d:49:dd:f3:42:46:18:6e:aa:7c:a8:a8:00:9e: 03:cd:ac:70:2b:38:e1:3c:c6:78:a0:e1:f6:86:e1: 88:46:45:96:64:c2:a9:5b:f0:b1:70:92:ee:f6:4f: 05:78:0e:fa:f9:e1:8c:eb:5c:fe:4e:15:53:3e:99: 25:11:d5:31:26:22:9e:b3:0c:c8:1e:1a:1e:e4:d4: 0c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:24:69:D5:0B:27:4D:13:72:9C:34:C0:F4:3F:FE:72:4D:52:FF:47 X509v3 Authority Key Identifier: keyid:8D:95:6C:F1:DF:56:85:0C:9C:F6:17:3D:F9:01:41:A9:C6:A4:68:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/696a74df-d907-4aaf-a836-43e4e1968525/0/8D956CF1DF56850C9CF6173DF90141A9C6A46868.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8D956CF1DF56850C9CF6173DF90141A9C6A46868.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/696a74df-d907-4aaf-a836-43e4e1968525/0/3130332e3135332e39372e302f32342d3234203d3e20313430343630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.97.0/24 Signature Algorithm: sha256WithRSAEncryption 54:f8:70:39:80:80:e8:e6:4c:e8:07:90:c6:ae:df:5b:87:27: ef:51:60:3f:1f:10:8b:cb:64:92:27:18:65:a7:d4:ea:d0:a0: 9a:02:9b:c3:3d:34:56:b9:3b:47:23:49:76:c1:ac:6d:05:fa: dc:c4:51:55:f4:b6:1f:14:18:5c:44:7b:e1:90:2a:c6:de:a2: 62:fb:af:4b:92:61:ae:08:98:b0:a4:8e:9d:9c:04:b2:a6:84: d0:ce:83:b8:c4:57:56:01:9b:6d:df:7f:23:57:0b:59:45:52: ad:a0:ff:28:91:87:f3:fa:3b:f0:2c:29:ac:a9:09:1e:80:85: bd:78:04:82:38:5b:e1:f2:ff:ea:65:6a:ff:ff:a2:94:a8:61: 96:31:30:80:2e:e2:2e:46:db:da:e7:90:a9:b4:be:7c:6a:37: be:82:9a:e0:5e:7a:c5:94:d9:a2:3d:83:17:2a:1e:0d:ff:c2: ea:3d:cc:8f:88:6e:51:54:49:95:7b:14:ee:18:48:20:da:29: f8:4f:a0:fb:7e:b5:bb:fe:63:10:de:64:40:c2:02:09:77:95: b7:ee:35:5a:f4:5c:36:90:11:2b:d6:03:5d:94:3e:72:a3:5c: ce:8d:19:b4:90:43:65:05:fc:76:23:fa:3a:f2:32:71:4c:5b: 30:30:d5:17 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUapKTkHdWG7olJ6d7CknBcakEi6MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEQ5NTZDRjFERjU2ODUwQzlDRjYxNzNERjkwMTQxQTlD NkE0Njg2ODAeFw0yNDA4MjgwMTU1MDFaFw0yNTA4MjcwMjAwMDFaMDMxMTAvBgNV BAMTKDMwMjQ2OUQ1MEIyNzREMTM3MjlDMzRDMEY0M0ZGRTcyNEQ1MkZGNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsB1x0FoWTwNY0cUUsRhcFYiWM xS4yfpJdoMm7GnbJi3eNdSfEvtKbbGc7JDOKQlrBb96hZwgKv3BP+OfISUOMYPCw xogrAmqxUZi3qSebI+rlEXFoQHNePqZxwBTkQ5OBXjjmLnsj7PvXjmxquq90zPFc w+246dQDxkBtQWwlehfiqpTrszfVhptYs4lwEcvxijhRhBQgep6INZhPcL57T/RL Y2DtRAsu7MK9Ltah1TmewyJ9Sd3zQkYYbqp8qKgAngPNrHArOOE8xnig4faG4YhG RZZkwqlb8LFwku72TwV4Dvr54YzrXP5OFVM+mSUR1TEmIp6zDMgeGh7k1AxlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMCRp1QsnTRNynDTA9D/+ck1S/0cwHwYDVR0j BBgwFoAUjZVs8d9WhQyc9hc9+QFBqcakaGgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OTZhNzRkZi1kOTA3LTRhYWYtYTgzNi00M2U0ZTE5Njg1MjUvMC84RDk1NkNGMURG NTY4NTBDOUNGNjE3M0RGOTAxNDFBOUM2QTQ2ODY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEQ5NTZDRjFERjU2ODUwQzlDRjYxNzNERjkwMTQxQTlDNkE0 Njg2OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5NmE3NGRmLWQ5MDctNGFhZi1h ODM2LTQzZTRlMTk2ODUyNS8wLzMxMzAzMzJlMzEzNTMzMmUzOTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5lhMA0GCSqG SIb3DQEBCwUAA4IBAQBU+HA5gIDo5kzoB5DGrt9bhyfvUWA/HxCLy2SSJxhlp9Tq 0KCaApvDPTRWuTtHI0l2waxtBfrcxFFV9LYfFBhcRHvhkCrG3qJi+69LkmGuCJiw pI6dnASypoTQzoO4xFdWAZtt338jVwtZRVKtoP8okYfz+jvwLCmsqQkegIW9eASC OFvh8v/qZWr//6KUqGGWMTCALuIuRtva55CptL58aje+gprgXnrFlNmiPYMXKh4N /8LqPcyPiG5RVEmVexTuGEgg2in4T6D7frW7/mMQ3mRAwgIJd5W37jVa9Fw2kBEr 1gNdlD5yo1zOjRm0kENlBfx2I/o68jJxTFswMNUX -----END CERTIFICATE-----Generated at Thu Nov 21 00:19:20 2024 by rpki-client on console-fra.rpki-client.org