$ rpki-client -vvf repo-rpki.idnic.net/repo/6e97dbc6-9374-42e2-a3d0-879ed6a19196/0/3130332e36382e332e302f32342d3234203d3e20313335343539.roa File: 3130332e36382e332e302f32342d3234203d3e20313335343539.roa (raw, json) Hash identifier: GmT8ZeaySfqvjT7mO5rlRn1ljJIIsTYQ7Uu5Pp76Rgs= Subject key identifier: 53:97:8E:DA:32:D0:2A:A7:E0:78:94:E7:04:0A:F0:61:3E:3B:9C:2D Certificate issuer: /CN=73BD266EEF13136ED4F4E96AB4984B5A0E310448 Certificate serial: 4264CCDEDBE99BFC2597769EBD0D5BA43B31F0DA Authority key identifier: 73:BD:26:6E:EF:13:13:6E:D4:F4:E9:6A:B4:98:4B:5A:0E:31:04:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/73BD266EEF13136ED4F4E96AB4984B5A0E310448.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e97dbc6-9374-42e2-a3d0-879ed6a19196/0/3130332e36382e332e302f32342d3234203d3e20313335343539.roa Signing time: Wed 20 Nov 2024 18:00:01 +0000 ROA not before: Wed 20 Nov 2024 17:55:01 +0000 ROA not after: Wed 19 Nov 2025 18:00:01 +0000 asID: 135459 IP address blocks: 103.68.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e97dbc6-9374-42e2-a3d0-879ed6a19196/0/73BD266EEF13136ED4F4E96AB4984B5A0E310448.crl rsync://repo-rpki.idnic.net/repo/6e97dbc6-9374-42e2-a3d0-879ed6a19196/0/73BD266EEF13136ED4F4E96AB4984B5A0E310448.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/73BD266EEF13136ED4F4E96AB4984B5A0E310448.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:64:cc:de:db:e9:9b:fc:25:97:76:9e:bd:0d:5b:a4:3b:31:f0:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=73BD266EEF13136ED4F4E96AB4984B5A0E310448 Validity Not Before: Nov 20 17:55:01 2024 GMT Not After : Nov 19 18:00:01 2025 GMT Subject: CN=53978EDA32D02AA7E07894E7040AF0613E3B9C2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:09:f0:78:f9:a4:6e:d9:4d:c8:59:f9:94:50: 26:a9:98:ff:cd:c2:1c:06:8e:a2:1e:95:f1:73:d6: 67:c6:f4:ca:93:f8:79:24:fd:c7:8a:d6:64:ce:de: f3:5b:67:a2:07:9d:7c:02:78:3c:4a:89:9b:c9:11: 1d:f6:75:ea:9b:8b:ca:e7:39:1a:ff:17:60:e5:a5: 4d:29:64:f0:af:7e:04:26:da:52:a5:cd:05:3f:47: 1b:ba:97:8b:88:68:66:da:cd:62:c0:f0:3b:1e:14: b4:39:16:96:d2:69:67:c9:90:cc:5f:23:bf:a3:ef: 23:51:e6:0f:54:2f:42:81:08:2b:7e:10:b7:22:ec: f0:8c:2a:ed:b4:8e:d6:8e:c3:3d:59:c9:18:49:dd: 0d:03:3f:b8:ca:a1:14:67:ea:ea:a5:18:17:63:bf: 11:bd:5b:40:66:a8:96:98:e6:7f:2b:92:02:e6:c6: 27:b8:ca:5f:7f:2e:da:b7:b4:d9:3b:5c:68:63:f8: 14:27:62:fd:42:e1:4b:97:98:c8:86:58:9f:6b:0a: 4b:f2:8a:1a:0e:2d:cf:10:ed:6b:e0:d6:3b:64:c1: 3c:e6:75:d0:e7:a1:f9:e7:65:1e:d7:a1:8f:bf:e7: 71:92:72:cd:5f:09:99:cc:38:b7:92:f1:41:19:43: 27:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:97:8E:DA:32:D0:2A:A7:E0:78:94:E7:04:0A:F0:61:3E:3B:9C:2D X509v3 Authority Key Identifier: keyid:73:BD:26:6E:EF:13:13:6E:D4:F4:E9:6A:B4:98:4B:5A:0E:31:04:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e97dbc6-9374-42e2-a3d0-879ed6a19196/0/73BD266EEF13136ED4F4E96AB4984B5A0E310448.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/73BD266EEF13136ED4F4E96AB4984B5A0E310448.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e97dbc6-9374-42e2-a3d0-879ed6a19196/0/3130332e36382e332e302f32342d3234203d3e20313335343539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.68.3.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:96:7f:76:69:31:7c:d6:60:11:35:f8:72:a0:bd:2c:3a:26: a7:96:ae:a6:8b:9f:d1:df:39:91:d5:2e:fa:45:93:ec:d0:1a: 5a:4b:ef:17:91:cd:72:b6:85:0e:70:0e:98:7b:3e:ca:c8:b5: 82:c6:86:92:2e:93:2a:96:10:06:54:f1:b5:5b:99:ee:6a:5a: 6c:20:64:93:a4:25:24:4b:2a:fa:c0:21:2b:c4:2e:7a:32:9f: 6d:22:01:1d:f6:9a:f0:5e:d8:df:4f:74:3c:c4:da:9b:2e:c7: 10:fd:05:b7:b7:9f:c1:d1:25:d9:fd:0f:ec:d3:7f:d9:e1:a8: 48:c4:c3:a5:8e:5a:28:e4:27:aa:08:24:13:de:b8:fa:17:4a: 0d:f7:4b:7e:b4:bc:59:0d:1b:47:35:f0:bb:9f:5d:7c:df:a6: 47:31:7d:37:a4:2d:83:9f:2f:2a:07:e9:88:b3:b1:13:7e:89: 23:cd:59:99:7e:af:2f:f4:8f:d6:f4:00:0b:aa:15:59:44:67: 43:a1:c5:3a:7a:07:17:90:2a:89:94:f7:2a:a3:e9:2e:d6:6e: 7f:63:2f:41:2b:35:78:56:8d:c5:d1:7f:1e:8e:09:74:8f:8a: 3c:56:0b:de:60:eb:7a:ad:28:16:b1:1f:c8:63:f4:d9:16:42: 0d:4e:f5:3e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUQmTM3tvpm/wll3aevQ1bpDsx8NowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzNCRDI2NkVFRjEzMTM2RUQ0RjRFOTZBQjQ5ODRCNUEw RTMxMDQ0ODAeFw0yNDExMjAxNzU1MDFaFw0yNTExMTkxODAwMDFaMDMxMTAvBgNV BAMTKDUzOTc4RURBMzJEMDJBQTdFMDc4OTRFNzA0MEFGMDYxM0UzQjlDMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcCfB4+aRu2U3IWfmUUCapmP/N whwGjqIelfFz1mfG9MqT+Hkk/ceK1mTO3vNbZ6IHnXwCeDxKiZvJER32deqbi8rn ORr/F2DlpU0pZPCvfgQm2lKlzQU/Rxu6l4uIaGbazWLA8DseFLQ5FpbSaWfJkMxf I7+j7yNR5g9UL0KBCCt+ELci7PCMKu20jtaOwz1ZyRhJ3Q0DP7jKoRRn6uqlGBdj vxG9W0BmqJaY5n8rkgLmxie4yl9/Ltq3tNk7XGhj+BQnYv1C4UuXmMiGWJ9rCkvy ihoOLc8Q7Wvg1jtkwTzmddDnofnnZR7XoY+/53GScs1fCZnMOLeS8UEZQyd1AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUU5eO2jLQKqfgeJTnBArwYT47nC0wHwYDVR0j BBgwFoAUc70mbu8TE27U9OlqtJhLWg4xBEgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTk3ZGJjNi05Mzc0LTQyZTItYTNkMC04NzllZDZhMTkxOTYvMC83M0JEMjY2RUVG MTMxMzZFRDRGNEU5NkFCNDk4NEI1QTBFMzEwNDQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzNCRDI2NkVFRjEzMTM2RUQ0RjRFOTZBQjQ5ODRCNUEwRTMx MDQ0OC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlOTdkYmM2LTkzNzQtNDJlMi1h M2QwLTg3OWVkNmExOTE5Ni8wLzMxMzAzMzJlMzYzODJlMzMyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTMzMzUzNDM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnRAMwDQYJKoZIhvcN AQELBQADggEBAGuWf3ZpMXzWYBE1+HKgvSw6JqeWrqaLn9HfOZHVLvpFk+zQGlpL 7xeRzXK2hQ5wDph7PsrItYLGhpIukyqWEAZU8bVbme5qWmwgZJOkJSRLKvrAISvE Lnoyn20iAR32mvBe2N9PdDzE2psuxxD9Bbe3n8HRJdn9D+zTf9nhqEjEw6WOWijk J6oIJBPeuPoXSg33S360vFkNG0c18LufXXzfpkcxfTekLYOfLyoH6YizsRN+iSPN WZl+ry/0j9b0AAuqFVlEZ0OhxTp6BxeQKomU9yqj6S7Wbn9jL0ErNXhWjcXRfx6O CXSPijxWC95g63qtKBaxH8hj9NkWQg1O9T4= -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:33 2024 by rpki-client on console-ams.rpki-client.org