$ rpki-client -vvf repo-rpki.idnic.net/repo/74aaa2f1-63a9-4281-8942-fb5d824119a4/0/3130332e39372e3232352e302f32342d3234203d3e20313530393233.roa File: 3130332e39372e3232352e302f32342d3234203d3e20313530393233.roa (raw, json) Hash identifier: 4mB2XM5DudhhoPkrzgkjpAUPPeNBfh6OVwqbnoubk7c= Subject key identifier: 65:13:8B:DB:CD:A8:D3:45:66:22:40:E7:76:EB:38:AC:2A:9B:92:3E Certificate issuer: /CN=A5BB79678DB1239CD393222080CAAF085BEE737F Certificate serial: 5C0027E48CE0087EFFE4DA0634148FB47ECA78B4 Authority key identifier: A5:BB:79:67:8D:B1:23:9C:D3:93:22:20:80:CA:AF:08:5B:EE:73:7F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A5BB79678DB1239CD393222080CAAF085BEE737F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/74aaa2f1-63a9-4281-8942-fb5d824119a4/0/3130332e39372e3232352e302f32342d3234203d3e20313530393233.roa Signing time: Mon 17 Jun 2024 06:00:00 +0000 ROA not before: Mon 17 Jun 2024 05:55:00 +0000 ROA not after: Mon 16 Jun 2025 06:00:00 +0000 asID: 150923 IP address blocks: 103.97.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/74aaa2f1-63a9-4281-8942-fb5d824119a4/0/A5BB79678DB1239CD393222080CAAF085BEE737F.crl rsync://repo-rpki.idnic.net/repo/74aaa2f1-63a9-4281-8942-fb5d824119a4/0/A5BB79678DB1239CD393222080CAAF085BEE737F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A5BB79678DB1239CD393222080CAAF085BEE737F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:00:27:e4:8c:e0:08:7e:ff:e4:da:06:34:14:8f:b4:7e:ca:78:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A5BB79678DB1239CD393222080CAAF085BEE737F Validity Not Before: Jun 17 05:55:00 2024 GMT Not After : Jun 16 06:00:00 2025 GMT Subject: CN=65138BDBCDA8D345662240E776EB38AC2A9B923E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e7:6a:86:37:24:8d:a9:81:62:be:66:c0:f8: 84:b8:9b:27:d7:1c:93:75:e8:c4:6d:50:bd:ce:81: cd:7c:10:64:00:d3:1c:30:11:6e:b5:4f:ad:c7:a1: 84:54:f0:18:72:b8:51:57:eb:c6:9a:6b:15:ce:e6: a7:af:88:ec:70:87:a3:a3:95:28:69:d7:cc:30:a0: 7a:9e:65:af:98:e7:4f:78:39:a1:7a:ad:b1:2e:33: df:df:f7:b4:d1:2e:70:91:ec:ba:82:fc:0f:b6:3b: 3d:3f:c1:37:06:56:13:84:48:2d:76:bf:4a:6b:4f: 1d:26:a6:56:9f:8e:32:65:58:3c:6b:f1:51:5e:f2: 66:08:0e:bc:fc:de:b4:02:83:56:60:5c:4e:1e:33: 13:67:e4:df:16:62:d2:8f:19:d5:88:e5:eb:2e:ad: 8d:c5:96:8b:00:92:d4:d4:26:66:91:22:f0:3a:f8: 7a:05:fa:4e:2a:a8:7e:55:4d:07:01:1b:59:51:75: 56:03:6e:58:45:d5:e2:72:c3:c7:86:1a:d8:37:4e: df:20:d8:b1:54:ab:89:22:f6:55:6e:0e:c2:9d:21: 19:20:2e:fb:ba:14:56:9f:7e:95:47:f3:78:71:0e: 93:70:d2:bd:a6:b2:87:6c:5c:77:19:0f:eb:f9:c4: e7:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:13:8B:DB:CD:A8:D3:45:66:22:40:E7:76:EB:38:AC:2A:9B:92:3E X509v3 Authority Key Identifier: keyid:A5:BB:79:67:8D:B1:23:9C:D3:93:22:20:80:CA:AF:08:5B:EE:73:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/74aaa2f1-63a9-4281-8942-fb5d824119a4/0/A5BB79678DB1239CD393222080CAAF085BEE737F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A5BB79678DB1239CD393222080CAAF085BEE737F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/74aaa2f1-63a9-4281-8942-fb5d824119a4/0/3130332e39372e3232352e302f32342d3234203d3e20313530393233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.97.225.0/24 Signature Algorithm: sha256WithRSAEncryption d0:76:41:56:7a:ef:0d:96:ea:03:57:42:5c:0e:1f:e7:28:f4: a1:b5:07:ed:f1:4d:c2:e1:9c:08:d0:63:bb:68:f0:d0:37:ec: b3:67:f0:fe:a2:75:66:48:d6:40:4d:c8:37:7f:b4:bb:96:7c: 34:cc:42:43:04:9c:16:0e:48:e2:93:a7:e9:18:fa:b9:f8:dd: 86:f4:2c:79:9d:b3:d4:91:c5:9d:ae:91:b7:70:c6:a6:23:f5: 2c:5a:c4:b7:62:5a:a0:aa:84:62:53:2a:c3:58:d0:b9:ef:83: ec:d1:39:5c:d7:d5:83:90:d3:bb:3a:82:2a:04:1b:83:c3:d4: 92:9d:96:ba:f6:2b:d8:58:1e:85:d4:ba:4a:77:3c:4a:7d:5d: a7:38:6b:8b:59:59:23:72:5c:f2:3d:39:70:29:d4:de:9e:39: b3:3c:ed:e8:a4:6f:2f:70:45:58:c3:d3:76:6e:80:cd:11:4e: 5f:4c:88:0c:dd:11:ee:de:9d:72:a7:bb:a0:73:00:af:43:c2: ef:19:2a:9c:3a:86:bd:84:a5:86:6d:02:b8:cf:e3:58:97:4d: fe:d4:ae:ae:4d:46:9b:55:1f:76:9a:fe:8c:70:63:71:f5:79: d5:a1:95:1b:a3:65:2a:e1:09:c9:1d:fe:da:2b:4f:9d:e3:6d: 9a:63:61:a4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXAAn5IzgCH7/5NoGNBSPtH7KeLQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTVCQjc5Njc4REIxMjM5Q0QzOTMyMjIwODBDQUFGMDg1 QkVFNzM3RjAeFw0yNDA2MTcwNTU1MDBaFw0yNTA2MTYwNjAwMDBaMDMxMTAvBgNV BAMTKDY1MTM4QkRCQ0RBOEQzNDU2NjIyNDBFNzc2RUIzOEFDMkE5QjkyM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT52qGNySNqYFivmbA+IS4myfX HJN16MRtUL3Ogc18EGQA0xwwEW61T63HoYRU8BhyuFFX68aaaxXO5qeviOxwh6Oj lShp18wwoHqeZa+Y5094OaF6rbEuM9/f97TRLnCR7LqC/A+2Oz0/wTcGVhOESC12 v0prTx0mplafjjJlWDxr8VFe8mYIDrz83rQCg1ZgXE4eMxNn5N8WYtKPGdWI5esu rY3FlosAktTUJmaRIvA6+HoF+k4qqH5VTQcBG1lRdVYDblhF1eJyw8eGGtg3Tt8g 2LFUq4ki9lVuDsKdIRkgLvu6FFaffpVH83hxDpNw0r2msodsXHcZD+v5xOfbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZROL282o00VmIkDndus4rCqbkj4wHwYDVR0j BBgwFoAUpbt5Z42xI5zTkyIggMqvCFvuc38wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NGFhYTJmMS02M2E5LTQyODEtODk0Mi1mYjVkODI0MTE5YTQvMC9BNUJCNzk2NzhE QjEyMzlDRDM5MzIyMjA4MENBQUYwODVCRUU3MzdGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTVCQjc5Njc4REIxMjM5Q0QzOTMyMjIwODBDQUFGMDg1QkVF NzM3Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc0YWFhMmYxLTYzYTktNDI4MS04 OTQyLWZiNWQ4MjQxMTlhNC8wLzMxMzAzMzJlMzkzNzJlMzIzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2HhMA0GCSqG SIb3DQEBCwUAA4IBAQDQdkFWeu8NluoDV0JcDh/nKPShtQft8U3C4ZwI0GO7aPDQ N+yzZ/D+onVmSNZATcg3f7S7lnw0zEJDBJwWDkjik6fpGPq5+N2G9Cx5nbPUkcWd rpG3cMamI/UsWsS3YlqgqoRiUyrDWNC574Ps0Tlc19WDkNO7OoIqBBuDw9SSnZa6 9ivYWB6F1LpKdzxKfV2nOGuLWVkjclzyPTlwKdTenjmzPO3opG8vcEVYw9N2boDN EU5fTIgM3RHu3p1yp7ugcwCvQ8LvGSqcOoa9hKWGbQK4z+NYl03+1K6uTUabVR92 mv6McGNx9XnVoZUbo2Uq4QnJHf7aK0+d422aY2Gk -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:32 2024 by rpki-client on console-fra.rpki-client.org