$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/3130332e34392e32382e302f32332d3233203d3e203633383632.roa File: 3130332e34392e32382e302f32332d3233203d3e203633383632.roa (raw, json) Hash identifier: M31qvhxbTQekcETXapE9GqOBBeicCfpTdXaXTCHMPKQ= Subject key identifier: B4:AB:99:B9:EB:2C:C6:86:5D:9F:E2:F8:BD:ED:26:C6:7D:5F:67:2E Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 2E1D998620B4D09333DF3C2CB5C52A98BF6F343C Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/3130332e34392e32382e302f32332d3233203d3e203633383632.roa Signing time: Mon 01 Jul 2024 01:06:08 +0000 ROA not before: Mon 01 Jul 2024 01:01:08 +0000 ROA not after: Mon 30 Jun 2025 01:06:08 +0000 asID: 63862 IP address blocks: 103.49.28.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:1d:99:86:20:b4:d0:93:33:df:3c:2c:b5:c5:2a:98:bf:6f:34:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Jul 1 01:01:08 2024 GMT Not After : Jun 30 01:06:08 2025 GMT Subject: CN=B4AB99B9EB2CC6865D9FE2F8BDED26C67D5F672E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:39:79:72:e1:73:98:fb:06:8f:18:a0:62:28: aa:d8:8d:5c:87:ad:f2:99:9a:ad:ae:80:ee:92:29: 35:e9:18:4b:a2:d3:96:7c:5d:1a:3e:88:2a:b2:ce: 5e:69:06:50:0f:5f:fb:24:0b:4c:a1:82:9a:24:ee: c6:19:97:f9:ff:e0:93:32:cb:b6:30:a6:14:fe:8a: 4a:c7:cc:20:8f:5d:3f:72:56:fe:ce:fd:ea:25:bb: d2:13:d6:6c:16:d1:1d:53:1a:0f:6e:c1:83:51:56: b6:35:14:09:79:6d:17:a0:c6:7c:7f:30:7b:1f:67: 40:a4:dd:f6:07:bc:d5:4e:66:38:75:ab:ca:76:38: 32:1d:63:4f:12:ee:f1:8d:36:e3:2f:ea:5b:24:b1: 0d:27:d5:7c:a5:7a:f8:73:40:82:5b:33:c9:ff:42: ff:d8:d6:d3:63:76:80:23:45:5a:fb:f9:8c:cb:f6: c0:e1:b9:43:b4:98:d4:ad:ed:45:e5:0b:2b:8a:b7: c3:c7:26:8e:d8:7c:a7:22:06:d5:d2:50:b9:64:e7: 22:bc:db:db:e9:61:21:f8:c3:2d:c1:ae:f2:84:bc: d1:ac:d1:59:a0:ce:16:91:4f:2f:d0:1f:a5:8b:a4: 5c:b8:25:4c:06:98:36:ba:ac:b7:3b:a8:db:83:80: e9:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:AB:99:B9:EB:2C:C6:86:5D:9F:E2:F8:BD:ED:26:C6:7D:5F:67:2E X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/3130332e34392e32382e302f32332d3233203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.49.28.0/23 Signature Algorithm: sha256WithRSAEncryption 67:b1:b3:ff:c9:91:bc:9f:8b:01:ef:55:5f:1e:23:64:0d:50: 76:a2:a0:2d:0e:7c:4c:f0:fa:70:50:d6:e8:be:38:8b:0c:2b: a0:65:f0:d8:cf:1b:a8:aa:da:d8:41:fb:3e:46:5f:10:bc:dd: 84:32:bf:25:c4:74:d2:b2:0c:ed:24:b6:0b:a8:89:05:96:e0: 15:b9:9e:7b:23:48:7b:0d:72:98:45:d1:80:8e:47:aa:f6:91: d9:1c:d3:66:e6:ed:c4:cc:09:a3:5a:7b:78:d3:69:8f:24:ea: aa:b0:01:19:9e:eb:96:48:0c:bc:b3:05:2e:ea:ec:44:e4:bd: 35:15:2e:1c:ef:f2:ab:04:f3:4b:f9:88:27:a1:8c:0d:98:13: 96:32:e5:37:d4:b1:ed:ee:35:57:3a:ee:fa:f5:6d:5e:54:3f: b4:71:e2:ac:0d:53:c7:27:49:42:ff:ea:21:11:39:41:39:55: 06:e9:d8:70:79:84:48:3d:39:14:73:8e:d9:af:1d:a5:d4:77: f0:6d:ed:bb:25:aa:51:92:5e:e4:5f:ad:5c:e0:74:b5:37:6d: 97:d8:4a:1b:84:bc:ec:9e:91:f0:7d:10:0e:e5:11:ea:e1:c3: 69:0e:49:7f:37:07:08:d8:8d:07:61:b7:79:76:87:a2:c8:97: 6c:b1:64:7c -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIULh2ZhiC00JMz3zwstcUqmL9vNDwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNDA3MDEwMTAxMDhaFw0yNTA2MzAwMTA2MDhaMDMxMTAvBgNV BAMTKEI0QUI5OUI5RUIyQ0M2ODY1RDlGRTJGOEJERUQyNkM2N0Q1RjY3MkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLOXly4XOY+waPGKBiKKrYjVyH rfKZmq2ugO6SKTXpGEui05Z8XRo+iCqyzl5pBlAPX/skC0yhgpok7sYZl/n/4JMy y7YwphT+ikrHzCCPXT9yVv7O/eolu9IT1mwW0R1TGg9uwYNRVrY1FAl5bRegxnx/ MHsfZ0Ck3fYHvNVOZjh1q8p2ODIdY08S7vGNNuMv6lsksQ0n1XylevhzQIJbM8n/ Qv/Y1tNjdoAjRVr7+YzL9sDhuUO0mNSt7UXlCyuKt8PHJo7YfKciBtXSULlk5yK8 29vpYSH4wy3BrvKEvNGs0VmgzhaRTy/QH6WLpFy4JUwGmDa6rLc7qNuDgOlbAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUtKuZuessxoZdn+L4ve0mxn1fZy4wHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMxMzAzMzJlMzQzOTJlMzIzODJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM2MzMzODM2MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnMRwwDQYJKoZIhvcN AQELBQADggEBAGexs//JkbyfiwHvVV8eI2QNUHaioC0OfEzw+nBQ1ui+OIsMK6Bl 8NjPG6iq2thB+z5GXxC83YQyvyXEdNKyDO0ktguoiQWW4BW5nnsjSHsNcphF0YCO R6r2kdkc02bm7cTMCaNae3jTaY8k6qqwARme65ZIDLyzBS7q7ETkvTUVLhzv8qsE 80v5iCehjA2YE5Yy5TfUse3uNVc67vr1bV5UP7Rx4qwNU8cnSUL/6iEROUE5VQbp 2HB5hEg9ORRzjtmvHaXUd/Bt7bslqlGSXuRfrVzgdLU3bZfYShuEvOyekfB9EA7l Eerhw2kOSX83BwjYjQdht3l2h6LIl2yxZHw= -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:26 2024 by rpki-client on console-fra.rpki-client.org