$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/3130332e34392e32382e302f32342d3234203d3e203633383632.roa File: 3130332e34392e32382e302f32342d3234203d3e203633383632.roa (raw, json) Hash identifier: hEF275u+MxhNsCPPHCh40RQ/rYyKypK4hJ8sfCYMz18= Subject key identifier: 93:50:6A:66:B5:4E:66:3F:BF:3D:4C:91:37:3C:B5:88:19:64:74:7B Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 21050B2E126F7405D4623544165D078B16E5BC08 Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/3130332e34392e32382e302f32342d3234203d3e203633383632.roa Signing time: Mon 01 Jul 2024 01:06:07 +0000 ROA not before: Mon 01 Jul 2024 01:01:07 +0000 ROA not after: Mon 30 Jun 2025 01:06:07 +0000 asID: 63862 IP address blocks: 103.49.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:05:0b:2e:12:6f:74:05:d4:62:35:44:16:5d:07:8b:16:e5:bc:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Jul 1 01:01:07 2024 GMT Not After : Jun 30 01:06:07 2025 GMT Subject: CN=93506A66B54E663FBF3D4C91373CB5881964747B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:33:a6:42:71:46:c4:79:68:03:70:3f:b3:2c: c0:16:98:a1:0d:bc:dd:2f:26:ad:a6:23:33:b6:fb: 11:12:39:35:d3:30:c4:7d:90:44:76:f9:a9:e4:c4: 89:db:1c:1f:2f:78:75:56:18:68:21:e8:99:8c:77: 7c:10:c9:6b:fa:2c:e8:8f:3a:e1:b7:cb:ed:a8:67: 4a:51:3a:d5:c9:00:a8:8b:bc:a7:55:47:16:bb:17: 9a:85:51:8b:ee:b0:1f:17:aa:67:9e:ff:e7:6c:26: e9:f4:cf:e8:78:20:87:ad:6d:e1:b8:07:95:cf:80: 60:b8:91:22:d8:52:38:18:21:bf:c8:a7:a6:18:68: e1:10:16:8d:8e:5e:4e:ed:84:da:76:26:c4:38:24: 20:15:6d:71:2c:24:df:19:3f:18:99:33:ff:c3:26: 5a:d1:44:c0:f1:39:08:80:3f:69:d9:44:32:39:3b: ef:7b:a6:3c:1f:8f:56:5d:c3:9d:fd:0f:66:78:a6: aa:21:9e:06:62:56:7b:ab:0a:2a:01:0c:af:ba:68: 54:74:41:f6:2c:c9:ca:e3:e6:d1:f0:ee:df:0b:b7: fc:0a:42:f6:aa:59:09:fd:77:2a:c9:59:c1:56:f6: 08:cf:ef:b9:f4:cb:11:3c:7f:4f:0c:02:c3:cc:1d: 6c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:50:6A:66:B5:4E:66:3F:BF:3D:4C:91:37:3C:B5:88:19:64:74:7B X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/3130332e34392e32382e302f32342d3234203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.49.28.0/24 Signature Algorithm: sha256WithRSAEncryption 58:60:c7:af:bb:e2:e4:42:0d:0f:08:c2:ba:44:e4:f3:b6:24: 86:12:05:9f:84:87:cb:67:75:5b:47:39:cd:53:2d:44:51:0b: f6:d8:8d:fe:f9:8f:4c:7c:9b:44:9a:a1:2e:ae:d5:b1:d5:93: 22:54:8b:bf:55:40:88:66:ae:5b:a9:6a:3a:db:18:36:c8:b5: e0:e8:8a:fd:1c:ed:40:12:5c:b3:34:a3:23:a4:51:d0:53:24: 5a:37:01:a9:ae:c2:9d:79:f6:d1:60:16:b0:b8:4f:cc:08:cf: 22:1f:07:29:29:4e:0a:3b:5e:5d:56:23:65:1f:96:f9:aa:d2: a7:e0:07:c8:4f:f2:3d:98:1d:5e:a3:65:cd:65:63:66:96:54: ec:9c:cd:ee:8d:e8:ca:28:80:20:3a:36:b1:53:e7:31:59:04: 18:74:c4:13:f1:01:18:12:37:74:10:1a:d3:2e:e3:85:0a:24: 88:10:40:54:8a:5f:2b:94:5b:6f:af:cb:9e:1f:1a:92:5c:59: 8a:f3:49:7f:ca:cc:69:a4:a9:c4:1b:ea:fb:0b:31:c1:08:1f: 22:ee:d6:b4:03:41:05:d8:04:f4:2b:d5:49:87:c4:a0:c7:79: 55:cd:6c:5d:17:15:70:4d:2b:65:f7:93:4f:73:3f:fe:51:b9: 28:14:27:93 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUIQULLhJvdAXUYjVEFl0HixblvAgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNDA3MDEwMTAxMDdaFw0yNTA2MzAwMTA2MDdaMDMxMTAvBgNV BAMTKDkzNTA2QTY2QjU0RTY2M0ZCRjNENEM5MTM3M0NCNTg4MTk2NDc0N0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuM6ZCcUbEeWgDcD+zLMAWmKEN vN0vJq2mIzO2+xESOTXTMMR9kER2+ankxInbHB8veHVWGGgh6JmMd3wQyWv6LOiP OuG3y+2oZ0pROtXJAKiLvKdVRxa7F5qFUYvusB8Xqmee/+dsJun0z+h4IIetbeG4 B5XPgGC4kSLYUjgYIb/Ip6YYaOEQFo2OXk7thNp2JsQ4JCAVbXEsJN8ZPxiZM//D JlrRRMDxOQiAP2nZRDI5O+97pjwfj1Zdw539D2Z4pqohngZiVnurCioBDK+6aFR0 QfYsycrj5tHw7t8Lt/wKQvaqWQn9dyrJWcFW9gjP77n0yxE8f08MAsPMHWypAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUk1BqZrVOZj+/PUyRNzy1iBlkdHswHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMxMzAzMzJlMzQzOTJlMzIzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM2MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnMRwwDQYJKoZIhvcN AQELBQADggEBAFhgx6+74uRCDQ8IwrpE5PO2JIYSBZ+Eh8tndVtHOc1TLURRC/bY jf75j0x8m0SaoS6u1bHVkyJUi79VQIhmrlupajrbGDbIteDoiv0c7UASXLM0oyOk UdBTJFo3Aamuwp159tFgFrC4T8wIzyIfBykpTgo7Xl1WI2Uflvmq0qfgB8hP8j2Y HV6jZc1lY2aWVOycze6N6MoogCA6NrFT5zFZBBh0xBPxARgSN3QQGtMu44UKJIgQ QFSKXyuUW2+vy54fGpJcWYrzSX/KzGmkqcQb6vsLMcEIHyLu1rQDQQXYBPQr1UmH xKDHeVXNbF0XFXBNK2X3k09zP/5RuSgUJ5M= -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:26 2024 by rpki-client on console-fra.rpki-client.org