$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/3130332e34392e32392e302f32342d3234203d3e203633383632.roa File: 3130332e34392e32392e302f32342d3234203d3e203633383632.roa (raw, json) Hash identifier: y31+muj30arp5/dch/gdqlJ62vEbOqXLtnLKSScp1dA= Subject key identifier: A4:CC:15:D3:63:5C:07:E4:A4:2D:83:7D:40:45:2C:5F:A1:5D:C8:10 Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 43AA6D5DF3F33D1658C5AFDF431CDECDB0FC1906 Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/3130332e34392e32392e302f32342d3234203d3e203633383632.roa Signing time: Mon 01 Jul 2024 01:06:08 +0000 ROA not before: Mon 01 Jul 2024 01:01:08 +0000 ROA not after: Mon 30 Jun 2025 01:06:08 +0000 asID: 63862 IP address blocks: 103.49.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:aa:6d:5d:f3:f3:3d:16:58:c5:af:df:43:1c:de:cd:b0:fc:19:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Jul 1 01:01:08 2024 GMT Not After : Jun 30 01:06:08 2025 GMT Subject: CN=A4CC15D3635C07E4A42D837D40452C5FA15DC810 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:dd:5b:7c:bf:2a:b6:4f:a6:79:77:ab:00:88: 2d:b2:fc:8c:7a:f8:19:d6:0d:eb:9f:c1:70:3b:92: f4:99:38:10:23:2c:b4:ba:f1:9a:e8:33:f4:d7:32: 5f:64:b7:0f:e5:d4:53:c1:bf:61:69:ba:41:74:10: 69:2b:5b:66:3f:58:15:5d:6d:1e:08:55:81:10:2f: 08:e4:1e:40:73:fd:28:e4:de:79:69:eb:1e:18:0a: 46:b0:cb:fa:68:e3:f2:7e:b2:dd:89:06:50:c8:07: fb:81:79:18:8a:d0:39:f2:ff:24:7c:1c:ad:a8:72: 98:63:45:88:de:22:3f:9a:95:fc:43:e0:6e:66:9f: 54:76:4e:8f:09:8f:ae:f4:c4:25:32:7b:51:e3:7d: 88:8b:13:87:ba:0d:a2:08:d2:0c:9a:57:68:95:eb: c1:0b:e1:37:ea:7d:25:28:cc:40:25:c3:a7:5f:26: f7:7f:8e:6e:bf:72:e4:32:74:3a:9b:f7:2a:9f:9f: 27:20:74:74:26:1e:d0:29:b7:63:7b:55:33:57:75: ba:3a:4a:e0:80:c4:ea:59:59:f2:67:e6:a7:4e:0a: 6e:fb:63:2a:d8:0b:9b:e7:b2:7a:a0:f8:5c:bf:7f: 23:02:cc:02:84:3f:92:b3:bf:ce:ac:ae:37:72:c9: e3:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:CC:15:D3:63:5C:07:E4:A4:2D:83:7D:40:45:2C:5F:A1:5D:C8:10 X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/3130332e34392e32392e302f32342d3234203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.49.29.0/24 Signature Algorithm: sha256WithRSAEncryption 09:a4:11:81:5c:72:78:a4:70:24:ed:7d:3e:85:bc:e2:a4:a2: 5c:72:49:cd:5c:fd:a1:ea:72:66:c3:94:35:2c:60:85:8a:e0: ae:fc:48:3e:cd:b3:66:54:5d:5d:e6:89:57:3b:13:1c:5a:d5: 2d:b3:a9:f5:ab:bf:7a:ec:7c:2f:75:2d:e2:7e:e0:62:bd:19: fa:0b:51:f7:66:35:d0:03:a8:18:1e:c7:55:ec:34:64:f9:28: 20:79:33:4f:89:4d:ed:60:24:e0:37:02:7d:78:28:19:7c:33: d5:64:70:cf:1c:31:64:ee:a6:7b:34:5e:1b:3d:d9:63:cf:be: 4a:78:f3:7d:78:43:8f:0c:2a:ed:d3:ee:94:92:0c:cc:94:a6: 0c:37:cd:44:11:fb:37:1d:eb:c3:6e:63:04:40:4f:5e:bc:74: 05:76:65:e9:51:b9:b6:f7:15:7a:06:f0:63:b5:f0:87:bd:d6: 04:00:a1:d8:b2:74:06:33:32:67:ff:26:b1:95:e7:01:bc:03: 5b:98:31:75:6c:b6:f3:0d:6b:fa:a9:14:9e:10:13:25:36:4a: fa:fe:e6:4f:d5:76:2d:8e:25:1f:72:f7:bc:24:aa:a6:cf:d5: 37:79:59:a1:6c:a2:54:63:ae:1b:ac:1b:44:e9:e3:37:fa:e9: c5:f0:7d:be -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUQ6ptXfPzPRZYxa/fQxzezbD8GQYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNDA3MDEwMTAxMDhaFw0yNTA2MzAwMTA2MDhaMDMxMTAvBgNV BAMTKEE0Q0MxNUQzNjM1QzA3RTRBNDJEODM3RDQwNDUyQzVGQTE1REM4MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV3Vt8vyq2T6Z5d6sAiC2y/Ix6 +BnWDeufwXA7kvSZOBAjLLS68ZroM/TXMl9ktw/l1FPBv2FpukF0EGkrW2Y/WBVd bR4IVYEQLwjkHkBz/Sjk3nlp6x4YCkawy/po4/J+st2JBlDIB/uBeRiK0Dny/yR8 HK2ocphjRYjeIj+alfxD4G5mn1R2To8Jj670xCUye1HjfYiLE4e6DaII0gyaV2iV 68EL4TfqfSUozEAlw6dfJvd/jm6/cuQydDqb9yqfnycgdHQmHtApt2N7VTNXdbo6 SuCAxOpZWfJn5qdOCm77YyrYC5vnsnqg+Fy/fyMCzAKEP5Kzv86srjdyyeM5AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUpMwV02NcB+SkLYN9QEUsX6FdyBAwHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMxMzAzMzJlMzQzOTJlMzIzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM2MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnMR0wDQYJKoZIhvcN AQELBQADggEBAAmkEYFccnikcCTtfT6FvOKkolxySc1c/aHqcmbDlDUsYIWK4K78 SD7Ns2ZUXV3miVc7Exxa1S2zqfWrv3rsfC91LeJ+4GK9GfoLUfdmNdADqBgex1Xs NGT5KCB5M0+JTe1gJOA3An14KBl8M9VkcM8cMWTupns0Xhs92WPPvkp48314Q48M Ku3T7pSSDMyUpgw3zUQR+zcd68NuYwRAT168dAV2ZelRubb3FXoG8GO18Ie91gQA odiydAYzMmf/JrGV5wG8A1uYMXVstvMNa/qpFJ4QEyU2Svr+5k/Vdi2OJR9y97wk qqbP1Td5WaFsolRjrhusG0Tp4zf66cXwfb4= -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:26 2024 by rpki-client on console-fra.rpki-client.org