$ rpki-client -vvf repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/3130332e39372e37362e302f32342d3234203d3e20313336313331.roa File: 3130332e39372e37362e302f32342d3234203d3e20313336313331.roa (raw, json) Hash identifier: tiopwM3s5MLbWlscz/cdNMpj7OnPZHkYo5i6pq4PM0w= Subject key identifier: 3F:5D:67:66:9B:48:5D:4D:2C:95:6E:71:99:1C:7F:76:C9:CE:D5:8B Certificate issuer: /CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Certificate serial: 107CB2E19F830B5FACEE8B1BCAAFAA1F154D5A8E Authority key identifier: 7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/3130332e39372e37362e302f32342d3234203d3e20313336313331.roa Signing time: Thu 19 Oct 2023 09:00:00 +0000 ROA not before: Thu 19 Oct 2023 08:55:00 +0000 ROA not after: Thu 17 Oct 2024 09:00:00 +0000 asID: 136131 IP address blocks: 103.97.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 23:36:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:7c:b2:e1:9f:83:0b:5f:ac:ee:8b:1b:ca:af:aa:1f:15:4d:5a:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Validity Not Before: Oct 19 08:55:00 2023 GMT Not After : Oct 17 09:00:00 2024 GMT Subject: CN=3F5D67669B485D4D2C956E71991C7F76C9CED58B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:16:17:bc:ca:19:74:82:f2:62:f2:08:1e:d2: 44:8a:02:8e:1d:81:eb:8e:ad:82:33:27:58:b9:bf: af:73:45:79:b0:1d:1e:27:79:47:9b:66:d4:f9:fe: 67:06:90:89:1a:33:07:bf:d8:98:08:af:4c:7f:00: c4:89:26:02:14:8c:d9:0e:b2:dd:bf:5f:a5:99:0a: 9b:5f:32:8a:94:b2:58:b5:36:50:c8:9e:de:70:88: 87:b6:1f:98:62:da:07:08:1a:50:f7:57:a5:63:ec: 55:b0:03:b3:02:28:2b:b4:76:72:74:41:b5:a5:04: 19:cd:ad:50:90:3b:8f:94:3e:c5:b9:47:34:62:f5: c3:20:84:0f:96:fd:75:48:3f:04:04:c3:ac:c4:e3: 7c:2b:98:66:f1:c1:38:38:8e:3c:34:49:ed:69:30: ed:c9:c3:c0:b6:90:85:4e:f2:86:51:d0:59:29:80: da:c1:6d:d9:6e:01:b2:10:85:83:a5:64:5d:3b:71: 1e:8e:36:cc:99:80:78:87:f1:8d:c8:32:d1:e4:4a: 66:bf:2c:1f:fc:e1:79:4a:d1:6f:f8:83:63:9b:ad: 45:19:eb:6f:47:b0:0d:c6:df:2a:27:ab:b5:25:d5: f9:c3:2b:11:c0:a5:ea:e8:06:a1:f5:3a:89:9b:65: 04:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:5D:67:66:9B:48:5D:4D:2C:95:6E:71:99:1C:7F:76:C9:CE:D5:8B X509v3 Authority Key Identifier: keyid:7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/3130332e39372e37362e302f32342d3234203d3e20313336313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.97.76.0/24 Signature Algorithm: sha256WithRSAEncryption 58:40:a6:e1:7f:d7:d4:aa:9d:9c:b1:99:df:4d:bd:f5:65:10: 57:21:4d:63:95:40:6e:c3:fd:64:41:b7:a9:c8:d6:79:83:01: 45:64:fd:4e:b7:55:98:35:97:d0:a4:b7:e7:f2:da:d2:c8:46: 06:6c:3d:58:b7:17:60:e3:18:4b:ac:54:99:ae:4f:51:5a:61: e3:08:d6:96:0d:34:8b:b3:5f:d0:f8:25:21:f3:f5:9c:19:f8: c4:5d:f7:0f:d9:fd:45:79:c6:b9:dd:bc:10:b0:31:42:aa:4b: ee:a8:f5:20:88:a7:ae:69:00:b9:3f:e0:af:7e:fa:a3:f9:7a: dc:88:e2:49:d7:db:46:b4:b9:6b:4c:f8:f8:b3:6c:e8:41:dc: 39:f9:f3:95:aa:17:ff:72:79:da:b7:cb:00:54:00:de:6a:11: 12:54:3b:d0:8d:de:89:b8:ff:f6:f1:a5:ff:f8:79:8f:16:5d: d2:12:f0:1e:05:29:eb:3d:f3:a8:03:1f:7d:41:ac:1d:bb:99: 92:cc:3c:03:91:f2:74:ab:83:54:19:c9:c2:1c:c3:2b:0f:57: e4:ba:55:96:57:08:09:ef:9d:23:e6:8c:93:29:d1:f5:f7:76: 44:a6:16:4d:a5:74:04:7d:7c:41:af:a3:33:66:7b:10:3d:c3: 27:b1:26:e1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEHyy4Z+DC1+s7osbyq+qHxVNWo4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBC QUI5M0Y2NzAeFw0yMzEwMTkwODU1MDBaFw0yNDEwMTcwOTAwMDBaMDMxMTAvBgNV BAMTKDNGNUQ2NzY2OUI0ODVENEQyQzk1NkU3MTk5MUM3Rjc2QzlDRUQ1OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYFhe8yhl0gvJi8gge0kSKAo4d geuOrYIzJ1i5v69zRXmwHR4neUebZtT5/mcGkIkaMwe/2JgIr0x/AMSJJgIUjNkO st2/X6WZCptfMoqUsli1NlDInt5wiIe2H5hi2gcIGlD3V6Vj7FWwA7MCKCu0dnJ0 QbWlBBnNrVCQO4+UPsW5RzRi9cMghA+W/XVIPwQEw6zE43wrmGbxwTg4jjw0Se1p MO3Jw8C2kIVO8oZR0FkpgNrBbdluAbIQhYOlZF07cR6ONsyZgHiH8Y3IMtHkSma/ LB/84XlK0W/4g2ObrUUZ629HsA3G3yonq7Ul1fnDKxHAperoBqH1OombZQS/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUP11nZptIXU0slW5xmRx/dsnO1YswHwYDVR0j BBgwFoAUfWS49M+2hxQRN9EPnnP/0Lq5P2cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NTdiMGQ3ZS1lYWRlLTQzMTgtYWIyMC04YzdmMmQ1YmU2OWYvMC83RDY0QjhGNENG QjY4NzE0MTEzN0QxMEY5RTczRkZEMEJBQjkzRjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBCQUI5 M0Y2Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1N2IwZDdlLWVhZGUtNDMxOC1h YjIwLThjN2YyZDViZTY5Zi8wLzMxMzAzMzJlMzkzNzJlMzczNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNjMxMzMzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdhTDANBgkqhkiG 9w0BAQsFAAOCAQEAWECm4X/X1KqdnLGZ30299WUQVyFNY5VAbsP9ZEG3qcjWeYMB RWT9TrdVmDWX0KS35/La0shGBmw9WLcXYOMYS6xUma5PUVph4wjWlg00i7Nf0Pgl IfP1nBn4xF33D9n9RXnGud28ELAxQqpL7qj1IIinrmkAuT/gr376o/l63IjiSdfb RrS5a0z4+LNs6EHcOfnzlaoX/3J52rfLAFQA3moRElQ70I3eibj/9vGl//h5jxZd 0hLwHgUp6z3zqAMffUGsHbuZksw8A5HydKuDVBnJwhzDKw9X5LpVllcICe+dI+aM kynR9fd2RKYWTaV0BH18Qa+jM2Z7ED3DJ7Em4Q== -----END CERTIFICATE-----Generated at Fri Jun 21 00:18:58 2024 by rpki-client on console-ams.rpki-client.org