$ rpki-client -vvf repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/3130332e39372e37362e302f32342d3234203d3e20313336313331.roa File: 3130332e39372e37362e302f32342d3234203d3e20313336313331.roa (raw, json) Hash identifier: sppd+EBGEaepceJfNxlZXMQLq/sqMLGJt/R8ADFWUfE= Subject key identifier: C4:E4:C7:46:15:06:2E:A1:F0:70:E9:BA:D3:35:74:E1:CA:B1:6D:3F Certificate issuer: /CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Certificate serial: 6E3865220420A6E4C6E849B0A2FC2FC67A0A3864 Authority key identifier: 7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/3130332e39372e37362e302f32342d3234203d3e20313336313331.roa Signing time: Thu 19 Sep 2024 09:00:01 +0000 ROA not before: Thu 19 Sep 2024 08:55:01 +0000 ROA not after: Thu 18 Sep 2025 09:00:01 +0000 asID: 136131 IP address blocks: 103.97.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:57:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:38:65:22:04:20:a6:e4:c6:e8:49:b0:a2:fc:2f:c6:7a:0a:38:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Validity Not Before: Sep 19 08:55:01 2024 GMT Not After : Sep 18 09:00:01 2025 GMT Subject: CN=C4E4C74615062EA1F070E9BAD33574E1CAB16D3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e2:7f:b2:5c:6c:5c:a1:19:b8:be:d9:e6:c4: 56:45:c7:b9:6f:9a:74:40:d1:aa:19:a0:00:d4:54: 66:56:60:4b:c5:02:6a:69:24:7d:29:4b:ba:9c:f2: 3b:7f:08:63:24:67:06:07:09:44:e6:ed:d2:2b:84: b3:e7:9d:da:73:68:88:d2:d7:80:c9:0e:65:03:c2: 37:cf:c7:40:3c:31:f0:a9:ad:0f:9d:d0:ad:82:a8: f1:e7:98:4e:b5:70:d1:f5:79:0e:89:4f:13:3f:af: e6:00:2c:75:7e:dd:7e:8d:0e:1a:a9:99:f1:2d:5a: 60:a6:d5:b8:ec:36:84:f4:2a:14:fc:a4:9c:aa:18: 7e:73:3c:98:ff:6a:e9:4b:6e:24:fb:3f:11:8f:a0: 21:67:3d:b0:f5:2f:54:b4:1c:8d:bc:eb:43:02:4f: 5c:75:fd:4e:5c:de:93:df:d3:f0:38:59:42:09:23: c2:e6:82:ca:64:61:13:d7:da:e7:3b:80:b9:c1:a1: 42:71:4d:89:a3:51:e4:e1:15:af:8e:d5:b7:cd:57: 1d:0c:1f:4b:be:3d:b4:78:21:b2:28:1e:70:5e:43: 68:33:76:02:f1:9e:40:57:3c:47:92:9a:f1:6b:bc: ef:03:df:0e:4e:7e:0f:45:31:0b:0d:ee:fa:d2:1c: 93:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:E4:C7:46:15:06:2E:A1:F0:70:E9:BA:D3:35:74:E1:CA:B1:6D:3F X509v3 Authority Key Identifier: keyid:7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/3130332e39372e37362e302f32342d3234203d3e20313336313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.97.76.0/24 Signature Algorithm: sha256WithRSAEncryption 40:4c:b5:de:b6:de:bf:a1:30:1a:e3:c6:2d:2d:89:be:5f:ed: ad:57:24:4a:dd:fc:a5:ce:37:2c:b0:52:90:c0:e2:8d:d6:ec: 8e:85:39:96:9e:0c:3d:28:73:7c:16:5c:54:69:28:00:38:11: f6:03:b1:ee:1b:01:35:8b:89:03:f0:36:40:0a:b8:63:0b:39: 20:70:26:88:2b:fd:24:2c:a8:9c:9f:c9:00:fd:5e:61:81:c2: b5:37:28:d8:18:df:3f:8b:5e:bf:cf:80:fb:b6:44:8e:4b:e6: d3:d9:c5:f7:b3:63:07:34:ff:ae:f4:e9:8c:7e:d2:72:4b:25: c7:dc:f5:22:2e:65:6f:b4:2a:07:81:01:02:17:78:1c:c8:c4: 6a:ba:fb:39:0c:ae:d6:80:52:43:b5:7b:a5:6d:9c:33:60:21: ad:d4:3e:14:12:05:a6:72:06:bf:8e:ad:40:d9:b5:d3:f5:ac: fa:f9:11:d8:54:7d:16:32:16:11:83:66:13:a1:cc:3b:79:03: a1:46:b7:c4:e4:7e:8d:0a:b0:b5:7e:eb:0f:e1:61:d1:97:89: b2:5a:7e:5f:21:4d:96:27:82:cb:b6:6e:8e:14:de:e7:e7:de: c6:c2:43:f8:b1:c5:ef:ae:30:d2:cf:11:40:b3:1b:a9:d3:63: 35:45:ff:c0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbjhlIgQgpuTG6EmwovwvxnoKOGQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBC QUI5M0Y2NzAeFw0yNDA5MTkwODU1MDFaFw0yNTA5MTgwOTAwMDFaMDMxMTAvBgNV BAMTKEM0RTRDNzQ2MTUwNjJFQTFGMDcwRTlCQUQzMzU3NEUxQ0FCMTZEM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/4n+yXGxcoRm4vtnmxFZFx7lv mnRA0aoZoADUVGZWYEvFAmppJH0pS7qc8jt/CGMkZwYHCUTm7dIrhLPnndpzaIjS 14DJDmUDwjfPx0A8MfCprQ+d0K2CqPHnmE61cNH1eQ6JTxM/r+YALHV+3X6NDhqp mfEtWmCm1bjsNoT0KhT8pJyqGH5zPJj/aulLbiT7PxGPoCFnPbD1L1S0HI2860MC T1x1/U5c3pPf0/A4WUIJI8LmgspkYRPX2uc7gLnBoUJxTYmjUeThFa+O1bfNVx0M H0u+PbR4IbIoHnBeQ2gzdgLxnkBXPEeSmvFrvO8D3w5Ofg9FMQsN7vrSHJNrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxOTHRhUGLqHwcOm60zV04cqxbT8wHwYDVR0j BBgwFoAUfWS49M+2hxQRN9EPnnP/0Lq5P2cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NTdiMGQ3ZS1lYWRlLTQzMTgtYWIyMC04YzdmMmQ1YmU2OWYvMC83RDY0QjhGNENG QjY4NzE0MTEzN0QxMEY5RTczRkZEMEJBQjkzRjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBCQUI5 M0Y2Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1N2IwZDdlLWVhZGUtNDMxOC1h YjIwLThjN2YyZDViZTY5Zi8wLzMxMzAzMzJlMzkzNzJlMzczNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNjMxMzMzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdhTDANBgkqhkiG 9w0BAQsFAAOCAQEAQEy13rbev6EwGuPGLS2Jvl/trVckSt38pc43LLBSkMDijdbs joU5lp4MPShzfBZcVGkoADgR9gOx7hsBNYuJA/A2QAq4Yws5IHAmiCv9JCyonJ/J AP1eYYHCtTco2BjfP4tev8+A+7ZEjkvm09nF97NjBzT/rvTpjH7Sckslx9z1Ii5l b7QqB4EBAhd4HMjEarr7OQyu1oBSQ7V7pW2cM2AhrdQ+FBIFpnIGv46tQNm10/Ws +vkR2FR9FjIWEYNmE6HMO3kDoUa3xOR+jQqwtX7rD+Fh0ZeJslp+XyFNlieCy7Zu jhTe5+fexsJD+LHF764w0s8RQLMbqdNjNUX/wA== -----END CERTIFICATE-----Generated at Thu Nov 21 09:17:19 2024 by rpki-client on console-fra.rpki-client.org