$ rpki-client -vvf repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/3130332e39372e37382e302f32342d3234203d3e20313336313331.roa File: 3130332e39372e37382e302f32342d3234203d3e20313336313331.roa (raw, json) Hash identifier: 3IfnMsxy+BmcdHkEOMeFxzfcMZeEJZKVyi34vjbFhGk= Subject key identifier: 32:E4:7E:14:5E:9F:D6:6E:AE:7D:E7:01:B8:A5:29:BF:CF:90:59:C9 Certificate issuer: /CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Certificate serial: 0C3007F412CD98A380A2901E7E16293E7FAF9CF9 Authority key identifier: 7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/3130332e39372e37382e302f32342d3234203d3e20313336313331.roa Signing time: Thu 19 Oct 2023 09:00:00 +0000 ROA not before: Thu 19 Oct 2023 08:55:00 +0000 ROA not after: Thu 17 Oct 2024 09:00:00 +0000 asID: 136131 IP address blocks: 103.97.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:30:07:f4:12:cd:98:a3:80:a2:90:1e:7e:16:29:3e:7f:af:9c:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Validity Not Before: Oct 19 08:55:00 2023 GMT Not After : Oct 17 09:00:00 2024 GMT Subject: CN=32E47E145E9FD66EAE7DE701B8A529BFCF9059C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:19:cd:48:aa:0c:47:d9:c0:4c:9d:ea:14:f4: 81:29:f1:31:e3:02:df:43:5d:3c:89:b0:00:8e:c9: 34:c5:b0:17:72:0d:5c:25:31:af:b7:4f:4f:d9:38: 0b:30:15:8d:6d:c8:7d:0e:69:b0:fa:98:52:4e:db: 65:73:84:68:ad:e5:45:65:46:04:4d:90:52:c0:0d: 40:d3:a3:91:37:c0:6a:24:42:d0:26:e0:36:b3:35: a8:a3:11:9f:d3:2a:24:20:cb:ff:94:3f:cd:a8:5a: 94:3d:68:4c:b7:b1:8d:a0:46:3a:01:b5:8f:be:ce: 17:74:6b:c8:d3:64:7b:52:86:2e:65:eb:e0:c9:f4: 0d:b2:26:39:67:a2:52:c7:b1:8a:fc:16:8a:00:7b: 4e:bd:bd:3f:ce:e3:e6:e0:33:bc:e3:5a:5f:5d:99: bb:78:00:08:00:17:b3:25:53:6b:52:fb:d8:ac:59: 6a:64:04:d5:ff:59:46:e8:b3:cc:3f:0a:d2:da:e3: 72:3b:82:f6:25:9a:bc:bf:51:74:41:b4:69:bd:67: 84:07:72:a7:47:45:ee:33:5c:e9:18:64:6a:74:84: e0:86:e3:d8:6c:a5:b3:c7:f5:48:f5:fe:10:13:b2: 4d:80:10:38:1e:45:29:61:87:2c:6e:5e:ff:bc:37: ae:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:E4:7E:14:5E:9F:D6:6E:AE:7D:E7:01:B8:A5:29:BF:CF:90:59:C9 X509v3 Authority Key Identifier: keyid:7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/3130332e39372e37382e302f32342d3234203d3e20313336313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.97.78.0/24 Signature Algorithm: sha256WithRSAEncryption 09:7a:46:59:87:38:70:49:3c:ef:e1:85:7a:de:a4:cf:5f:53: 68:61:bf:76:d5:bf:fd:34:ff:b9:c3:e2:0b:86:12:b8:08:bd: bf:b3:5a:0b:60:31:11:29:b0:85:4c:8f:c1:bb:f4:b1:e8:74: 65:2a:ef:56:af:0a:d6:a1:04:69:f3:72:0b:e9:eb:76:35:af: 79:51:ef:25:4c:4f:67:4e:af:ac:2a:13:25:24:fc:1f:6f:85: e5:15:80:ce:78:50:c4:22:21:1e:36:d3:a7:63:4e:7e:6c:12: 6e:fb:d4:d7:8e:b0:6c:6d:30:9b:1f:43:ac:0f:de:f1:69:c9: 6d:9a:27:ed:49:0e:45:22:0e:af:79:33:c6:77:0f:7a:0a:ed: 33:c9:b9:34:0c:71:34:a5:b9:d8:0c:31:ff:c8:4b:e4:fb:de: 1d:4a:b9:fd:c9:46:48:e8:16:7b:29:cb:29:0a:4c:8d:c5:e8: 6a:ed:0d:6f:dc:80:d6:0b:f5:86:e8:5a:bf:a0:94:be:ad:e5: 23:0b:62:94:60:ec:7d:c2:9e:1a:99:59:2d:0f:68:26:aa:33: 15:76:70:f3:cf:eb:c2:7a:57:5a:fe:66:ac:f5:24:35:aa:88: 2e:5f:b6:7a:bc:0d:ea:74:14:7b:87:f1:97:8a:97:d9:65:d6: ce:9a:ce:70 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDDAH9BLNmKOAopAefhYpPn+vnPkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBC QUI5M0Y2NzAeFw0yMzEwMTkwODU1MDBaFw0yNDEwMTcwOTAwMDBaMDMxMTAvBgNV BAMTKDMyRTQ3RTE0NUU5RkQ2NkVBRTdERTcwMUI4QTUyOUJGQ0Y5MDU5QzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGGc1IqgxH2cBMneoU9IEp8THj At9DXTyJsACOyTTFsBdyDVwlMa+3T0/ZOAswFY1tyH0OabD6mFJO22VzhGit5UVl RgRNkFLADUDTo5E3wGokQtAm4DazNaijEZ/TKiQgy/+UP82oWpQ9aEy3sY2gRjoB tY++zhd0a8jTZHtShi5l6+DJ9A2yJjlnolLHsYr8FooAe069vT/O4+bgM7zjWl9d mbt4AAgAF7MlU2tS+9isWWpkBNX/WUbos8w/CtLa43I7gvYlmry/UXRBtGm9Z4QH cqdHRe4zXOkYZGp0hOCG49hspbPH9Uj1/hATsk2AEDgeRSlhhyxuXv+8N641AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMuR+FF6f1m6ufecBuKUpv8+QWckwHwYDVR0j BBgwFoAUfWS49M+2hxQRN9EPnnP/0Lq5P2cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NTdiMGQ3ZS1lYWRlLTQzMTgtYWIyMC04YzdmMmQ1YmU2OWYvMC83RDY0QjhGNENG QjY4NzE0MTEzN0QxMEY5RTczRkZEMEJBQjkzRjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBCQUI5 M0Y2Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1N2IwZDdlLWVhZGUtNDMxOC1h YjIwLThjN2YyZDViZTY5Zi8wLzMxMzAzMzJlMzkzNzJlMzczODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNjMxMzMzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdhTjANBgkqhkiG 9w0BAQsFAAOCAQEACXpGWYc4cEk87+GFet6kz19TaGG/dtW//TT/ucPiC4YSuAi9 v7NaC2AxESmwhUyPwbv0seh0ZSrvVq8K1qEEafNyC+nrdjWveVHvJUxPZ06vrCoT JST8H2+F5RWAznhQxCIhHjbTp2NOfmwSbvvU146wbG0wmx9DrA/e8WnJbZon7UkO RSIOr3kzxncPegrtM8m5NAxxNKW52Awx/8hL5PveHUq5/clGSOgWeynLKQpMjcXo au0Nb9yA1gv1huhav6CUvq3lIwtilGDsfcKeGplZLQ9oJqozFXZw88/rwnpXWv5m rPUkNaqILl+2erwN6nQUe4fxl4qX2WXWzprOcA== -----END CERTIFICATE-----Generated at Sun Jun 2 18:43:43 2024 by rpki-client on console-ams.rpki-client.org