$ rpki-client -vvf repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/3130332e39372e37392e302f32342d3234203d3e20313336313331.roa File: 3130332e39372e37392e302f32342d3234203d3e20313336313331.roa (raw, json) Hash identifier: iFMguTbm3bu0i+oObMuSKvlX1P8xGasiou7sX5/DwhM= Subject key identifier: 5B:70:1C:76:7B:10:49:2B:49:30:C0:92:59:70:4F:EB:CF:A8:38:B0 Certificate issuer: /CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Certificate serial: 4B0C2F641EEBF3C01962937E070C36C0BF3C9EBB Authority key identifier: 7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/3130332e39372e37392e302f32342d3234203d3e20313336313331.roa Signing time: Thu 19 Oct 2023 10:00:00 +0000 ROA not before: Thu 19 Oct 2023 09:55:00 +0000 ROA not after: Thu 17 Oct 2024 10:00:00 +0000 asID: 136131 IP address blocks: 103.97.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:0c:2f:64:1e:eb:f3:c0:19:62:93:7e:07:0c:36:c0:bf:3c:9e:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Validity Not Before: Oct 19 09:55:00 2023 GMT Not After : Oct 17 10:00:00 2024 GMT Subject: CN=5B701C767B10492B4930C09259704FEBCFA838B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6f:35:ee:8e:75:bd:87:89:c0:61:d3:f3:bb: 47:c2:c7:b6:b2:00:e9:a8:2b:eb:50:4e:21:93:0c: ad:be:71:01:c6:de:bc:7f:ae:a6:68:9c:68:5e:b8: d9:c6:d6:64:30:ce:71:98:bd:5d:50:7f:0a:38:cf: 8a:4b:81:19:4a:de:43:e9:ac:7e:61:89:14:0b:7e: e2:21:5d:8b:79:bc:e9:b5:67:8f:f8:13:0d:ba:05: 1a:0d:56:f6:cd:64:94:30:aa:de:9d:83:31:70:b2: 26:21:77:fe:c0:5d:ee:47:d7:52:c7:a0:2a:e2:f6: ad:41:be:21:4d:96:b3:89:4c:f5:37:40:04:43:03: bb:d9:f9:be:25:5f:49:94:b5:0c:66:eb:bf:fb:db: a9:ba:e4:e5:56:33:d4:5b:be:98:1a:3c:58:95:70: ec:e2:6c:63:71:6f:5b:ac:76:2b:69:23:9f:a1:7e: 82:99:42:cb:15:55:d8:0c:e4:0e:70:07:5b:a9:e9: 00:48:40:d9:9e:c2:63:44:36:05:cc:04:2c:53:62: 38:fd:6e:8f:66:7d:5f:31:5e:2a:8d:40:d2:0d:61: ea:2a:02:70:ec:b0:d9:06:f1:81:74:13:39:c2:c7: 7e:e0:51:bc:02:fb:66:c3:98:72:9e:84:1a:03:6b: 32:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:70:1C:76:7B:10:49:2B:49:30:C0:92:59:70:4F:EB:CF:A8:38:B0 X509v3 Authority Key Identifier: keyid:7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/3130332e39372e37392e302f32342d3234203d3e20313336313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.97.79.0/24 Signature Algorithm: sha256WithRSAEncryption 82:c8:83:75:c0:34:82:8b:da:59:bc:b2:a0:36:3a:98:a8:27: 23:2e:27:ae:29:a0:6f:3e:c5:35:62:aa:c5:3c:88:4f:45:cf: 1a:7f:7e:53:8b:e0:6b:86:06:b6:31:1f:ae:50:8e:e1:53:1c: 26:0d:70:5c:99:cf:87:46:7b:a5:fb:8d:7d:a8:4b:c2:68:33: 22:b4:1f:bf:a8:8c:b8:8c:6c:ec:ec:7d:07:f7:46:d9:5b:c4: 70:92:c4:3f:5f:b0:d9:af:6e:59:57:b4:81:85:75:88:7f:51: b9:1f:3a:f7:99:00:41:0f:1b:ad:01:bb:29:26:24:42:48:d9: e2:e3:0d:58:5d:91:50:af:bc:1c:b8:e7:5c:fc:ba:f3:43:0d: ae:d2:8f:3a:91:cb:4b:44:94:b7:77:cf:76:09:cb:7a:ed:bb: 9c:48:91:fe:54:4a:31:10:77:39:2d:98:31:16:c6:f2:47:b5: 23:be:8f:77:bc:01:d3:b5:32:a5:0e:06:cd:9b:87:ce:5c:21: 57:f8:69:eb:a8:f5:b3:ff:f3:38:b4:e3:d1:cf:75:b1:90:dc: 24:b6:ec:c7:d2:ce:55:51:ce:82:fe:d8:c9:00:b1:e7:22:b7: 74:11:37:90:fc:fc:df:dc:14:db:66:e2:43:2d:d5:93:ea:13: 1f:08:44:aa -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSwwvZB7r88AZYpN+Bww2wL88nrswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBC QUI5M0Y2NzAeFw0yMzEwMTkwOTU1MDBaFw0yNDEwMTcxMDAwMDBaMDMxMTAvBgNV BAMTKDVCNzAxQzc2N0IxMDQ5MkI0OTMwQzA5MjU5NzA0RkVCQ0ZBODM4QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0bzXujnW9h4nAYdPzu0fCx7ay AOmoK+tQTiGTDK2+cQHG3rx/rqZonGheuNnG1mQwznGYvV1Qfwo4z4pLgRlK3kPp rH5hiRQLfuIhXYt5vOm1Z4/4Ew26BRoNVvbNZJQwqt6dgzFwsiYhd/7AXe5H11LH oCri9q1BviFNlrOJTPU3QARDA7vZ+b4lX0mUtQxm67/726m65OVWM9RbvpgaPFiV cOzibGNxb1usditpI5+hfoKZQssVVdgM5A5wB1up6QBIQNmewmNENgXMBCxTYjj9 bo9mfV8xXiqNQNINYeoqAnDssNkG8YF0EznCx37gUbwC+2bDmHKehBoDazLHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUW3AcdnsQSStJMMCSWXBP68+oOLAwHwYDVR0j BBgwFoAUfWS49M+2hxQRN9EPnnP/0Lq5P2cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NTdiMGQ3ZS1lYWRlLTQzMTgtYWIyMC04YzdmMmQ1YmU2OWYvMC83RDY0QjhGNENG QjY4NzE0MTEzN0QxMEY5RTczRkZEMEJBQjkzRjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBCQUI5 M0Y2Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1N2IwZDdlLWVhZGUtNDMxOC1h YjIwLThjN2YyZDViZTY5Zi8wLzMxMzAzMzJlMzkzNzJlMzczOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNjMxMzMzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdhTzANBgkqhkiG 9w0BAQsFAAOCAQEAgsiDdcA0govaWbyyoDY6mKgnIy4nrimgbz7FNWKqxTyIT0XP Gn9+U4vga4YGtjEfrlCO4VMcJg1wXJnPh0Z7pfuNfahLwmgzIrQfv6iMuIxs7Ox9 B/dG2VvEcJLEP1+w2a9uWVe0gYV1iH9RuR8695kAQQ8brQG7KSYkQkjZ4uMNWF2R UK+8HLjnXPy680MNrtKPOpHLS0SUt3fPdgnLeu27nEiR/lRKMRB3OS2YMRbG8ke1 I76Pd7wB07UypQ4GzZuHzlwhV/hp66j1s//zOLTj0c91sZDcJLbsx9LOVVHOgv7Y yQCx5yK3dBE3kPz839wU22biQy3Vk+oTHwhEqg== -----END CERTIFICATE-----Generated at Sun Jun 2 18:43:43 2024 by rpki-client on console-ams.rpki-client.org