$ rpki-client -vvf repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/3130332e39372e37392e302f32342d3234203d3e20313336313331.roa File: 3130332e39372e37392e302f32342d3234203d3e20313336313331.roa (raw, json) Hash identifier: g7TDmW1J5jNMb6eLJToYzt8xdajrekh1Q+uRWpcwKv0= Subject key identifier: BB:76:7D:F4:A4:AD:DA:6D:A8:80:B1:2C:1B:4A:8E:21:C6:B5:57:AB Certificate issuer: /CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Certificate serial: 6F7BA81B49094C7D5D32DB1FCB016E351FDF40F1 Authority key identifier: 7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/3130332e39372e37392e302f32342d3234203d3e20313336313331.roa Signing time: Thu 19 Sep 2024 10:00:01 +0000 ROA not before: Thu 19 Sep 2024 09:55:01 +0000 ROA not after: Thu 18 Sep 2025 10:00:01 +0000 asID: 136131 IP address blocks: 103.97.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 07:57:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:7b:a8:1b:49:09:4c:7d:5d:32:db:1f:cb:01:6e:35:1f:df:40:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Validity Not Before: Sep 19 09:55:01 2024 GMT Not After : Sep 18 10:00:01 2025 GMT Subject: CN=BB767DF4A4ADDA6DA880B12C1B4A8E21C6B557AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:76:c8:eb:ff:da:35:34:6d:b2:f8:33:86:b8: c4:29:3f:ce:11:3d:07:ab:18:c4:6e:cf:6d:6f:51: 8f:ae:46:16:1a:36:6f:c0:7c:66:f3:00:eb:1e:17: 63:93:9f:0e:22:62:29:8f:50:10:20:c9:72:a4:25: 80:01:6d:fd:98:04:b1:ad:a3:4f:b2:44:9f:97:88: eb:44:0e:5f:ec:d3:ab:7a:69:1e:b9:5f:0b:91:c6: 0a:1c:76:3a:3e:32:b9:c8:7a:65:a4:84:4a:ad:9e: c1:6e:14:2d:2c:06:fa:19:4a:be:8c:52:e0:a3:f1: 65:57:1d:16:30:69:48:33:33:32:d0:d2:05:cd:40: cb:ec:63:63:82:87:1c:69:e8:14:af:01:2e:54:c2: 0c:b8:78:29:be:04:ab:21:78:bc:86:58:04:a4:65: dc:4c:6a:7a:79:7d:51:a6:7b:e3:a2:87:c8:3f:37: e1:7d:3d:c2:69:4f:7a:a8:4b:b0:78:30:9b:36:be: e8:3d:4a:3f:aa:62:c7:20:96:0d:42:9b:04:0d:b9: cc:f2:e8:11:b8:8d:d5:b4:de:97:29:99:38:52:40: 68:66:5a:e0:7f:89:8f:8b:59:05:85:e8:f8:48:00: bc:3e:e4:a8:84:6f:55:22:e1:f4:a5:06:d4:82:b3: 84:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:76:7D:F4:A4:AD:DA:6D:A8:80:B1:2C:1B:4A:8E:21:C6:B5:57:AB X509v3 Authority Key Identifier: keyid:7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/3130332e39372e37392e302f32342d3234203d3e20313336313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.97.79.0/24 Signature Algorithm: sha256WithRSAEncryption 80:f1:56:8e:86:77:84:80:2a:cd:6f:aa:44:ff:3c:ce:3d:ea: 62:c8:05:e9:22:62:b4:99:0e:0a:dd:62:16:1c:49:c8:68:1a: ae:b2:ac:25:19:cc:c5:a5:78:a1:58:3b:e9:ba:3a:68:a9:04: 3a:79:6b:ed:20:50:e7:01:f7:b4:88:fb:0b:cf:1c:27:70:f2: 2c:2d:e2:70:c8:47:93:d4:03:f6:3a:cb:ce:d2:b2:50:c0:29: 34:4e:a2:52:cd:ce:e3:98:5b:19:9b:1f:c1:e3:d6:c1:ef:e4: 2f:dd:b6:51:ba:1e:c1:09:d0:43:48:f5:01:14:81:20:86:6d: bc:cb:41:60:56:c0:83:bd:cc:87:90:77:2e:36:dc:a0:c4:2b: 5a:ba:b7:02:3d:e3:01:11:6f:e1:0e:a7:b2:71:f3:74:87:c7: 3c:d8:00:8f:08:fe:54:5e:db:46:20:38:86:c7:62:3e:cc:8a: 96:4f:59:7b:f1:a4:13:96:5f:28:3f:02:ca:00:28:e4:c6:b9: d1:b3:94:4f:3c:b7:58:89:ed:6d:e1:89:ca:ca:ec:08:dd:b6: 84:b8:ff:6e:73:01:f5:24:e9:3f:3b:e5:a2:8c:6b:9d:ba:16: 45:0b:c1:f8:5a:72:91:cc:a9:7e:36:aa:7e:34:9b:47:f0:08: cc:39:57:44 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUb3uoG0kJTH1dMtsfywFuNR/fQPEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBC QUI5M0Y2NzAeFw0yNDA5MTkwOTU1MDFaFw0yNTA5MTgxMDAwMDFaMDMxMTAvBgNV BAMTKEJCNzY3REY0QTRBRERBNkRBODgwQjEyQzFCNEE4RTIxQzZCNTU3QUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6dsjr/9o1NG2y+DOGuMQpP84R PQerGMRuz21vUY+uRhYaNm/AfGbzAOseF2OTnw4iYimPUBAgyXKkJYABbf2YBLGt o0+yRJ+XiOtEDl/s06t6aR65XwuRxgocdjo+MrnIemWkhEqtnsFuFC0sBvoZSr6M UuCj8WVXHRYwaUgzMzLQ0gXNQMvsY2OChxxp6BSvAS5Uwgy4eCm+BKsheLyGWASk ZdxManp5fVGme+Oih8g/N+F9PcJpT3qoS7B4MJs2vug9Sj+qYscglg1CmwQNuczy 6BG4jdW03pcpmThSQGhmWuB/iY+LWQWF6PhIALw+5KiEb1Ui4fSlBtSCs4TBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUu3Z99KSt2m2ogLEsG0qOIca1V6swHwYDVR0j BBgwFoAUfWS49M+2hxQRN9EPnnP/0Lq5P2cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NTdiMGQ3ZS1lYWRlLTQzMTgtYWIyMC04YzdmMmQ1YmU2OWYvMC83RDY0QjhGNENG QjY4NzE0MTEzN0QxMEY5RTczRkZEMEJBQjkzRjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBCQUI5 M0Y2Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1N2IwZDdlLWVhZGUtNDMxOC1h YjIwLThjN2YyZDViZTY5Zi8wLzMxMzAzMzJlMzkzNzJlMzczOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNjMxMzMzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdhTzANBgkqhkiG 9w0BAQsFAAOCAQEAgPFWjoZ3hIAqzW+qRP88zj3qYsgF6SJitJkOCt1iFhxJyGga rrKsJRnMxaV4oVg76bo6aKkEOnlr7SBQ5wH3tIj7C88cJ3DyLC3icMhHk9QD9jrL ztKyUMApNE6iUs3O45hbGZsfwePWwe/kL922UboewQnQQ0j1ARSBIIZtvMtBYFbA g73Mh5B3LjbcoMQrWrq3Aj3jARFv4Q6nsnHzdIfHPNgAjwj+VF7bRiA4hsdiPsyK lk9Ze/GkE5ZfKD8CygAo5Ma50bOUTzy3WIntbeGJysrsCN22hLj/bnMB9STpPzvl ooxrnboWRQvB+FpykcypfjaqfjSbR/AIzDlXRA== -----END CERTIFICATE-----Generated at Thu Nov 21 09:07:04 2024 by rpki-client on console-ams.rpki-client.org