$ rpki-client -vvf repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3130332e37362e3134392e302f32342d3234203d3e20313335343737.roa File: 3130332e37362e3134392e302f32342d3234203d3e20313335343737.roa (raw, json) Hash identifier: ZgDGXCsSyzDrJGQuDM1q2yAFTUBJsm9YLq4ntv3/5wQ= Subject key identifier: F8:98:09:94:80:65:E3:D9:C3:BF:72:B0:B8:3D:08:FE:A3:7E:33:1F Certificate issuer: /CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Certificate serial: 5C94D0D046C4A656BD6860AF207A49CA5CA5F3C4 Authority key identifier: 80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3130332e37362e3134392e302f32342d3234203d3e20313335343737.roa Signing time: Fri 18 Oct 2024 05:00:02 +0000 ROA not before: Fri 18 Oct 2024 04:55:02 +0000 ROA not after: Fri 17 Oct 2025 05:00:02 +0000 asID: 135477 IP address blocks: 103.76.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:94:d0:d0:46:c4:a6:56:bd:68:60:af:20:7a:49:ca:5c:a5:f3:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Validity Not Before: Oct 18 04:55:02 2024 GMT Not After : Oct 17 05:00:02 2025 GMT Subject: CN=F89809948065E3D9C3BF72B0B83D08FEA37E331F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c7:11:be:7f:8f:34:9a:02:86:c1:df:6d:7d: ca:7b:3a:20:a1:de:79:53:a7:21:5a:2d:3f:ac:bc: 3b:44:54:61:2a:75:cc:ca:4b:5f:a6:68:ca:f6:e7: a7:d0:ba:1c:09:d0:d2:18:15:92:fb:48:e4:5b:2c: 9c:64:49:50:a9:de:ad:78:fd:06:3b:ff:6c:30:43: d1:a4:6e:ec:23:10:09:1c:ca:a4:62:a6:0a:c3:2d: cf:fc:0b:cb:eb:50:55:9e:72:c4:bb:62:d6:4b:eb: 1b:77:b6:ce:51:b0:a8:ae:05:df:6d:36:2f:30:c2: a6:b7:c2:d4:43:1d:bf:f3:0b:22:11:b9:09:e6:81: e1:5b:b6:68:8b:bb:85:73:da:ff:c4:5d:c0:a0:0e: 83:04:e0:0b:69:64:28:21:01:b7:94:36:a9:e7:bd: ed:86:a1:ce:8a:62:b7:ee:1d:f6:0a:c1:9f:e6:c0: 29:c6:f3:82:02:83:5f:4d:5f:7e:b9:bf:99:38:87: 10:c2:37:79:f6:3d:cf:06:9f:86:95:4e:30:40:20: 59:d6:93:fc:fd:7f:da:f3:36:aa:dc:89:01:16:e3: 04:f2:be:b3:be:5f:85:42:20:03:06:6f:3b:7b:88: bc:30:20:b1:56:25:58:f9:ec:5a:c9:9b:e3:fd:37: 6d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:98:09:94:80:65:E3:D9:C3:BF:72:B0:B8:3D:08:FE:A3:7E:33:1F X509v3 Authority Key Identifier: keyid:80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3130332e37362e3134392e302f32342d3234203d3e20313335343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.76.149.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:88:4e:87:29:f2:87:db:e7:c6:8b:60:d4:88:6b:68:b0:34: 6f:ec:7a:35:6b:75:23:7f:48:a9:dc:98:5b:40:41:78:9b:2e: 34:ed:d0:09:38:25:ce:22:c3:59:a7:0f:f1:c4:63:16:de:ef: 5c:a7:f1:13:6c:2c:d1:2a:b8:4e:97:74:59:13:1e:53:e5:f7: 2f:bf:d0:ea:9c:32:0d:3f:34:a8:05:01:da:66:a8:38:31:5d: 8c:c8:e2:b7:b1:10:79:5d:75:c8:52:b8:3a:92:28:87:a4:fb: f2:8a:38:76:9d:ee:d8:d6:e1:fa:cb:ee:46:c5:23:0e:ef:98: f7:da:f8:de:1b:85:6d:80:59:1d:5b:66:3e:3b:c5:b3:8f:54: d6:b0:d5:27:aa:0c:c3:7e:7c:3b:96:24:c7:7d:41:9a:d8:92: 23:55:1a:39:18:06:ab:83:74:32:ab:19:26:2b:22:0c:ef:67: 48:6f:9d:8d:e7:23:51:49:61:73:23:a8:5e:9c:2a:b5:64:a2: da:f1:85:fe:80:84:87:2e:8b:35:c0:81:7a:49:83:ec:ef:3d: c4:ad:3f:13:94:9f:db:c9:cc:4c:d5:8b:ac:9b:49:1f:a2:48: 65:09:5f:df:e2:03:d0:46:33:73:2d:9f:04:0b:f6:78:0f:cc: 9f:21:87:57 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXJTQ0EbEpla9aGCvIHpJylyl88QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5 Qjk0MTBFOTAeFw0yNDEwMTgwNDU1MDJaFw0yNTEwMTcwNTAwMDJaMDMxMTAvBgNV BAMTKEY4OTgwOTk0ODA2NUUzRDlDM0JGNzJCMEI4M0QwOEZFQTM3RTMzMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbxxG+f480mgKGwd9tfcp7OiCh 3nlTpyFaLT+svDtEVGEqdczKS1+maMr256fQuhwJ0NIYFZL7SORbLJxkSVCp3q14 /QY7/2wwQ9GkbuwjEAkcyqRipgrDLc/8C8vrUFWecsS7YtZL6xt3ts5RsKiuBd9t Ni8wwqa3wtRDHb/zCyIRuQnmgeFbtmiLu4Vz2v/EXcCgDoME4AtpZCghAbeUNqnn ve2Goc6KYrfuHfYKwZ/mwCnG84ICg19NX365v5k4hxDCN3n2Pc8Gn4aVTjBAIFnW k/z9f9rzNqrciQEW4wTyvrO+X4VCIAMGbzt7iLwwILFWJVj57FrJm+P9N20BAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+JgJlIBl49nDv3KwuD0I/qN+Mx8wHwYDVR0j BBgwFoAUgKV9krjUw/8X5xwDBdmtgpuUEOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h N2ZkZjQzZS00YTRjLTRkYmMtYjc4NS1kZDdjYmYxYTY3YjcvMC84MEE1N0Q5MkI4 RDRDM0ZGMTdFNzFDMDMwNUQ5QUQ4MjlCOTQxMEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5Qjk0 MTBFOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3ZmRmNDNlLTRhNGMtNGRiYy1i Nzg1LWRkN2NiZjFhNjdiNy8wLzMxMzAzMzJlMzczNjJlMzEzNDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0yVMA0GCSqG SIb3DQEBCwUAA4IBAQAMiE6HKfKH2+fGi2DUiGtosDRv7Ho1a3Ujf0ip3JhbQEF4 my407dAJOCXOIsNZpw/xxGMW3u9cp/ETbCzRKrhOl3RZEx5T5fcvv9DqnDINPzSo BQHaZqg4MV2MyOK3sRB5XXXIUrg6kiiHpPvyijh2ne7Y1uH6y+5GxSMO75j32vje G4VtgFkdW2Y+O8Wzj1TWsNUnqgzDfnw7liTHfUGa2JIjVRo5GAarg3QyqxkmKyIM 72dIb52N5yNRSWFzI6henCq1ZKLa8YX+gISHLos1wIF6SYPs7z3ErT8TlJ/bycxM 1Yusm0kfokhlCV/f4gPQRjNzLZ8EC/Z4D8yfIYdX -----END CERTIFICATE-----Generated at Fri Nov 22 22:09:43 2024 by rpki-client on console-ams.rpki-client.org