$ rpki-client -vvf repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3130332e37362e3135302e302f32342d3234203d3e20313335343737.roa File: 3130332e37362e3135302e302f32342d3234203d3e20313335343737.roa (raw, json) Hash identifier: XGyX1fDJCJeIJhfCIkQQCr6OHIb1I8YyoWexjVgFMdA= Subject key identifier: EF:0F:92:3A:96:BD:99:AC:94:79:8F:5C:B0:79:77:25:D6:02:DC:34 Certificate issuer: /CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Certificate serial: 73A17BCD155BF2D6FED97632BA6F8376FE0B8088 Authority key identifier: 80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3130332e37362e3135302e302f32342d3234203d3e20313335343737.roa Signing time: Fri 18 Oct 2024 05:00:01 +0000 ROA not before: Fri 18 Oct 2024 04:55:01 +0000 ROA not after: Fri 17 Oct 2025 05:00:01 +0000 asID: 135477 IP address blocks: 103.76.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:a1:7b:cd:15:5b:f2:d6:fe:d9:76:32:ba:6f:83:76:fe:0b:80:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Validity Not Before: Oct 18 04:55:01 2024 GMT Not After : Oct 17 05:00:01 2025 GMT Subject: CN=EF0F923A96BD99AC94798F5CB0797725D602DC34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:f5:27:2f:f9:9a:68:f5:77:ee:98:18:34:f6: ec:c6:e8:a2:08:21:d8:e6:ea:8e:f8:83:fe:9b:d5: 1f:c5:7b:83:ca:45:0c:ce:c2:09:7b:6b:bf:06:26: 55:09:54:f1:6a:46:84:48:2e:84:c5:51:2b:65:a3: 97:28:47:ac:32:b8:cd:5b:8e:f2:8d:4b:6d:6a:3e: 62:32:ad:b1:38:44:e9:62:3d:54:e2:71:39:8f:be: 63:ee:51:a0:26:2b:2d:b4:52:ee:29:99:db:f8:11: 42:59:03:b2:16:ea:06:dc:d3:9c:a1:e0:56:f5:9e: 49:2d:d7:bc:7b:a1:d1:1c:4d:a1:d5:3f:77:1b:81: c8:eb:b0:ec:e5:64:e8:89:5d:21:10:88:41:29:22: 04:4a:08:e0:ca:fb:71:95:a2:c8:76:c7:b0:c0:41: d2:9e:96:8d:e9:d1:77:36:88:b0:bc:d3:a9:0f:85: 6a:6d:22:36:b7:b7:53:96:56:02:c1:74:07:06:6f: 6c:35:9e:65:40:da:ce:ce:65:83:45:1c:37:4b:bd: bc:04:05:a9:80:45:7c:4b:49:aa:a9:13:cc:73:dc: 5d:d7:d6:b1:55:8f:55:f3:ed:0b:97:58:e0:db:31: ce:00:8e:81:8c:f3:25:c3:ac:2a:34:1a:a7:2f:49: 18:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:0F:92:3A:96:BD:99:AC:94:79:8F:5C:B0:79:77:25:D6:02:DC:34 X509v3 Authority Key Identifier: keyid:80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3130332e37362e3135302e302f32342d3234203d3e20313335343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.76.150.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:ca:ec:eb:87:88:a8:ab:2b:3f:51:9c:d1:87:26:ac:38:b9: 9e:54:60:8c:a7:b7:74:4e:11:04:f1:40:0c:e9:42:ab:c2:a1: 6f:f3:36:66:92:f5:90:87:61:c7:e9:14:e7:f0:ef:7f:97:48: 33:62:35:67:31:46:b7:c9:2f:17:d0:02:92:8f:bd:a3:d8:94: 4f:99:01:c4:d9:60:0b:8e:ac:ef:72:9f:dc:0d:46:5d:bd:bc: 8a:49:6e:79:0c:8b:31:0f:44:89:19:cf:f0:f5:29:8b:fc:be: c4:38:d0:d2:47:1e:01:33:85:54:ab:91:41:95:d6:a4:fc:86: 65:34:7a:6d:ef:d5:71:37:c7:6c:b8:a2:4e:2d:3b:70:7b:9e: fe:c5:e7:f2:d2:88:c3:aa:51:e3:34:4b:4e:41:3d:e9:51:aa: c8:5c:c0:bb:c6:bb:fe:bb:98:d1:4e:88:87:2c:80:8e:ab:17: 82:11:5e:7e:db:a6:90:63:01:af:f0:c4:53:b7:fa:c0:2c:4d: 71:aa:1c:dd:b1:1f:47:da:90:fb:55:d0:30:96:2d:58:cc:06: e6:7b:8e:68:69:13:0c:37:5e:e4:5d:64:87:dc:12:21:e2:11: 91:cc:91:44:ee:f5:f3:49:05:7c:3b:14:0c:c7:dc:09:ea:ff: f4:22:8f:be -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUc6F7zRVb8tb+2XYyum+Ddv4LgIgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5 Qjk0MTBFOTAeFw0yNDEwMTgwNDU1MDFaFw0yNTEwMTcwNTAwMDFaMDMxMTAvBgNV BAMTKEVGMEY5MjNBOTZCRDk5QUM5NDc5OEY1Q0IwNzk3NzI1RDYwMkRDMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCa9Scv+Zpo9XfumBg09uzG6KII Idjm6o74g/6b1R/Fe4PKRQzOwgl7a78GJlUJVPFqRoRILoTFUStlo5coR6wyuM1b jvKNS21qPmIyrbE4ROliPVTicTmPvmPuUaAmKy20Uu4pmdv4EUJZA7IW6gbc05yh 4Fb1nkkt17x7odEcTaHVP3cbgcjrsOzlZOiJXSEQiEEpIgRKCODK+3GVosh2x7DA QdKelo3p0Xc2iLC806kPhWptIja3t1OWVgLBdAcGb2w1nmVA2s7OZYNFHDdLvbwE BamARXxLSaqpE8xz3F3X1rFVj1Xz7QuXWODbMc4AjoGM8yXDrCo0GqcvSRhVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7w+SOpa9mayUeY9csHl3JdYC3DQwHwYDVR0j BBgwFoAUgKV9krjUw/8X5xwDBdmtgpuUEOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h N2ZkZjQzZS00YTRjLTRkYmMtYjc4NS1kZDdjYmYxYTY3YjcvMC84MEE1N0Q5MkI4 RDRDM0ZGMTdFNzFDMDMwNUQ5QUQ4MjlCOTQxMEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5Qjk0 MTBFOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3ZmRmNDNlLTRhNGMtNGRiYy1i Nzg1LWRkN2NiZjFhNjdiNy8wLzMxMzAzMzJlMzczNjJlMzEzNTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0yWMA0GCSqG SIb3DQEBCwUAA4IBAQAuyuzrh4ioqys/UZzRhyasOLmeVGCMp7d0ThEE8UAM6UKr wqFv8zZmkvWQh2HH6RTn8O9/l0gzYjVnMUa3yS8X0AKSj72j2JRPmQHE2WALjqzv cp/cDUZdvbyKSW55DIsxD0SJGc/w9SmL/L7EONDSRx4BM4VUq5FBldak/IZlNHpt 79VxN8dsuKJOLTtwe57+xefy0ojDqlHjNEtOQT3pUarIXMC7xrv+u5jRToiHLICO qxeCEV5+26aQYwGv8MRTt/rALE1xqhzdsR9H2pD7VdAwli1YzAbme45oaRMMN17k XWSH3BIh4hGRzJFE7vXzSQV8OxQMx9wJ6v/0Io++ -----END CERTIFICATE-----Generated at Fri Nov 22 22:21:00 2024 by rpki-client on console-fra.rpki-client.org