$ rpki-client -vvf repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3130332e37362e3135312e302f32342d3234203d3e20313335343737.roa File: 3130332e37362e3135312e302f32342d3234203d3e20313335343737.roa (raw, json) Hash identifier: oI85Nkz5/CMZA7k3SxUQ6Xmc+24Tvrh8kDV6p9ogj1M= Subject key identifier: 56:6E:13:92:41:7E:96:A9:16:22:53:FA:EC:9E:86:B0:11:DF:DC:8E Certificate issuer: /CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Certificate serial: 2905233C3C3DD4578BF8D91D4255EDECCD86358F Authority key identifier: 80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3130332e37362e3135312e302f32342d3234203d3e20313335343737.roa Signing time: Thu 20 Jun 2024 06:00:01 +0000 ROA not before: Thu 20 Jun 2024 05:55:01 +0000 ROA not after: Thu 19 Jun 2025 06:00:01 +0000 asID: 135477 IP address blocks: 103.76.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:05:23:3c:3c:3d:d4:57:8b:f8:d9:1d:42:55:ed:ec:cd:86:35:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Validity Not Before: Jun 20 05:55:01 2024 GMT Not After : Jun 19 06:00:01 2025 GMT Subject: CN=566E1392417E96A9162253FAEC9E86B011DFDC8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c5:1e:4d:28:47:1c:23:6f:ae:f0:8d:62:0c: 2c:32:ac:d4:10:9c:1b:59:b7:6d:55:d6:c3:0b:ea: 79:54:60:c6:0d:fb:ef:ec:cd:d4:01:72:2a:b4:5a: 22:4d:6f:c7:5b:4b:f1:2f:38:cf:73:96:e5:90:cd: f5:3e:71:0e:d2:4d:d3:1d:80:fb:f7:17:23:48:9a: 87:3d:9f:53:07:63:12:76:75:0c:05:5f:3d:c4:16: 5c:24:fb:be:09:1d:03:cc:92:48:7f:09:1f:39:f5: fa:0b:96:9a:6a:be:85:05:17:e7:20:8b:ea:10:62: f8:92:56:a1:8a:1a:ef:bc:5e:a2:e5:92:90:e0:48: 59:50:7c:4a:b7:38:e2:c7:a6:29:8c:9a:37:8d:99: 1f:4a:e8:40:e4:cd:d4:d9:3f:4f:70:9e:a8:7a:a1: 5c:6a:19:b8:f5:c1:79:1a:2a:54:6e:1c:c0:0d:fb: 7e:be:fa:71:b5:4e:91:d0:46:51:54:af:7c:24:76: a1:76:5b:e0:c9:dc:66:ce:a3:09:1a:08:19:c6:93: 26:88:d2:03:a3:dc:b9:5b:47:31:f7:0e:b4:5d:60: 70:a5:de:b7:ef:18:d6:06:00:f4:02:93:6b:5b:cd: 18:0d:c7:79:7b:dc:02:b6:75:95:38:29:70:8d:86: 1c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:6E:13:92:41:7E:96:A9:16:22:53:FA:EC:9E:86:B0:11:DF:DC:8E X509v3 Authority Key Identifier: keyid:80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3130332e37362e3135312e302f32342d3234203d3e20313335343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.76.151.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:4c:de:1b:bc:0a:da:c6:83:0b:bf:79:be:7c:03:37:2f:c1: 30:c0:e1:07:34:fd:7c:55:ba:cd:ee:ba:bc:83:66:56:fe:a6: 88:79:99:74:7d:53:12:cb:df:8a:7e:e7:48:71:88:91:26:88: 45:61:fc:b2:3f:e3:c4:8a:f9:4a:18:a8:6e:5f:2c:62:d6:5c: 61:56:ca:ee:d6:9d:b5:30:b5:a0:b2:97:da:da:7a:f0:9c:e9: 33:77:e5:6b:40:62:4d:03:7a:bd:72:ef:f7:47:7d:21:f3:fd: 44:b5:86:4f:f7:51:48:47:eb:c0:1d:a9:fb:11:8c:e6:af:2b: 25:51:76:28:92:3d:71:d6:ec:95:6c:1f:7e:1b:47:bb:01:88: 2e:fa:df:43:27:ca:d5:9d:a1:7c:52:f1:d6:87:05:63:17:6b: 1f:11:0f:34:2d:ac:e9:e7:94:0d:52:56:a5:4c:a1:bc:d5:f4: e0:08:dc:20:a6:c8:8e:85:03:4e:bd:ba:7b:ba:8b:50:f5:6d: 03:1a:d0:63:fb:60:65:2d:4c:da:b6:15:04:5b:e5:90:94:89: af:4e:72:f0:4b:ec:ff:bb:41:81:c6:c2:e3:2e:b2:98:04:fb: 6c:88:b6:01:4a:53:63:cf:3d:7c:73:26:98:ec:7a:6f:14:a9: dd:f3:72:4e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKQUjPDw91FeL+NkdQlXt7M2GNY8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5 Qjk0MTBFOTAeFw0yNDA2MjAwNTU1MDFaFw0yNTA2MTkwNjAwMDFaMDMxMTAvBgNV BAMTKDU2NkUxMzkyNDE3RTk2QTkxNjIyNTNGQUVDOUU4NkIwMTFERkRDOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCxR5NKEccI2+u8I1iDCwyrNQQ nBtZt21V1sML6nlUYMYN++/szdQBciq0WiJNb8dbS/EvOM9zluWQzfU+cQ7STdMd gPv3FyNImoc9n1MHYxJ2dQwFXz3EFlwk+74JHQPMkkh/CR859foLlppqvoUFF+cg i+oQYviSVqGKGu+8XqLlkpDgSFlQfEq3OOLHpimMmjeNmR9K6EDkzdTZP09wnqh6 oVxqGbj1wXkaKlRuHMAN+36++nG1TpHQRlFUr3wkdqF2W+DJ3GbOowkaCBnGkyaI 0gOj3LlbRzH3DrRdYHCl3rfvGNYGAPQCk2tbzRgNx3l73AK2dZU4KXCNhhzFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVm4TkkF+lqkWIlP67J6GsBHf3I4wHwYDVR0j BBgwFoAUgKV9krjUw/8X5xwDBdmtgpuUEOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h N2ZkZjQzZS00YTRjLTRkYmMtYjc4NS1kZDdjYmYxYTY3YjcvMC84MEE1N0Q5MkI4 RDRDM0ZGMTdFNzFDMDMwNUQ5QUQ4MjlCOTQxMEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5Qjk0 MTBFOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3ZmRmNDNlLTRhNGMtNGRiYy1i Nzg1LWRkN2NiZjFhNjdiNy8wLzMxMzAzMzJlMzczNjJlMzEzNTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0yXMA0GCSqG SIb3DQEBCwUAA4IBAQBqTN4bvAraxoMLv3m+fAM3L8EwwOEHNP18VbrN7rq8g2ZW /qaIeZl0fVMSy9+KfudIcYiRJohFYfyyP+PEivlKGKhuXyxi1lxhVsru1p21MLWg spfa2nrwnOkzd+VrQGJNA3q9cu/3R30h8/1EtYZP91FIR+vAHan7EYzmryslUXYo kj1x1uyVbB9+G0e7AYgu+t9DJ8rVnaF8UvHWhwVjF2sfEQ80Lazp55QNUlalTKG8 1fTgCNwgpsiOhQNOvbp7uotQ9W0DGtBj+2BlLUzathUEW+WQlImvTnLwS+z/u0GB xsLjLrKYBPtsiLYBSlNjzz18cyaY7HpvFKnd83JO -----END CERTIFICATE-----Generated at Fri Nov 22 22:09:43 2024 by rpki-client on console-ams.rpki-client.org