$ rpki-client -vvf repo-rpki.idnic.net/repo/aee2088a-c9ff-4d84-be4e-141d5b80b543/0/3130332e37362e3130372e302f32342d3234203d3e20313531353737.roa File: 3130332e37362e3130372e302f32342d3234203d3e20313531353737.roa (raw, json) Hash identifier: UhTnOZ0eR4pV0pc2TNTMXOcqZMm3I9KiGgwKvyJXQRE= Subject key identifier: 32:F5:59:8E:F3:73:DB:81:CF:E1:31:EC:68:74:65:C1:C4:8A:DB:DF Certificate issuer: /CN=42467B1885830A9908EAE67935311639B090AA77 Certificate serial: 27BB751814A8F2D1767A4ECB9CAE8446370C3833 Authority key identifier: 42:46:7B:18:85:83:0A:99:08:EA:E6:79:35:31:16:39:B0:90:AA:77 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42467B1885830A9908EAE67935311639B090AA77.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aee2088a-c9ff-4d84-be4e-141d5b80b543/0/3130332e37362e3130372e302f32342d3234203d3e20313531353737.roa Signing time: Fri 20 Sep 2024 02:00:01 +0000 ROA not before: Fri 20 Sep 2024 01:55:01 +0000 ROA not after: Fri 19 Sep 2025 02:00:01 +0000 asID: 151577 IP address blocks: 103.76.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aee2088a-c9ff-4d84-be4e-141d5b80b543/0/42467B1885830A9908EAE67935311639B090AA77.crl rsync://repo-rpki.idnic.net/repo/aee2088a-c9ff-4d84-be4e-141d5b80b543/0/42467B1885830A9908EAE67935311639B090AA77.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42467B1885830A9908EAE67935311639B090AA77.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:bb:75:18:14:a8:f2:d1:76:7a:4e:cb:9c:ae:84:46:37:0c:38:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42467B1885830A9908EAE67935311639B090AA77 Validity Not Before: Sep 20 01:55:01 2024 GMT Not After : Sep 19 02:00:01 2025 GMT Subject: CN=32F5598EF373DB81CFE131EC687465C1C48ADBDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9e:17:91:e8:01:e0:2a:c1:40:64:c6:c3:8b: b4:71:f0:df:37:4a:40:46:9d:89:a7:5d:03:2e:14: af:46:27:4a:6e:b3:84:a2:80:ca:2a:fc:70:69:ad: 1f:ed:ae:af:87:28:70:b4:9d:f0:c3:9a:59:3e:70: 5e:77:4d:85:38:13:b8:cd:34:b5:66:f4:6c:aa:98: 77:0c:08:12:87:94:e0:5e:dd:a4:5e:eb:82:3d:81: c1:83:cb:ac:d0:2a:96:00:92:2e:3f:6c:7e:dd:7d: 39:e8:79:56:5c:fd:0e:79:c2:2f:d9:b6:3a:6c:e6: 9a:26:c4:0d:96:f3:73:12:b3:37:dc:c5:c5:34:91: 27:d9:b8:81:21:45:eb:88:f6:94:1a:7c:27:51:3b: c5:49:d6:25:3c:51:6a:e3:cf:8f:77:c1:3d:65:8b: 48:b8:29:a4:84:7f:73:0f:49:d3:7c:5c:44:ef:f6: bc:15:86:54:8d:94:cf:5e:40:80:32:7e:4f:ab:99: e0:a6:ce:d0:eb:be:53:43:40:f3:ae:80:92:0a:ef: ce:f6:b7:21:98:d3:8d:a7:e1:1b:50:5c:80:f0:0a: 26:53:2c:cc:87:f0:7c:c1:c9:d0:31:c3:3b:30:b2: 1b:be:86:71:38:72:b1:36:f3:84:9b:35:39:a2:9e: 5a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:F5:59:8E:F3:73:DB:81:CF:E1:31:EC:68:74:65:C1:C4:8A:DB:DF X509v3 Authority Key Identifier: keyid:42:46:7B:18:85:83:0A:99:08:EA:E6:79:35:31:16:39:B0:90:AA:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aee2088a-c9ff-4d84-be4e-141d5b80b543/0/42467B1885830A9908EAE67935311639B090AA77.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42467B1885830A9908EAE67935311639B090AA77.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aee2088a-c9ff-4d84-be4e-141d5b80b543/0/3130332e37362e3130372e302f32342d3234203d3e20313531353737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.76.107.0/24 Signature Algorithm: sha256WithRSAEncryption 18:77:b3:92:b4:cb:c2:e5:3c:dc:8e:14:02:31:23:88:c1:a7: 5c:30:4b:1c:62:4b:aa:30:b0:7d:b7:4a:a6:ba:3e:1a:33:ff: f2:a5:c6:6a:e7:91:cd:e0:5b:2a:28:2f:a2:55:a2:75:fa:53: a5:36:60:a9:b8:7f:ce:4d:75:be:51:09:38:9b:f4:15:45:2a: 49:e4:ea:b3:ca:73:0f:6f:e8:45:46:d6:83:3e:d7:2d:d7:a3: 43:86:37:2e:18:2a:89:49:75:b8:4c:6e:08:d1:00:c2:63:58: 1f:89:b1:1b:b2:d2:bf:e9:2c:c9:2f:ec:26:af:58:ad:8a:48: 10:14:5c:65:1d:35:13:57:01:28:d8:3a:e7:64:b4:76:42:9f: 18:01:6f:47:6d:32:96:1d:88:f2:66:77:1e:74:be:f8:18:83: 1a:a6:4a:0a:4b:37:0f:95:2d:92:b5:93:77:38:4d:ba:a7:f9: 07:b5:fd:7b:44:e0:da:6b:35:5c:65:f5:f8:9c:ce:bb:21:6c: a1:e8:34:01:9a:13:7d:35:3e:d5:e6:04:8f:71:a9:90:2e:82: a1:b3:af:ef:25:00:6a:f3:a0:ac:d8:bb:4a:97:b8:20:98:84: da:75:88:9c:ff:7b:de:16:50:23:5a:f4:ad:57:fc:fe:4a:0a: 06:24:c1:0e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJ7t1GBSo8tF2ek7LnK6ERjcMODMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI0NjdCMTg4NTgzMEE5OTA4RUFFNjc5MzUzMTE2MzlC MDkwQUE3NzAeFw0yNDA5MjAwMTU1MDFaFw0yNTA5MTkwMjAwMDFaMDMxMTAvBgNV BAMTKDMyRjU1OThFRjM3M0RCODFDRkUxMzFFQzY4NzQ2NUMxQzQ4QURCREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEnheR6AHgKsFAZMbDi7Rx8N83 SkBGnYmnXQMuFK9GJ0pus4SigMoq/HBprR/trq+HKHC0nfDDmlk+cF53TYU4E7jN NLVm9GyqmHcMCBKHlOBe3aRe64I9gcGDy6zQKpYAki4/bH7dfTnoeVZc/Q55wi/Z tjps5pomxA2W83MSszfcxcU0kSfZuIEhReuI9pQafCdRO8VJ1iU8UWrjz493wT1l i0i4KaSEf3MPSdN8XETv9rwVhlSNlM9eQIAyfk+rmeCmztDrvlNDQPOugJIK7872 tyGY042n4RtQXIDwCiZTLMyH8HzBydAxwzswshu+hnE4crE284SbNTminlrVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMvVZjvNz24HP4THsaHRlwcSK298wHwYDVR0j BBgwFoAUQkZ7GIWDCpkI6uZ5NTEWObCQqncwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWUyMDg4YS1jOWZmLTRkODQtYmU0ZS0xNDFkNWI4MGI1NDMvMC80MjQ2N0IxODg1 ODMwQTk5MDhFQUU2NzkzNTMxMTYzOUIwOTBBQTc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI0NjdCMTg4NTgzMEE5OTA4RUFFNjc5MzUzMTE2MzlCMDkw QUE3Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlZTIwODhhLWM5ZmYtNGQ4NC1i ZTRlLTE0MWQ1YjgwYjU0My8wLzMxMzAzMzJlMzczNjJlMzEzMDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0xrMA0GCSqG SIb3DQEBCwUAA4IBAQAYd7OStMvC5TzcjhQCMSOIwadcMEscYkuqMLB9t0qmuj4a M//ypcZq55HN4FsqKC+iVaJ1+lOlNmCpuH/OTXW+UQk4m/QVRSpJ5OqzynMPb+hF RtaDPtct16NDhjcuGCqJSXW4TG4I0QDCY1gfibEbstK/6SzJL+wmr1itikgQFFxl HTUTVwEo2DrnZLR2Qp8YAW9HbTKWHYjyZncedL74GIMapkoKSzcPlS2StZN3OE26 p/kHtf17RODaazVcZfX4nM67IWyh6DQBmhN9NT7V5gSPcamQLoKhs6/vJQBq86Cs 2LtKl7ggmITadYic/3veFlAjWvStV/z+SgoGJMEO -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:46 2024 by rpki-client on console-ams.rpki-client.org