$ rpki-client -vvf repo-rpki.idnic.net/repo/d04d6427-3f03-4d21-b8cc-bbfd2a3f8c33/0/3130332e3136342e3133362e302f32332d3234203d3e203137393935.roa File: 3130332e3136342e3133362e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: Lqnr7jHsNW39LjAjC/nZJ0LGz/avbHl/uE7V4U6+3ac= Subject key identifier: 8A:74:3A:B1:A5:1E:3C:57:DC:9C:52:D4:77:D4:B3:71:EE:AC:A3:64 Certificate issuer: /CN=7FD3F92F13241B80062CC31B0EC8A3D129871D90 Certificate serial: 7D377D7B666E9B9E3182C69530100130A8883F34 Authority key identifier: 7F:D3:F9:2F:13:24:1B:80:06:2C:C3:1B:0E:C8:A3:D1:29:87:1D:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7FD3F92F13241B80062CC31B0EC8A3D129871D90.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d04d6427-3f03-4d21-b8cc-bbfd2a3f8c33/0/3130332e3136342e3133362e302f32332d3234203d3e203137393935.roa Signing time: Fri 02 Aug 2024 09:03:06 +0000 ROA not before: Fri 02 Aug 2024 08:58:06 +0000 ROA not after: Fri 01 Aug 2025 09:03:06 +0000 asID: 17995 IP address blocks: 103.164.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d04d6427-3f03-4d21-b8cc-bbfd2a3f8c33/0/7FD3F92F13241B80062CC31B0EC8A3D129871D90.crl rsync://repo-rpki.idnic.net/repo/d04d6427-3f03-4d21-b8cc-bbfd2a3f8c33/0/7FD3F92F13241B80062CC31B0EC8A3D129871D90.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7FD3F92F13241B80062CC31B0EC8A3D129871D90.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 02:32:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:37:7d:7b:66:6e:9b:9e:31:82:c6:95:30:10:01:30:a8:88:3f:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7FD3F92F13241B80062CC31B0EC8A3D129871D90 Validity Not Before: Aug 2 08:58:06 2024 GMT Not After : Aug 1 09:03:06 2025 GMT Subject: CN=8A743AB1A51E3C57DC9C52D477D4B371EEACA364 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:78:84:a2:ba:f8:ca:70:7f:06:a3:be:18:6c: c6:2f:e7:e2:1f:36:6f:13:0b:37:e0:1f:5c:49:3c: 50:9d:60:79:99:ea:e8:f4:c6:15:ba:c9:06:0e:f6: 80:a7:06:98:0d:47:af:b6:83:87:6a:de:e4:c7:aa: 49:a7:a3:24:ab:c1:51:c4:47:53:ff:66:b7:55:98: 65:fd:3a:39:d4:0d:df:8a:5f:1d:9c:a0:58:aa:62: c1:0f:43:46:9a:3a:2f:fe:a7:d0:2c:40:c8:f5:97: 38:d9:da:9b:3b:11:e6:57:77:a3:bc:16:bb:cc:c8: dc:93:de:2a:e6:70:68:89:53:d4:87:89:fa:e0:da: ea:6b:39:e2:c6:52:b6:e0:be:1d:2e:ff:f6:18:15: 91:12:fe:ba:c7:93:00:62:df:28:5b:51:c0:ac:c0: 90:4d:2c:0f:53:4f:f3:cc:dd:62:1c:1f:78:10:06: 32:a3:3e:77:3f:5d:89:f4:10:ef:83:4d:ee:ac:55: 45:9c:81:e9:72:e6:94:c3:e3:2b:15:9e:55:b4:ea: 46:61:76:2e:3a:cd:57:e0:02:87:d7:df:aa:04:8d: de:32:e3:53:f2:d3:d0:0c:8d:78:ca:5f:6d:d1:0b: ee:2d:28:4f:98:eb:db:15:51:ae:de:55:89:89:50: 96:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:74:3A:B1:A5:1E:3C:57:DC:9C:52:D4:77:D4:B3:71:EE:AC:A3:64 X509v3 Authority Key Identifier: keyid:7F:D3:F9:2F:13:24:1B:80:06:2C:C3:1B:0E:C8:A3:D1:29:87:1D:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d04d6427-3f03-4d21-b8cc-bbfd2a3f8c33/0/7FD3F92F13241B80062CC31B0EC8A3D129871D90.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7FD3F92F13241B80062CC31B0EC8A3D129871D90.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d04d6427-3f03-4d21-b8cc-bbfd2a3f8c33/0/3130332e3136342e3133362e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.136.0/23 Signature Algorithm: sha256WithRSAEncryption 68:6f:5f:d0:eb:55:9f:73:c6:a5:be:5b:db:f3:8e:01:19:00: e6:76:2f:65:db:a0:ae:3c:c3:d2:46:bf:9a:3e:97:cc:41:85: b1:b3:2e:07:28:f4:f9:53:08:3a:c2:c7:ab:c9:1c:fb:17:3e: 67:86:c4:7c:56:15:da:fa:ee:20:42:3f:bd:91:0f:94:fd:c9: d1:96:d9:2c:51:78:ec:68:3e:b8:e2:7d:83:11:6a:3a:a0:b1: 89:84:c5:0e:3e:34:24:2d:8a:e2:96:4b:a6:ca:91:66:74:81: 63:ed:f9:eb:34:49:b5:63:1d:10:d8:b7:e5:2e:a7:18:45:9e: a0:2a:c7:1e:9e:5c:2c:cd:a8:bb:86:d1:3a:05:60:98:0e:c9: e4:5e:00:e6:6f:37:99:aa:1a:79:52:d3:69:aa:e0:01:6b:e7: 90:11:94:36:a8:72:ae:5c:31:63:02:0f:30:72:77:90:83:04: ea:3e:fd:b5:d8:f8:80:4d:ba:3e:3e:d8:b0:de:82:ed:9f:8e: a5:f0:a4:9d:5c:70:97:57:9d:73:b5:8e:ca:19:ca:f4:75:3e: 53:6f:ac:13:a8:6f:3f:59:2c:99:98:ad:c7:7e:18:63:bb:fc: 44:13:02:90:a5:16:fa:dd:a4:36:e0:ad:fc:b7:22:3d:d3:c8: b1:3b:11:2f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfTd9e2Zum54xgsaVMBABMKiIPzQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0ZEM0Y5MkYxMzI0MUI4MDA2MkNDMzFCMEVDOEEzRDEy OTg3MUQ5MDAeFw0yNDA4MDIwODU4MDZaFw0yNTA4MDEwOTAzMDZaMDMxMTAvBgNV BAMTKDhBNzQzQUIxQTUxRTNDNTdEQzlDNTJENDc3RDRCMzcxRUVBQ0EzNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0eISiuvjKcH8Go74YbMYv5+If Nm8TCzfgH1xJPFCdYHmZ6uj0xhW6yQYO9oCnBpgNR6+2g4dq3uTHqkmnoySrwVHE R1P/ZrdVmGX9OjnUDd+KXx2coFiqYsEPQ0aaOi/+p9AsQMj1lzjZ2ps7EeZXd6O8 FrvMyNyT3irmcGiJU9SHifrg2uprOeLGUrbgvh0u//YYFZES/rrHkwBi3yhbUcCs wJBNLA9TT/PM3WIcH3gQBjKjPnc/XYn0EO+DTe6sVUWcgely5pTD4ysVnlW06kZh di46zVfgAofX36oEjd4y41Py09AMjXjKX23RC+4tKE+Y69sVUa7eVYmJUJaBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUinQ6saUePFfcnFLUd9Szce6so2QwHwYDVR0j BBgwFoAUf9P5LxMkG4AGLMMbDsij0SmHHZAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDRkNjQyNy0zZjAzLTRkMjEtYjhjYy1iYmZkMmEzZjhjMzMvMC83RkQzRjkyRjEz MjQxQjgwMDYyQ0MzMUIwRUM4QTNEMTI5ODcxRDkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0ZEM0Y5MkYxMzI0MUI4MDA2MkNDMzFCMEVDOEEzRDEyOTg3 MUQ5MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNGQ2NDI3LTNmMDMtNGQyMS1i OGNjLWJiZmQyYTNmOGMzMy8wLzMxMzAzMzJlMzEzNjM0MmUzMTMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzkzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6SIMA0GCSqG SIb3DQEBCwUAA4IBAQBob1/Q61Wfc8alvlvb844BGQDmdi9l26CuPMPSRr+aPpfM QYWxsy4HKPT5Uwg6wseryRz7Fz5nhsR8VhXa+u4gQj+9kQ+U/cnRltksUXjsaD64 4n2DEWo6oLGJhMUOPjQkLYrilkumypFmdIFj7fnrNEm1Yx0Q2LflLqcYRZ6gKsce nlwszai7htE6BWCYDsnkXgDmbzeZqhp5UtNpquABa+eQEZQ2qHKuXDFjAg8wcneQ gwTqPv212PiATbo+Ptiw3oLtn46l8KSdXHCXV51ztY7KGcr0dT5Tb6wTqG8/WSyZ mK3Hfhhju/xEEwKQpRb63aQ24K38tyI908ixOxEv -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:49 2024 by rpki-client on console-ams.rpki-client.org