$ rpki-client -vvf repo-rpki.idnic.net/repo/d720ce76-db75-4651-85b0-0bfb18e0b175/0/3130332e37362e3130362e302f32332d3234203d3e20313531353737.roa File: 3130332e37362e3130362e302f32332d3234203d3e20313531353737.roa (raw, json) Hash identifier: Bgq9djdGRWa0IT5wEzsKAdJemXM6oCneYE8PgqaY6vE= Subject key identifier: 10:61:B8:3D:30:18:0A:CF:27:55:56:E3:5A:F6:57:62:4F:5F:6C:A1 Certificate issuer: /CN=00C1EB3BEE971CEAB531D756361F934BE0179628 Certificate serial: 1CFAF20DEA0D90ECFAAE598E9BB401141F3984D2 Authority key identifier: 00:C1:EB:3B:EE:97:1C:EA:B5:31:D7:56:36:1F:93:4B:E0:17:96:28 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00C1EB3BEE971CEAB531D756361F934BE0179628.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d720ce76-db75-4651-85b0-0bfb18e0b175/0/3130332e37362e3130362e302f32332d3234203d3e20313531353737.roa Signing time: Thu 22 Aug 2024 15:44:15 +0000 ROA not before: Thu 22 Aug 2024 15:39:15 +0000 ROA not after: Thu 21 Aug 2025 15:44:15 +0000 asID: 151577 IP address blocks: 103.76.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d720ce76-db75-4651-85b0-0bfb18e0b175/0/00C1EB3BEE971CEAB531D756361F934BE0179628.crl rsync://repo-rpki.idnic.net/repo/d720ce76-db75-4651-85b0-0bfb18e0b175/0/00C1EB3BEE971CEAB531D756361F934BE0179628.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00C1EB3BEE971CEAB531D756361F934BE0179628.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 05:17:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:fa:f2:0d:ea:0d:90:ec:fa:ae:59:8e:9b:b4:01:14:1f:39:84:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00C1EB3BEE971CEAB531D756361F934BE0179628 Validity Not Before: Aug 22 15:39:15 2024 GMT Not After : Aug 21 15:44:15 2025 GMT Subject: CN=1061B83D30180ACF275556E35AF657624F5F6CA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3f:06:4b:22:11:84:83:25:ca:1c:ae:33:5c: 97:7a:97:0f:0e:95:09:9d:5d:7a:2b:d8:65:d2:f4: 3a:98:7e:27:b7:f2:a5:35:00:7c:e4:5d:02:cf:fc: a7:a7:c8:2c:2e:45:62:c4:99:bc:4f:98:ba:ad:c5: 44:e0:f9:4b:89:56:65:09:85:32:6f:1a:2b:3f:ad: 19:c8:6c:8f:bb:62:b8:ce:0c:8e:de:e8:4f:c5:69: 76:08:9b:59:01:1a:d5:cc:39:4d:c7:70:3f:09:48: 57:01:7f:eb:bf:83:5f:b6:9b:ea:ed:a2:84:75:93: 87:d9:13:8b:33:0e:66:00:19:bf:88:43:56:76:2c: fd:01:eb:cd:34:a5:e7:1b:c6:62:6c:97:db:31:86: 2b:d3:86:d1:65:49:95:b3:03:d5:b8:97:69:b9:4f: 98:e7:0d:1b:03:0e:9a:b9:ad:3f:78:88:0a:98:3c: e4:0a:b8:d8:1d:cc:f2:69:50:88:41:88:e2:5a:43: 21:e9:5c:e2:8b:cf:30:36:5e:cb:3b:be:9f:f0:07: 56:bd:c7:19:a1:73:18:84:aa:41:77:27:1e:c2:36: 17:09:90:70:e3:a9:a5:0f:67:97:83:fe:60:a8:de: fd:3c:38:a2:0b:1d:89:22:c5:5f:30:d0:15:10:ee: b2:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:61:B8:3D:30:18:0A:CF:27:55:56:E3:5A:F6:57:62:4F:5F:6C:A1 X509v3 Authority Key Identifier: keyid:00:C1:EB:3B:EE:97:1C:EA:B5:31:D7:56:36:1F:93:4B:E0:17:96:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d720ce76-db75-4651-85b0-0bfb18e0b175/0/00C1EB3BEE971CEAB531D756361F934BE0179628.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00C1EB3BEE971CEAB531D756361F934BE0179628.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d720ce76-db75-4651-85b0-0bfb18e0b175/0/3130332e37362e3130362e302f32332d3234203d3e20313531353737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.76.106.0/23 Signature Algorithm: sha256WithRSAEncryption 77:ad:38:40:d5:c9:4d:4c:4a:1b:08:37:93:06:eb:de:8a:f2: 5a:57:35:c9:d8:85:30:1c:b5:0e:8a:72:ab:18:41:8f:d7:3f: b7:ce:ed:3a:f2:d5:25:3a:e9:ae:6e:38:51:82:a9:26:72:0d: df:8b:5c:35:21:83:36:f7:f0:e7:a6:11:f1:c4:a1:64:4d:02: b5:f7:28:b9:82:d3:82:6a:c0:ab:d7:67:b7:59:df:0a:81:d3: c0:f0:71:86:3a:fa:5d:99:ae:7e:72:7b:56:88:9e:4c:e6:d3: 8e:19:25:c0:70:14:7a:a9:3d:df:7b:fe:06:de:e7:1a:f4:8e: 23:93:5a:f1:0e:58:22:3d:2a:a3:1f:de:0a:d0:23:64:02:1d: 99:bf:ee:06:a9:fe:b9:69:30:df:7e:2d:bc:f3:24:a3:05:29: 59:80:ba:fd:9d:81:22:85:16:1a:58:0b:0c:12:dc:f7:0c:10: df:fb:66:da:42:11:59:76:38:be:85:7c:be:cc:82:53:43:8e: b8:a9:49:a4:c7:2c:6d:b1:f8:0c:59:47:0f:07:01:9c:65:f4: 1e:cc:e3:29:85:35:de:e4:c6:8e:74:06:f5:6f:4c:9f:58:a5: 0a:9a:28:e0:a7:da:d9:14:b9:8d:c9:2d:58:09:fd:24:31:d3: 4a:bc:f4:14 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHPryDeoNkOz6rlmOm7QBFB85hNIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBDMUVCM0JFRTk3MUNFQUI1MzFENzU2MzYxRjkzNEJF MDE3OTYyODAeFw0yNDA4MjIxNTM5MTVaFw0yNTA4MjExNTQ0MTVaMDMxMTAvBgNV BAMTKDEwNjFCODNEMzAxODBBQ0YyNzU1NTZFMzVBRjY1NzYyNEY1RjZDQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJPwZLIhGEgyXKHK4zXJd6lw8O lQmdXXor2GXS9DqYfie38qU1AHzkXQLP/KenyCwuRWLEmbxPmLqtxUTg+UuJVmUJ hTJvGis/rRnIbI+7YrjODI7e6E/FaXYIm1kBGtXMOU3HcD8JSFcBf+u/g1+2m+rt ooR1k4fZE4szDmYAGb+IQ1Z2LP0B6800pecbxmJsl9sxhivThtFlSZWzA9W4l2m5 T5jnDRsDDpq5rT94iAqYPOQKuNgdzPJpUIhBiOJaQyHpXOKLzzA2Xss7vp/wB1a9 xxmhcxiEqkF3Jx7CNhcJkHDjqaUPZ5eD/mCo3v08OKILHYkixV8w0BUQ7rKNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEGG4PTAYCs8nVVbjWvZXYk9fbKEwHwYDVR0j BBgwFoAUAMHrO+6XHOq1MddWNh+TS+AXligwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NzIwY2U3Ni1kYjc1LTQ2NTEtODViMC0wYmZiMThlMGIxNzUvMC8wMEMxRUIzQkVF OTcxQ0VBQjUzMUQ3NTYzNjFGOTM0QkUwMTc5NjI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBDMUVCM0JFRTk3MUNFQUI1MzFENzU2MzYxRjkzNEJFMDE3 OTYyOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q3MjBjZTc2LWRiNzUtNDY1MS04 NWIwLTBiZmIxOGUwYjE3NS8wLzMxMzAzMzJlMzczNjJlMzEzMDM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzNzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ0xqMA0GCSqG SIb3DQEBCwUAA4IBAQB3rThA1clNTEobCDeTBuveivJaVzXJ2IUwHLUOinKrGEGP 1z+3zu068tUlOumubjhRgqkmcg3fi1w1IYM29/DnphHxxKFkTQK19yi5gtOCasCr 12e3Wd8KgdPA8HGGOvpdma5+cntWiJ5M5tOOGSXAcBR6qT3fe/4G3uca9I4jk1rx DlgiPSqjH94K0CNkAh2Zv+4Gqf65aTDffi288ySjBSlZgLr9nYEihRYaWAsMEtz3 DBDf+2baQhFZdji+hXy+zIJTQ464qUmkxyxtsfgMWUcPBwGcZfQezOMphTXe5MaO dAb1b0yfWKUKmijgp9rZFLmNyS1YCf0kMdNKvPQU -----END CERTIFICATE-----Generated at Sat Nov 23 03:54:23 2024 by rpki-client on console-ams.rpki-client.org