$ rpki-client -vvf repo-rpki.idnic.net/repo/dfd4f869-4db6-4b0a-aab6-cde47b447d77/0/3130332e39352e32332e302f32342d3234203d3e20313530353537.roa File: 3130332e39352e32332e302f32342d3234203d3e20313530353537.roa (raw, json) Hash identifier: 8PZn2glxpjPzMwOpViBPOITwulhHCfAKIDoTjo8rwUo= Subject key identifier: 8D:FF:D9:77:4A:7C:6C:C1:65:83:14:DC:5E:EE:F7:34:EC:FF:20:2B Certificate issuer: /CN=B70CD666995822F32C04E09AFF01B2D4CBAA9910 Certificate serial: 304660E8B301CC76B415080670391C28D6825448 Authority key identifier: B7:0C:D6:66:99:58:22:F3:2C:04:E0:9A:FF:01:B2:D4:CB:AA:99:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B70CD666995822F32C04E09AFF01B2D4CBAA9910.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfd4f869-4db6-4b0a-aab6-cde47b447d77/0/3130332e39352e32332e302f32342d3234203d3e20313530353537.roa Signing time: Tue 15 Oct 2024 16:00:01 +0000 ROA not before: Tue 15 Oct 2024 15:55:01 +0000 ROA not after: Tue 14 Oct 2025 16:00:01 +0000 asID: 150557 IP address blocks: 103.95.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfd4f869-4db6-4b0a-aab6-cde47b447d77/0/B70CD666995822F32C04E09AFF01B2D4CBAA9910.crl rsync://repo-rpki.idnic.net/repo/dfd4f869-4db6-4b0a-aab6-cde47b447d77/0/B70CD666995822F32C04E09AFF01B2D4CBAA9910.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B70CD666995822F32C04E09AFF01B2D4CBAA9910.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 04:57:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:46:60:e8:b3:01:cc:76:b4:15:08:06:70:39:1c:28:d6:82:54:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B70CD666995822F32C04E09AFF01B2D4CBAA9910 Validity Not Before: Oct 15 15:55:01 2024 GMT Not After : Oct 14 16:00:01 2025 GMT Subject: CN=8DFFD9774A7C6CC1658314DC5EEEF734ECFF202B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:05:52:10:e8:f3:71:86:2f:c8:4d:84:aa:6f: d5:bc:a3:52:18:69:d9:38:a7:4f:c0:68:27:38:0c: 6f:51:71:21:88:18:19:4f:bd:54:7d:c8:cd:de:13: 3b:69:16:9a:1b:66:6f:73:fe:e7:c6:62:6b:6a:7e: 72:ef:49:06:c6:3a:1d:73:96:5a:d9:81:5d:c8:e1: e0:b3:63:5c:9f:02:2c:c1:f2:28:ff:de:f5:f8:bc: c9:f3:cd:7c:d3:76:17:07:2a:85:f2:ec:e3:69:d0: 8b:db:e9:2f:54:4a:c7:41:f3:69:fb:5d:dc:b1:29: a6:c4:eb:9d:2c:11:9d:05:c4:e9:dc:8f:ca:a8:11: f7:69:91:65:57:c2:af:dc:2b:1e:78:70:9a:99:07: de:6f:37:cc:16:fa:6e:47:d8:ab:bd:d2:9d:3b:76: 7e:90:c6:91:1f:b2:cb:90:4b:4b:1e:c1:e0:39:a2: 08:27:ed:90:25:bf:1a:68:4d:63:02:93:df:5d:45: a1:4e:9f:b4:9a:1d:90:80:0a:d0:9e:59:04:24:63: 98:23:8e:3f:f1:81:fb:e8:75:67:7b:89:dd:78:be: 0b:55:33:f4:7b:e9:68:ba:f9:08:f4:94:cd:08:18: 78:59:11:fa:16:cd:3c:87:3e:36:90:cc:37:04:81: 8f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:FF:D9:77:4A:7C:6C:C1:65:83:14:DC:5E:EE:F7:34:EC:FF:20:2B X509v3 Authority Key Identifier: keyid:B7:0C:D6:66:99:58:22:F3:2C:04:E0:9A:FF:01:B2:D4:CB:AA:99:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfd4f869-4db6-4b0a-aab6-cde47b447d77/0/B70CD666995822F32C04E09AFF01B2D4CBAA9910.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B70CD666995822F32C04E09AFF01B2D4CBAA9910.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfd4f869-4db6-4b0a-aab6-cde47b447d77/0/3130332e39352e32332e302f32342d3234203d3e20313530353537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.95.23.0/24 Signature Algorithm: sha256WithRSAEncryption 96:0b:a9:ba:69:e6:8f:89:55:06:a4:98:93:f2:79:20:9e:ac: e4:b3:d5:ee:63:58:d5:01:f6:68:db:94:6e:62:6a:1b:09:95: 02:55:61:84:b9:4d:35:2f:cb:4a:32:ad:2b:fb:1a:e1:d3:64: c7:80:e6:05:f2:66:4f:51:9d:f9:dd:19:18:42:f3:76:4e:d6: 13:b0:30:ed:55:2d:62:54:d1:92:65:ec:b4:17:bc:19:a4:2d: c5:9d:3e:a0:f9:0d:0d:75:5e:01:dd:96:25:82:7f:27:f1:97: b7:48:97:a1:5a:ca:fd:cb:c0:16:b2:fb:70:e6:2b:6f:bb:3d: 02:cf:06:fc:f6:95:9a:e4:b0:02:3c:70:96:34:dc:82:03:4f: d8:45:d3:74:9b:9a:1f:7a:02:96:ef:b3:46:8e:81:d7:56:4c: 43:1b:a0:ac:34:72:a8:12:2a:cd:43:12:eb:5c:d9:32:5b:72: 68:7a:e8:ad:af:6a:5d:00:13:06:0e:1d:2f:d3:00:fa:c1:76: 96:fc:9c:b0:73:df:cf:ce:c9:ef:be:2e:3c:71:24:95:a5:2f: 00:ae:57:86:d0:5f:f8:cd:db:e1:14:ee:c1:a5:a7:66:54:4c: ae:a1:96:ae:59:a7:98:d8:dc:67:96:69:ae:d7:e7:fc:fd:62: 55:d4:22:43 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMEZg6LMBzHa0FQgGcDkcKNaCVEgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjcwQ0Q2NjY5OTU4MjJGMzJDMDRFMDlBRkYwMUIyRDRD QkFBOTkxMDAeFw0yNDEwMTUxNTU1MDFaFw0yNTEwMTQxNjAwMDFaMDMxMTAvBgNV BAMTKDhERkZEOTc3NEE3QzZDQzE2NTgzMTREQzVFRUVGNzM0RUNGRjIwMkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnBVIQ6PNxhi/ITYSqb9W8o1IY adk4p0/AaCc4DG9RcSGIGBlPvVR9yM3eEztpFpobZm9z/ufGYmtqfnLvSQbGOh1z llrZgV3I4eCzY1yfAizB8ij/3vX4vMnzzXzTdhcHKoXy7ONp0Ivb6S9USsdB82n7 XdyxKabE650sEZ0FxOncj8qoEfdpkWVXwq/cKx54cJqZB95vN8wW+m5H2Ku90p07 dn6QxpEfssuQS0seweA5oggn7ZAlvxpoTWMCk99dRaFOn7SaHZCACtCeWQQkY5gj jj/xgfvodWd7id14vgtVM/R76Wi6+Qj0lM0IGHhZEfoWzTyHPjaQzDcEgY+zAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjf/Zd0p8bMFlgxTcXu73NOz/ICswHwYDVR0j BBgwFoAUtwzWZplYIvMsBOCa/wGy1MuqmRAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmQ0Zjg2OS00ZGI2LTRiMGEtYWFiNi1jZGU0N2I0NDdkNzcvMC9CNzBDRDY2Njk5 NTgyMkYzMkMwNEUwOUFGRjAxQjJENENCQUE5OTEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjcwQ0Q2NjY5OTU4MjJGMzJDMDRFMDlBRkYwMUIyRDRDQkFB OTkxMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmZDRmODY5LTRkYjYtNGIwYS1h YWI2LWNkZTQ3YjQ0N2Q3Ny8wLzMxMzAzMzJlMzkzNTJlMzIzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDM1MzUzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdfFzANBgkqhkiG 9w0BAQsFAAOCAQEAlgupumnmj4lVBqSYk/J5IJ6s5LPV7mNY1QH2aNuUbmJqGwmV AlVhhLlNNS/LSjKtK/sa4dNkx4DmBfJmT1Gd+d0ZGELzdk7WE7Aw7VUtYlTRkmXs tBe8GaQtxZ0+oPkNDXVeAd2WJYJ/J/GXt0iXoVrK/cvAFrL7cOYrb7s9As8G/PaV muSwAjxwljTcggNP2EXTdJuaH3oClu+zRo6B11ZMQxugrDRyqBIqzUMS61zZMlty aHrora9qXQATBg4dL9MA+sF2lvycsHPfz87J774uPHEklaUvAK5XhtBf+M3b4RTu waWnZlRMrqGWrlmnmNjcZ5Zprtfn/P1iVdQiQw== -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:39 2024 by rpki-client on console-ams.rpki-client.org