$ rpki-client -vvf repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/3130332e3133342e3234342e302f32342d3234203d3e20313331373733.roa File: 3130332e3133342e3234342e302f32342d3234203d3e20313331373733.roa (raw, json) Hash identifier: DrzrzWSWK8DJhJcjkRZ5Npky0ohInuCUO3X+txS12xg= Subject key identifier: 4F:50:A2:94:39:00:D0:B4:BE:B5:FF:F3:89:4C:04:02:2E:9F:F6:27 Certificate issuer: /CN=37EECBD045CA279ED50372AC86831099D2FD896F Certificate serial: 34BEBFD01BBC785F8CA023D18AB557951ED016A8 Authority key identifier: 37:EE:CB:D0:45:CA:27:9E:D5:03:72:AC:86:83:10:99:D2:FD:89:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37EECBD045CA279ED50372AC86831099D2FD896F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/3130332e3133342e3234342e302f32342d3234203d3e20313331373733.roa Signing time: Thu 04 Apr 2024 09:00:02 +0000 ROA not before: Thu 04 Apr 2024 08:55:02 +0000 ROA not after: Thu 03 Apr 2025 09:00:02 +0000 asID: 131773 IP address blocks: 103.134.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/37EECBD045CA279ED50372AC86831099D2FD896F.crl rsync://repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/37EECBD045CA279ED50372AC86831099D2FD896F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37EECBD045CA279ED50372AC86831099D2FD896F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:be:bf:d0:1b:bc:78:5f:8c:a0:23:d1:8a:b5:57:95:1e:d0:16:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37EECBD045CA279ED50372AC86831099D2FD896F Validity Not Before: Apr 4 08:55:02 2024 GMT Not After : Apr 3 09:00:02 2025 GMT Subject: CN=4F50A2943900D0B4BEB5FFF3894C04022E9FF627 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a3:74:cc:85:93:6d:d4:74:b0:81:68:82:d3: df:34:4e:49:0e:6c:47:89:56:b4:60:8d:55:97:6e: 18:78:2f:4e:64:bd:df:12:15:ea:b3:82:26:6f:70: 53:3b:0e:8b:cf:11:f6:2d:e0:16:37:dd:9e:ec:c0: fb:7c:2d:44:41:9c:61:62:58:14:21:09:24:cb:a9: 56:3d:08:32:36:3b:bc:02:23:ba:e9:7e:b4:ee:ba: 8d:a1:85:28:14:67:b8:ef:57:e7:fd:73:1a:f3:ec: 7a:85:a2:44:5c:38:88:1a:27:3c:be:72:bd:ba:ff: e7:00:e5:75:29:b7:82:eb:88:55:21:fc:bb:cc:01: 5e:f7:55:d8:14:a2:d9:4b:47:34:eb:b1:5b:84:1a: 28:5c:eb:cd:d9:3e:bf:14:3a:8a:11:bc:95:21:ec: 8c:ac:d9:0a:c5:00:96:89:04:80:ef:a2:1e:95:58: e4:66:20:20:a4:63:46:80:21:54:85:31:b8:90:ad: ed:a3:44:30:7c:b1:ef:a4:d0:40:52:c7:8e:98:7b: ef:de:60:05:1f:2f:eb:d9:47:56:c0:c4:c6:bd:39: df:3b:c9:c0:ff:f0:24:c9:21:da:7a:d1:6c:f8:6d: 73:aa:c2:f6:7a:08:7c:2f:4b:83:0e:69:36:a3:c5: 2a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:50:A2:94:39:00:D0:B4:BE:B5:FF:F3:89:4C:04:02:2E:9F:F6:27 X509v3 Authority Key Identifier: keyid:37:EE:CB:D0:45:CA:27:9E:D5:03:72:AC:86:83:10:99:D2:FD:89:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/37EECBD045CA279ED50372AC86831099D2FD896F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37EECBD045CA279ED50372AC86831099D2FD896F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/3130332e3133342e3234342e302f32342d3234203d3e20313331373733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.244.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:ce:4a:b1:7e:70:e2:db:0c:d9:5a:d9:48:9d:80:96:39:7a: a1:b6:22:c6:8d:57:a7:19:20:d1:b8:0d:72:bb:ec:79:69:92: d8:9f:35:7f:c1:e0:e8:61:ff:94:cc:1b:c5:fc:a4:dd:db:31: 48:a8:7f:02:18:d8:a7:28:f8:45:8c:d6:ed:29:96:09:72:41: 19:40:18:61:02:d7:c4:44:bd:a4:92:83:18:70:bb:38:64:82: 4c:bf:b8:a4:60:99:4b:23:4b:1c:50:42:f4:95:a7:02:5c:03: a4:80:36:1d:8d:cd:5e:c8:ff:7b:96:1c:4e:a8:c3:09:32:08: 6b:31:aa:bd:50:39:a9:0c:13:a1:a6:ad:f0:1e:cb:bc:5e:47: 9c:e3:85:a5:f1:8d:8d:6e:9c:0e:bb:eb:cd:0c:d3:40:e0:0d: be:10:51:80:68:69:22:32:5d:9b:a9:6d:17:7c:ae:88:c0:11: ed:af:45:d9:01:a4:2e:df:a9:49:44:38:b6:62:dd:a6:6f:43: 46:3d:6c:5b:41:6e:18:e2:85:90:66:94:eb:94:2f:db:05:9a: 50:7e:ce:ec:dd:34:e7:07:d5:07:58:c4:ea:2b:7e:b3:d2:51: 9b:bd:7a:aa:6b:2b:9b:0e:a7:af:82:8c:c7:a3:36:6e:c3:82: 8d:53:0f:82 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNL6/0Bu8eF+MoCPRirVXlR7QFqgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzdFRUNCRDA0NUNBMjc5RUQ1MDM3MkFDODY4MzEwOTlE MkZEODk2RjAeFw0yNDA0MDQwODU1MDJaFw0yNTA0MDMwOTAwMDJaMDMxMTAvBgNV BAMTKDRGNTBBMjk0MzkwMEQwQjRCRUI1RkZGMzg5NEMwNDAyMkU5RkY2MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2o3TMhZNt1HSwgWiC0980TkkO bEeJVrRgjVWXbhh4L05kvd8SFeqzgiZvcFM7DovPEfYt4BY33Z7swPt8LURBnGFi WBQhCSTLqVY9CDI2O7wCI7rpfrTuuo2hhSgUZ7jvV+f9cxrz7HqFokRcOIgaJzy+ cr26/+cA5XUpt4LriFUh/LvMAV73VdgUotlLRzTrsVuEGihc683ZPr8UOooRvJUh 7Iys2QrFAJaJBIDvoh6VWORmICCkY0aAIVSFMbiQre2jRDB8se+k0EBSx46Ye+/e YAUfL+vZR1bAxMa9Od87ycD/8CTJIdp60Wz4bXOqwvZ6CHwvS4MOaTajxSpnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUT1CilDkA0LS+tf/ziUwEAi6f9icwHwYDVR0j BBgwFoAUN+7L0EXKJ57VA3KshoMQmdL9iW8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MjdkZTA3MS0zYWFhLTRlMmUtOTc0ZS1hNzhjODE3MjlmMDYvMC8zN0VFQ0JEMDQ1 Q0EyNzlFRDUwMzcyQUM4NjgzMTA5OUQyRkQ4OTZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzdFRUNCRDA0NUNBMjc5RUQ1MDM3MkFDODY4MzEwOTlEMkZE ODk2Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyN2RlMDcxLTNhYWEtNGUyZS05 NzRlLWE3OGM4MTcyOWYwNi8wLzMxMzAzMzJlMzEzMzM0MmUzMjM0MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM3MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnhvQwDQYJ KoZIhvcNAQELBQADggEBAJrOSrF+cOLbDNla2UidgJY5eqG2IsaNV6cZING4DXK7 7HlpktifNX/B4Ohh/5TMG8X8pN3bMUiofwIY2Kco+EWM1u0plglyQRlAGGEC18RE vaSSgxhwuzhkgky/uKRgmUsjSxxQQvSVpwJcA6SANh2NzV7I/3uWHE6owwkyCGsx qr1QOakME6GmrfAey7xeR5zjhaXxjY1unA67680M00DgDb4QUYBoaSIyXZupbRd8 rojAEe2vRdkBpC7fqUlEOLZi3aZvQ0Y9bFtBbhjihZBmlOuUL9sFmlB+zuzdNOcH 1QdYxOorfrPSUZu9eqprK5sOp6+CjMejNm7Dgo1TD4I= -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:03 2024 by rpki-client on console-fra.rpki-client.org