$ rpki-client -vvf repo-rpki.idnic.net/repo/29226948-b1a1-4294-9150-6af0e0bebfb8/0/3130332e3138342e3132332e302f32342d3234203d3e20313439373035.roa File: 3130332e3138342e3132332e302f32342d3234203d3e20313439373035.roa (raw, json) Hash identifier: mpWFCHVjj+zZBz81oEax+KJdChdml8WVupB6NX9bDqg= Subject key identifier: 1F:66:20:BE:79:D0:92:B6:D1:3C:42:60:A6:B1:D0:62:F0:93:16:4A Certificate issuer: /CN=3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A Certificate serial: 04CED1C2B8F7A66DAF0086EE831989581B091C1F Authority key identifier: 3F:D6:EB:17:E6:7A:CC:40:60:F7:77:F5:A4:E3:F9:A0:27:AB:3F:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29226948-b1a1-4294-9150-6af0e0bebfb8/0/3130332e3138342e3132332e302f32342d3234203d3e20313439373035.roa Signing time: Wed 18 Sep 2024 05:00:00 +0000 ROA not before: Wed 18 Sep 2024 04:55:00 +0000 ROA not after: Wed 17 Sep 2025 05:00:00 +0000 asID: 149705 IP address blocks: 103.184.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29226948-b1a1-4294-9150-6af0e0bebfb8/0/3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A.crl rsync://repo-rpki.idnic.net/repo/29226948-b1a1-4294-9150-6af0e0bebfb8/0/3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 06:14:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:ce:d1:c2:b8:f7:a6:6d:af:00:86:ee:83:19:89:58:1b:09:1c:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A Validity Not Before: Sep 18 04:55:00 2024 GMT Not After : Sep 17 05:00:00 2025 GMT Subject: CN=1F6620BE79D092B6D13C4260A6B1D062F093164A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e3:b9:14:d0:dc:4f:d1:bb:92:45:d6:6c:ff: 7d:de:79:93:7c:1a:31:bf:ea:b6:80:b8:9f:2b:56: 16:fd:fa:00:91:62:82:27:09:d2:f9:eb:67:52:e3: bf:d7:29:43:96:54:cc:b0:74:80:77:ad:57:92:d6: e9:9f:98:5b:32:c3:37:20:29:2c:cb:15:97:18:58: 2b:64:48:b4:0b:ca:f0:41:d1:c0:44:fd:02:2e:92: 43:ad:74:4f:9a:bf:77:6e:f5:d1:cb:eb:83:1e:b5: ce:75:c6:20:c6:6f:2a:3c:f9:65:53:a3:c5:b9:50: f0:83:e5:b1:45:ed:5c:ed:03:45:b0:c1:b2:85:e5: 02:5e:6a:d3:9b:c2:a6:9d:cc:c2:b5:3c:af:2f:60: 62:3a:98:30:95:62:5b:22:a4:20:4c:3e:73:56:f1: e7:76:e4:38:b6:ae:ab:27:b4:0c:b6:d8:3e:57:30: e0:ff:0b:e3:88:97:38:72:7d:b9:df:00:e5:40:5a: 08:16:ce:56:a4:e7:24:34:0e:96:40:5e:04:69:12: 64:2f:6a:7a:43:03:e2:d5:ce:94:35:e9:21:d3:0c: a4:68:3e:18:05:9e:55:e0:78:bd:ae:17:00:c5:9e: 22:c8:df:68:1a:54:9b:47:24:d2:e4:28:39:64:24: 33:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:66:20:BE:79:D0:92:B6:D1:3C:42:60:A6:B1:D0:62:F0:93:16:4A X509v3 Authority Key Identifier: keyid:3F:D6:EB:17:E6:7A:CC:40:60:F7:77:F5:A4:E3:F9:A0:27:AB:3F:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29226948-b1a1-4294-9150-6af0e0bebfb8/0/3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29226948-b1a1-4294-9150-6af0e0bebfb8/0/3130332e3138342e3132332e302f32342d3234203d3e20313439373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.123.0/24 Signature Algorithm: sha256WithRSAEncryption 95:da:e5:e0:ff:d8:de:01:3f:fd:51:91:85:86:f2:18:07:47: 2a:71:8a:00:08:32:28:28:6d:e0:f1:16:ef:fa:5f:d6:7d:4c: b7:7a:de:df:27:bd:4b:57:f7:56:f7:4c:00:a9:47:df:07:bd: 76:82:1f:bc:6d:8d:fe:ab:6a:28:7c:e7:a9:00:b9:b4:f3:2c: aa:14:89:26:63:79:0b:b5:5f:d8:23:85:10:33:21:55:c2:95: 83:20:31:46:0b:ef:cd:64:9d:e0:35:e3:c5:07:44:8d:9b:dc: 2b:b2:b7:2b:1e:93:1a:50:49:25:be:db:e6:17:5c:de:a7:bf: 08:89:e4:4a:37:6c:ad:c3:90:f9:1e:60:96:c4:19:f3:eb:ba: dc:5d:5d:ae:08:fa:d9:38:1a:9f:0e:e4:cf:ab:37:36:e3:5a: a9:51:83:17:55:8e:ba:1d:fa:88:b2:a7:06:3d:90:c1:c7:83: cc:77:55:aa:4e:75:66:78:15:e3:27:28:d8:d5:b9:02:2f:46: 4c:1d:bb:a7:f2:49:10:6c:73:64:65:b7:c1:d7:df:69:8d:59: 50:a3:14:01:41:e8:57:55:82:4e:8d:f2:2e:94:37:46:83:00: 13:76:90:a1:cf:03:0a:c9:56:41:b0:5a:28:ac:c3:c6:61:de: 25:98:05:a0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBM7Rwrj3pm2vAIbugxmJWBsJHB8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0ZENkVCMTdFNjdBQ0M0MDYwRjc3N0Y1QTRFM0Y5QTAy N0FCM0Y5QTAeFw0yNDA5MTgwNDU1MDBaFw0yNTA5MTcwNTAwMDBaMDMxMTAvBgNV BAMTKDFGNjYyMEJFNzlEMDkyQjZEMTNDNDI2MEE2QjFEMDYyRjA5MzE2NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+47kU0NxP0buSRdZs/33eeZN8 GjG/6raAuJ8rVhb9+gCRYoInCdL562dS47/XKUOWVMywdIB3rVeS1umfmFsywzcg KSzLFZcYWCtkSLQLyvBB0cBE/QIukkOtdE+av3du9dHL64Metc51xiDGbyo8+WVT o8W5UPCD5bFF7VztA0WwwbKF5QJeatObwqadzMK1PK8vYGI6mDCVYlsipCBMPnNW 8ed25Di2rqsntAy22D5XMOD/C+OIlzhyfbnfAOVAWggWzlak5yQ0DpZAXgRpEmQv anpDA+LVzpQ16SHTDKRoPhgFnlXgeL2uFwDFniLI32gaVJtHJNLkKDlkJDOnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUH2YgvnnQkrbRPEJgprHQYvCTFkowHwYDVR0j BBgwFoAUP9brF+Z6zEBg93f1pOP5oCerP5owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OTIyNjk0OC1iMWExLTQyOTQtOTE1MC02YWYwZTBiZWJmYjgvMC8zRkQ2RUIxN0U2 N0FDQzQwNjBGNzc3RjVBNEUzRjlBMDI3QUIzRjlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0ZENkVCMTdFNjdBQ0M0MDYwRjc3N0Y1QTRFM0Y5QTAyN0FC M0Y5QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5MjI2OTQ4LWIxYTEtNDI5NC05 MTUwLTZhZjBlMGJlYmZiOC8wLzMxMzAzMzJlMzEzODM0MmUzMTMyMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzMwMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnuHswDQYJ KoZIhvcNAQELBQADggEBAJXa5eD/2N4BP/1RkYWG8hgHRypxigAIMigobeDxFu/6 X9Z9TLd63t8nvUtX91b3TACpR98HvXaCH7xtjf6raih856kAubTzLKoUiSZjeQu1 X9gjhRAzIVXClYMgMUYL781kneA148UHRI2b3CuytysekxpQSSW+2+YXXN6nvwiJ 5Eo3bK3DkPkeYJbEGfPrutxdXa4I+tk4Gp8O5M+rNzbjWqlRgxdVjrod+oiypwY9 kMHHg8x3VapOdWZ4FeMnKNjVuQIvRkwdu6fySRBsc2Rlt8HX32mNWVCjFAFB6FdV gk6N8i6UN0aDABN2kKHPAwrJVkGwWiisw8Zh3iWYBaA= -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org