$ rpki-client -vvf repo-rpki.idnic.net/repo/3248d27b-ccb0-4fc7-abca-9fc0a3e15754/0/3130332e3136392e33382e302f32332d3234203d3e20313432333331.roa File: 3130332e3136392e33382e302f32332d3234203d3e20313432333331.roa (raw, json) Hash identifier: qtyZ9raTN/ay3QbY1ITdDYTNx2mGOoDZFy/XPZmK4ng= Subject key identifier: 3F:84:A4:DC:FC:F7:FE:5E:0D:01:7B:B4:AA:AD:8B:E7:09:9F:FE:2D Certificate issuer: /CN=FF45D0F44B7B63B976B41EEE18CC92393CF8184F Certificate serial: 1C38E15680A2092F7BDE342F9DCE40FFE345A0AD Authority key identifier: FF:45:D0:F4:4B:7B:63:B9:76:B4:1E:EE:18:CC:92:39:3C:F8:18:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF45D0F44B7B63B976B41EEE18CC92393CF8184F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3248d27b-ccb0-4fc7-abca-9fc0a3e15754/0/3130332e3136392e33382e302f32332d3234203d3e20313432333331.roa Signing time: Mon 11 Nov 2024 10:00:05 +0000 ROA not before: Mon 11 Nov 2024 09:55:05 +0000 ROA not after: Mon 10 Nov 2025 10:00:05 +0000 asID: 142331 IP address blocks: 103.169.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3248d27b-ccb0-4fc7-abca-9fc0a3e15754/0/FF45D0F44B7B63B976B41EEE18CC92393CF8184F.crl rsync://repo-rpki.idnic.net/repo/3248d27b-ccb0-4fc7-abca-9fc0a3e15754/0/FF45D0F44B7B63B976B41EEE18CC92393CF8184F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF45D0F44B7B63B976B41EEE18CC92393CF8184F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 02:45:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:38:e1:56:80:a2:09:2f:7b:de:34:2f:9d:ce:40:ff:e3:45:a0:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF45D0F44B7B63B976B41EEE18CC92393CF8184F Validity Not Before: Nov 11 09:55:05 2024 GMT Not After : Nov 10 10:00:05 2025 GMT Subject: CN=3F84A4DCFCF7FE5E0D017BB4AAAD8BE7099FFE2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:38:cf:6c:e3:d1:6d:d2:90:f1:41:07:b1:0e: 2b:dc:11:13:a7:62:82:01:33:5f:70:2e:a7:a8:d2: e7:e3:7b:65:2e:f5:4f:f2:52:a5:56:77:ca:9c:93: fb:e5:79:39:24:88:25:d1:83:74:a6:6f:60:7b:12: 68:f8:22:ee:73:6c:dc:30:c1:7f:bd:09:ef:95:6a: a5:e9:f7:7d:82:e2:56:42:70:6c:76:8e:37:c8:e4: 66:ec:18:45:a1:ae:9f:0d:23:20:a0:97:1a:5c:02: 0b:b5:79:1c:f2:1a:ed:15:75:40:3f:a4:03:91:86: fc:ef:8b:02:17:05:70:c7:f2:b9:52:9a:2b:22:d0: 89:26:0d:e4:63:f2:2c:07:7a:26:ff:93:5c:7b:68: c6:d2:8a:cd:d7:c0:9a:e8:4c:50:6d:d2:0c:90:37: d4:b5:7e:1c:79:54:6f:4d:de:19:0e:32:1c:72:af: 3d:82:5c:80:8e:a7:dc:f6:4c:8c:04:a3:ef:a4:14: de:eb:65:59:88:aa:c6:ab:62:b4:a0:4e:7c:65:b6: bb:ba:30:10:ec:80:17:d9:e0:10:77:8f:c1:b7:1f: 9e:79:85:45:f1:1e:f9:a7:ea:1d:63:35:cf:4a:ce: dd:48:09:e6:3a:ac:cd:2a:f1:ea:b9:23:88:6a:2d: fe:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:84:A4:DC:FC:F7:FE:5E:0D:01:7B:B4:AA:AD:8B:E7:09:9F:FE:2D X509v3 Authority Key Identifier: keyid:FF:45:D0:F4:4B:7B:63:B9:76:B4:1E:EE:18:CC:92:39:3C:F8:18:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3248d27b-ccb0-4fc7-abca-9fc0a3e15754/0/FF45D0F44B7B63B976B41EEE18CC92393CF8184F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF45D0F44B7B63B976B41EEE18CC92393CF8184F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3248d27b-ccb0-4fc7-abca-9fc0a3e15754/0/3130332e3136392e33382e302f32332d3234203d3e20313432333331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.38.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:f9:a2:5c:0e:ec:f8:39:a7:dd:77:3f:d7:c5:03:79:84:3d: 21:f5:fd:9d:04:2e:05:4f:c0:f2:10:ce:6d:6c:8d:ba:58:27: eb:5a:13:3c:c8:91:3c:3d:6c:23:f8:a6:ab:48:ae:a4:cb:1e: 7d:9a:37:ee:7a:83:fc:a3:82:55:a0:cb:4d:f5:60:e4:1c:e8: d4:f6:a2:e8:05:f1:3b:20:9b:66:49:32:d2:f6:a0:d7:89:da: c7:2d:ea:3a:c8:72:af:bd:57:48:5e:5e:a9:54:0f:be:b0:4e: 7d:b6:a3:48:1a:7c:29:db:77:ca:34:60:50:5f:30:a5:2e:c0: 16:40:36:8e:95:fd:0d:7a:e9:80:06:e3:87:f0:37:f4:d4:09: 6e:88:88:ad:12:f3:3a:33:77:f3:a8:5e:e3:fa:64:a1:39:e9: e2:2a:72:a9:8a:37:c8:44:01:b1:e5:36:15:80:5f:c2:e3:91: b7:88:63:38:84:2a:fa:d1:41:e4:c0:de:e1:56:60:f9:88:9c: 7b:df:6e:9b:35:1e:a7:fd:1d:98:c5:62:92:f4:a2:db:c7:95: 0d:8d:e1:a8:54:0b:aa:d5:4d:fc:8b:81:cd:ed:a3:fe:d5:a0: d3:14:f5:28:50:2c:a1:1a:2a:32:bf:86:6b:90:4a:59:92:3a: 94:a1:29:d5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHDjhVoCiCS973jQvnc5A/+NFoK0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkY0NUQwRjQ0QjdCNjNCOTc2QjQxRUVFMThDQzkyMzkz Q0Y4MTg0RjAeFw0yNDExMTEwOTU1MDVaFw0yNTExMTAxMDAwMDVaMDMxMTAvBgNV BAMTKDNGODRBNERDRkNGN0ZFNUUwRDAxN0JCNEFBQUQ4QkU3MDk5RkZFMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLOM9s49Ft0pDxQQexDivcEROn YoIBM19wLqeo0ufje2Uu9U/yUqVWd8qck/vleTkkiCXRg3Smb2B7Emj4Iu5zbNww wX+9Ce+VaqXp932C4lZCcGx2jjfI5GbsGEWhrp8NIyCglxpcAgu1eRzyGu0VdUA/ pAORhvzviwIXBXDH8rlSmisi0IkmDeRj8iwHeib/k1x7aMbSis3XwJroTFBt0gyQ N9S1fhx5VG9N3hkOMhxyrz2CXICOp9z2TIwEo++kFN7rZVmIqsarYrSgTnxltru6 MBDsgBfZ4BB3j8G3H555hUXxHvmn6h1jNc9Kzt1ICeY6rM0q8eq5I4hqLf7bAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUP4Sk3Pz3/l4NAXu0qq2L5wmf/i0wHwYDVR0j BBgwFoAU/0XQ9Et7Y7l2tB7uGMySOTz4GE8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MjQ4ZDI3Yi1jY2IwLTRmYzctYWJjYS05ZmMwYTNlMTU3NTQvMC9GRjQ1RDBGNDRC N0I2M0I5NzZCNDFFRUUxOENDOTIzOTNDRjgxODRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkY0NUQwRjQ0QjdCNjNCOTc2QjQxRUVFMThDQzkyMzkzQ0Y4 MTg0Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMyNDhkMjdiLWNjYjAtNGZjNy1h YmNhLTlmYzBhM2UxNTc1NC8wLzMxMzAzMzJlMzEzNjM5MmUzMzM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6kmMA0GCSqG SIb3DQEBCwUAA4IBAQBO+aJcDuz4Oafddz/XxQN5hD0h9f2dBC4FT8DyEM5tbI26 WCfrWhM8yJE8PWwj+KarSK6kyx59mjfueoP8o4JVoMtN9WDkHOjU9qLoBfE7IJtm STLS9qDXidrHLeo6yHKvvVdIXl6pVA++sE59tqNIGnwp23fKNGBQXzClLsAWQDaO lf0NeumABuOH8Df01AluiIitEvM6M3fzqF7j+mShOeniKnKpijfIRAGx5TYVgF/C 45G3iGM4hCr60UHkwN7hVmD5iJx7326bNR6n/R2YxWKS9KLbx5UNjeGoVAuq1U38 i4HN7aP+1aDTFPUoUCyhGioyv4ZrkEpZkjqUoSnV -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:01 2024 by rpki-client on console-ams.rpki-client.org