$ rpki-client -vvf repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/3130332e3137372e3231392e302f32342d3234203d3e20313331373639.roa File: 3130332e3137372e3231392e302f32342d3234203d3e20313331373639.roa (raw, json) Hash identifier: y6DDdNTwLYs5pexyb3VjHTDAgSYKVRMMWz8l7Tn9rog= Subject key identifier: 39:02:3A:41:2B:1A:0F:9D:6D:94:33:46:EF:27:3F:D7:3E:3C:58:AF Certificate issuer: /CN=2AAFA81414EDCB1032235F2240FE06773F3E6F16 Certificate serial: 3954C9852FDEAB2D5B8381C9EDC40844AC38FD2B Authority key identifier: 2A:AF:A8:14:14:ED:CB:10:32:23:5F:22:40:FE:06:77:3F:3E:6F:16 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/3130332e3137372e3231392e302f32342d3234203d3e20313331373639.roa Signing time: Mon 04 Mar 2024 09:00:00 +0000 ROA not before: Mon 04 Mar 2024 08:55:00 +0000 ROA not after: Mon 03 Mar 2025 09:00:00 +0000 asID: 131769 IP address blocks: 103.177.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 11:47:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:54:c9:85:2f:de:ab:2d:5b:83:81:c9:ed:c4:08:44:ac:38:fd:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2AAFA81414EDCB1032235F2240FE06773F3E6F16 Validity Not Before: Mar 4 08:55:00 2024 GMT Not After : Mar 3 09:00:00 2025 GMT Subject: CN=39023A412B1A0F9D6D943346EF273FD73E3C58AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b4:f1:5d:fe:e6:98:fe:34:47:46:ab:94:45: a8:31:9f:05:04:bb:31:1b:99:5d:96:c7:99:72:b1: 0e:f2:73:4d:4e:d8:93:4b:d2:f6:c2:cd:19:50:31: 1b:3b:4f:4d:3a:e8:07:ec:96:e5:33:c2:ab:7f:8a: af:af:41:f9:0d:c7:a5:14:69:62:fc:5d:56:d7:75: 2c:53:10:a9:38:ff:c0:73:09:e4:da:7f:3b:6c:bf: 8d:47:12:ca:87:53:8d:a7:43:22:26:a4:96:b3:00: a1:95:99:40:6f:ca:29:de:63:da:f8:c5:04:24:0d: 4d:19:48:60:84:3a:a1:5f:c1:61:77:22:46:6f:4a: de:97:79:93:b0:63:68:aa:b9:04:02:91:d9:ee:71: 27:00:38:12:bc:a2:ae:26:db:3b:3f:6f:83:28:f1: 4b:c7:b6:3a:ba:64:f1:21:92:43:bc:e7:0a:ea:9e: 68:fc:b7:6c:23:67:89:d4:db:fd:1a:cb:34:c9:31: 4f:fa:96:67:90:ce:54:7c:8a:ea:42:c2:92:26:d6: cb:e1:3b:73:b1:a7:7e:8d:18:74:20:a5:0c:b5:46: 9f:58:e2:6a:7b:4d:0a:e9:52:7d:fd:96:62:0e:95: a5:19:73:01:5d:9b:69:7a:5c:94:7d:5b:d0:d9:0d: e5:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:02:3A:41:2B:1A:0F:9D:6D:94:33:46:EF:27:3F:D7:3E:3C:58:AF X509v3 Authority Key Identifier: keyid:2A:AF:A8:14:14:ED:CB:10:32:23:5F:22:40:FE:06:77:3F:3E:6F:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/3130332e3137372e3231392e302f32342d3234203d3e20313331373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.219.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:ea:6b:ab:5b:b9:1f:c7:cd:f3:6d:af:8e:a1:fd:dd:d9:b2: 44:1a:90:b2:84:ee:cc:f8:d0:15:14:8f:d3:4b:8a:4d:4d:3e: cf:1d:eb:ed:6b:15:9e:53:72:fb:70:ce:fb:2c:04:65:a4:a2: ed:6a:dd:77:a7:b7:45:05:54:ee:0f:27:2f:f6:3d:93:16:33: 91:49:e5:16:59:f0:91:1b:2d:8e:a8:e6:4f:e8:ee:91:d6:b2: bf:5a:fd:d3:4a:0a:b2:4d:88:66:be:91:97:b4:7f:27:12:d2: 1d:3b:a2:53:25:26:99:47:7d:26:8a:8d:d7:c5:ff:a8:c6:96: 37:8f:22:45:63:54:6a:39:6d:e5:ed:52:28:ee:21:57:22:54: f6:35:89:dc:fb:86:70:cb:d1:bd:fc:1f:0c:be:b2:62:bb:83: 1c:48:b6:26:63:41:a9:08:3c:ae:95:d4:ad:fd:a1:9e:c6:e4: 0f:3e:2b:c9:d8:3b:b9:a3:cb:e2:d9:a5:82:04:79:37:fa:9d: 07:d4:80:ad:f7:b2:71:3e:f1:ee:d8:06:02:54:31:1f:43:23: 73:c7:91:30:ad:d2:11:22:46:62:9d:9e:d7:3c:a7:e7:82:a4: 4a:7f:68:62:c4:1c:1d:2b:9a:61:e7:9b:f4:7f:43:8d:21:db: ea:9a:cf:c7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOVTJhS/eqy1bg4HJ7cQIRKw4/SswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2Nzcz RjNFNkYxNjAeFw0yNDAzMDQwODU1MDBaFw0yNTAzMDMwOTAwMDBaMDMxMTAvBgNV BAMTKDM5MDIzQTQxMkIxQTBGOUQ2RDk0MzM0NkVGMjczRkQ3M0UzQzU4QUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCttPFd/uaY/jRHRquURagxnwUE uzEbmV2Wx5lysQ7yc01O2JNL0vbCzRlQMRs7T0066AfsluUzwqt/iq+vQfkNx6UU aWL8XVbXdSxTEKk4/8BzCeTafztsv41HEsqHU42nQyImpJazAKGVmUBvyineY9r4 xQQkDU0ZSGCEOqFfwWF3IkZvSt6XeZOwY2iquQQCkdnucScAOBK8oq4m2zs/b4Mo 8UvHtjq6ZPEhkkO85wrqnmj8t2wjZ4nU2/0ayzTJMU/6lmeQzlR8iupCwpIm1svh O3Oxp36NGHQgpQy1Rp9Y4mp7TQrpUn39lmIOlaUZcwFdm2l6XJR9W9DZDeUNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUOQI6QSsaD51tlDNG7yc/1z48WK8wHwYDVR0j BBgwFoAUKq+oFBTtyxAyI18iQP4Gdz8+bxYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YWI4ZTYwZi1mOTkzLTQ1MzQtOWRhMC1mMjg1YTg2MDNmNjkvMC8yQUFGQTgxNDE0 RURDQjEwMzIyMzVGMjI0MEZFMDY3NzNGM0U2RjE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2NzczRjNF NkYxNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhYjhlNjBmLWY5OTMtNDUzNC05 ZGEwLWYyODVhODYwM2Y2OS8wLzMxMzAzMzJlMzEzNzM3MmUzMjMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnsdswDQYJ KoZIhvcNAQELBQADggEBAJ3qa6tbuR/HzfNtr46h/d3ZskQakLKE7sz40BUUj9NL ik1NPs8d6+1rFZ5TcvtwzvssBGWkou1q3Xent0UFVO4PJy/2PZMWM5FJ5RZZ8JEb LY6o5k/o7pHWsr9a/dNKCrJNiGa+kZe0fycS0h07olMlJplHfSaKjdfF/6jGljeP IkVjVGo5beXtUijuIVciVPY1idz7hnDL0b38Hwy+smK7gxxItiZjQakIPK6V1K39 oZ7G5A8+K8nYO7mjy+LZpYIEeTf6nQfUgK33snE+8e7YBgJUMR9DI3PHkTCt0hEi RmKdntc8p+eCpEp/aGLEHB0rmmHnm/R/Q40h2+qaz8c= -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:38 2024 by rpki-client on console-ams.rpki-client.org