$ rpki-client -vvf repo-rpki.idnic.net/repo/3b3df6af-d9ee-4076-81a4-264872748970/0/3130332e3137392e3133342e302f32332d3234203d3e20313531303030.roa File: 3130332e3137392e3133342e302f32332d3234203d3e20313531303030.roa (raw, json) Hash identifier: wyuyEKbS2Ewn8htT+BKpBIgg41360SiS7fL05DTu8X8= Subject key identifier: C0:49:10:2D:41:7E:0C:A1:31:0F:C2:15:BC:7F:8F:EB:79:71:DB:7E Certificate issuer: /CN=402D9F1E05A26B41164E25B73A5B07C88E32AB43 Certificate serial: 67FAD17263CAAFAA2C83F922BB1478F78831A27E Authority key identifier: 40:2D:9F:1E:05:A2:6B:41:16:4E:25:B7:3A:5B:07:C8:8E:32:AB:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/402D9F1E05A26B41164E25B73A5B07C88E32AB43.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3b3df6af-d9ee-4076-81a4-264872748970/0/3130332e3137392e3133342e302f32332d3234203d3e20313531303030.roa Signing time: Mon 25 Mar 2024 01:41:08 +0000 ROA not before: Mon 25 Mar 2024 01:36:08 +0000 ROA not after: Mon 24 Mar 2025 01:41:08 +0000 asID: 151000 IP address blocks: 103.179.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3b3df6af-d9ee-4076-81a4-264872748970/0/402D9F1E05A26B41164E25B73A5B07C88E32AB43.crl rsync://repo-rpki.idnic.net/repo/3b3df6af-d9ee-4076-81a4-264872748970/0/402D9F1E05A26B41164E25B73A5B07C88E32AB43.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/402D9F1E05A26B41164E25B73A5B07C88E32AB43.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:fa:d1:72:63:ca:af:aa:2c:83:f9:22:bb:14:78:f7:88:31:a2:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=402D9F1E05A26B41164E25B73A5B07C88E32AB43 Validity Not Before: Mar 25 01:36:08 2024 GMT Not After : Mar 24 01:41:08 2025 GMT Subject: CN=C049102D417E0CA1310FC215BC7F8FEB7971DB7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:95:66:ed:18:f0:72:1c:79:19:84:4e:87:ad: 7c:98:12:c6:e2:b9:55:0a:75:33:c5:2d:68:da:a5: 9a:5d:fa:37:89:bd:7d:6c:18:a2:84:54:9d:90:b6: c7:1a:e6:d3:3c:bd:64:80:ff:2d:8b:55:71:8a:b0: d1:03:7b:4d:43:35:75:63:47:b6:ff:a3:b8:57:17: 76:48:94:63:76:d1:61:3c:74:58:df:5a:44:ef:65: b8:46:a9:3c:1b:53:7d:f6:8c:18:9e:02:bb:a8:58: 48:17:96:98:20:19:fb:20:12:40:86:14:85:71:01: 69:9f:21:75:f8:ee:5a:a6:d1:27:71:57:01:bb:33: f3:fd:0d:48:05:ea:3b:f2:26:ba:ec:14:24:ae:df: 6f:95:32:61:d8:1b:69:f2:1c:c9:5e:6d:8f:16:85: 58:82:ff:17:b3:d1:01:f0:c4:5b:69:d0:3c:51:f4: 2d:58:49:c4:76:11:83:87:90:99:35:cf:0d:e6:d9: 1c:0e:22:7b:0a:d5:b6:f7:32:a0:15:15:c4:13:e4: 5d:03:1d:61:ca:d5:a5:aa:6c:79:cd:83:12:28:44: 25:d3:21:03:78:49:db:a9:32:27:b3:52:ff:60:15: 69:d3:b1:98:c0:f2:69:e9:e2:42:e2:8a:1f:0a:77: 27:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:49:10:2D:41:7E:0C:A1:31:0F:C2:15:BC:7F:8F:EB:79:71:DB:7E X509v3 Authority Key Identifier: keyid:40:2D:9F:1E:05:A2:6B:41:16:4E:25:B7:3A:5B:07:C8:8E:32:AB:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3b3df6af-d9ee-4076-81a4-264872748970/0/402D9F1E05A26B41164E25B73A5B07C88E32AB43.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/402D9F1E05A26B41164E25B73A5B07C88E32AB43.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3b3df6af-d9ee-4076-81a4-264872748970/0/3130332e3137392e3133342e302f32332d3234203d3e20313531303030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.134.0/23 Signature Algorithm: sha256WithRSAEncryption 16:ff:ac:fc:d2:66:38:4d:ed:34:bc:f6:d0:2c:55:c6:ed:58: af:55:10:55:c0:75:01:9d:3d:36:14:c2:17:24:62:ba:7e:40: 6c:4d:2e:63:b5:6c:1e:d8:dd:d4:ca:66:f7:93:a1:1d:0b:e3: ac:4a:99:5b:5d:8c:f3:60:c7:46:97:b6:71:54:12:8d:90:c2: 6d:84:38:63:12:df:c0:52:75:3a:f7:87:71:86:c2:35:39:d1: af:f8:fb:97:1f:4b:9a:fb:27:4d:83:76:74:50:0c:3e:48:d4: 62:c8:b7:cf:a3:c8:37:dd:86:7a:14:6b:a9:c6:4f:e3:82:b4: 00:c5:7d:ad:a4:6c:23:b8:eb:f5:16:c3:63:c7:af:c2:66:3c: 0e:ba:4a:4d:e7:49:24:4d:07:4a:8a:3c:b0:83:4b:f5:48:62: 41:9a:b7:ea:6f:39:a3:1a:96:69:62:67:fd:13:0f:9a:b1:9e: 3d:02:3b:9b:5b:d2:d1:e3:8b:57:39:ca:60:65:4f:d4:61:e5: c9:1e:a0:ff:58:31:70:e5:f7:05:b2:29:18:e6:ec:a8:c7:8c: 3d:82:1d:75:94:c6:17:6c:d0:cd:ba:d7:97:7c:aa:ca:59:ee: ee:88:1f:8e:24:b1:02:96:21:0a:1c:da:9a:70:98:76:9d:18: a6:15:25:36 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZ/rRcmPKr6osg/kiuxR494gxon4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDAyRDlGMUUwNUEyNkI0MTE2NEUyNUI3M0E1QjA3Qzg4 RTMyQUI0MzAeFw0yNDAzMjUwMTM2MDhaFw0yNTAzMjQwMTQxMDhaMDMxMTAvBgNV BAMTKEMwNDkxMDJENDE3RTBDQTEzMTBGQzIxNUJDN0Y4RkVCNzk3MURCN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLlWbtGPByHHkZhE6HrXyYEsbi uVUKdTPFLWjapZpd+jeJvX1sGKKEVJ2Qtsca5tM8vWSA/y2LVXGKsNEDe01DNXVj R7b/o7hXF3ZIlGN20WE8dFjfWkTvZbhGqTwbU332jBieAruoWEgXlpggGfsgEkCG FIVxAWmfIXX47lqm0SdxVwG7M/P9DUgF6jvyJrrsFCSu32+VMmHYG2nyHMlebY8W hViC/xez0QHwxFtp0DxR9C1YScR2EYOHkJk1zw3m2RwOInsK1bb3MqAVFcQT5F0D HWHK1aWqbHnNgxIoRCXTIQN4SdupMiezUv9gFWnTsZjA8mnp4kLiih8KdyeXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUwEkQLUF+DKExD8IVvH+P63lx234wHwYDVR0j BBgwFoAUQC2fHgWia0EWTiW3OlsHyI4yq0MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YjNkZjZhZi1kOWVlLTQwNzYtODFhNC0yNjQ4NzI3NDg5NzAvMC80MDJEOUYxRTA1 QTI2QjQxMTY0RTI1QjczQTVCMDdDODhFMzJBQjQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDAyRDlGMUUwNUEyNkI0MTE2NEUyNUI3M0E1QjA3Qzg4RTMy QUI0My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiM2RmNmFmLWQ5ZWUtNDA3Ni04 MWE0LTI2NDg3Mjc0ODk3MC8wLzMxMzAzMzJlMzEzNzM5MmUzMTMzMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM1MzEzMDMwMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFns4YwDQYJ KoZIhvcNAQELBQADggEBABb/rPzSZjhN7TS89tAsVcbtWK9VEFXAdQGdPTYUwhck Yrp+QGxNLmO1bB7Y3dTKZveToR0L46xKmVtdjPNgx0aXtnFUEo2Qwm2EOGMS38BS dTr3h3GGwjU50a/4+5cfS5r7J02DdnRQDD5I1GLIt8+jyDfdhnoUa6nGT+OCtADF fa2kbCO46/UWw2PHr8JmPA66Sk3nSSRNB0qKPLCDS/VIYkGat+pvOaMalmliZ/0T D5qxnj0CO5tb0tHji1c5ymBlT9Rh5ckeoP9YMXDl9wWyKRjm7KjHjD2CHXWUxhds 0M2615d8qspZ7u6IH44ksQKWIQoc2ppwmHadGKYVJTY= -----END CERTIFICATE-----Generated at Sun Nov 24 18:20:18 2024 by rpki-client on console-ams.rpki-client.org