$ rpki-client -vvf repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3130332e32382e38302e302f32322d3232203d3e203435373233.roa File: 3130332e32382e38302e302f32322d3232203d3e203435373233.roa (raw, json) Hash identifier: cEfeh9eRNBRCfoRBeyG5X29YJrhRlb8c/oeEmtnYp4M= Subject key identifier: 04:9C:8B:BB:22:0C:C7:FC:4C:B3:D7:A5:2B:F9:C2:EC:70:5D:55:42 Certificate issuer: /CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25 Certificate serial: 65B03CB5090C3515308223CA4F0B093D0A2F2A6E Authority key identifier: 3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3130332e32382e38302e302f32322d3232203d3e203435373233.roa Signing time: Tue 27 Feb 2024 03:35:47 +0000 ROA not before: Tue 27 Feb 2024 03:30:47 +0000 ROA not after: Tue 25 Feb 2025 03:35:47 +0000 asID: 45723 IP address blocks: 103.28.80.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.crl rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:b0:3c:b5:09:0c:35:15:30:82:23:ca:4f:0b:09:3d:0a:2f:2a:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25 Validity Not Before: Feb 27 03:30:47 2024 GMT Not After : Feb 25 03:35:47 2025 GMT Subject: CN=049C8BBB220CC7FC4CB3D7A52BF9C2EC705D5542 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:db:85:52:2d:3b:fa:1f:08:b3:e6:ef:c6:65: f9:62:62:3c:b6:b2:c9:b3:59:07:34:a3:d1:da:91: 51:a2:54:e0:e3:ae:5c:9a:29:21:30:a6:81:c2:6c: a9:c5:fc:3f:8c:36:2c:0d:be:9e:4c:3c:6b:d3:b6: 00:c5:21:6e:7b:d3:93:b8:d8:24:b3:f7:ce:64:a5: 22:44:8d:2b:26:20:50:db:7d:9a:f8:75:0b:c7:7d: ac:25:4d:5f:e9:0d:2f:83:6f:1b:ef:2a:de:70:79: 29:53:e2:1f:ed:8e:9d:61:15:0e:d5:07:09:c5:d5: d7:b6:08:d9:e0:9e:7a:04:91:0f:2b:e6:fd:6b:98: 63:38:22:f1:9c:fd:c4:e3:11:ab:10:a6:bf:b9:af: cb:7e:9a:3f:8f:86:ed:a3:18:f1:77:08:19:11:68: d7:2f:47:7f:58:1e:1c:d3:3c:99:c6:be:ff:bd:11: 88:64:24:dd:4c:25:4c:79:2f:c6:79:a8:1c:69:2c: b0:c8:b4:21:0b:69:9c:19:60:f6:b4:aa:99:fa:c9: 6e:69:ff:2c:f5:14:5e:54:7e:7d:0f:3b:3f:3d:f7: 34:ee:50:02:45:50:39:a2:66:d5:25:16:b6:a3:7c: 83:26:e0:1f:ca:cc:60:42:82:44:26:92:11:a0:5d: a1:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:9C:8B:BB:22:0C:C7:FC:4C:B3:D7:A5:2B:F9:C2:EC:70:5D:55:42 X509v3 Authority Key Identifier: keyid:3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3130332e32382e38302e302f32322d3232203d3e203435373233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.80.0/22 Signature Algorithm: sha256WithRSAEncryption 13:13:11:85:56:56:f1:e8:7d:3c:6f:33:46:f4:49:3c:30:95: 0a:d7:a2:45:c4:b0:f7:6b:18:aa:ca:c4:c1:97:c1:c7:cf:5c: 07:e0:ae:3e:93:7c:14:e9:09:e9:de:11:3d:32:50:66:bd:db: cd:39:64:c2:a6:0f:17:de:9d:d6:c5:08:5f:db:6e:1f:db:be: fc:68:0b:d5:ba:9b:88:32:22:a1:05:e4:8e:c4:10:47:a5:5f: b0:5b:98:15:16:33:58:46:7e:f4:b9:e4:62:0a:10:a7:a2:4b: c1:57:1b:99:ce:c6:8f:90:d1:1f:44:a2:70:4a:68:4c:6a:68: 8b:2d:cd:47:23:ba:cc:6f:04:4b:85:d3:5f:72:96:21:fb:9a: 34:99:b0:bc:7e:f0:fd:69:a5:94:56:6a:89:c6:03:f0:0e:5e: 41:70:20:35:db:81:f7:b6:f4:7d:4a:ea:98:1e:bf:06:23:23: 5d:8d:c7:09:80:d7:41:5d:df:f4:8c:91:f9:83:ca:ff:13:d0: 28:28:c5:e1:e8:c4:ce:ff:e1:94:a9:87:22:c1:6b:b7:03:1d: 8f:78:ba:86:c6:e9:8c:3c:7c:02:b7:26:82:ca:db:5f:ec:b2: b6:ca:9e:81:35:e0:71:55:3d:f0:67:4e:7d:ed:da:f0:7b:88: b2:04:ce:ab -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUZbA8tQkMNRUwgiPKTwsJPQovKm4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Y2RTlCQzVGMTZGMUMzQUI1RkQ2MzZFN0RFMDZGREQ2 NDg5MkMyNTAeFw0yNDAyMjcwMzMwNDdaFw0yNTAyMjUwMzM1NDdaMDMxMTAvBgNV BAMTKDA0OUM4QkJCMjIwQ0M3RkM0Q0IzRDdBNTJCRjlDMkVDNzA1RDU1NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS24VSLTv6Hwiz5u/GZfliYjy2 ssmzWQc0o9HakVGiVODjrlyaKSEwpoHCbKnF/D+MNiwNvp5MPGvTtgDFIW5705O4 2CSz985kpSJEjSsmIFDbfZr4dQvHfawlTV/pDS+DbxvvKt5weSlT4h/tjp1hFQ7V BwnF1de2CNngnnoEkQ8r5v1rmGM4IvGc/cTjEasQpr+5r8t+mj+Phu2jGPF3CBkR aNcvR39YHhzTPJnGvv+9EYhkJN1MJUx5L8Z5qBxpLLDItCELaZwZYPa0qpn6yW5p /yz1FF5Ufn0POz899zTuUAJFUDmiZtUlFrajfIMm4B/KzGBCgkQmkhGgXaHJAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUBJyLuyIMx/xMs9elK/nC7HBdVUIwHwYDVR0j BBgwFoAUP26bxfFvHDq1/WNufeBv3WSJLCUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MWRiMzczMC1mNDk5LTQ0OWYtYjZmMi03YTVkZWI1MzJiMGMvMC8zRjZFOUJDNUYx NkYxQzNBQjVGRDYzNkU3REUwNkZERDY0ODkyQzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Y2RTlCQzVGMTZGMUMzQUI1RkQ2MzZFN0RFMDZGREQ2NDg5 MkMyNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQxZGIzNzMwLWY0OTktNDQ5Zi1i NmYyLTdhNWRlYjUzMmIwYy8wLzMxMzAzMzJlMzIzODJlMzgzMDJlMzAyZjMyMzIy ZDMyMzIyMDNkM2UyMDM0MzUzNzMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnHFAwDQYJKoZIhvcN AQELBQADggEBABMTEYVWVvHofTxvM0b0STwwlQrXokXEsPdrGKrKxMGXwcfPXAfg rj6TfBTpCeneET0yUGa92805ZMKmDxfendbFCF/bbh/bvvxoC9W6m4gyIqEF5I7E EEelX7BbmBUWM1hGfvS55GIKEKeiS8FXG5nOxo+Q0R9EonBKaExqaIstzUcjusxv BEuF019yliH7mjSZsLx+8P1ppZRWaonGA/AOXkFwIDXbgfe29H1K6pgevwYjI12N xwmA10Fd3/SMkfmDyv8T0CgoxeHoxM7/4ZSphyLBa7cDHY94uobG6Yw8fAK3JoLK 21/ssrbKnoE14HFVPfBnTn3t2vB7iLIEzqs= -----END CERTIFICATE-----Generated at Mon Nov 25 00:59:32 2024 by rpki-client on console-ams.rpki-client.org