$ rpki-client -vvf repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3130332e32382e38322e302f32342d3234203d3e203435373233.roa File: 3130332e32382e38322e302f32342d3234203d3e203435373233.roa (raw, json) Hash identifier: r7VKvM3SE0DgtLaU+/G/ZTNpGtOtmn7p0XvQ5eAfSUo= Subject key identifier: D3:24:F4:FF:11:A3:3E:DE:CB:67:68:96:F7:D0:E7:CB:EB:E0:87:65 Certificate issuer: /CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25 Certificate serial: 4E8A60E6E4696B7776F0EBCFCB2EB753F6C66D0A Authority key identifier: 3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3130332e32382e38322e302f32342d3234203d3e203435373233.roa Signing time: Tue 27 Feb 2024 03:19:34 +0000 ROA not before: Tue 27 Feb 2024 03:14:34 +0000 ROA not after: Tue 25 Feb 2025 03:19:34 +0000 asID: 45723 IP address blocks: 103.28.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.crl rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:10:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:8a:60:e6:e4:69:6b:77:76:f0:eb:cf:cb:2e:b7:53:f6:c6:6d:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25 Validity Not Before: Feb 27 03:14:34 2024 GMT Not After : Feb 25 03:19:34 2025 GMT Subject: CN=D324F4FF11A33EDECB676896F7D0E7CBEBE08765 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1d:59:3e:a6:a9:5c:85:04:2d:93:dc:22:27: 74:42:c3:03:ad:b8:26:65:f8:e0:1f:d6:c1:2a:51: ef:3c:ff:cf:64:90:0c:9d:a4:2e:e4:44:85:3d:31: 08:73:a6:fc:a7:c3:05:1b:3b:ce:fc:51:33:12:48: 48:82:d3:fe:d4:4f:5a:e5:b8:0d:ee:72:e6:ad:99: 5f:62:55:ab:07:a9:28:2e:f7:f3:80:09:1b:4b:97: c8:51:d8:22:28:20:7e:24:b1:80:35:f6:14:16:fe: ad:1b:35:70:a1:ad:f6:bb:33:f2:6c:90:aa:37:0a: f8:ff:09:60:a6:e6:a8:46:de:83:30:a9:9f:14:27: 3e:c8:6c:e0:37:41:14:fb:ac:94:af:a7:70:1a:28: d1:19:56:b7:c2:8f:b1:11:11:3b:5b:4d:cf:ad:69: 19:4c:99:b3:62:05:2c:b2:35:e0:cc:30:57:60:e2: 00:40:26:22:f5:91:e1:5f:5b:6e:af:1f:03:d3:e4: f0:4e:e7:1d:86:9c:36:ef:e5:84:fd:8a:61:c1:3a: 7a:4d:fc:84:eb:e2:49:a1:7d:2d:ab:ee:63:24:6f: 37:94:83:58:c4:bc:ac:cd:d0:e1:9e:ba:04:b3:63: c2:e4:7e:eb:02:11:58:17:f3:48:fa:21:23:cf:86: 6e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:24:F4:FF:11:A3:3E:DE:CB:67:68:96:F7:D0:E7:CB:EB:E0:87:65 X509v3 Authority Key Identifier: keyid:3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3130332e32382e38322e302f32342d3234203d3e203435373233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.82.0/24 Signature Algorithm: sha256WithRSAEncryption 02:41:a8:a8:02:27:6c:c2:65:14:00:0a:4d:74:2b:8f:67:b3: 81:96:0e:56:06:af:94:70:27:4c:5c:b7:de:9e:9c:21:e3:ac: 92:18:05:61:8b:bc:7f:18:cf:7f:44:c1:85:40:eb:6d:f3:d2: b4:f7:23:13:c2:13:36:51:e7:5e:41:88:19:eb:73:d0:68:5c: f5:2e:be:af:f5:a6:f4:a7:21:29:f0:c2:81:16:30:fa:bb:6a: 43:96:e5:a2:ca:ab:ec:99:b1:34:87:26:07:10:05:50:82:43: 19:dc:0f:5c:01:a4:c2:0a:a4:bc:28:63:8d:2c:55:d8:fc:3f: ee:01:75:9f:6b:21:da:54:c9:09:85:4c:95:c1:ae:ee:b8:27: f3:a2:68:b6:0c:a4:d9:bc:71:c4:81:26:93:cf:cb:0e:46:3d: 1d:fd:b6:bd:41:c3:94:6e:3d:f5:7d:15:2c:2c:41:0d:93:5f: 96:89:e3:03:94:0c:31:4e:04:ca:60:82:6c:dc:f9:e4:fd:33: c1:e4:50:56:71:9e:12:07:50:8d:47:a5:fe:e9:2e:0b:7e:75: 78:b3:d9:02:6e:9e:6e:8d:e1:a8:6e:7d:c7:2a:84:b7:7e:af: aa:ce:05:5b:e9:f9:1a:72:3f:af:04:c2:33:3c:16:d9:c5:52: cc:4c:df:fe -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUTopg5uRpa3d28OvPyy63U/bGbQowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Y2RTlCQzVGMTZGMUMzQUI1RkQ2MzZFN0RFMDZGREQ2 NDg5MkMyNTAeFw0yNDAyMjcwMzE0MzRaFw0yNTAyMjUwMzE5MzRaMDMxMTAvBgNV BAMTKEQzMjRGNEZGMTFBMzNFREVDQjY3Njg5NkY3RDBFN0NCRUJFMDg3NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8HVk+pqlchQQtk9wiJ3RCwwOt uCZl+OAf1sEqUe88/89kkAydpC7kRIU9MQhzpvynwwUbO878UTMSSEiC0/7UT1rl uA3ucuatmV9iVasHqSgu9/OACRtLl8hR2CIoIH4ksYA19hQW/q0bNXChrfa7M/Js kKo3Cvj/CWCm5qhG3oMwqZ8UJz7IbOA3QRT7rJSvp3AaKNEZVrfCj7ERETtbTc+t aRlMmbNiBSyyNeDMMFdg4gBAJiL1keFfW26vHwPT5PBO5x2GnDbv5YT9imHBOnpN /ITr4kmhfS2r7mMkbzeUg1jEvKzN0OGeugSzY8LkfusCEVgX80j6ISPPhm5bAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU0yT0/xGjPt7LZ2iW99Dny+vgh2UwHwYDVR0j BBgwFoAUP26bxfFvHDq1/WNufeBv3WSJLCUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MWRiMzczMC1mNDk5LTQ0OWYtYjZmMi03YTVkZWI1MzJiMGMvMC8zRjZFOUJDNUYx NkYxQzNBQjVGRDYzNkU3REUwNkZERDY0ODkyQzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Y2RTlCQzVGMTZGMUMzQUI1RkQ2MzZFN0RFMDZGREQ2NDg5 MkMyNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQxZGIzNzMwLWY0OTktNDQ5Zi1i NmYyLTdhNWRlYjUzMmIwYy8wLzMxMzAzMzJlMzIzODJlMzgzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzNzMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnHFIwDQYJKoZIhvcN AQELBQADggEBAAJBqKgCJ2zCZRQACk10K49ns4GWDlYGr5RwJ0xct96enCHjrJIY BWGLvH8Yz39EwYVA623z0rT3IxPCEzZR515BiBnrc9BoXPUuvq/1pvSnISnwwoEW MPq7akOW5aLKq+yZsTSHJgcQBVCCQxncD1wBpMIKpLwoY40sVdj8P+4BdZ9rIdpU yQmFTJXBru64J/OiaLYMpNm8ccSBJpPPyw5GPR39tr1Bw5RuPfV9FSwsQQ2TX5aJ 4wOUDDFOBMpggmzc+eT9M8HkUFZxnhIHUI1Hpf7pLgt+dXiz2QJunm6N4ahufccq hLd+r6rOBVvp+RpyP68EwjM8FtnFUsxM3/4= -----END CERTIFICATE-----Generated at Sun Jun 2 00:28:55 2024 by rpki-client on console-ams.rpki-client.org