$ rpki-client -vvf repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3130332e32382e38332e302f32342d3234203d3e203435373233.roa File: 3130332e32382e38332e302f32342d3234203d3e203435373233.roa (raw, json) Hash identifier: mRzBEM1oy53fQ+l9as6sV5RVNiVRGAdv4kVzbjbOmXg= Subject key identifier: 8F:E2:9F:91:89:83:F4:F0:3B:86:D2:8A:47:7A:28:BF:87:DA:B4:27 Certificate issuer: /CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25 Certificate serial: 1B0944C41CF73A712058B3CD0CCAA0AF82475BF8 Authority key identifier: 3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3130332e32382e38332e302f32342d3234203d3e203435373233.roa Signing time: Tue 27 Feb 2024 03:21:15 +0000 ROA not before: Tue 27 Feb 2024 03:16:15 +0000 ROA not after: Tue 25 Feb 2025 03:21:15 +0000 asID: 45723 IP address blocks: 103.28.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.crl rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:09:44:c4:1c:f7:3a:71:20:58:b3:cd:0c:ca:a0:af:82:47:5b:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25 Validity Not Before: Feb 27 03:16:15 2024 GMT Not After : Feb 25 03:21:15 2025 GMT Subject: CN=8FE29F918983F4F03B86D28A477A28BF87DAB427 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:15:b1:2b:b6:30:90:e7:8e:1c:d8:42:7c:2b: 00:4c:e6:5b:1c:d0:70:1b:85:dc:9c:d9:d4:32:1d: 7a:e2:6c:c0:4c:38:f6:5c:64:ef:8c:cc:63:3e:e8: a2:41:97:e8:93:ca:9d:e0:35:7c:70:9a:b3:84:40: ce:3e:46:88:5f:d0:d3:89:1e:82:bf:9e:a4:51:05: 80:a3:4b:e1:80:6a:2c:44:d8:87:29:f6:0d:c9:4b: 34:69:9f:00:1e:d5:e9:36:25:e3:70:19:49:67:db: c4:90:86:59:dc:6f:e0:05:38:81:4e:f0:18:94:fb: ee:9d:0c:10:98:c7:1e:85:32:9d:16:9a:8d:53:ae: ce:4f:4e:a9:9b:73:92:1e:d2:64:10:f9:d6:c3:43: cd:99:54:43:96:37:c4:ab:80:f6:6b:50:0b:86:cc: 7c:99:dd:db:0e:95:a9:b9:fd:df:3a:c2:57:3a:e6: e3:97:75:ae:4d:68:91:af:1b:50:6c:dd:96:b6:f7: a9:68:a5:ab:7a:2b:8c:f6:49:9b:15:3f:55:97:c3: c3:3e:e2:e9:6a:d7:1c:53:bd:e2:c3:34:e0:b9:c6: e3:fa:e2:9a:10:c8:98:ad:18:e9:2b:af:e4:cb:f2: 33:a4:1b:1e:99:b7:e0:15:0b:75:95:77:f2:06:7c: 60:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:E2:9F:91:89:83:F4:F0:3B:86:D2:8A:47:7A:28:BF:87:DA:B4:27 X509v3 Authority Key Identifier: keyid:3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3130332e32382e38332e302f32342d3234203d3e203435373233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.83.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:e2:88:9d:92:5c:dc:a8:1d:49:02:c4:02:c8:0d:d6:f4:b2: 00:c2:14:0d:ff:cb:cb:5b:80:a0:00:ec:90:fe:38:67:06:45: 44:14:23:e5:3b:be:9e:60:51:0a:54:cc:80:0e:86:9b:35:7d: 76:28:ea:06:fb:c2:5c:45:1c:7d:89:6c:a1:de:af:ba:f3:3c: 85:3e:7d:cf:cb:51:90:f6:80:1c:e5:0a:b9:2e:36:a9:ed:8b: 0b:97:30:f8:8d:69:da:fe:6a:bb:54:57:b2:e8:4e:06:f1:ef: c2:46:1f:68:3a:25:fa:8e:7f:da:a9:73:72:b3:d3:2b:4e:7f: 0c:57:66:73:7a:25:34:60:03:df:6f:68:f0:97:b6:f5:76:29: 59:d8:a6:29:f1:e4:18:5a:d7:95:1c:15:a3:b1:41:b6:db:ee: be:d8:f4:e6:4e:3d:fa:1b:04:f7:f0:f3:a0:82:10:07:c1:d8: 61:4e:d4:e6:03:6b:51:9b:a6:0b:6e:f1:0f:44:98:9a:96:cb: cb:48:8b:65:17:96:e2:c7:ea:fc:4d:b6:8b:d5:8b:46:45:4b: 6b:e4:67:cf:86:aa:49:a9:dd:6e:c3:f2:fd:1f:4a:15:1b:df: 64:04:75:dc:d4:61:bd:0b:06:e0:14:8c:98:a6:10:1e:44:2e: 28:48:c2:b2 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUGwlExBz3OnEgWLPNDMqgr4JHW/gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Y2RTlCQzVGMTZGMUMzQUI1RkQ2MzZFN0RFMDZGREQ2 NDg5MkMyNTAeFw0yNDAyMjcwMzE2MTVaFw0yNTAyMjUwMzIxMTVaMDMxMTAvBgNV BAMTKDhGRTI5RjkxODk4M0Y0RjAzQjg2RDI4QTQ3N0EyOEJGODdEQUI0MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUFbErtjCQ544c2EJ8KwBM5lsc 0HAbhdyc2dQyHXribMBMOPZcZO+MzGM+6KJBl+iTyp3gNXxwmrOEQM4+Rohf0NOJ HoK/nqRRBYCjS+GAaixE2Icp9g3JSzRpnwAe1ek2JeNwGUln28SQhlncb+AFOIFO 8BiU++6dDBCYxx6FMp0Wmo1Trs5PTqmbc5Ie0mQQ+dbDQ82ZVEOWN8SrgPZrUAuG zHyZ3dsOlam5/d86wlc65uOXda5NaJGvG1Bs3Za296lopat6K4z2SZsVP1WXw8M+ 4ulq1xxTveLDNOC5xuP64poQyJitGOkrr+TL8jOkGx6Zt+AVC3WVd/IGfGDRAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUj+KfkYmD9PA7htKKR3oov4fatCcwHwYDVR0j BBgwFoAUP26bxfFvHDq1/WNufeBv3WSJLCUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MWRiMzczMC1mNDk5LTQ0OWYtYjZmMi03YTVkZWI1MzJiMGMvMC8zRjZFOUJDNUYx NkYxQzNBQjVGRDYzNkU3REUwNkZERDY0ODkyQzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Y2RTlCQzVGMTZGMUMzQUI1RkQ2MzZFN0RFMDZGREQ2NDg5 MkMyNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQxZGIzNzMwLWY0OTktNDQ5Zi1i NmYyLTdhNWRlYjUzMmIwYy8wLzMxMzAzMzJlMzIzODJlMzgzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzNzMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnHFMwDQYJKoZIhvcN AQELBQADggEBAI7iiJ2SXNyoHUkCxALIDdb0sgDCFA3/y8tbgKAA7JD+OGcGRUQU I+U7vp5gUQpUzIAOhps1fXYo6gb7wlxFHH2JbKHer7rzPIU+fc/LUZD2gBzlCrku NqntiwuXMPiNadr+artUV7LoTgbx78JGH2g6JfqOf9qpc3Kz0ytOfwxXZnN6JTRg A99vaPCXtvV2KVnYpinx5Bha15UcFaOxQbbb7r7Y9OZOPfobBPfw86CCEAfB2GFO 1OYDa1Gbpgtu8Q9EmJqWy8tIi2UXluLH6vxNtovVi0ZFS2vkZ8+Gqkmp3W7D8v0f ShUb32QEddzUYb0LBuAUjJimEB5ELihIwrI= -----END CERTIFICATE-----Generated at Mon Nov 25 00:59:32 2024 by rpki-client on console-ams.rpki-client.org