$ rpki-client -vvf repo-rpki.idnic.net/repo/4261fabb-d46f-4f8c-8100-714c20e7b3ca/0/3130332e3233362e3138382e302f32322d3234203d3e203633383738.roa File: 3130332e3233362e3138382e302f32322d3234203d3e203633383738.roa (raw, json) Hash identifier: hy7MHDWEDjxGDvk+/qutfkgc+zuRrswWd+OhRhF5XYM= Subject key identifier: D4:72:94:2D:2D:50:70:E9:25:38:E7:BF:51:21:5D:7B:4E:41:1F:E0 Certificate issuer: /CN=3A0EA2A21CE423A24D4D08ADC10869F12C9AD4A2 Certificate serial: 3EC604883F204BBE12C26A74E43D347036853CC8 Authority key identifier: 3A:0E:A2:A2:1C:E4:23:A2:4D:4D:08:AD:C1:08:69:F1:2C:9A:D4:A2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A0EA2A21CE423A24D4D08ADC10869F12C9AD4A2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4261fabb-d46f-4f8c-8100-714c20e7b3ca/0/3130332e3233362e3138382e302f32322d3234203d3e203633383738.roa Signing time: Fri 02 Aug 2024 10:02:15 +0000 ROA not before: Fri 02 Aug 2024 09:57:15 +0000 ROA not after: Fri 01 Aug 2025 10:02:15 +0000 asID: 63878 IP address blocks: 103.236.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4261fabb-d46f-4f8c-8100-714c20e7b3ca/0/3A0EA2A21CE423A24D4D08ADC10869F12C9AD4A2.crl rsync://repo-rpki.idnic.net/repo/4261fabb-d46f-4f8c-8100-714c20e7b3ca/0/3A0EA2A21CE423A24D4D08ADC10869F12C9AD4A2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A0EA2A21CE423A24D4D08ADC10869F12C9AD4A2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 04:05:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:c6:04:88:3f:20:4b:be:12:c2:6a:74:e4:3d:34:70:36:85:3c:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3A0EA2A21CE423A24D4D08ADC10869F12C9AD4A2 Validity Not Before: Aug 2 09:57:15 2024 GMT Not After : Aug 1 10:02:15 2025 GMT Subject: CN=D472942D2D5070E92538E7BF51215D7B4E411FE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:78:c5:dd:06:71:36:6f:c3:20:0d:78:76:cf: ec:5c:64:3d:28:24:f0:de:88:e5:b5:91:4e:04:d1: d9:c7:49:85:7d:e4:aa:ab:a8:77:e5:ef:99:ca:3c: 76:66:bd:aa:b7:49:18:af:8b:f1:08:3e:bc:32:e0: 29:3e:50:a7:23:aa:6d:6b:4b:54:d7:7e:72:1d:70: 52:9a:70:9e:89:40:45:c5:86:95:d8:19:e9:9f:96: f7:95:da:aa:07:14:76:a6:e8:7b:a9:28:46:26:c4: 38:be:89:4f:12:1e:a5:df:8d:44:8e:ba:11:52:7a: 81:92:e7:6f:d9:37:ab:61:c1:67:32:c9:6b:29:3b: 7d:33:bb:cd:ff:13:bd:d2:e4:b8:07:e7:d5:77:75: 35:b7:5d:cc:6f:ac:32:d8:ab:93:a3:38:d6:12:c2: b7:8e:3c:43:dd:f9:be:24:71:e0:ee:05:4b:79:7d: 9e:a5:04:72:0d:2f:80:b1:e9:d4:12:09:71:f3:dd: 30:60:36:3f:86:ff:36:86:c5:f5:16:99:05:78:fb: 4e:8e:8c:35:55:4b:df:93:13:df:e0:91:5d:1f:cd: aa:f4:c1:19:7c:67:b2:06:37:f7:ea:7b:57:02:69: 2c:b0:ca:ee:05:be:59:aa:29:be:07:9c:cc:29:72: e9:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:72:94:2D:2D:50:70:E9:25:38:E7:BF:51:21:5D:7B:4E:41:1F:E0 X509v3 Authority Key Identifier: keyid:3A:0E:A2:A2:1C:E4:23:A2:4D:4D:08:AD:C1:08:69:F1:2C:9A:D4:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4261fabb-d46f-4f8c-8100-714c20e7b3ca/0/3A0EA2A21CE423A24D4D08ADC10869F12C9AD4A2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A0EA2A21CE423A24D4D08ADC10869F12C9AD4A2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4261fabb-d46f-4f8c-8100-714c20e7b3ca/0/3130332e3233362e3138382e302f32322d3234203d3e203633383738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.236.188.0/22 Signature Algorithm: sha256WithRSAEncryption 76:07:84:3a:a6:a7:40:7c:a2:ba:d0:2b:4b:c8:19:f8:32:21: 20:3d:13:51:ce:9d:ff:fe:fe:ea:ef:f9:38:a0:a7:0e:0f:92: ef:55:43:d3:cc:f5:73:8c:fd:f1:c2:94:f5:ae:b2:78:46:7a: 82:24:c1:22:05:dc:19:8e:aa:76:d9:01:93:8e:87:e0:82:95: b1:fc:4d:45:72:07:91:1b:65:9b:ea:51:ee:68:bb:be:14:a1: be:6c:3b:8e:b1:95:1c:e8:7b:33:3c:2f:17:b0:c0:1f:4e:5a: 28:fc:bc:b1:13:06:15:5a:6c:2e:8e:b1:2d:19:08:ce:4c:4e: 65:56:f7:3f:23:2b:36:78:38:c8:86:00:9b:f6:b5:39:0e:6b: 44:2d:11:69:18:8e:76:9f:11:d7:92:d0:de:76:68:b4:79:85: 41:d9:0a:1a:d3:3c:55:50:d9:c5:87:7c:b0:db:4d:a4:3a:a9: 3d:f5:c0:4a:33:75:cc:df:0f:b4:72:9c:ef:7d:0f:a2:a0:7f: 43:f8:f5:ad:b1:9d:5d:11:bb:33:66:60:33:18:0b:38:c6:bc: 6a:e1:b8:9d:06:f6:ad:20:af:75:9b:c4:a5:f1:bd:ea:fd:d0: 6d:49:27:52:b3:0e:f7:20:f1:b6:29:c1:ad:04:f1:c7:2b:d8: 3a:2b:d6:0d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPsYEiD8gS74Swmp05D00cDaFPMgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0EwRUEyQTIxQ0U0MjNBMjRENEQwOEFEQzEwODY5RjEy QzlBRDRBMjAeFw0yNDA4MDIwOTU3MTVaFw0yNTA4MDExMDAyMTVaMDMxMTAvBgNV BAMTKEQ0NzI5NDJEMkQ1MDcwRTkyNTM4RTdCRjUxMjE1RDdCNEU0MTFGRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjeMXdBnE2b8MgDXh2z+xcZD0o JPDeiOW1kU4E0dnHSYV95KqrqHfl75nKPHZmvaq3SRivi/EIPrwy4Ck+UKcjqm1r S1TXfnIdcFKacJ6JQEXFhpXYGemflveV2qoHFHam6HupKEYmxDi+iU8SHqXfjUSO uhFSeoGS52/ZN6thwWcyyWspO30zu83/E73S5LgH59V3dTW3XcxvrDLYq5OjONYS wreOPEPd+b4kceDuBUt5fZ6lBHINL4Cx6dQSCXHz3TBgNj+G/zaGxfUWmQV4+06O jDVVS9+TE9/gkV0fzar0wRl8Z7IGN/fqe1cCaSywyu4FvlmqKb4HnMwpcumrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1HKULS1QcOklOOe/USFde05BH+AwHwYDVR0j BBgwFoAUOg6iohzkI6JNTQitwQhp8Sya1KIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MjYxZmFiYi1kNDZmLTRmOGMtODEwMC03MTRjMjBlN2IzY2EvMC8zQTBFQTJBMjFD RTQyM0EyNEQ0RDA4QURDMTA4NjlGMTJDOUFENEEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0EwRUEyQTIxQ0U0MjNBMjRENEQwOEFEQzEwODY5RjEyQzlB RDRBMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQyNjFmYWJiLWQ0NmYtNGY4Yy04 MTAwLTcxNGMyMGU3YjNjYS8wLzMxMzAzMzJlMzIzMzM2MmUzMTM4MzgyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNjMzMzgzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+y8MA0GCSqG SIb3DQEBCwUAA4IBAQB2B4Q6pqdAfKK60CtLyBn4MiEgPRNRzp3//v7q7/k4oKcO D5LvVUPTzPVzjP3xwpT1rrJ4RnqCJMEiBdwZjqp22QGTjofggpWx/E1FcgeRG2Wb 6lHuaLu+FKG+bDuOsZUc6HszPC8XsMAfTloo/LyxEwYVWmwujrEtGQjOTE5lVvc/ Iys2eDjIhgCb9rU5DmtELRFpGI52nxHXktDedmi0eYVB2Qoa0zxVUNnFh3yw202k Oqk99cBKM3XM3w+0cpzvfQ+ioH9D+PWtsZ1dEbszZmAzGAs4xrxq4bidBvatIK91 m8Sl8b3q/dBtSSdSsw73IPG2KcGtBPHHK9g6K9YN -----END CERTIFICATE-----Generated at Thu Nov 21 05:34:31 2024 by rpki-client on console-ams.rpki-client.org