$ rpki-client -vvf repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3130332e3232372e3138362e302f32332d3233203d3e20313432333730.roa File: 3130332e3232372e3138362e302f32332d3233203d3e20313432333730.roa (raw, json) Hash identifier: ndDFlzQ0IuA3S69ND6C8Jsle8tJZdiO7+mspElCpg00= Subject key identifier: F9:1F:3E:DF:22:FA:30:73:ED:95:D7:91:ED:AE:1E:8F:F1:8B:04:60 Certificate issuer: /CN=3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67 Certificate serial: 37B1BDBCE8FB6C7F073D78CF6574802FA6CAD0D0 Authority key identifier: 3A:5E:DA:CC:61:BD:7D:05:EB:D4:24:BB:DB:F5:1D:4C:50:85:2A:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3130332e3232372e3138362e302f32332d3233203d3e20313432333730.roa Signing time: Fri 14 Jun 2024 04:00:57 +0000 ROA not before: Fri 14 Jun 2024 03:55:57 +0000 ROA not after: Fri 13 Jun 2025 04:00:57 +0000 asID: 142370 IP address blocks: 103.227.186.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.crl rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:b1:bd:bc:e8:fb:6c:7f:07:3d:78:cf:65:74:80:2f:a6:ca:d0:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67 Validity Not Before: Jun 14 03:55:57 2024 GMT Not After : Jun 13 04:00:57 2025 GMT Subject: CN=F91F3EDF22FA3073ED95D791EDAE1E8FF18B0460 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4b:9d:46:ee:9a:3d:0b:6f:58:6d:91:2c:8e: c3:15:76:ae:c6:bf:e7:01:f3:59:2a:40:a0:77:8c: 1c:83:e1:f8:c2:9e:68:11:e6:7e:6e:7f:96:58:0b: d7:08:c7:d0:56:ae:66:92:b2:4f:ab:35:00:7c:60: 00:7b:65:d1:ec:c8:2b:9a:e2:7c:34:4b:0c:c5:66: 27:7e:36:8a:40:30:17:a5:a2:9c:27:6f:82:c0:3d: 66:19:13:29:14:d3:85:8c:7b:b1:7c:b4:a5:c3:d4: 7b:87:33:d4:ee:c5:f2:0f:2f:ae:74:fa:1a:3e:df: fb:af:d7:3f:0a:29:13:53:1f:a3:06:ae:2a:0e:03: 75:94:b0:d4:f1:f1:61:b8:b6:12:79:8a:ee:e8:5f: 6e:72:3e:17:1b:5d:70:46:17:26:c1:36:4f:ed:6b: 85:d8:37:2b:38:36:30:1c:b8:a0:40:53:4a:a1:36: d4:18:e8:bb:67:5f:25:1e:0c:86:51:65:30:d0:de: 63:79:60:ce:59:4d:99:14:82:83:44:f9:64:53:e2: f3:c2:f8:c4:8e:a2:73:c7:9d:42:55:c9:2b:cb:3a: 4d:72:ce:5d:64:99:d9:20:22:58:b3:a6:ea:c4:06: ac:96:13:8e:7e:b3:f9:76:da:e3:fa:f8:46:13:30: b9:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:1F:3E:DF:22:FA:30:73:ED:95:D7:91:ED:AE:1E:8F:F1:8B:04:60 X509v3 Authority Key Identifier: keyid:3A:5E:DA:CC:61:BD:7D:05:EB:D4:24:BB:DB:F5:1D:4C:50:85:2A:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3130332e3232372e3138362e302f32332d3233203d3e20313432333730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.186.0/23 Signature Algorithm: sha256WithRSAEncryption 34:d9:31:49:5d:54:fe:3f:7b:ec:bc:54:4c:5a:0a:57:ff:11: 23:25:22:d7:e6:29:15:3f:70:4a:f7:08:8b:da:89:45:fc:51: af:9e:5a:4f:5f:75:57:bc:31:32:84:0d:74:f6:02:4f:72:e5: 1f:7f:bd:8f:38:da:89:0f:30:47:a4:c7:f9:9a:fc:a5:3f:d9: 78:94:0e:21:69:42:e4:db:6c:ce:ef:70:5a:63:4c:5f:1f:65: e3:c8:59:cc:3a:3a:55:e8:ae:6a:85:0b:dd:d7:9a:6e:70:ff: 94:9a:c5:57:5a:9c:d0:41:f4:dd:b2:60:3a:69:f5:4e:6f:86: 84:90:d2:72:16:d2:f3:f3:9a:64:2f:a7:0d:42:01:18:ac:6e: e3:43:da:68:1c:51:aa:9b:1e:4c:eb:0b:d5:3e:af:29:6d:10: 48:0c:09:39:bb:92:92:e2:5d:d7:98:bb:59:b8:25:95:c9:f0: 44:09:66:bc:c3:7d:78:9b:bf:4a:41:8c:a5:cb:c5:68:32:3a: 91:59:21:b0:7b:d5:47:f1:ac:1d:96:42:25:2f:9b:c4:8c:85: 02:13:14:0e:bd:84:88:ed:39:cb:2c:4f:00:c4:e4:14:6d:ab: c1:fb:3a:52:70:d5:93:5c:ed:cc:5f:b1:cd:9b:f5:0d:7b:8a: 87:9d:69:22 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUN7G9vOj7bH8HPXjPZXSAL6bK0NAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0E1RURBQ0M2MUJEN0QwNUVCRDQyNEJCREJGNTFENEM1 MDg1MkE2NzAeFw0yNDA2MTQwMzU1NTdaFw0yNTA2MTMwNDAwNTdaMDMxMTAvBgNV BAMTKEY5MUYzRURGMjJGQTMwNzNFRDk1RDc5MUVEQUUxRThGRjE4QjA0NjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBS51G7po9C29YbZEsjsMVdq7G v+cB81kqQKB3jByD4fjCnmgR5n5uf5ZYC9cIx9BWrmaSsk+rNQB8YAB7ZdHsyCua 4nw0SwzFZid+NopAMBelopwnb4LAPWYZEykU04WMe7F8tKXD1HuHM9TuxfIPL650 +ho+3/uv1z8KKRNTH6MGrioOA3WUsNTx8WG4thJ5iu7oX25yPhcbXXBGFybBNk/t a4XYNys4NjAcuKBAU0qhNtQY6LtnXyUeDIZRZTDQ3mN5YM5ZTZkUgoNE+WRT4vPC +MSOonPHnUJVySvLOk1yzl1kmdkgIlizpurEBqyWE45+s/l22uP6+EYTMLk5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU+R8+3yL6MHPtldeR7a4ej/GLBGAwHwYDVR0j BBgwFoAUOl7azGG9fQXr1CS72/UdTFCFKmcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjM4OGY2ZS05OTc0LTQ0NTctYWY0Yi01YzljODJmNTBlOTcvMC8zQTVFREFDQzYx QkQ3RDA1RUJENDI0QkJEQkY1MUQ0QzUwODUyQTY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0E1RURBQ0M2MUJEN0QwNUVCRDQyNEJCREJGNTFENEM1MDg1 MkE2Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiMzg4ZjZlLTk5NzQtNDQ1Ny1h ZjRiLTVjOWM4MmY1MGU5Ny8wLzMxMzAzMzJlMzIzMjM3MmUzMTM4MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzIzMzM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn47owDQYJ KoZIhvcNAQELBQADggEBADTZMUldVP4/e+y8VExaClf/ESMlItfmKRU/cEr3CIva iUX8Ua+eWk9fdVe8MTKEDXT2Ak9y5R9/vY842okPMEekx/ma/KU/2XiUDiFpQuTb bM7vcFpjTF8fZePIWcw6OlXormqFC93Xmm5w/5SaxVdanNBB9N2yYDpp9U5vhoSQ 0nIW0vPzmmQvpw1CARisbuND2mgcUaqbHkzrC9U+ryltEEgMCTm7kpLiXdeYu1m4 JZXJ8EQJZrzDfXibv0pBjKXLxWgyOpFZIbB71UfxrB2WQiUvm8SMhQITFA69hIjt OcssTwDE5BRtq8H7OlJw1ZNc7cxfsc2b9Q17ioedaSI= -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:01 2024 by rpki-client on console-ams.rpki-client.org