$ rpki-client -vvf repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3130332e3137302e39362e302f32332d3233203d3e20313432333638.roa File: 3130332e3137302e39362e302f32332d3233203d3e20313432333638.roa (raw, json) Hash identifier: mrVhACpHu/WNxNlSp/qRsO54mZ9i4VPz1F4b3PG0xWc= Subject key identifier: 5A:81:7B:22:B9:16:49:96:F5:9E:EC:97:B5:F4:0A:29:3F:12:24:A4 Certificate issuer: /CN=3BA10823C279932D7573B930625CD2884433C744 Certificate serial: 245A9AD2B5C82477FD0C46B5169F06B89E9FEA3A Authority key identifier: 3B:A1:08:23:C2:79:93:2D:75:73:B9:30:62:5C:D2:88:44:33:C7:44 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA10823C279932D7573B930625CD2884433C744.cer Subject info access: rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3130332e3137302e39362e302f32332d3233203d3e20313432333638.roa Signing time: Sat 30 Mar 2024 08:00:00 +0000 ROA not before: Sat 30 Mar 2024 07:55:00 +0000 ROA not after: Sat 29 Mar 2025 08:00:00 +0000 asID: 142368 IP address blocks: 103.170.96.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3BA10823C279932D7573B930625CD2884433C744.crl rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3BA10823C279932D7573B930625CD2884433C744.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA10823C279932D7573B930625CD2884433C744.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:44:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:5a:9a:d2:b5:c8:24:77:fd:0c:46:b5:16:9f:06:b8:9e:9f:ea:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BA10823C279932D7573B930625CD2884433C744 Validity Not Before: Mar 30 07:55:00 2024 GMT Not After : Mar 29 08:00:00 2025 GMT Subject: CN=5A817B22B9164996F59EEC97B5F40A293F1224A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:bc:2d:f8:63:33:aa:f2:94:ad:e9:22:60:e6: 34:55:ac:97:aa:d9:32:8a:ac:20:c7:47:5b:00:b7: 22:60:0e:45:1e:f0:c1:09:54:c7:06:43:f7:ec:dc: 07:69:82:12:db:84:6a:0b:62:36:27:5b:90:5e:92: 3b:86:fc:37:7c:d5:f5:a4:3a:fd:ee:a0:3f:29:32: df:e1:4d:e9:6a:63:d6:dd:5a:6f:15:3e:f9:78:e4: 71:4c:22:5a:04:d5:b1:40:93:b5:5a:03:a1:83:60: 92:2d:a7:4b:8d:0e:ee:9d:48:48:a7:c5:18:0f:b9: f8:6b:fd:88:69:79:72:6c:72:0e:7d:b1:e0:b2:bf: 2e:1f:a9:6c:f0:86:40:ac:4e:40:1f:dc:33:90:96: 12:54:12:5b:9b:9a:81:80:a2:cd:50:ac:7c:17:91: 42:fa:9f:f8:09:b0:9f:25:f5:b6:42:4b:ec:ca:ff: 3a:52:e8:1d:95:9a:48:ad:2f:eb:d7:1f:08:03:ef: 0b:50:96:85:46:54:7b:09:c1:40:66:ea:e5:ee:e7: df:ff:43:17:f2:a3:e2:f8:ce:80:bf:56:a9:7b:12: 74:37:fc:8e:a6:99:ed:5a:1e:a0:b6:c4:ef:77:54: f8:14:3d:55:40:22:ff:90:a1:88:1d:8c:d6:86:88: aa:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:81:7B:22:B9:16:49:96:F5:9E:EC:97:B5:F4:0A:29:3F:12:24:A4 X509v3 Authority Key Identifier: keyid:3B:A1:08:23:C2:79:93:2D:75:73:B9:30:62:5C:D2:88:44:33:C7:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3BA10823C279932D7573B930625CD2884433C744.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA10823C279932D7573B930625CD2884433C744.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3130332e3137302e39362e302f32332d3233203d3e20313432333638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.96.0/23 Signature Algorithm: sha256WithRSAEncryption 6b:7a:1b:2f:d4:25:65:cb:61:f7:ac:49:02:d5:53:8b:5b:77: 21:13:ad:ea:01:59:0e:61:56:2d:14:36:2c:57:88:9f:f2:f9: f9:ed:19:aa:32:1c:94:dd:06:fe:e8:4f:a9:9a:e1:1e:07:f2: 13:52:3b:5c:e1:ee:77:88:b6:36:e8:0c:a3:fb:62:42:41:21: ae:ce:85:4d:20:b0:48:8e:7e:b3:2f:6b:7d:61:a9:9e:af:06: a0:7e:bc:18:52:65:d7:da:ba:28:f3:a3:bd:ec:1a:65:a8:35: bb:cf:92:67:6f:6d:f2:b5:65:49:61:34:2f:d3:27:14:84:56: 03:0d:e0:b2:68:46:5a:a8:a8:e3:d7:8d:d9:8d:ac:cc:64:59: 15:5c:c9:ac:e1:13:8e:81:98:ee:5a:11:12:1b:23:d3:9a:3f: 38:04:8b:55:72:2a:dc:77:2e:5b:0e:df:d6:64:70:33:20:ff: e6:dd:17:12:58:62:4e:bb:ec:16:86:e9:08:da:2f:fe:09:c1: d7:ca:15:16:27:10:30:17:15:5f:72:0b:14:6f:7c:3b:97:22: f8:ed:a2:30:c7:3a:3f:88:6f:50:0f:b9:a5:41:90:a7:6a:dd: 33:a7:70:56:55:f6:c5:c2:73:e7:39:2a:07:00:53:ef:d1:08: 18:fe:e4:d9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJFqa0rXIJHf9DEa1Fp8GuJ6f6jowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0JBMTA4MjNDMjc5OTMyRDc1NzNCOTMwNjI1Q0QyODg0 NDMzQzc0NDAeFw0yNDAzMzAwNzU1MDBaFw0yNTAzMjkwODAwMDBaMDMxMTAvBgNV BAMTKDVBODE3QjIyQjkxNjQ5OTZGNTlFRUM5N0I1RjQwQTI5M0YxMjI0QTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxvC34YzOq8pSt6SJg5jRVrJeq 2TKKrCDHR1sAtyJgDkUe8MEJVMcGQ/fs3AdpghLbhGoLYjYnW5BekjuG/Dd81fWk Ov3uoD8pMt/hTelqY9bdWm8VPvl45HFMIloE1bFAk7VaA6GDYJItp0uNDu6dSEin xRgPufhr/YhpeXJscg59seCyvy4fqWzwhkCsTkAf3DOQlhJUElubmoGAos1QrHwX kUL6n/gJsJ8l9bZCS+zK/zpS6B2VmkitL+vXHwgD7wtQloVGVHsJwUBm6uXu59// Qxfyo+L4zoC/Vql7EnQ3/I6mme1aHqC2xO93VPgUPVVAIv+QoYgdjNaGiKpVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWoF7IrkWSZb1nuyXtfQKKT8SJKQwHwYDVR0j BBgwFoAUO6EII8J5ky11c7kwYlzSiEQzx0QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MmQ0OTE3OS00ZDhiLTRkMmQtYWJmNC00MzIzMWRlYjViMDEvMC8zQkExMDgyM0My Nzk5MzJENzU3M0I5MzA2MjVDRDI4ODQ0MzNDNzQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0JBMTA4MjNDMjc5OTMyRDc1NzNCOTMwNjI1Q0QyODg0NDMz Qzc0NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgyZDQ5MTc5LTRkOGItNGQyZC1h YmY0LTQzMjMxZGViNWIwMS8wLzMxMzAzMzJlMzEzNzMwMmUzOTM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMyMzMzNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6pgMA0GCSqG SIb3DQEBCwUAA4IBAQBrehsv1CVly2H3rEkC1VOLW3chE63qAVkOYVYtFDYsV4if 8vn57RmqMhyU3Qb+6E+pmuEeB/ITUjtc4e53iLY26Ayj+2JCQSGuzoVNILBIjn6z L2t9YamerwagfrwYUmXX2roo86O97BplqDW7z5Jnb23ytWVJYTQv0ycUhFYDDeCy aEZaqKjj143ZjazMZFkVXMms4ROOgZjuWhESGyPTmj84BItVcircdy5bDt/WZHAz IP/m3RcSWGJOu+wWhukI2i/+CcHXyhUWJxAwFxVfcgsUb3w7lyL47aIwxzo/iG9Q D7mlQZCnat0zp3BWVfbFwnPnOSoHAFPv0QgY/uTZ -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:02 2024 by rpki-client on console-ams.rpki-client.org