$ rpki-client -vvf repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3130332e3137302e39362e302f32342d3234203d3e20313432333638.roa File: 3130332e3137302e39362e302f32342d3234203d3e20313432333638.roa (raw, json) Hash identifier: UHFueZV41gyc1LCRc98RimiuzN1Ki6T5RHesMPn2lxY= Subject key identifier: C9:DD:43:67:0E:60:0E:D4:46:80:D9:01:F0:5A:1D:26:B2:17:50:DB Certificate issuer: /CN=3BA10823C279932D7573B930625CD2884433C744 Certificate serial: 27C07E4AE8FE99FD13A4AF03BC2CCEDAFEF7408F Authority key identifier: 3B:A1:08:23:C2:79:93:2D:75:73:B9:30:62:5C:D2:88:44:33:C7:44 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA10823C279932D7573B930625CD2884433C744.cer Subject info access: rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3130332e3137302e39362e302f32342d3234203d3e20313432333638.roa Signing time: Sat 30 Mar 2024 11:00:00 +0000 ROA not before: Sat 30 Mar 2024 10:55:00 +0000 ROA not after: Sat 29 Mar 2025 11:00:00 +0000 asID: 142368 IP address blocks: 103.170.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3BA10823C279932D7573B930625CD2884433C744.crl rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3BA10823C279932D7573B930625CD2884433C744.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA10823C279932D7573B930625CD2884433C744.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:44:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:c0:7e:4a:e8:fe:99:fd:13:a4:af:03:bc:2c:ce:da:fe:f7:40:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BA10823C279932D7573B930625CD2884433C744 Validity Not Before: Mar 30 10:55:00 2024 GMT Not After : Mar 29 11:00:00 2025 GMT Subject: CN=C9DD43670E600ED44680D901F05A1D26B21750DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:55:54:1d:2e:4b:93:4b:69:84:cc:7b:8e:76: aa:32:eb:bb:8a:89:bc:87:b4:55:79:f9:18:47:f8: 5f:09:54:5a:17:93:63:30:f5:75:ee:77:35:aa:f7: 9e:d6:3a:08:95:78:02:df:af:b6:3e:41:bc:f7:36: 41:fa:36:ce:72:1e:98:2f:dd:a2:d9:8f:42:ed:22: 5d:d1:41:22:7c:46:c2:b6:92:ca:ba:7c:f6:23:09: e2:4b:f7:22:64:20:ba:4e:f9:87:31:54:da:6d:9c: 48:ce:ea:43:b4:8c:93:38:00:4a:42:0a:3b:2c:54: 5f:fc:a0:39:77:93:82:d6:47:5e:fe:ce:b5:86:c6: c7:f9:fb:66:49:a0:51:59:99:c0:5b:a5:81:a0:c2: a2:80:0e:f2:30:b5:76:5d:60:f1:ca:ce:b5:b1:d2: 18:d6:b1:fb:0d:98:52:1d:5d:5c:ee:23:cc:1e:ca: 21:b4:74:1c:5a:74:ad:08:d4:01:2a:50:ef:7e:93: 04:23:8e:2c:b6:cc:ec:8c:24:bf:0a:8e:de:83:f4: 51:16:9a:25:1c:8e:e3:62:a3:22:2f:af:f4:9f:18: 53:84:22:3e:96:6d:72:e7:58:b3:59:68:91:42:a2: 0d:f1:84:72:43:f0:26:b1:95:52:4a:a0:95:4d:d1: 25:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:DD:43:67:0E:60:0E:D4:46:80:D9:01:F0:5A:1D:26:B2:17:50:DB X509v3 Authority Key Identifier: keyid:3B:A1:08:23:C2:79:93:2D:75:73:B9:30:62:5C:D2:88:44:33:C7:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3BA10823C279932D7573B930625CD2884433C744.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA10823C279932D7573B930625CD2884433C744.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3130332e3137302e39362e302f32342d3234203d3e20313432333638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.96.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:99:2d:15:db:2d:08:8c:d8:02:f3:38:5d:da:5e:00:00:3a: 25:c0:2b:0c:7c:60:c2:cc:22:89:ad:37:8c:24:b1:2a:0c:5a: 66:bd:0b:84:e8:18:ef:32:a5:6c:ff:8f:c1:36:e7:02:e9:78: 03:fc:ad:92:9c:b6:2f:37:89:ab:21:b9:bd:82:ff:ba:12:86: 9f:0a:30:b6:52:00:53:28:ab:98:87:f8:17:ae:0e:56:7c:6d: cf:f9:2c:9a:d7:6e:51:d6:26:9d:06:3b:66:cc:3b:fc:72:77: e4:31:b5:79:ae:e3:26:6b:25:dc:10:1e:9b:ec:24:49:d4:e1: d5:1f:f9:a1:b1:00:ce:bd:a8:5f:79:8a:75:c8:f9:42:c0:06: 06:ea:5b:24:d5:0f:e2:b0:0b:f1:60:7b:bc:a7:1d:aa:fc:d9: 9f:9b:dc:73:50:78:38:85:2e:1a:1a:ab:b6:65:b6:6c:0e:9b: ff:bb:08:e6:d3:b0:05:dc:66:fe:63:fc:2e:0b:79:50:c8:79: 5b:0a:ef:85:9c:3d:e3:99:7b:9c:d7:49:d3:5e:15:33:39:00: c2:50:cd:6d:3a:6e:f6:d2:1a:ee:81:a1:a8:cb:48:88:af:79: 62:4b:33:54:89:24:df:99:5d:12:af:f5:d8:39:25:f1:89:71: a0:c3:1b:24 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJ8B+Suj+mf0TpK8DvCzO2v73QI8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0JBMTA4MjNDMjc5OTMyRDc1NzNCOTMwNjI1Q0QyODg0 NDMzQzc0NDAeFw0yNDAzMzAxMDU1MDBaFw0yNTAzMjkxMTAwMDBaMDMxMTAvBgNV BAMTKEM5REQ0MzY3MEU2MDBFRDQ0NjgwRDkwMUYwNUExRDI2QjIxNzUwREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKVVQdLkuTS2mEzHuOdqoy67uK ibyHtFV5+RhH+F8JVFoXk2Mw9XXudzWq957WOgiVeALfr7Y+Qbz3NkH6Ns5yHpgv 3aLZj0LtIl3RQSJ8RsK2ksq6fPYjCeJL9yJkILpO+YcxVNptnEjO6kO0jJM4AEpC CjssVF/8oDl3k4LWR17+zrWGxsf5+2ZJoFFZmcBbpYGgwqKADvIwtXZdYPHKzrWx 0hjWsfsNmFIdXVzuI8weyiG0dBxadK0I1AEqUO9+kwQjjiy2zOyMJL8Kjt6D9FEW miUcjuNioyIvr/SfGFOEIj6WbXLnWLNZaJFCog3xhHJD8CaxlVJKoJVN0SVVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyd1DZw5gDtRGgNkB8FodJrIXUNswHwYDVR0j BBgwFoAUO6EII8J5ky11c7kwYlzSiEQzx0QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MmQ0OTE3OS00ZDhiLTRkMmQtYWJmNC00MzIzMWRlYjViMDEvMC8zQkExMDgyM0My Nzk5MzJENzU3M0I5MzA2MjVDRDI4ODQ0MzNDNzQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0JBMTA4MjNDMjc5OTMyRDc1NzNCOTMwNjI1Q0QyODg0NDMz Qzc0NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgyZDQ5MTc5LTRkOGItNGQyZC1h YmY0LTQzMjMxZGViNWIwMS8wLzMxMzAzMzJlMzEzNzMwMmUzOTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6pgMA0GCSqG SIb3DQEBCwUAA4IBAQCPmS0V2y0IjNgC8zhd2l4AADolwCsMfGDCzCKJrTeMJLEq DFpmvQuE6BjvMqVs/4/BNucC6XgD/K2SnLYvN4mrIbm9gv+6EoafCjC2UgBTKKuY h/gXrg5WfG3P+Sya125R1iadBjtmzDv8cnfkMbV5ruMmayXcEB6b7CRJ1OHVH/mh sQDOvahfeYp1yPlCwAYG6lsk1Q/isAvxYHu8px2q/Nmfm9xzUHg4hS4aGqu2ZbZs Dpv/uwjm07AF3Gb+Y/wuC3lQyHlbCu+FnD3jmXuc10nTXhUzOQDCUM1tOm720hru gaGoy0iIr3liSzNUiSTfmV0Sr/XYOSXxiXGgwxsk -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:02 2024 by rpki-client on console-ams.rpki-client.org