$ rpki-client -vvf repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3130332e3137302e39372e302f32342d3234203d3e20313432333638.roa File: 3130332e3137302e39372e302f32342d3234203d3e20313432333638.roa (raw, json) Hash identifier: GkmzVJBaIgbw7nzYmwXM0E1exlYkiuB+jZ9e6JDS93A= Subject key identifier: FF:F6:69:EE:C9:65:79:5D:A9:85:F7:D1:2C:D5:4F:7F:A7:9B:AE:35 Certificate issuer: /CN=3BA10823C279932D7573B930625CD2884433C744 Certificate serial: 7DF6A5F694AA2CB3B94252B9CD143070EF8DD89E Authority key identifier: 3B:A1:08:23:C2:79:93:2D:75:73:B9:30:62:5C:D2:88:44:33:C7:44 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA10823C279932D7573B930625CD2884433C744.cer Subject info access: rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3130332e3137302e39372e302f32342d3234203d3e20313432333638.roa Signing time: Sat 30 Mar 2024 11:00:00 +0000 ROA not before: Sat 30 Mar 2024 10:55:00 +0000 ROA not after: Sat 29 Mar 2025 11:00:00 +0000 asID: 142368 IP address blocks: 103.170.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3BA10823C279932D7573B930625CD2884433C744.crl rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3BA10823C279932D7573B930625CD2884433C744.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA10823C279932D7573B930625CD2884433C744.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:f6:a5:f6:94:aa:2c:b3:b9:42:52:b9:cd:14:30:70:ef:8d:d8:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BA10823C279932D7573B930625CD2884433C744 Validity Not Before: Mar 30 10:55:00 2024 GMT Not After : Mar 29 11:00:00 2025 GMT Subject: CN=FFF669EEC965795DA985F7D12CD54F7FA79BAE35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:0a:7c:e7:e1:d7:38:a1:31:a5:ea:51:ca:49: 5a:70:9d:02:96:92:d4:9d:13:ba:43:32:99:81:51: 11:77:dc:56:46:00:0f:31:03:cc:26:bf:3a:1b:5b: a4:97:7b:41:b6:da:d2:31:64:e2:be:8b:bf:4c:bc: b7:bc:2b:e3:83:75:de:61:86:96:91:80:f7:97:ec: b0:8c:0f:97:59:dc:4f:9a:b8:12:24:96:73:4c:98: 00:ee:f3:32:73:15:f5:98:8e:d7:2c:50:62:63:80: f7:53:ca:81:5f:47:63:77:78:bc:1b:a6:f3:14:a7: 52:2c:92:3a:89:90:b9:88:9b:ab:76:9b:bc:9b:c8: 48:d1:fc:0a:b6:cb:a2:81:e4:66:70:e5:e5:70:6f: 4f:4d:0e:c1:9e:6a:4f:7e:43:a7:0e:e6:c8:08:0a: 33:e0:2c:41:ac:4d:79:7a:78:5a:00:a3:b7:94:75: 41:88:34:b0:b3:14:51:eb:c5:af:ba:44:d9:56:98: eb:eb:57:24:cf:28:4c:b8:77:66:6b:c8:ec:8b:de: 99:84:b8:90:13:bd:00:68:3e:08:a1:0c:f0:90:19: 47:de:c8:e1:0a:1f:35:3a:28:32:0a:bd:5c:18:d2: ea:88:d7:9a:26:87:15:d9:d0:0a:93:7d:42:d9:e2: da:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:F6:69:EE:C9:65:79:5D:A9:85:F7:D1:2C:D5:4F:7F:A7:9B:AE:35 X509v3 Authority Key Identifier: keyid:3B:A1:08:23:C2:79:93:2D:75:73:B9:30:62:5C:D2:88:44:33:C7:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3BA10823C279932D7573B930625CD2884433C744.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA10823C279932D7573B930625CD2884433C744.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3130332e3137302e39372e302f32342d3234203d3e20313432333638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.97.0/24 Signature Algorithm: sha256WithRSAEncryption 28:cf:1c:c3:f6:ef:86:26:ce:42:d6:e7:6d:2a:68:d3:09:57: a5:6f:a4:3a:30:30:dd:a4:f6:33:cb:d1:62:64:08:f3:5f:1a: fe:fa:78:d9:58:b1:9f:0d:eb:d9:68:4e:41:46:47:1a:99:ad: 51:11:8b:72:ef:71:e3:59:3d:d9:d6:cc:63:07:91:f7:a0:29: c5:f2:30:05:a7:04:03:7e:bf:ae:6b:f4:dd:d9:51:be:5e:91: b6:40:4b:0b:6c:33:7d:02:49:9f:c6:c9:7f:66:c0:81:02:e7: 29:c9:9f:cb:f5:32:da:8c:8c:7c:0f:09:6c:85:cc:20:c4:8e: 9f:b9:2f:47:db:30:9b:ec:39:85:2d:25:b3:bf:1c:5c:35:50: 7e:5c:25:f5:3f:12:06:a7:96:65:81:6d:9e:11:f1:50:b1:de: 4e:a7:07:78:71:10:ff:f8:49:72:28:59:88:cb:f5:e5:ab:a9: 3b:9e:0d:5e:f3:4a:31:7e:91:10:02:e1:d8:14:ec:54:02:6a: 50:2b:c2:de:ce:54:39:39:20:f7:7f:3b:87:93:14:df:8c:bb: 10:01:a2:44:c4:68:b5:47:dc:0f:58:e3:16:8b:ce:8d:d2:8a: fb:69:8a:07:cc:df:66:fd:ea:13:22:24:2c:89:93:b2:dd:e8: c2:e1:79:56 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUffal9pSqLLO5QlK5zRQwcO+N2J4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0JBMTA4MjNDMjc5OTMyRDc1NzNCOTMwNjI1Q0QyODg0 NDMzQzc0NDAeFw0yNDAzMzAxMDU1MDBaFw0yNTAzMjkxMTAwMDBaMDMxMTAvBgNV BAMTKEZGRjY2OUVFQzk2NTc5NURBOTg1RjdEMTJDRDU0RjdGQTc5QkFFMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOCnzn4dc4oTGl6lHKSVpwnQKW ktSdE7pDMpmBURF33FZGAA8xA8wmvzobW6SXe0G22tIxZOK+i79MvLe8K+ODdd5h hpaRgPeX7LCMD5dZ3E+auBIklnNMmADu8zJzFfWYjtcsUGJjgPdTyoFfR2N3eLwb pvMUp1IskjqJkLmIm6t2m7ybyEjR/Aq2y6KB5GZw5eVwb09NDsGeak9+Q6cO5sgI CjPgLEGsTXl6eFoAo7eUdUGINLCzFFHrxa+6RNlWmOvrVyTPKEy4d2ZryOyL3pmE uJATvQBoPgihDPCQGUfeyOEKHzU6KDIKvVwY0uqI15omhxXZ0AqTfULZ4toTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU//Zp7slleV2phffRLNVPf6ebrjUwHwYDVR0j BBgwFoAUO6EII8J5ky11c7kwYlzSiEQzx0QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MmQ0OTE3OS00ZDhiLTRkMmQtYWJmNC00MzIzMWRlYjViMDEvMC8zQkExMDgyM0My Nzk5MzJENzU3M0I5MzA2MjVDRDI4ODQ0MzNDNzQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0JBMTA4MjNDMjc5OTMyRDc1NzNCOTMwNjI1Q0QyODg0NDMz Qzc0NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgyZDQ5MTc5LTRkOGItNGQyZC1h YmY0LTQzMjMxZGViNWIwMS8wLzMxMzAzMzJlMzEzNzMwMmUzOTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6phMA0GCSqG SIb3DQEBCwUAA4IBAQAozxzD9u+GJs5C1udtKmjTCVelb6Q6MDDdpPYzy9FiZAjz Xxr++njZWLGfDevZaE5BRkcama1REYty73HjWT3Z1sxjB5H3oCnF8jAFpwQDfr+u a/Td2VG+XpG2QEsLbDN9Akmfxsl/ZsCBAucpyZ/L9TLajIx8DwlshcwgxI6fuS9H 2zCb7DmFLSWzvxxcNVB+XCX1PxIGp5ZlgW2eEfFQsd5Opwd4cRD/+ElyKFmIy/Xl q6k7ng1e80oxfpEQAuHYFOxUAmpQK8LezlQ5OSD3fzuHkxTfjLsQAaJExGi1R9wP WOMWi86N0or7aYoHzN9m/eoTIiQsiZOy3ejC4XlW -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:18 2024 by rpki-client on console-fra.rpki-client.org