$ rpki-client -vvf repo-rpki.idnic.net/repo/8783ed28-5881-47da-ae66-e1db67942eb1/0/3130332e3232352e39372e302f32342d3234203d3e20313339343332.roa File: 3130332e3232352e39372e302f32342d3234203d3e20313339343332.roa (raw, json) Hash identifier: TvX5alwAkygDG9mtc84ZvWFXvtuvRWJmPKN/WDkOyYo= Subject key identifier: 90:EA:40:04:71:43:91:96:3A:2F:F1:7E:B1:68:B6:62:18:7D:19:B9 Certificate issuer: /CN=3FF5F93CDAB2F666B963C41BB83ED3E35130D530 Certificate serial: 058CD39DE50E35CB17FC5D7C02CA62135082285D Authority key identifier: 3F:F5:F9:3C:DA:B2:F6:66:B9:63:C4:1B:B8:3E:D3:E3:51:30:D5:30 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FF5F93CDAB2F666B963C41BB83ED3E35130D530.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8783ed28-5881-47da-ae66-e1db67942eb1/0/3130332e3232352e39372e302f32342d3234203d3e20313339343332.roa Signing time: Fri 01 Mar 2024 07:02:25 +0000 ROA not before: Fri 01 Mar 2024 06:57:25 +0000 ROA not after: Fri 28 Feb 2025 07:02:25 +0000 asID: 139432 IP address blocks: 103.225.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8783ed28-5881-47da-ae66-e1db67942eb1/0/3FF5F93CDAB2F666B963C41BB83ED3E35130D530.crl rsync://repo-rpki.idnic.net/repo/8783ed28-5881-47da-ae66-e1db67942eb1/0/3FF5F93CDAB2F666B963C41BB83ED3E35130D530.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FF5F93CDAB2F666B963C41BB83ED3E35130D530.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:8c:d3:9d:e5:0e:35:cb:17:fc:5d:7c:02:ca:62:13:50:82:28:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3FF5F93CDAB2F666B963C41BB83ED3E35130D530 Validity Not Before: Mar 1 06:57:25 2024 GMT Not After : Feb 28 07:02:25 2025 GMT Subject: CN=90EA4004714391963A2FF17EB168B662187D19B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:55:27:af:85:9d:8f:06:6f:9f:28:65:ff:bd: 6c:bd:80:a4:6f:1d:0d:ca:2b:5b:90:b6:45:ad:d8: 13:5d:f9:da:1a:82:7a:74:5b:0a:a5:7e:72:a9:ec: 25:13:f5:63:31:7f:2e:36:fd:56:1c:61:04:9d:20: 44:33:20:63:58:8f:4e:d4:e8:e4:8d:f8:36:b1:dc: e8:93:95:51:4c:b3:1d:9a:48:19:cc:95:6c:d7:c8: c4:ab:e2:ba:06:bc:ef:97:e1:8f:2d:8d:80:ab:8f: 60:45:b0:4e:8f:6b:e5:e9:b0:37:c3:6c:b7:03:db: be:7d:24:19:de:3b:d4:a7:93:6a:92:68:ab:b8:21: 5e:44:e8:d9:73:01:ad:ad:d4:24:7b:f8:e2:0d:3e: 4a:a4:fd:b0:3e:9b:91:67:78:2b:f3:30:11:6e:72: cf:82:0c:83:f6:ee:76:4d:df:8d:52:74:d1:ce:63: a6:8b:e1:72:13:2f:20:a7:ea:0f:6b:ba:60:f8:63: 76:49:1f:cf:67:92:fc:f9:48:a8:8c:39:9c:eb:8a: c8:45:51:6b:7d:b2:5d:4a:dc:e8:20:00:e0:6a:d2: 8d:80:45:44:b6:c4:d1:23:86:13:7a:48:d6:64:50: 3b:1b:af:b5:e8:98:10:01:62:7b:ee:e4:1c:b4:42: 52:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:EA:40:04:71:43:91:96:3A:2F:F1:7E:B1:68:B6:62:18:7D:19:B9 X509v3 Authority Key Identifier: keyid:3F:F5:F9:3C:DA:B2:F6:66:B9:63:C4:1B:B8:3E:D3:E3:51:30:D5:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8783ed28-5881-47da-ae66-e1db67942eb1/0/3FF5F93CDAB2F666B963C41BB83ED3E35130D530.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FF5F93CDAB2F666B963C41BB83ED3E35130D530.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8783ed28-5881-47da-ae66-e1db67942eb1/0/3130332e3232352e39372e302f32342d3234203d3e20313339343332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.225.97.0/24 Signature Algorithm: sha256WithRSAEncryption 35:05:51:06:f4:05:34:7f:ce:66:9e:51:1c:1d:57:73:80:ed: b2:ae:bb:dd:20:80:ee:31:08:13:1f:96:4a:85:00:b7:88:0d: 8a:91:15:59:36:cc:cf:d3:bc:ab:e3:6b:53:20:fa:d1:09:c9: 76:e3:f5:30:85:30:70:bb:03:70:77:17:3b:ef:61:30:65:2e: 4b:ee:31:8f:3c:da:30:79:28:98:16:c0:84:af:41:48:4d:a8: a4:26:f6:71:9f:56:33:69:eb:f1:f8:af:67:e1:89:1f:55:cf: b8:51:ab:7f:02:47:fc:57:94:79:c7:96:38:a9:cc:6d:1b:3e: 0c:4d:60:8d:f8:d8:34:9e:13:d7:f4:43:b5:e6:4d:50:be:80: 5b:82:bd:42:3f:ef:65:5f:52:74:6a:f3:68:cc:ce:fe:5b:50: 9f:ff:02:3f:df:a6:df:9f:ea:35:49:ef:eb:e3:d9:43:14:ff: ba:6d:c5:7d:9a:f4:d2:83:1b:5b:ff:08:ba:44:74:b6:21:27: 6b:d9:c6:73:90:7f:61:e1:c7:8f:4b:1b:94:27:ea:d1:47:f0: 1c:7d:9c:92:eb:ba:23:3d:df:7a:39:b4:43:d6:0b:b8:27:e3: 05:1a:31:2d:6f:68:dd:7f:cb:8c:22:51:a6:55:63:18:bb:89: c8:1b:59:3e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBYzTneUONcsX/F18AspiE1CCKF0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0ZGNUY5M0NEQUIyRjY2NkI5NjNDNDFCQjgzRUQzRTM1 MTMwRDUzMDAeFw0yNDAzMDEwNjU3MjVaFw0yNTAyMjgwNzAyMjVaMDMxMTAvBgNV BAMTKDkwRUE0MDA0NzE0MzkxOTYzQTJGRjE3RUIxNjhCNjYyMTg3RDE5QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOVSevhZ2PBm+fKGX/vWy9gKRv HQ3KK1uQtkWt2BNd+doagnp0WwqlfnKp7CUT9WMxfy42/VYcYQSdIEQzIGNYj07U 6OSN+Dax3OiTlVFMsx2aSBnMlWzXyMSr4roGvO+X4Y8tjYCrj2BFsE6Pa+XpsDfD bLcD2759JBneO9Snk2qSaKu4IV5E6NlzAa2t1CR7+OINPkqk/bA+m5FneCvzMBFu cs+CDIP27nZN341SdNHOY6aL4XITLyCn6g9rumD4Y3ZJH89nkvz5SKiMOZzrishF UWt9sl1K3OggAOBq0o2ARUS2xNEjhhN6SNZkUDsbr7XomBABYnvu5By0QlKNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkOpABHFDkZY6L/F+sWi2Yhh9GbkwHwYDVR0j BBgwFoAUP/X5PNqy9ma5Y8QbuD7T41Ew1TAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NzgzZWQyOC01ODgxLTQ3ZGEtYWU2Ni1lMWRiNjc5NDJlYjEvMC8zRkY1RjkzQ0RB QjJGNjY2Qjk2M0M0MUJCODNFRDNFMzUxMzBENTMwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0ZGNUY5M0NEQUIyRjY2NkI5NjNDNDFCQjgzRUQzRTM1MTMw RDUzMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ODNlZDI4LTU4ODEtNDdkYS1h ZTY2LWUxZGI2Nzk0MmViMS8wLzMxMzAzMzJlMzIzMjM1MmUzOTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+FhMA0GCSqG SIb3DQEBCwUAA4IBAQA1BVEG9AU0f85mnlEcHVdzgO2yrrvdIIDuMQgTH5ZKhQC3 iA2KkRVZNszP07yr42tTIPrRCcl24/UwhTBwuwNwdxc772EwZS5L7jGPPNoweSiY FsCEr0FITaikJvZxn1Yzaevx+K9n4YkfVc+4Uat/Akf8V5R5x5Y4qcxtGz4MTWCN +Ng0nhPX9EO15k1QvoBbgr1CP+9lX1J0avNozM7+W1Cf/wI/36bfn+o1Se/r49lD FP+6bcV9mvTSgxtb/wi6RHS2ISdr2cZzkH9h4cePSxuUJ+rRR/AcfZyS67ojPd96 ObRD1gu4J+MFGjEtb2jdf8uMIlGmVWMYu4nIG1k+ -----END CERTIFICATE-----Generated at Sun Nov 24 00:53:31 2024 by rpki-client on console-fra.rpki-client.org