$ rpki-client -vvf repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3130332e3139312e35362e302f32332d3233203d3e20313331373433.roa File: 3130332e3139312e35362e302f32332d3233203d3e20313331373433.roa (raw, json) Hash identifier: isjwujFSvwjo39d15HTvsQAP67Ev79AX12W5Y0GSiMU= Subject key identifier: FF:3D:38:11:DA:5B:D6:74:89:F7:90:1D:4F:7C:DE:B8:C8:A4:2F:4F Certificate issuer: /CN=3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB Certificate serial: 79325A45D0E075C64F8E896F5DA4577629693F44 Authority key identifier: 34:48:C8:4D:DF:F9:B9:91:2D:9D:17:49:3F:EB:DB:9F:BA:0B:39:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3130332e3139312e35362e302f32332d3233203d3e20313331373433.roa Signing time: Tue 21 May 2024 05:02:47 +0000 ROA not before: Tue 21 May 2024 04:57:47 +0000 ROA not after: Tue 20 May 2025 05:02:47 +0000 asID: 131743 IP address blocks: 103.191.56.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:32:5a:45:d0:e0:75:c6:4f:8e:89:6f:5d:a4:57:76:29:69:3f:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB Validity Not Before: May 21 04:57:47 2024 GMT Not After : May 20 05:02:47 2025 GMT Subject: CN=FF3D3811DA5BD67489F7901D4F7CDEB8C8A42F4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:d7:b7:62:57:a4:08:f8:3f:5c:ce:33:85:f0: 5f:c6:43:06:33:a6:86:ba:da:c6:59:30:03:28:a9: 61:76:ed:2b:c0:4b:15:79:72:87:77:bb:6b:12:a0: b7:fb:fe:7e:da:7d:8c:c2:96:f9:09:8c:83:db:21: b9:76:39:c4:0d:1a:d7:80:4e:48:38:20:22:f4:02: 81:a7:b1:6c:0c:03:d5:cf:01:b3:5c:ef:5d:4e:53: 80:7a:0d:e0:8a:50:d1:97:c3:86:d1:3c:e3:3f:69: ea:b7:cf:df:78:28:fd:a4:42:6c:44:bf:86:ad:25: 91:35:f5:e9:9d:c7:61:3e:1b:8f:fb:f9:99:ff:e7: ee:c7:67:48:99:da:21:41:d2:ba:96:94:a9:7c:0f: 1f:ae:b4:a8:57:ed:cb:d7:ad:66:fc:bf:18:94:1a: 4d:fe:79:65:47:56:06:6e:d4:fc:a6:da:ad:7c:7b: f0:db:ca:d3:0b:db:7f:c1:4c:db:ae:5f:db:23:c0: 52:dc:15:fa:ac:4d:43:da:5a:a3:9f:a7:3d:9f:68: 6b:5a:46:ec:8a:f8:b7:78:a7:bf:a9:1f:54:b5:ec: b2:9e:c4:6a:40:dc:92:93:c7:64:ce:91:46:dc:7a: 13:29:5c:cd:f7:55:d7:af:81:de:38:49:4f:2e:70: 6d:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:3D:38:11:DA:5B:D6:74:89:F7:90:1D:4F:7C:DE:B8:C8:A4:2F:4F X509v3 Authority Key Identifier: keyid:34:48:C8:4D:DF:F9:B9:91:2D:9D:17:49:3F:EB:DB:9F:BA:0B:39:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3130332e3139312e35362e302f32332d3233203d3e20313331373433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.56.0/23 Signature Algorithm: sha256WithRSAEncryption 55:8e:aa:ee:bc:b3:ab:7e:bc:79:86:ea:d9:bc:92:65:c3:83: fa:25:78:56:1d:55:ff:f9:14:c8:23:01:41:15:82:c1:7f:c9: 11:54:da:c4:bf:4c:e4:2c:54:39:06:cc:c5:ca:ad:47:35:4f: 27:e9:8b:65:d6:5c:d6:44:15:bb:71:e1:65:f3:54:6c:21:92: cf:bb:e6:e4:8e:d7:c5:fc:08:c8:03:fe:c3:62:b9:32:86:31: 9f:1e:5a:b5:94:65:31:eb:48:a2:f4:a3:8e:f6:5f:21:58:51: 1a:a7:95:ec:b4:1e:cd:b8:cb:55:0b:24:83:e3:a3:12:db:a2: 7a:7c:12:2f:fd:33:59:58:b5:e8:f2:c3:5d:cb:53:d4:fe:73: ff:5e:8e:a5:43:b1:d9:c3:89:b5:21:60:63:29:aa:11:6b:38: f5:ae:c3:4f:1e:c6:d8:30:ca:9f:cb:e1:5e:07:92:42:dd:fe: 37:72:ea:c7:fc:ec:a3:36:f5:4f:f2:eb:75:48:b2:c2:4c:d0: bd:b8:03:14:94:7d:b7:d0:8b:91:48:c1:ba:fa:c4:a6:5d:1b: 02:29:57:22:d4:b6:6e:ff:2d:28:f0:87:4d:e9:9e:7a:db:9a: ed:a8:93:7b:05:4b:66:26:b6:7b:2f:53:ca:4b:51:82:7f:e0: 83:09:e7:3e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeTJaRdDgdcZPjolvXaRXdilpP0QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRCOUZC QTBCMzlCQjAeFw0yNDA1MjEwNDU3NDdaFw0yNTA1MjAwNTAyNDdaMDMxMTAvBgNV BAMTKEZGM0QzODExREE1QkQ2NzQ4OUY3OTAxRDRGN0NERUI4QzhBNDJGNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX17diV6QI+D9czjOF8F/GQwYz poa62sZZMAMoqWF27SvASxV5cod3u2sSoLf7/n7afYzClvkJjIPbIbl2OcQNGteA Tkg4ICL0AoGnsWwMA9XPAbNc711OU4B6DeCKUNGXw4bRPOM/aeq3z994KP2kQmxE v4atJZE19emdx2E+G4/7+Zn/5+7HZ0iZ2iFB0rqWlKl8Dx+utKhX7cvXrWb8vxiU Gk3+eWVHVgZu1Pym2q18e/DbytML23/BTNuuX9sjwFLcFfqsTUPaWqOfpz2faGta RuyK+Ld4p7+pH1S17LKexGpA3JKTx2TOkUbcehMpXM33Vdevgd44SU8ucG0jAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/z04Edpb1nSJ95AdT3zeuMikL08wHwYDVR0j BBgwFoAUNEjITd/5uZEtnRdJP+vbn7oLObswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjI5Y2E1MC1lOTVjLTQ1YmItOWMzMC02M2UxMmFmN2E1ZTEvMC8zNDQ4Qzg0RERG RjlCOTkxMkQ5RDE3NDkzRkVCREI5RkJBMEIzOUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRCOUZCQTBC MzlCQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyMjljYTUwLWU5NWMtNDViYi05 YzMwLTYzZTEyYWY3YTVlMS8wLzMxMzAzMzJlMzEzOTMxMmUzNTM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzMxMzczNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ784MA0GCSqG SIb3DQEBCwUAA4IBAQBVjqruvLOrfrx5hurZvJJlw4P6JXhWHVX/+RTIIwFBFYLB f8kRVNrEv0zkLFQ5BszFyq1HNU8n6Ytl1lzWRBW7ceFl81RsIZLPu+bkjtfF/AjI A/7DYrkyhjGfHlq1lGUx60ii9KOO9l8hWFEap5XstB7NuMtVCySD46MS26J6fBIv /TNZWLXo8sNdy1PU/nP/Xo6lQ7HZw4m1IWBjKaoRazj1rsNPHsbYMMqfy+FeB5JC 3f43curH/OyjNvVP8ut1SLLCTNC9uAMUlH230IuRSMG6+sSmXRsCKVci1LZu/y0o 8IdN6Z5625rtqJN7BUtmJrZ7L1PKS1GCf+CDCec+ -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:57 2024 by rpki-client on console-fra.rpki-client.org