$ rpki-client -vvf repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3130332e3139312e35362e302f32342d3234203d3e20313331373433.roa File: 3130332e3139312e35362e302f32342d3234203d3e20313331373433.roa (raw, json) Hash identifier: iMC6SYziMtJ3TeWR3+nkFXLvBELfk5TwNKTLlq7RrfI= Subject key identifier: 3D:06:E7:B0:AA:FF:BC:F3:6B:B5:69:39:14:52:C5:FD:AC:CA:A1:50 Certificate issuer: /CN=3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB Certificate serial: 033EA1C20E063CA074A8615F193A2533F30467B8 Authority key identifier: 34:48:C8:4D:DF:F9:B9:91:2D:9D:17:49:3F:EB:DB:9F:BA:0B:39:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3130332e3139312e35362e302f32342d3234203d3e20313331373433.roa Signing time: Tue 21 May 2024 05:02:47 +0000 ROA not before: Tue 21 May 2024 04:57:47 +0000 ROA not after: Tue 20 May 2025 05:02:47 +0000 asID: 131743 IP address blocks: 103.191.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:3e:a1:c2:0e:06:3c:a0:74:a8:61:5f:19:3a:25:33:f3:04:67:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB Validity Not Before: May 21 04:57:47 2024 GMT Not After : May 20 05:02:47 2025 GMT Subject: CN=3D06E7B0AAFFBCF36BB569391452C5FDACCAA150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:37:b2:d2:7f:44:61:47:fa:02:b3:f3:17:ff: 6e:46:73:27:92:15:53:23:c5:6f:22:2f:6e:e9:21: 43:77:f3:2a:90:b3:38:e6:0e:ba:ea:dd:fe:76:7f: 36:3b:7c:be:4d:be:1c:37:b5:e3:34:ce:b7:1a:67: 82:eb:f6:7f:ab:39:91:11:86:d7:76:8e:18:ed:e8: be:0d:e2:e6:04:fa:b3:60:6d:05:36:da:dd:0a:67: 7c:7e:55:6e:24:e8:2e:c2:1e:f1:ad:6f:e2:4d:29: 65:8a:73:2b:23:d7:f7:7a:53:3d:ad:44:93:9f:06: 53:95:68:8d:4e:f9:09:ed:bc:f6:2a:ab:80:65:1d: 11:27:2e:66:2e:87:8d:a1:df:00:ae:cf:1e:0c:b1: 1d:95:42:59:0b:3a:8c:dc:08:97:3a:ba:99:4d:be: 70:a5:0c:6c:05:b1:91:68:59:0c:be:08:af:96:0d: 6b:5b:0a:77:34:f3:07:b1:09:72:cd:5f:de:ba:70: 99:4d:dc:08:3e:ef:3b:01:96:8b:53:7b:cf:2c:fa: 6d:03:fd:0e:26:cb:a6:86:06:00:65:91:c4:57:67: d0:fd:37:c5:d5:bf:9b:4c:54:da:0a:8f:67:70:80: 3a:eb:5c:ae:fe:af:94:b5:67:77:f9:de:83:09:d0: 80:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:06:E7:B0:AA:FF:BC:F3:6B:B5:69:39:14:52:C5:FD:AC:CA:A1:50 X509v3 Authority Key Identifier: keyid:34:48:C8:4D:DF:F9:B9:91:2D:9D:17:49:3F:EB:DB:9F:BA:0B:39:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3130332e3139312e35362e302f32342d3234203d3e20313331373433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.56.0/24 Signature Algorithm: sha256WithRSAEncryption 80:1e:a8:44:c2:b6:7f:90:4a:98:6a:3a:71:3c:97:b0:ae:a9: e2:5c:da:ce:e3:6c:cc:fa:95:be:22:f2:4c:a0:e2:bd:d2:ea: b9:5f:2f:79:f8:9b:32:a0:23:99:52:24:1c:7f:58:b5:48:e9: 22:5d:a7:85:65:48:e5:c0:b3:76:09:58:e8:a6:45:91:1e:35: 42:de:58:94:3f:74:a7:95:65:37:58:53:d2:ae:62:90:e9:70: 16:fa:1c:0d:41:0e:49:d7:cc:42:ab:23:6f:db:ae:5f:2f:61: c6:b1:71:70:2b:f5:3e:df:cb:74:1a:4e:97:84:d4:06:bf:87: 94:13:21:66:36:f6:2c:f3:ae:e7:78:f5:e6:63:f2:a7:ae:51: fc:e1:66:09:55:3a:89:1f:58:e2:48:7b:4b:d9:48:e1:4f:d4: c5:d8:42:17:72:38:39:ff:61:59:ac:cc:ef:1b:2f:5f:79:2a: a6:1c:f3:4a:77:99:26:f3:c7:04:17:44:8a:ca:f4:25:db:5b: e7:8e:61:62:06:53:b7:c6:e3:9b:76:dd:6f:82:f7:e0:e6:7a: 6a:64:31:4e:40:da:7b:b3:9b:4a:9a:c0:d4:88:de:13:67:ee: 81:f6:9d:2b:ec:19:9a:d0:b9:7f:23:76:1f:f9:de:7b:8b:a8: c1:f2:8c:1f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAz6hwg4GPKB0qGFfGTolM/MEZ7gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRCOUZC QTBCMzlCQjAeFw0yNDA1MjEwNDU3NDdaFw0yNTA1MjAwNTAyNDdaMDMxMTAvBgNV BAMTKDNEMDZFN0IwQUFGRkJDRjM2QkI1NjkzOTE0NTJDNUZEQUNDQUExNTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvN7LSf0RhR/oCs/MX/25GcyeS FVMjxW8iL27pIUN38yqQszjmDrrq3f52fzY7fL5Nvhw3teM0zrcaZ4Lr9n+rOZER htd2jhjt6L4N4uYE+rNgbQU22t0KZ3x+VW4k6C7CHvGtb+JNKWWKcysj1/d6Uz2t RJOfBlOVaI1O+QntvPYqq4BlHREnLmYuh42h3wCuzx4MsR2VQlkLOozcCJc6uplN vnClDGwFsZFoWQy+CK+WDWtbCnc08wexCXLNX966cJlN3Ag+7zsBlotTe88s+m0D /Q4my6aGBgBlkcRXZ9D9N8XVv5tMVNoKj2dwgDrrXK7+r5S1Z3f53oMJ0IDHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPQbnsKr/vPNrtWk5FFLF/azKoVAwHwYDVR0j BBgwFoAUNEjITd/5uZEtnRdJP+vbn7oLObswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjI5Y2E1MC1lOTVjLTQ1YmItOWMzMC02M2UxMmFmN2E1ZTEvMC8zNDQ4Qzg0RERG RjlCOTkxMkQ5RDE3NDkzRkVCREI5RkJBMEIzOUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRCOUZCQTBC MzlCQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyMjljYTUwLWU5NWMtNDViYi05 YzMwLTYzZTEyYWY3YTVlMS8wLzMxMzAzMzJlMzEzOTMxMmUzNTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ784MA0GCSqG SIb3DQEBCwUAA4IBAQCAHqhEwrZ/kEqYajpxPJewrqniXNrO42zM+pW+IvJMoOK9 0uq5Xy95+JsyoCOZUiQcf1i1SOkiXaeFZUjlwLN2CVjopkWRHjVC3liUP3SnlWU3 WFPSrmKQ6XAW+hwNQQ5J18xCqyNv265fL2HGsXFwK/U+38t0Gk6XhNQGv4eUEyFm NvYs867nePXmY/KnrlH84WYJVTqJH1jiSHtL2UjhT9TF2EIXcjg5/2FZrMzvGy9f eSqmHPNKd5km88cEF0SKyvQl21vnjmFiBlO3xuObdt1vgvfg5npqZDFOQNp7s5tK msDUiN4TZ+6B9p0r7Bma0Ll/I3Yf+d57i6jB8owf -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:57 2024 by rpki-client on console-fra.rpki-client.org