$ rpki-client -vvf repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3130332e3139312e35372e302f32342d3234203d3e20313331373433.roa File: 3130332e3139312e35372e302f32342d3234203d3e20313331373433.roa (raw, json) Hash identifier: biAo6Z7R2SF20gptWP7/sssBvBE7Xn3+3RYGQ1W4VTI= Subject key identifier: 4A:A0:40:49:F0:62:4A:7C:0C:94:3A:1B:FF:D2:B0:C7:10:F0:F2:45 Certificate issuer: /CN=3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB Certificate serial: 27099789C7D810A728F249B187FA420E9372D26B Authority key identifier: 34:48:C8:4D:DF:F9:B9:91:2D:9D:17:49:3F:EB:DB:9F:BA:0B:39:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3130332e3139312e35372e302f32342d3234203d3e20313331373433.roa Signing time: Tue 21 May 2024 05:02:47 +0000 ROA not before: Tue 21 May 2024 04:57:47 +0000 ROA not after: Tue 20 May 2025 05:02:47 +0000 asID: 131743 IP address blocks: 103.191.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 08:22:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:09:97:89:c7:d8:10:a7:28:f2:49:b1:87:fa:42:0e:93:72:d2:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB Validity Not Before: May 21 04:57:47 2024 GMT Not After : May 20 05:02:47 2025 GMT Subject: CN=4AA04049F0624A7C0C943A1BFFD2B0C710F0F245 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e3:ce:e8:16:7f:a8:56:82:97:e8:6e:07:76: 0a:c6:49:c2:01:58:e4:84:d7:94:55:d1:20:aa:8e: 11:3d:0f:12:72:8e:e5:ea:1b:fe:ac:fb:da:e4:4a: 8e:17:48:6f:18:3f:80:e1:cb:36:c9:a9:9e:63:f3: ff:4f:84:10:9c:3c:4f:f7:d3:a7:db:99:63:43:3e: c5:29:5a:fc:6a:c8:da:23:a8:29:f2:ad:b9:ee:35: 25:5e:a4:f0:5b:c3:8e:8d:e0:4e:3f:10:94:a3:cd: 22:6e:a5:b4:20:7e:b2:7b:6e:e5:83:2e:13:bc:2b: 90:7f:31:d3:31:76:d0:ef:e7:30:e8:23:d2:14:44: 4e:58:75:80:dc:9b:e3:19:63:45:19:b0:e1:7b:73: 51:2d:b8:06:be:3a:b6:f7:c3:b7:88:61:77:95:60: 01:20:b5:41:da:22:13:be:7d:77:e1:76:54:f3:7b: 9d:69:9e:76:f7:e5:8c:15:54:9a:56:19:c0:e1:3e: 8f:ef:93:67:62:d6:fa:71:02:ea:e0:83:72:a0:cc: d2:10:e4:f6:53:c4:79:bc:96:a2:1a:12:c8:60:07: 67:5d:62:c0:b9:de:80:5c:d6:bd:d9:0f:af:c5:35: 39:42:f1:ea:90:e2:c6:57:2a:67:f0:93:d8:06:ab: 14:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:A0:40:49:F0:62:4A:7C:0C:94:3A:1B:FF:D2:B0:C7:10:F0:F2:45 X509v3 Authority Key Identifier: keyid:34:48:C8:4D:DF:F9:B9:91:2D:9D:17:49:3F:EB:DB:9F:BA:0B:39:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3130332e3139312e35372e302f32342d3234203d3e20313331373433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.57.0/24 Signature Algorithm: sha256WithRSAEncryption 52:94:d9:0f:ac:2e:ce:44:5c:c0:aa:7d:29:37:7e:a0:ef:4e: f4:64:79:8f:ec:14:6a:55:2d:4a:1f:04:62:b5:e2:49:e8:95: 7c:62:7a:98:ae:83:59:d5:10:fd:d7:d2:b3:97:0c:c7:96:c3: 40:2c:0b:cc:9a:7f:91:4f:7b:2b:90:28:2a:d2:d9:97:ba:f2: 65:bf:23:0f:67:73:d0:04:d1:8d:aa:3b:1e:61:87:71:df:57: 74:13:ce:4f:74:16:2b:f0:e9:0d:4a:b8:34:ab:5f:48:16:aa: 05:69:11:f6:9a:a4:45:68:df:0d:ba:42:25:5e:e8:b3:67:74: 49:13:22:7e:93:c4:b1:26:de:0c:87:e8:ec:0d:40:8c:89:a9: db:31:10:3b:b4:1d:7c:80:07:ac:2a:98:1e:5c:66:ae:98:5d: 65:f3:15:74:66:85:5a:12:e6:a4:17:75:20:54:9f:3b:13:d0: 28:20:2c:89:1e:bf:5e:c7:61:fe:02:b7:3f:c5:b6:5e:b2:85: cd:93:b6:7f:c7:e9:b6:bf:78:d6:5f:5a:cd:93:21:0e:1e:01: b2:fa:98:e9:ef:6e:a1:2f:07:e6:db:90:60:65:0e:27:b5:13: 28:fd:78:8e:bb:c5:36:9c:b6:79:8a:11:8f:ca:bb:28:02:5d: 9d:91:1d:f7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJwmXicfYEKco8kmxh/pCDpNy0mswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRCOUZC QTBCMzlCQjAeFw0yNDA1MjEwNDU3NDdaFw0yNTA1MjAwNTAyNDdaMDMxMTAvBgNV BAMTKDRBQTA0MDQ5RjA2MjRBN0MwQzk0M0ExQkZGRDJCMEM3MTBGMEYyNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8487oFn+oVoKX6G4HdgrGScIB WOSE15RV0SCqjhE9DxJyjuXqG/6s+9rkSo4XSG8YP4DhyzbJqZ5j8/9PhBCcPE/3 06fbmWNDPsUpWvxqyNojqCnyrbnuNSVepPBbw46N4E4/EJSjzSJupbQgfrJ7buWD LhO8K5B/MdMxdtDv5zDoI9IURE5YdYDcm+MZY0UZsOF7c1EtuAa+Orb3w7eIYXeV YAEgtUHaIhO+fXfhdlTze51pnnb35YwVVJpWGcDhPo/vk2di1vpxAurgg3KgzNIQ 5PZTxHm8lqIaEshgB2ddYsC53oBc1r3ZD6/FNTlC8eqQ4sZXKmfwk9gGqxSjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSqBASfBiSnwMlDob/9KwxxDw8kUwHwYDVR0j BBgwFoAUNEjITd/5uZEtnRdJP+vbn7oLObswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjI5Y2E1MC1lOTVjLTQ1YmItOWMzMC02M2UxMmFmN2E1ZTEvMC8zNDQ4Qzg0RERG RjlCOTkxMkQ5RDE3NDkzRkVCREI5RkJBMEIzOUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRCOUZCQTBC MzlCQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyMjljYTUwLWU5NWMtNDViYi05 YzMwLTYzZTEyYWY3YTVlMS8wLzMxMzAzMzJlMzEzOTMxMmUzNTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ785MA0GCSqG SIb3DQEBCwUAA4IBAQBSlNkPrC7ORFzAqn0pN36g7070ZHmP7BRqVS1KHwRiteJJ 6JV8YnqYroNZ1RD919KzlwzHlsNALAvMmn+RT3srkCgq0tmXuvJlvyMPZ3PQBNGN qjseYYdx31d0E85PdBYr8OkNSrg0q19IFqoFaRH2mqRFaN8NukIlXuizZ3RJEyJ+ k8SxJt4Mh+jsDUCMianbMRA7tB18gAesKpgeXGaumF1l8xV0ZoVaEuakF3UgVJ87 E9AoICyJHr9ex2H+Arc/xbZesoXNk7Z/x+m2v3jWX1rNkyEOHgGy+pjp726hLwfm 25BgZQ4ntRMo/XiOu8U2nLZ5ihGPyrsoAl2dkR33 -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:38 2024 by rpki-client on console-ams.rpki-client.org