$ rpki-client -vvf repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3130332e3137312e31382e302f32342d3234203d3e20313336303532.roa File: 3130332e3137312e31382e302f32342d3234203d3e20313336303532.roa (raw, json) Hash identifier: vncd8kGmq8GX0ztE+KWHCFeoCee1arvniQNSZkp7N1g= Subject key identifier: 14:B5:B6:D8:61:51:5E:6B:6D:E5:D9:F9:3F:FD:14:71:E3:DD:AD:42 Certificate issuer: /CN=3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B Certificate serial: 4014A7138BB3FF9ADD22D9ECD3F076ADD978FC17 Authority key identifier: 3C:91:48:EF:27:AF:5E:D3:48:13:42:F5:DE:F2:5A:26:A0:CB:9F:8B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3130332e3137312e31382e302f32342d3234203d3e20313336303532.roa Signing time: Fri 03 May 2024 05:00:01 +0000 ROA not before: Fri 03 May 2024 04:55:01 +0000 ROA not after: Fri 02 May 2025 05:00:01 +0000 asID: 136052 IP address blocks: 103.171.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.crl rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:14:a7:13:8b:b3:ff:9a:dd:22:d9:ec:d3:f0:76:ad:d9:78:fc:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B Validity Not Before: May 3 04:55:01 2024 GMT Not After : May 2 05:00:01 2025 GMT Subject: CN=14B5B6D861515E6B6DE5D9F93FFD1471E3DDAD42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:cf:40:92:1a:34:b3:cb:ae:e5:80:57:5b:30: 35:3e:6f:43:81:7b:ee:6e:2a:e4:e6:76:8b:8a:af: 11:35:9c:49:e2:bc:b0:00:ce:7a:e6:c9:3d:12:fa: 1a:e3:75:e6:95:16:c5:92:e3:5b:6b:ec:b0:86:b6: 92:28:6f:b0:61:a0:ba:c2:eb:d5:8d:1d:4c:8e:49: a8:c1:60:61:44:4a:b3:a2:40:c8:46:4f:a3:70:43: 8d:91:8a:36:c3:19:18:87:e2:4e:c3:57:eb:f6:6f: 1b:7e:b9:6d:9c:fc:e4:b6:43:62:c0:dc:4c:cd:64: a6:11:e2:31:c7:f1:69:05:0a:2a:bb:c1:bd:2c:09: c3:c4:d6:e3:78:ab:c3:8a:42:8c:b7:f5:cf:0d:cf: 6b:64:cc:5b:61:0a:f7:47:2f:ff:0c:fb:61:f4:05: 8b:51:7f:e1:db:e6:4e:5a:89:a5:ab:f0:3f:64:80: 2d:54:3f:1c:4f:77:fb:60:b7:fd:97:e3:9a:4c:4c: 46:ae:be:34:63:11:ff:44:e2:43:83:54:19:aa:fb: 35:8f:c0:c7:e7:12:4c:90:b5:fb:32:f9:0f:40:50: af:6c:7b:75:67:23:b7:3f:b3:a6:ab:3c:e3:a0:07: d6:60:2e:30:7b:19:13:0b:74:d0:b7:fa:3b:f6:b2: be:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:B5:B6:D8:61:51:5E:6B:6D:E5:D9:F9:3F:FD:14:71:E3:DD:AD:42 X509v3 Authority Key Identifier: keyid:3C:91:48:EF:27:AF:5E:D3:48:13:42:F5:DE:F2:5A:26:A0:CB:9F:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3130332e3137312e31382e302f32342d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.18.0/24 Signature Algorithm: sha256WithRSAEncryption 11:d9:4c:4e:31:88:a8:f5:99:37:4a:56:6a:bc:4d:b8:3f:dd: a4:ee:95:f2:cb:6f:c4:2f:d9:49:60:0b:76:4b:42:46:d7:2b: 72:f1:7f:15:f3:29:27:70:8f:52:b2:14:d1:98:c9:0d:98:2f: f0:b8:4f:f0:bb:5f:f1:16:80:59:82:36:67:71:e3:e1:e5:51: 44:77:5d:8d:fd:40:20:87:cb:33:26:ec:ed:04:79:bb:e6:cc: aa:75:e1:f5:8d:31:21:6b:44:70:17:1f:e7:15:7e:c8:6a:ec: fe:5a:d0:a9:23:0b:23:fb:ef:48:a5:d5:7f:c7:20:90:5a:30: 31:84:72:08:47:23:75:5c:3d:f1:6f:f0:a2:37:9e:a3:c6:7a: 89:a3:c6:13:22:cc:4f:1f:d7:84:fb:26:a4:b8:65:89:20:bc: 88:f1:0d:a5:05:23:3f:6b:85:d7:23:ea:0c:b6:3c:8b:50:58: e1:64:94:cb:00:5a:83:eb:a6:58:d2:01:74:4b:ff:7d:d1:d7: 55:9e:da:48:37:ad:21:6e:96:62:c7:de:34:87:90:e9:76:66: c9:26:44:52:e8:d2:d0:3f:9b:15:99:b9:5d:40:ab:40:60:0d: fc:1e:b4:59:05:a0:6e:46:22:a1:a9:1b:95:ce:4a:2f:8a:f3: 4f:dd:51:b1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQBSnE4uz/5rdItns0/B2rdl4/BcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0M5MTQ4RUYyN0FGNUVEMzQ4MTM0MkY1REVGMjVBMjZB MENCOUY4QjAeFw0yNDA1MDMwNDU1MDFaFw0yNTA1MDIwNTAwMDFaMDMxMTAvBgNV BAMTKDE0QjVCNkQ4NjE1MTVFNkI2REU1RDlGOTNGRkQxNDcxRTNEREFENDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQz0CSGjSzy67lgFdbMDU+b0OB e+5uKuTmdouKrxE1nEnivLAAznrmyT0S+hrjdeaVFsWS41tr7LCGtpIob7BhoLrC 69WNHUyOSajBYGFESrOiQMhGT6NwQ42RijbDGRiH4k7DV+v2bxt+uW2c/OS2Q2LA 3EzNZKYR4jHH8WkFCiq7wb0sCcPE1uN4q8OKQoy39c8Nz2tkzFthCvdHL/8M+2H0 BYtRf+Hb5k5aiaWr8D9kgC1UPxxPd/tgt/2X45pMTEauvjRjEf9E4kODVBmq+zWP wMfnEkyQtfsy+Q9AUK9se3VnI7c/s6arPOOgB9ZgLjB7GRMLdNC3+jv2sr7dAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFLW22GFRXmtt5dn5P/0UcePdrUIwHwYDVR0j BBgwFoAUPJFI7yevXtNIE0L13vJaJqDLn4swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YThmNjlmNy05MzMyLTRjZDQtYjNlNS1jYzZjNDc3MmNmNzMvMC8zQzkxNDhFRjI3 QUY1RUQzNDgxMzQyRjVERUYyNUEyNkEwQ0I5RjhCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0M5MTQ4RUYyN0FGNUVEMzQ4MTM0MkY1REVGMjVBMjZBMENC OUY4Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhOGY2OWY3LTkzMzItNGNkNC1i M2U1LWNjNmM0NzcyY2Y3My8wLzMxMzAzMzJlMzEzNzMxMmUzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6sSMA0GCSqG SIb3DQEBCwUAA4IBAQAR2UxOMYio9Zk3SlZqvE24P92k7pXyy2/EL9lJYAt2S0JG 1yty8X8V8ykncI9SshTRmMkNmC/wuE/wu1/xFoBZgjZncePh5VFEd12N/UAgh8sz JuztBHm75syqdeH1jTEha0RwFx/nFX7Iauz+WtCpIwsj++9IpdV/xyCQWjAxhHII RyN1XD3xb/CiN56jxnqJo8YTIsxPH9eE+yakuGWJILyI8Q2lBSM/a4XXI+oMtjyL UFjhZJTLAFqD66ZY0gF0S/990ddVntpIN60hbpZix940h5DpdmbJJkRS6NLQP5sV mbldQKtAYA38HrRZBaBuRiKhqRuVzkovivNP3VGx -----END CERTIFICATE-----Generated at Fri May 3 05:31:43 2024 by rpki-client on console-ams.rpki-client.org