$ rpki-client -vvf repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3130332e3137312e31392e302f32342d3234203d3e20313338363038.roa File: 3130332e3137312e31392e302f32342d3234203d3e20313338363038.roa (raw, json) Hash identifier: 95dIsHfBAd4ni7Xj9frlcKjJEmgA0Y7hVgud6u8Un0w= Subject key identifier: B9:10:E0:1F:A6:BE:DF:24:FB:53:E5:D1:2C:4F:CF:29:A6:98:82:A9 Certificate issuer: /CN=3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B Certificate serial: 4CFB65E80E1C5E1CAEE1026311660A47463B7E10 Authority key identifier: 3C:91:48:EF:27:AF:5E:D3:48:13:42:F5:DE:F2:5A:26:A0:CB:9F:8B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3130332e3137312e31392e302f32342d3234203d3e20313338363038.roa Signing time: Fri 03 May 2024 05:00:01 +0000 ROA not before: Fri 03 May 2024 04:55:01 +0000 ROA not after: Fri 02 May 2025 05:00:01 +0000 asID: 138608 IP address blocks: 103.171.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.crl rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:fb:65:e8:0e:1c:5e:1c:ae:e1:02:63:11:66:0a:47:46:3b:7e:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B Validity Not Before: May 3 04:55:01 2024 GMT Not After : May 2 05:00:01 2025 GMT Subject: CN=B910E01FA6BEDF24FB53E5D12C4FCF29A69882A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c0:c2:9d:74:11:5d:da:f0:2c:38:f5:69:8a: 9d:fc:81:b6:8e:5f:f8:b0:ac:cb:c4:a9:1b:ad:cd: b3:2a:c7:2e:6f:32:e0:73:bf:d9:c9:b1:ca:00:5f: 20:c5:41:87:7f:74:ef:a6:ed:d4:67:ee:cc:78:70: a3:d8:21:0d:c9:c0:cb:4e:b8:4a:ee:25:05:d1:1a: 93:0d:45:ec:2e:fd:b3:40:9b:bc:0b:ce:21:26:b5: 30:0b:1b:de:8f:16:18:b5:a4:67:6c:18:ed:6a:3e: be:e1:ef:0f:19:4a:64:77:fc:97:67:b0:82:6a:5b: 47:07:0d:b2:78:40:01:53:e9:e3:7e:98:44:dc:97: f3:f2:eb:91:c5:f4:ee:6a:f1:2c:3f:d7:5a:bd:c9: 24:54:ca:b1:30:db:c7:34:66:bf:4c:0d:ec:60:ba: bd:34:3d:18:d8:20:48:f2:36:4b:ae:f5:71:bd:85: 6b:9a:f0:82:51:c8:73:fc:7d:64:cb:5d:90:3d:56: 7a:6b:20:68:b5:28:f1:9e:28:47:81:48:91:aa:32: 86:55:5a:77:58:40:87:76:a5:0e:36:f5:23:81:56: d1:7f:03:31:55:d4:81:90:23:96:24:60:0a:a2:d6: 07:ec:de:a6:7c:97:c7:56:35:b8:9c:ed:24:90:39: 23:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:10:E0:1F:A6:BE:DF:24:FB:53:E5:D1:2C:4F:CF:29:A6:98:82:A9 X509v3 Authority Key Identifier: keyid:3C:91:48:EF:27:AF:5E:D3:48:13:42:F5:DE:F2:5A:26:A0:CB:9F:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C9148EF27AF5ED3481342F5DEF25A26A0CB9F8B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9a8f69f7-9332-4cd4-b3e5-cc6c4772cf73/0/3130332e3137312e31392e302f32342d3234203d3e20313338363038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.19.0/24 Signature Algorithm: sha256WithRSAEncryption 09:fa:bf:e7:60:d3:c5:35:3d:5a:f8:3d:1e:46:8a:eb:fa:c5: ba:a1:b9:97:c3:0c:02:94:6a:f9:45:94:1c:1d:fd:7a:0d:f5: 71:52:73:ee:16:f1:7c:50:40:e5:50:ef:44:2d:3f:62:3b:2c: 6a:27:78:1b:40:db:a8:52:c8:86:19:cd:fc:b2:08:cf:63:3a: e1:e3:a7:9f:02:38:e3:41:d2:96:7e:dc:4a:97:c8:14:e1:1b: 1f:b3:b7:d1:0f:21:52:95:f0:36:19:cb:d7:37:06:53:0d:cf: 1e:65:f4:c0:5a:89:61:99:19:ea:06:1d:4e:7d:8c:e7:7d:5b: 56:ec:8a:a4:4a:41:0b:20:12:15:4d:08:3c:83:7a:4f:2a:4b: 98:d6:ed:0d:c8:b5:c1:11:88:1b:f9:6d:71:bf:4d:3c:e8:17: f5:a1:a2:a5:0f:7a:20:9e:45:80:3a:f0:8a:05:6f:2e:cc:07: 91:95:1d:0a:1c:74:c5:10:ef:3b:5d:19:cb:1e:3c:48:fb:7b: 61:61:3e:07:21:bc:f9:5b:8e:e4:b9:c3:2c:e6:9d:fa:6d:77: 3a:c5:d7:41:56:f0:23:dc:a2:2b:65:f8:63:01:06:d3:72:67: 11:9e:26:5c:79:50:69:23:66:02:03:14:e3:ef:e2:de:ef:c1: 2e:a3:1c:93 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTPtl6A4cXhyu4QJjEWYKR0Y7fhAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0M5MTQ4RUYyN0FGNUVEMzQ4MTM0MkY1REVGMjVBMjZB MENCOUY4QjAeFw0yNDA1MDMwNDU1MDFaFw0yNTA1MDIwNTAwMDFaMDMxMTAvBgNV BAMTKEI5MTBFMDFGQTZCRURGMjRGQjUzRTVEMTJDNEZDRjI5QTY5ODgyQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPwMKddBFd2vAsOPVpip38gbaO X/iwrMvEqRutzbMqxy5vMuBzv9nJscoAXyDFQYd/dO+m7dRn7sx4cKPYIQ3JwMtO uEruJQXRGpMNRewu/bNAm7wLziEmtTALG96PFhi1pGdsGO1qPr7h7w8ZSmR3/Jdn sIJqW0cHDbJ4QAFT6eN+mETcl/Py65HF9O5q8Sw/11q9ySRUyrEw28c0Zr9MDexg ur00PRjYIEjyNkuu9XG9hWua8IJRyHP8fWTLXZA9VnprIGi1KPGeKEeBSJGqMoZV WndYQId2pQ429SOBVtF/AzFV1IGQI5YkYAqi1gfs3qZ8l8dWNbic7SSQOSN3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuRDgH6a+3yT7U+XRLE/PKaaYgqkwHwYDVR0j BBgwFoAUPJFI7yevXtNIE0L13vJaJqDLn4swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YThmNjlmNy05MzMyLTRjZDQtYjNlNS1jYzZjNDc3MmNmNzMvMC8zQzkxNDhFRjI3 QUY1RUQzNDgxMzQyRjVERUYyNUEyNkEwQ0I5RjhCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0M5MTQ4RUYyN0FGNUVEMzQ4MTM0MkY1REVGMjVBMjZBMENC OUY4Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhOGY2OWY3LTkzMzItNGNkNC1i M2U1LWNjNmM0NzcyY2Y3My8wLzMxMzAzMzJlMzEzNzMxMmUzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzYzMDM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6sTMA0GCSqG SIb3DQEBCwUAA4IBAQAJ+r/nYNPFNT1a+D0eRorr+sW6obmXwwwClGr5RZQcHf16 DfVxUnPuFvF8UEDlUO9ELT9iOyxqJ3gbQNuoUsiGGc38sgjPYzrh46efAjjjQdKW ftxKl8gU4Rsfs7fRDyFSlfA2GcvXNwZTDc8eZfTAWolhmRnqBh1OfYznfVtW7Iqk SkELIBIVTQg8g3pPKkuY1u0NyLXBEYgb+W1xv0086Bf1oaKlD3ognkWAOvCKBW8u zAeRlR0KHHTFEO87XRnLHjxI+3thYT4HIbz5W47kucMs5p36bXc6xddBVvAj3KIr ZfhjAQbTcmcRniZceVBpI2YCAxTj7+Le78EuoxyT -----END CERTIFICATE-----Generated at Fri Nov 22 23:37:26 2024 by rpki-client on console-fra.rpki-client.org