$ rpki-client -vvf repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134342e302f32332d3234203d3e203137393232.roa File: 3130332e39362e3134342e302f32332d3234203d3e203137393232.roa (raw, json) Hash identifier: eRm8ddtsmSedKqcG2G82Bp1EhiRufznAWG1/ZjydYPs= Subject key identifier: 47:5B:18:E5:4F:D9:25:6D:40:5B:84:57:6E:E0:66:BF:B1:A2:D1:C6 Certificate issuer: /CN=3FFB3838E6BD431731306308CFEC299A86723365 Certificate serial: 02FAF44C2A38A4DC58E70DD914941A785549516D Authority key identifier: 3F:FB:38:38:E6:BD:43:17:31:30:63:08:CF:EC:29:9A:86:72:33:65 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134342e302f32332d3234203d3e203137393232.roa Signing time: Thu 21 Nov 2024 02:29:37 +0000 ROA not before: Thu 21 Nov 2024 02:24:37 +0000 ROA not after: Thu 20 Nov 2025 02:29:37 +0000 asID: 17922 IP address blocks: 103.96.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.crl rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 08:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:fa:f4:4c:2a:38:a4:dc:58:e7:0d:d9:14:94:1a:78:55:49:51:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3FFB3838E6BD431731306308CFEC299A86723365 Validity Not Before: Nov 21 02:24:37 2024 GMT Not After : Nov 20 02:29:37 2025 GMT Subject: CN=475B18E54FD9256D405B84576EE066BFB1A2D1C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:bc:a0:60:5a:83:42:41:9c:62:e7:9f:56:a1: 9e:cc:f9:71:3f:d7:d2:f1:5e:ac:9d:56:52:23:41: 7f:24:19:ad:96:7b:5d:f4:04:9b:df:3a:f3:ae:4c: 07:8f:26:56:0c:b0:ef:7e:50:a8:3b:06:a9:66:7b: 09:d1:ff:56:fd:2f:4e:4b:74:13:84:c9:66:50:a6: b8:c9:a5:e6:de:93:02:06:f8:5f:ad:b3:23:c3:24: e6:b6:41:53:5e:3f:80:81:b9:71:6c:0e:ab:bf:7c: 92:90:a3:97:ed:15:0a:1f:f5:14:06:83:0f:cf:ff: 52:2e:7d:dd:9e:3b:ac:a3:d4:9b:c8:3b:7b:2b:1a: 79:b2:0b:94:dc:40:7e:c8:b3:cd:0c:33:a5:e4:d3: c5:62:e2:6d:fd:74:7f:87:15:ec:54:a5:af:84:7a: 68:2d:6f:91:c7:bc:04:87:51:da:3f:3e:05:55:9f: c5:6f:f0:86:28:ae:6f:4b:e4:47:eb:45:c0:ff:34: 77:e4:eb:b7:29:f7:35:24:43:86:b7:5d:2c:e6:a2: 48:cf:55:d7:d1:d7:fb:7c:22:51:f3:f5:ba:a7:b6: f0:49:f2:84:8e:8f:f0:a3:e8:b8:8b:4b:06:d0:30: cd:fb:36:aa:8f:32:6c:79:36:0b:ea:79:74:64:44: be:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:5B:18:E5:4F:D9:25:6D:40:5B:84:57:6E:E0:66:BF:B1:A2:D1:C6 X509v3 Authority Key Identifier: keyid:3F:FB:38:38:E6:BD:43:17:31:30:63:08:CF:EC:29:9A:86:72:33:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134342e302f32332d3234203d3e203137393232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.96.144.0/23 Signature Algorithm: sha256WithRSAEncryption 36:dd:de:9a:9c:dc:95:d6:a1:4a:69:c5:b8:bf:b7:09:14:ad: 10:62:ca:25:27:50:78:b3:1f:48:81:03:a4:0f:e9:65:da:0d: 03:bf:be:83:20:58:49:94:0d:be:c5:0c:6a:ae:f6:02:a9:9d: 7b:83:65:0a:ea:25:d5:40:12:a6:c8:b4:24:7f:91:ac:8d:4b: 39:5f:dc:70:20:f6:4c:f6:72:f5:86:c6:b9:13:aa:bb:e4:5c: 83:8f:51:e2:d8:5a:67:6e:99:b0:92:10:2c:e4:c2:98:f3:f3: b3:a8:13:cd:84:7e:ee:9b:18:4f:93:88:81:f1:eb:12:c2:a3: 1e:a1:fe:3d:92:95:6b:ef:2f:07:45:43:1a:b1:7b:19:95:c5: ff:92:1f:8f:e7:71:ed:ef:ef:c0:49:e6:af:b1:39:c6:07:df: b5:88:92:f9:79:95:44:30:c7:70:b9:a2:7b:db:34:59:8f:09: e5:d7:92:ae:78:6f:2c:7b:e4:70:de:50:91:58:a0:3c:14:f0: bd:3e:f1:ef:7d:c8:c8:a1:d1:d3:da:8f:4b:9d:39:21:8d:13: 77:fa:d1:e1:ef:c0:64:3f:37:65:2f:72:8f:c7:f8:66:c8:4f: 40:4a:c6:0e:e4:6f:0b:e5:67:06:9a:7a:e8:25:c4:d0:48:99: 8d:6f:50:08 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAvr0TCo4pNxY5w3ZFJQaeFVJUW0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0ZGQjM4MzhFNkJENDMxNzMxMzA2MzA4Q0ZFQzI5OUE4 NjcyMzM2NTAeFw0yNDExMjEwMjI0MzdaFw0yNTExMjAwMjI5MzdaMDMxMTAvBgNV BAMTKDQ3NUIxOEU1NEZEOTI1NkQ0MDVCODQ1NzZFRTA2NkJGQjFBMkQxQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7vKBgWoNCQZxi559WoZ7M+XE/ 19LxXqydVlIjQX8kGa2We130BJvfOvOuTAePJlYMsO9+UKg7BqlmewnR/1b9L05L dBOEyWZQprjJpebekwIG+F+tsyPDJOa2QVNeP4CBuXFsDqu/fJKQo5ftFQof9RQG gw/P/1Iufd2eO6yj1JvIO3srGnmyC5TcQH7Is80MM6Xk08Vi4m39dH+HFexUpa+E emgtb5HHvASHUdo/PgVVn8Vv8IYorm9L5EfrRcD/NHfk67cp9zUkQ4a3XSzmokjP VdfR1/t8IlHz9bqntvBJ8oSOj/Cj6LiLSwbQMM37NqqPMmx5NgvqeXRkRL6tAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUR1sY5U/ZJW1AW4RXbuBmv7Gi0cYwHwYDVR0j BBgwFoAUP/s4OOa9QxcxMGMIz+wpmoZyM2UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ODI2MWMzNy01OWE1LTQzNjktOTFlNS00YjEzNjYwMTBjNmQvMC8zRkZCMzgzOEU2 QkQ0MzE3MzEzMDYzMDhDRkVDMjk5QTg2NzIzMzY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0ZGQjM4MzhFNkJENDMxNzMxMzA2MzA4Q0ZFQzI5OUE4Njcy MzM2NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4MjYxYzM3LTU5YTUtNDM2OS05 MWU1LTRiMTM2NjAxMGM2ZC8wLzMxMzAzMzJlMzkzNjJlMzEzNDM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNzM5MzIzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWdgkDANBgkqhkiG 9w0BAQsFAAOCAQEANt3empzcldahSmnFuL+3CRStEGLKJSdQeLMfSIEDpA/pZdoN A7++gyBYSZQNvsUMaq72Aqmde4NlCuol1UASpsi0JH+RrI1LOV/ccCD2TPZy9YbG uROqu+Rcg49R4thaZ26ZsJIQLOTCmPPzs6gTzYR+7psYT5OIgfHrEsKjHqH+PZKV a+8vB0VDGrF7GZXF/5Ifj+dx7e/vwEnmr7E5xgfftYiS+XmVRDDHcLmie9s0WY8J 5deSrnhvLHvkcN5QkVigPBTwvT7x733IyKHR09qPS505IY0Td/rR4e/AZD83ZS9y j8f4ZshPQErGDuRvC+VnBpp66CXE0EiZjW9QCA== -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:49 2024 by rpki-client on console-ams.rpki-client.org