$ rpki-client -vvf repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134342e302f32332d3234203d3e2034373631.roa File: 3130332e39362e3134342e302f32332d3234203d3e2034373631.roa (raw, json) Hash identifier: IlEiGcTNRfLgc+5n98afB5648nnwVHDEvCuqj1ZmYkQ= Subject key identifier: C5:CE:3B:F3:30:9E:AE:14:5B:E6:FE:80:D1:13:A3:24:87:08:B3:FD Certificate issuer: /CN=3FFB3838E6BD431731306308CFEC299A86723365 Certificate serial: 1B58EFA20524B40512638FDD4D68D5CA4002C59E Authority key identifier: 3F:FB:38:38:E6:BD:43:17:31:30:63:08:CF:EC:29:9A:86:72:33:65 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134342e302f32332d3234203d3e2034373631.roa Signing time: Thu 21 Nov 2024 02:29:03 +0000 ROA not before: Thu 21 Nov 2024 02:24:03 +0000 ROA not after: Thu 20 Nov 2025 02:29:03 +0000 asID: 4761 IP address blocks: 103.96.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.crl rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 08:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:58:ef:a2:05:24:b4:05:12:63:8f:dd:4d:68:d5:ca:40:02:c5:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3FFB3838E6BD431731306308CFEC299A86723365 Validity Not Before: Nov 21 02:24:03 2024 GMT Not After : Nov 20 02:29:03 2025 GMT Subject: CN=C5CE3BF3309EAE145BE6FE80D113A3248708B3FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a2:58:e5:c2:ba:e9:e7:50:26:34:e9:0e:b1: df:a6:19:2a:d1:f3:ff:2b:b5:1a:02:e8:ed:82:38: 1e:28:e2:77:80:50:a2:9f:28:08:69:79:3c:36:af: a2:bd:b4:8a:1b:6a:f7:d6:18:1d:ff:92:ca:ee:8b: 72:8c:d8:a2:56:f5:3d:7f:eb:ce:8a:40:4e:39:87: 14:0d:cf:84:47:f3:13:09:8b:0b:b2:3f:15:b9:44: d3:57:8a:01:2a:44:b5:23:23:d2:1f:c9:e3:db:6b: f5:24:04:fc:cd:dd:a2:07:9a:fd:0b:c7:b1:23:4e: 36:b6:6a:f0:1d:c7:80:69:a6:f9:96:e4:17:6d:56: 99:8d:10:bb:f2:91:55:52:0a:2e:c6:e9:33:df:8c: a1:6c:cc:5c:99:30:2f:17:66:23:4f:2d:b6:15:66: c8:f2:d4:e3:21:8a:0b:1d:55:81:96:d2:69:41:35: 3c:ae:5c:72:66:64:6d:63:35:f6:1d:3a:4e:b6:4e: a5:ce:34:20:0c:d0:04:0b:01:77:41:5e:6e:f4:92: cb:f4:b3:8e:58:cd:c0:ec:ba:e0:c8:7d:44:4e:cd: 8c:a8:d7:fa:cb:fa:8a:72:4c:36:c7:7e:99:d0:eb: ab:61:1a:64:df:5f:bb:95:6f:fd:52:89:b8:b8:80: ce:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:CE:3B:F3:30:9E:AE:14:5B:E6:FE:80:D1:13:A3:24:87:08:B3:FD X509v3 Authority Key Identifier: keyid:3F:FB:38:38:E6:BD:43:17:31:30:63:08:CF:EC:29:9A:86:72:33:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134342e302f32332d3234203d3e2034373631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.96.144.0/23 Signature Algorithm: sha256WithRSAEncryption a5:88:b9:6c:95:1f:1c:b2:86:02:b8:ba:03:5b:e4:0d:7a:c6: 20:27:1f:ac:b4:c6:8f:38:d8:13:5c:6b:cb:7a:ce:dd:ed:82: 05:a4:90:f5:80:c6:87:38:f9:4e:35:65:b7:34:37:21:6f:12: a0:36:15:71:97:5f:37:c4:14:49:8f:12:9d:26:fb:64:2e:57: d5:97:a1:7e:e1:47:36:70:e0:88:07:45:90:3a:86:b4:db:ff: df:36:d5:e6:b3:49:f1:98:be:a9:f9:e8:7d:4c:96:3c:14:55: 18:16:51:b4:98:3a:b3:49:b5:0f:d1:06:0a:67:49:68:9f:52: 41:db:d0:ff:e8:f5:fa:67:e0:f2:aa:3a:e8:d8:0d:19:49:0f: 09:70:12:05:2a:ed:bd:9a:62:0f:21:0b:3a:08:64:6e:fc:bd: bb:ad:fe:ac:95:d5:a9:87:70:bb:6f:ae:1d:f4:d1:5a:dc:2f: 75:0b:e6:55:17:de:82:6e:c1:f6:67:1a:62:b5:22:27:5f:15: 71:e2:e4:1f:9e:e9:ca:49:a1:d1:9e:ee:2f:8a:3a:cc:80:7b: 11:76:28:0f:dc:f6:cb:49:52:6a:8f:c2:ce:99:aa:a1:e6:6f: 97:89:b0:f7:2f:4f:2f:5c:48:aa:19:a9:6d:0d:b4:c4:fd:0e: 3b:68:86:4a -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUG1jvogUktAUSY4/dTWjVykACxZ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0ZGQjM4MzhFNkJENDMxNzMxMzA2MzA4Q0ZFQzI5OUE4 NjcyMzM2NTAeFw0yNDExMjEwMjI0MDNaFw0yNTExMjAwMjI5MDNaMDMxMTAvBgNV BAMTKEM1Q0UzQkYzMzA5RUFFMTQ1QkU2RkU4MEQxMTNBMzI0ODcwOEIzRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/oljlwrrp51AmNOkOsd+mGSrR 8/8rtRoC6O2COB4o4neAUKKfKAhpeTw2r6K9tIobavfWGB3/ksrui3KM2KJW9T1/ 686KQE45hxQNz4RH8xMJiwuyPxW5RNNXigEqRLUjI9IfyePba/UkBPzN3aIHmv0L x7EjTja2avAdx4BppvmW5BdtVpmNELvykVVSCi7G6TPfjKFszFyZMC8XZiNPLbYV Zsjy1OMhigsdVYGW0mlBNTyuXHJmZG1jNfYdOk62TqXONCAM0AQLAXdBXm70ksv0 s45YzcDsuuDIfUROzYyo1/rL+opyTDbHfpnQ66thGmTfX7uVb/1Sibi4gM5nAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUxc478zCerhRb5v6A0ROjJIcIs/0wHwYDVR0j BBgwFoAUP/s4OOa9QxcxMGMIz+wpmoZyM2UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ODI2MWMzNy01OWE1LTQzNjktOTFlNS00YjEzNjYwMTBjNmQvMC8zRkZCMzgzOEU2 QkQ0MzE3MzEzMDYzMDhDRkVDMjk5QTg2NzIzMzY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0ZGQjM4MzhFNkJENDMxNzMxMzA2MzA4Q0ZFQzI5OUE4Njcy MzM2NS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4MjYxYzM3LTU5YTUtNDM2OS05 MWU1LTRiMTM2NjAxMGM2ZC8wLzMxMzAzMzJlMzkzNjJlMzEzNDM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNzM2MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnYJAwDQYJKoZIhvcN AQELBQADggEBAKWIuWyVHxyyhgK4ugNb5A16xiAnH6y0xo842BNca8t6zt3tggWk kPWAxoc4+U41Zbc0NyFvEqA2FXGXXzfEFEmPEp0m+2QuV9WXoX7hRzZw4IgHRZA6 hrTb/9821eazSfGYvqn56H1MljwUVRgWUbSYOrNJtQ/RBgpnSWifUkHb0P/o9fpn 4PKqOujYDRlJDwlwEgUq7b2aYg8hCzoIZG78vbut/qyV1amHcLtvrh300VrcL3UL 5lUX3oJuwfZnGmK1IidfFXHi5B+e6cpJodGe7i+KOsyAexF2KA/c9stJUmqPws6Z qqHmb5eJsPcvTy9cSKoZqW0NtMT9Djtohko= -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:49 2024 by rpki-client on console-ams.rpki-client.org