$ rpki-client -vvf repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134352e302f32342d3234203d3e20313338313238.roa File: 3130332e39362e3134352e302f32342d3234203d3e20313338313238.roa (raw, json) Hash identifier: 6TBRWvV0MXiO3oTl1QlT4g/ofldIZCFPAsjFaJgzcqE= Subject key identifier: C8:BA:74:EA:7C:CF:7B:70:56:BF:10:AC:BD:CC:67:F6:6C:53:10:39 Certificate issuer: /CN=3FFB3838E6BD431731306308CFEC299A86723365 Certificate serial: 5521CEB70F705079379F6BE3B1FE63B75E3C77D6 Authority key identifier: 3F:FB:38:38:E6:BD:43:17:31:30:63:08:CF:EC:29:9A:86:72:33:65 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134352e302f32342d3234203d3e20313338313238.roa Signing time: Thu 05 Dec 2024 07:00:01 +0000 ROA not before: Thu 05 Dec 2024 06:55:01 +0000 ROA not after: Thu 04 Dec 2025 07:00:01 +0000 asID: 138128 IP address blocks: 103.96.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.crl rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 14:07:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:21:ce:b7:0f:70:50:79:37:9f:6b:e3:b1:fe:63:b7:5e:3c:77:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3FFB3838E6BD431731306308CFEC299A86723365 Validity Not Before: Dec 5 06:55:01 2024 GMT Not After : Dec 4 07:00:01 2025 GMT Subject: CN=C8BA74EA7CCF7B7056BF10ACBDCC67F66C531039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:e1:e3:c5:84:e9:4d:40:37:64:2d:8b:2f:ef: 2c:e9:73:20:e3:e9:e0:c6:e4:0b:9f:db:3c:bc:8b: 9b:2c:7a:36:38:f0:6b:ac:16:cf:69:1e:99:35:4d: 8e:0d:d7:7a:4c:a8:48:10:e3:b7:4a:8f:3b:74:66: 0b:4f:54:18:aa:17:8f:b5:68:c4:75:3a:45:14:55: be:3e:bd:48:6b:c2:88:f0:de:a7:2c:59:6e:c5:c2: df:6e:7a:5d:ee:f7:3e:3f:e4:73:54:f8:ca:93:4b: 64:09:c6:6d:6b:95:ce:4c:01:62:f7:2f:7e:0b:2f: 25:29:3b:94:c7:b9:f9:75:08:0b:a5:76:09:08:1d: 84:49:6c:d9:fb:8f:d8:d9:e0:b2:82:db:d9:57:a1: 90:c9:e8:47:e0:5d:b2:c4:b0:15:b1:78:4a:d0:33: 63:98:6e:a9:86:7e:0c:0d:c1:9d:19:12:2f:0c:b7: ae:1e:17:0d:47:5a:4e:47:48:ce:13:62:0c:19:2a: e0:f8:1d:41:63:31:b7:7f:c8:05:a4:1d:86:f7:d9: 90:57:2d:b3:2c:0c:b3:a1:b1:4c:80:5a:80:91:27: b0:31:eb:05:58:db:0a:12:bb:54:ce:50:bf:cf:96: 2d:62:eb:16:0f:56:29:dc:a2:f3:b2:4e:8d:da:55: 9c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:BA:74:EA:7C:CF:7B:70:56:BF:10:AC:BD:CC:67:F6:6C:53:10:39 X509v3 Authority Key Identifier: keyid:3F:FB:38:38:E6:BD:43:17:31:30:63:08:CF:EC:29:9A:86:72:33:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134352e302f32342d3234203d3e20313338313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.96.145.0/24 Signature Algorithm: sha256WithRSAEncryption aa:9d:3a:df:a8:49:b8:d4:1f:7d:85:ed:31:16:b3:b2:61:6d: 5c:9b:71:1a:9a:eb:df:ae:62:20:0a:97:f2:6e:67:5c:38:e6: 62:d3:e0:52:2f:22:6d:5f:34:77:44:e3:4d:4b:09:10:32:3c: 44:1d:95:de:87:fb:12:29:fb:88:a6:aa:bb:94:91:35:22:75: 4c:3b:00:2e:bd:51:a9:1c:ce:80:9d:5d:8c:f9:c0:94:4f:e0: f7:02:f1:d1:5c:97:60:e0:b0:a4:64:fd:63:26:5d:29:7f:98: ce:99:ee:b3:63:77:3f:23:35:84:13:66:d6:88:f4:0f:9e:19: 71:30:23:60:dc:6e:df:05:49:4a:70:13:1f:64:dc:ff:da:ea: 05:e8:15:a1:36:f9:1f:4b:7f:68:db:43:9c:1d:f6:39:d1:70: 2b:0f:8a:44:99:e3:c6:be:14:05:48:fd:19:5b:53:6e:14:b1: 6e:90:8e:8d:ca:75:77:27:53:18:2e:fb:32:04:a6:cf:fd:aa: c3:41:66:cc:82:81:43:2f:f7:04:2d:2c:ca:35:63:be:2b:ec: e7:ec:7b:94:bd:de:87:d7:7e:f3:e8:e7:cb:eb:e9:c1:c7:d4: d3:b4:2e:a2:48:a1:cb:a5:76:ca:d1:38:af:30:85:89:ff:66: a0:aa:fc:2a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVSHOtw9wUHk3n2vjsf5jt148d9YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0ZGQjM4MzhFNkJENDMxNzMxMzA2MzA4Q0ZFQzI5OUE4 NjcyMzM2NTAeFw0yNDEyMDUwNjU1MDFaFw0yNTEyMDQwNzAwMDFaMDMxMTAvBgNV BAMTKEM4QkE3NEVBN0NDRjdCNzA1NkJGMTBBQ0JEQ0M2N0Y2NkM1MzEwMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCV4ePFhOlNQDdkLYsv7yzpcyDj 6eDG5Auf2zy8i5ssejY48GusFs9pHpk1TY4N13pMqEgQ47dKjzt0ZgtPVBiqF4+1 aMR1OkUUVb4+vUhrwojw3qcsWW7Fwt9uel3u9z4/5HNU+MqTS2QJxm1rlc5MAWL3 L34LLyUpO5THufl1CAuldgkIHYRJbNn7j9jZ4LKC29lXoZDJ6EfgXbLEsBWxeErQ M2OYbqmGfgwNwZ0ZEi8Mt64eFw1HWk5HSM4TYgwZKuD4HUFjMbd/yAWkHYb32ZBX LbMsDLOhsUyAWoCRJ7Ax6wVY2woSu1TOUL/Pli1i6xYPVincovOyTo3aVZwHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyLp06nzPe3BWvxCsvcxn9mxTEDkwHwYDVR0j BBgwFoAUP/s4OOa9QxcxMGMIz+wpmoZyM2UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ODI2MWMzNy01OWE1LTQzNjktOTFlNS00YjEzNjYwMTBjNmQvMC8zRkZCMzgzOEU2 QkQ0MzE3MzEzMDYzMDhDRkVDMjk5QTg2NzIzMzY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0ZGQjM4MzhFNkJENDMxNzMxMzA2MzA4Q0ZFQzI5OUE4Njcy MzM2NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4MjYxYzM3LTU5YTUtNDM2OS05 MWU1LTRiMTM2NjAxMGM2ZC8wLzMxMzAzMzJlMzkzNjJlMzEzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2CRMA0GCSqG SIb3DQEBCwUAA4IBAQCqnTrfqEm41B99he0xFrOyYW1cm3EamuvfrmIgCpfybmdc OOZi0+BSLyJtXzR3RONNSwkQMjxEHZXeh/sSKfuIpqq7lJE1InVMOwAuvVGpHM6A nV2M+cCUT+D3AvHRXJdg4LCkZP1jJl0pf5jOme6zY3c/IzWEE2bWiPQPnhlxMCNg 3G7fBUlKcBMfZNz/2uoF6BWhNvkfS39o20OcHfY50XArD4pEmePGvhQFSP0ZW1Nu FLFukI6NynV3J1MYLvsyBKbP/arDQWbMgoFDL/cELSzKNWO+K+zn7HuUvd6H137z 6OfL6+nBx9TTtC6iSKHLpXbK0TivMIWJ/2agqvwq -----END CERTIFICATE-----Generated at Sun Apr 6 17:53:59 2025 by rpki-client