$ rpki-client -vvf repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134352e302f32342d3234203d3e20313338313238.roa File: 3130332e39362e3134352e302f32342d3234203d3e20313338313238.roa (raw, json) Hash identifier: ZjAatsMbqem2M1+X3kvcjs774YMqFrhWPF0EDDLVfTA= Subject key identifier: 1E:22:A0:26:7F:98:7F:99:3F:56:B2:07:6C:55:1E:B1:F2:87:59:56 Certificate issuer: /CN=3FFB3838E6BD431731306308CFEC299A86723365 Certificate serial: 0B3B77CB58EB75BCB9902B9C801B7746892E343B Authority key identifier: 3F:FB:38:38:E6:BD:43:17:31:30:63:08:CF:EC:29:9A:86:72:33:65 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134352e302f32342d3234203d3e20313338313238.roa Signing time: Thu 04 Jan 2024 06:17:12 +0000 ROA not before: Thu 04 Jan 2024 06:12:12 +0000 ROA not after: Thu 02 Jan 2025 06:17:12 +0000 asID: 138128 IP address blocks: 103.96.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.crl rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 08:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:3b:77:cb:58:eb:75:bc:b9:90:2b:9c:80:1b:77:46:89:2e:34:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3FFB3838E6BD431731306308CFEC299A86723365 Validity Not Before: Jan 4 06:12:12 2024 GMT Not After : Jan 2 06:17:12 2025 GMT Subject: CN=1E22A0267F987F993F56B2076C551EB1F2875956 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c6:10:be:47:5e:51:dc:30:32:78:05:46:a7: ee:03:60:00:1d:c6:b2:ea:31:cc:12:83:9d:04:56: 74:1a:6d:ae:47:58:dc:39:ed:72:f6:fe:33:59:cd: 81:6b:49:b7:72:d1:bc:4a:07:c1:06:56:f1:cc:1a: a4:05:2e:4e:e1:81:a5:34:3c:e6:ba:ea:c3:f0:0a: 52:03:c0:05:73:29:ff:f4:24:16:49:da:11:17:73: 99:69:9d:60:8b:68:0a:99:fd:87:d8:c0:84:8f:61: 64:0d:c5:0e:c0:9f:70:53:df:59:43:2d:e6:ba:fa: 5b:f7:a8:70:13:f7:b8:92:d5:cc:97:91:5c:bf:e4: 2e:c7:77:62:42:f7:bf:de:58:92:7e:1e:94:ce:0f: d9:6a:9e:77:d0:aa:9c:8e:6f:ef:53:df:76:37:08: 97:01:2c:f2:56:e9:7d:81:d0:60:92:a9:e9:9c:73: 90:92:84:ff:0d:c5:a6:e9:67:35:31:a5:e6:37:81: c7:25:e5:39:74:9b:a1:d5:5e:6e:e7:98:c7:72:8b: d4:cd:87:45:ee:74:00:57:63:31:d2:8b:2d:71:2a: e2:67:d4:e0:d4:85:14:1a:76:c5:be:de:71:34:b9: bc:04:09:b4:3b:6f:5f:db:2e:7c:0e:49:d1:cf:14: 36:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:22:A0:26:7F:98:7F:99:3F:56:B2:07:6C:55:1E:B1:F2:87:59:56 X509v3 Authority Key Identifier: keyid:3F:FB:38:38:E6:BD:43:17:31:30:63:08:CF:EC:29:9A:86:72:33:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134352e302f32342d3234203d3e20313338313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.96.145.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:56:c5:c4:5f:8e:0b:77:76:92:28:14:d3:ac:85:36:fb:5b: f5:2f:71:5b:32:db:b4:52:db:e2:0c:f1:07:64:3e:83:63:1e: 1f:7b:e8:1b:1c:0e:4d:80:2d:f6:b6:63:38:1e:b3:ec:55:9c: 65:d8:9e:c3:be:3f:20:f3:10:12:40:b4:cf:c0:c0:cf:92:3a: b4:5d:65:fd:2e:ab:ca:6d:7a:25:12:24:a0:2f:ff:2c:56:c8: 6f:79:18:63:04:88:6d:f2:1d:c0:7f:67:32:de:cf:6f:5c:42: d1:10:89:82:60:6f:8f:9c:af:cf:3f:4b:ed:18:2b:1e:e2:7f: 5a:28:00:01:24:51:40:b5:dd:ff:fc:be:ee:33:92:7b:04:4b: b0:f4:be:b4:19:e1:c3:cf:08:7f:ab:92:f7:78:d2:eb:13:62: cb:19:a8:36:33:c4:4e:bd:88:7e:c3:63:5a:95:61:2f:ce:29: d7:5c:25:01:e7:e7:9d:59:d9:c8:38:0f:f0:01:b8:5d:2a:9e: 99:88:27:b5:09:11:dd:5c:9c:38:24:e7:ed:17:4d:f0:d9:73: 5f:53:83:be:09:3e:f2:a9:d6:46:b4:6e:e6:a0:55:1b:51:2a: 20:d8:2f:4f:51:f9:17:ba:a9:b4:dd:21:3f:83:05:35:11:ed: 34:51:f8:b9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCzt3y1jrdby5kCucgBt3RokuNDswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0ZGQjM4MzhFNkJENDMxNzMxMzA2MzA4Q0ZFQzI5OUE4 NjcyMzM2NTAeFw0yNDAxMDQwNjEyMTJaFw0yNTAxMDIwNjE3MTJaMDMxMTAvBgNV BAMTKDFFMjJBMDI2N0Y5ODdGOTkzRjU2QjIwNzZDNTUxRUIxRjI4NzU5NTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDExhC+R15R3DAyeAVGp+4DYAAd xrLqMcwSg50EVnQaba5HWNw57XL2/jNZzYFrSbdy0bxKB8EGVvHMGqQFLk7hgaU0 POa66sPwClIDwAVzKf/0JBZJ2hEXc5lpnWCLaAqZ/YfYwISPYWQNxQ7An3BT31lD Lea6+lv3qHAT97iS1cyXkVy/5C7Hd2JC97/eWJJ+HpTOD9lqnnfQqpyOb+9T33Y3 CJcBLPJW6X2B0GCSqemcc5CShP8NxabpZzUxpeY3gccl5Tl0m6HVXm7nmMdyi9TN h0XudABXYzHSiy1xKuJn1ODUhRQadsW+3nE0ubwECbQ7b1/bLnwOSdHPFDY7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHiKgJn+Yf5k/VrIHbFUesfKHWVYwHwYDVR0j BBgwFoAUP/s4OOa9QxcxMGMIz+wpmoZyM2UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ODI2MWMzNy01OWE1LTQzNjktOTFlNS00YjEzNjYwMTBjNmQvMC8zRkZCMzgzOEU2 QkQ0MzE3MzEzMDYzMDhDRkVDMjk5QTg2NzIzMzY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0ZGQjM4MzhFNkJENDMxNzMxMzA2MzA4Q0ZFQzI5OUE4Njcy MzM2NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4MjYxYzM3LTU5YTUtNDM2OS05 MWU1LTRiMTM2NjAxMGM2ZC8wLzMxMzAzMzJlMzkzNjJlMzEzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2CRMA0GCSqG SIb3DQEBCwUAA4IBAQBvVsXEX44Ld3aSKBTTrIU2+1v1L3FbMtu0UtviDPEHZD6D Yx4fe+gbHA5NgC32tmM4HrPsVZxl2J7Dvj8g8xASQLTPwMDPkjq0XWX9LqvKbXol EiSgL/8sVshveRhjBIht8h3Af2cy3s9vXELREImCYG+PnK/PP0vtGCse4n9aKAAB JFFAtd3//L7uM5J7BEuw9L60GeHDzwh/q5L3eNLrE2LLGag2M8ROvYh+w2NalWEv zinXXCUB5+edWdnIOA/wAbhdKp6ZiCe1CRHdXJw4JOftF03w2XNfU4O+CT7yqdZG tG7moFUbUSog2C9PUfkXuqm03SE/gwU1Ee00Ufi5 -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:49 2024 by rpki-client on console-ams.rpki-client.org