$ rpki-client -vvf repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134352e302f32342d3234203d3e20313338383834.roa File: 3130332e39362e3134352e302f32342d3234203d3e20313338383834.roa (raw, json) Hash identifier: ZnUdzYnE6HKQLuav9EC8DrZrnvhrEm4Gkn8aDSX9YBU= Subject key identifier: 19:8A:93:06:5B:89:59:16:14:05:3C:D3:34:0B:98:16:EC:46:44:D1 Certificate issuer: /CN=3FFB3838E6BD431731306308CFEC299A86723365 Certificate serial: 528ED75DD96918317706708FF9E07557EA958EC0 Authority key identifier: 3F:FB:38:38:E6:BD:43:17:31:30:63:08:CF:EC:29:9A:86:72:33:65 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134352e302f32342d3234203d3e20313338383834.roa Signing time: Thu 04 Jan 2024 06:17:57 +0000 ROA not before: Thu 04 Jan 2024 06:12:57 +0000 ROA not after: Thu 02 Jan 2025 06:17:57 +0000 asID: 138884 IP address blocks: 103.96.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.crl rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 02:34:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:8e:d7:5d:d9:69:18:31:77:06:70:8f:f9:e0:75:57:ea:95:8e:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3FFB3838E6BD431731306308CFEC299A86723365 Validity Not Before: Jan 4 06:12:57 2024 GMT Not After : Jan 2 06:17:57 2025 GMT Subject: CN=198A93065B89591614053CD3340B9816EC4644D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1f:bc:6f:6a:b1:7a:aa:fa:90:bb:13:5c:a9: bd:cc:e5:17:37:51:6c:53:dc:11:9d:b9:7a:a2:89: 3b:a9:e0:03:e6:d9:6a:4d:33:f4:8d:4c:11:d8:96: fb:82:ac:c0:ce:11:8d:a3:3b:4a:58:5f:46:7d:1b: aa:ed:08:d2:91:e1:80:b4:f5:98:18:6e:a6:80:2e: da:6d:50:9d:17:6f:a5:a5:b9:ba:25:1a:79:cf:6c: 93:f4:97:54:b1:57:4f:c7:ac:fc:17:fa:7b:a5:44: 10:11:02:e9:96:6f:98:e6:a4:85:97:31:ef:e7:01: d5:db:4b:fb:a2:39:25:16:78:0f:d2:76:6e:17:f7: c6:c2:37:94:7c:49:90:d2:5d:c0:b5:50:26:2d:b2: 29:74:49:96:4f:b9:ed:d2:59:93:83:76:78:e6:7c: 60:7d:31:2a:51:45:c0:a5:b2:df:5c:ee:d2:23:30: 32:49:62:d9:45:a3:b1:9d:6c:bc:f1:b1:0e:ef:99: 92:ea:eb:6c:ed:ec:9d:56:98:02:04:95:45:63:fa: 1c:70:76:09:c5:5a:64:a2:68:ed:f8:41:6f:6c:87: b1:46:49:08:63:be:bc:b0:c9:e6:27:0b:50:8f:fd: 91:38:79:f4:c6:bf:c3:d3:1b:11:8a:7d:5a:08:de: e7:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:8A:93:06:5B:89:59:16:14:05:3C:D3:34:0B:98:16:EC:46:44:D1 X509v3 Authority Key Identifier: keyid:3F:FB:38:38:E6:BD:43:17:31:30:63:08:CF:EC:29:9A:86:72:33:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134352e302f32342d3234203d3e20313338383834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.96.145.0/24 Signature Algorithm: sha256WithRSAEncryption 19:b6:08:8a:f1:a2:a8:a5:21:e7:e2:08:f7:f3:66:d4:08:70: 53:a5:ea:b9:5b:1c:0c:fe:5a:a5:4e:ad:6c:26:de:dc:13:81: a5:df:2c:e9:2f:a9:74:ee:aa:fc:3f:47:25:d3:d8:5a:20:b5: b9:10:fa:3a:03:53:fd:fe:85:0b:07:ea:ed:18:d0:60:f5:a8: 49:a5:f8:74:e8:88:eb:38:b7:4a:4b:24:a1:f2:89:69:1d:3e: df:8c:94:71:cd:ad:23:45:c9:14:f0:de:1c:c3:03:2c:69:7b: 50:4a:f5:00:ac:4b:bd:34:d7:7a:69:5e:59:44:87:ea:b5:7d: 0a:26:38:9b:46:91:be:bd:8e:c2:35:e8:c1:db:d0:6d:e1:74: fd:ed:88:9e:55:7d:e0:55:b2:54:bc:75:62:db:d1:43:cc:f0: af:ac:84:ee:24:ee:ee:01:93:8f:2d:85:34:c0:bd:bf:4a:ec: c1:1a:3b:7e:ca:7c:1c:7a:97:74:7a:fc:8d:66:17:af:42:ae: e3:37:cb:c6:38:1c:c5:a7:b5:ac:86:f5:55:83:70:a1:ac:e2: b0:dc:5c:fb:e0:c1:77:3e:e1:c0:3a:b5:f8:dc:3c:61:f3:ba: cf:de:67:73:5d:a9:0b:1f:47:5c:4a:b8:3e:1d:19:94:a0:0c: 9d:bb:9f:f0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUo7XXdlpGDF3BnCP+eB1V+qVjsAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0ZGQjM4MzhFNkJENDMxNzMxMzA2MzA4Q0ZFQzI5OUE4 NjcyMzM2NTAeFw0yNDAxMDQwNjEyNTdaFw0yNTAxMDIwNjE3NTdaMDMxMTAvBgNV BAMTKDE5OEE5MzA2NUI4OTU5MTYxNDA1M0NEMzM0MEI5ODE2RUM0NjQ0RDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkH7xvarF6qvqQuxNcqb3M5Rc3 UWxT3BGduXqiiTup4APm2WpNM/SNTBHYlvuCrMDOEY2jO0pYX0Z9G6rtCNKR4YC0 9ZgYbqaALtptUJ0Xb6WlubolGnnPbJP0l1SxV0/HrPwX+nulRBARAumWb5jmpIWX Me/nAdXbS/uiOSUWeA/Sdm4X98bCN5R8SZDSXcC1UCYtsil0SZZPue3SWZODdnjm fGB9MSpRRcClst9c7tIjMDJJYtlFo7GdbLzxsQ7vmZLq62zt7J1WmAIElUVj+hxw dgnFWmSiaO34QW9sh7FGSQhjvrywyeYnC1CP/ZE4efTGv8PTGxGKfVoI3ucTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGYqTBluJWRYUBTzTNAuYFuxGRNEwHwYDVR0j BBgwFoAUP/s4OOa9QxcxMGMIz+wpmoZyM2UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ODI2MWMzNy01OWE1LTQzNjktOTFlNS00YjEzNjYwMTBjNmQvMC8zRkZCMzgzOEU2 QkQ0MzE3MzEzMDYzMDhDRkVDMjk5QTg2NzIzMzY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0ZGQjM4MzhFNkJENDMxNzMxMzA2MzA4Q0ZFQzI5OUE4Njcy MzM2NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4MjYxYzM3LTU5YTUtNDM2OS05 MWU1LTRiMTM2NjAxMGM2ZC8wLzMxMzAzMzJlMzkzNjJlMzEzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzODM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2CRMA0GCSqG SIb3DQEBCwUAA4IBAQAZtgiK8aKopSHn4gj382bUCHBTpeq5WxwM/lqlTq1sJt7c E4Gl3yzpL6l07qr8P0cl09haILW5EPo6A1P9/oULB+rtGNBg9ahJpfh06IjrOLdK SySh8olpHT7fjJRxza0jRckU8N4cwwMsaXtQSvUArEu9NNd6aV5ZRIfqtX0KJjib RpG+vY7CNejB29Bt4XT97YieVX3gVbJUvHVi29FDzPCvrITuJO7uAZOPLYU0wL2/ SuzBGjt+ynwcepd0evyNZhevQq7jN8vGOBzFp7WshvVVg3ChrOKw3Fz74MF3PuHA OrX43Dxh87rP3mdzXakLH0dcSrg+HRmUoAydu5/w -----END CERTIFICATE-----Generated at Fri Jun 21 22:52:25 2024 by rpki-client on console-fra.rpki-client.org