$ rpki-client -vvf repo-rpki.idnic.net/repo/ab313d17-5b9b-4d23-9424-74579508ba54/0/3130332e33372e3232392e302f32342d3234203d3e20313333333631.roa File: 3130332e33372e3232392e302f32342d3234203d3e20313333333631.roa (raw, json) Hash identifier: KA/5v7DelWiutm8SlPwZ2SMMTs5j6QW8s+VC/O92rJE= Subject key identifier: 19:01:10:09:4B:E9:79:48:FC:8A:A1:70:79:61:40:BD:62:E7:B6:28 Certificate issuer: /CN=64FFF4BF67B5B3EF9DC6545842C118D75F6042D8 Certificate serial: 3105A67D1E978EDF4C64AD0F58BEEF41C86AA4D0 Authority key identifier: 64:FF:F4:BF:67:B5:B3:EF:9D:C6:54:58:42:C1:18:D7:5F:60:42:D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64FFF4BF67B5B3EF9DC6545842C118D75F6042D8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ab313d17-5b9b-4d23-9424-74579508ba54/0/3130332e33372e3232392e302f32342d3234203d3e20313333333631.roa Signing time: Thu 28 Mar 2024 08:00:00 +0000 ROA not before: Thu 28 Mar 2024 07:55:00 +0000 ROA not after: Thu 27 Mar 2025 08:00:00 +0000 asID: 133361 IP address blocks: 103.37.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ab313d17-5b9b-4d23-9424-74579508ba54/0/64FFF4BF67B5B3EF9DC6545842C118D75F6042D8.crl rsync://repo-rpki.idnic.net/repo/ab313d17-5b9b-4d23-9424-74579508ba54/0/64FFF4BF67B5B3EF9DC6545842C118D75F6042D8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64FFF4BF67B5B3EF9DC6545842C118D75F6042D8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:05:a6:7d:1e:97:8e:df:4c:64:ad:0f:58:be:ef:41:c8:6a:a4:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64FFF4BF67B5B3EF9DC6545842C118D75F6042D8 Validity Not Before: Mar 28 07:55:00 2024 GMT Not After : Mar 27 08:00:00 2025 GMT Subject: CN=190110094BE97948FC8AA170796140BD62E7B628 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5d:8b:a4:e2:c2:fc:d0:0b:45:3d:8c:c0:a7: 7b:40:7c:b7:73:fc:1b:b9:a0:4d:d0:e4:59:b9:3e: 66:85:31:b1:f9:72:c9:29:84:69:b3:cd:85:d9:bd: dd:dd:4a:a0:5a:8c:15:d5:36:1d:dd:13:91:43:cc: 7d:e5:3b:a7:ad:fc:41:72:9c:a5:65:9c:ec:a2:d4: bd:48:f1:1f:d9:c9:78:f1:9c:28:7f:97:f4:f4:d4: 39:c8:a3:e1:8a:ed:60:39:bc:15:4c:b4:7e:35:a6: 8a:cd:3d:d6:e7:ea:5e:16:03:6f:67:f8:e0:16:76: 83:0d:07:07:85:1f:a5:74:4d:61:66:19:75:84:d8: 97:2a:b9:80:e6:57:5c:3e:92:92:05:50:dd:4d:89: cd:68:7f:40:5f:15:75:4f:a2:cb:16:0a:94:6f:ec: d3:35:a2:35:fd:51:45:80:ce:cd:46:e5:cf:42:da: 7f:71:b5:e6:a1:74:bc:f7:82:86:5a:3e:fc:39:8a: 83:de:fc:49:ef:3e:94:69:9f:a4:bb:23:0e:ad:00: 24:ae:18:16:ea:3f:6a:d9:5a:18:5d:0a:8c:77:bf: 00:88:54:ca:fc:ea:77:1c:c1:d4:e8:ea:e0:40:2b: 2f:ec:27:5a:5f:30:e4:a6:85:68:3b:c2:02:ce:c6: 54:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:01:10:09:4B:E9:79:48:FC:8A:A1:70:79:61:40:BD:62:E7:B6:28 X509v3 Authority Key Identifier: keyid:64:FF:F4:BF:67:B5:B3:EF:9D:C6:54:58:42:C1:18:D7:5F:60:42:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ab313d17-5b9b-4d23-9424-74579508ba54/0/64FFF4BF67B5B3EF9DC6545842C118D75F6042D8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64FFF4BF67B5B3EF9DC6545842C118D75F6042D8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ab313d17-5b9b-4d23-9424-74579508ba54/0/3130332e33372e3232392e302f32342d3234203d3e20313333333631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.37.229.0/24 Signature Algorithm: sha256WithRSAEncryption 74:bf:1c:06:fb:9c:15:7b:19:82:94:37:c6:14:c3:c6:34:c1: 5a:6e:9a:be:67:8f:8d:ea:e6:70:4d:bc:44:2a:00:8b:ce:45: b0:27:cd:73:c9:f1:b9:da:11:13:d2:2a:6c:42:a1:b2:2e:71: ce:a0:32:35:c9:7b:eb:cb:6c:0a:82:52:c0:19:72:0c:39:9c: ba:32:b8:fe:50:f0:96:87:f9:80:73:13:3a:f8:47:f2:61:5c: ce:5c:0c:8f:c1:76:fa:3a:59:4f:e2:46:29:8a:e8:ff:78:19: 1c:b3:49:d5:65:1e:10:57:25:46:8a:9b:0c:da:82:4d:53:4e: f5:9e:f1:e8:69:96:3e:dc:8d:25:e1:6c:66:8f:e0:32:a8:82: 49:0e:4a:f4:6d:fc:a4:c7:2a:80:83:11:62:b9:36:49:fe:5b: 4a:2b:92:0a:3a:e1:07:59:69:7e:b5:05:41:e2:cf:10:83:35: e9:cf:8c:cc:ea:87:72:af:2e:f6:03:da:d4:d2:fe:de:43:51: c8:20:42:36:69:10:77:3f:0f:a2:bd:fd:95:1d:e8:14:8e:cf: fa:55:35:1c:a7:82:7c:e3:b8:d6:e4:d3:96:2c:4f:8f:d5:f4: 18:93:69:c5:d9:5d:d8:03:73:40:33:e6:7e:3c:4e:48:dc:bb: 2f:da:6c:24 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMQWmfR6Xjt9MZK0PWL7vQchqpNAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjRGRkY0QkY2N0I1QjNFRjlEQzY1NDU4NDJDMTE4RDc1 RjYwNDJEODAeFw0yNDAzMjgwNzU1MDBaFw0yNTAzMjcwODAwMDBaMDMxMTAvBgNV BAMTKDE5MDExMDA5NEJFOTc5NDhGQzhBQTE3MDc5NjE0MEJENjJFN0I2MjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/XYuk4sL80AtFPYzAp3tAfLdz /Bu5oE3Q5Fm5PmaFMbH5cskphGmzzYXZvd3dSqBajBXVNh3dE5FDzH3lO6et/EFy nKVlnOyi1L1I8R/ZyXjxnCh/l/T01DnIo+GK7WA5vBVMtH41porNPdbn6l4WA29n +OAWdoMNBweFH6V0TWFmGXWE2JcquYDmV1w+kpIFUN1Nic1of0BfFXVPossWCpRv 7NM1ojX9UUWAzs1G5c9C2n9xteahdLz3goZaPvw5ioPe/EnvPpRpn6S7Iw6tACSu GBbqP2rZWhhdCox3vwCIVMr86nccwdTo6uBAKy/sJ1pfMOSmhWg7wgLOxlT3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGQEQCUvpeUj8iqFweWFAvWLntigwHwYDVR0j BBgwFoAUZP/0v2e1s++dxlRYQsEY119gQtgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YjMxM2QxNy01YjliLTRkMjMtOTQyNC03NDU3OTUwOGJhNTQvMC82NEZGRjRCRjY3 QjVCM0VGOURDNjU0NTg0MkMxMThENzVGNjA0MkQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjRGRkY0QkY2N0I1QjNFRjlEQzY1NDU4NDJDMTE4RDc1RjYw NDJEOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FiMzEzZDE3LTViOWItNGQyMy05 NDI0LTc0NTc5NTA4YmE1NC8wLzMxMzAzMzJlMzMzNzJlMzIzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzMzNjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZyXlMA0GCSqG SIb3DQEBCwUAA4IBAQB0vxwG+5wVexmClDfGFMPGNMFabpq+Z4+N6uZwTbxEKgCL zkWwJ81zyfG52hET0ipsQqGyLnHOoDI1yXvry2wKglLAGXIMOZy6Mrj+UPCWh/mA cxM6+EfyYVzOXAyPwXb6OllP4kYpiuj/eBkcs0nVZR4QVyVGipsM2oJNU071nvHo aZY+3I0l4Wxmj+AyqIJJDkr0bfykxyqAgxFiuTZJ/ltKK5IKOuEHWWl+tQVB4s8Q gzXpz4zM6odyry72A9rU0v7eQ1HIIEI2aRB3Pw+ivf2VHegUjs/6VTUcp4J847jW 5NOWLE+P1fQYk2nF2V3YA3NAM+Z+PE5I3Lsv2mwk -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:37 2024 by rpki-client on console-ams.rpki-client.org