$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3130332e34342e33372e302f32342d3234203d3e20313333373938.roa File: 3130332e34342e33372e302f32342d3234203d3e20313333373938.roa (raw, json) Hash identifier: b5ftLw9xEMtrh+vKwYVudlNRVFP5Vf43boXnMev2I78= Subject key identifier: C0:DF:21:79:B0:22:95:E0:B4:E5:7C:56:AF:76:F3:D7:4C:81:F7:6F Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 328332CE6F1A7E747CFCFACDB9E0005D0018EE3E Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3130332e34342e33372e302f32342d3234203d3e20313333373938.roa Signing time: Tue 13 Feb 2024 08:09:16 +0000 ROA not before: Tue 13 Feb 2024 08:04:16 +0000 ROA not after: Tue 11 Feb 2025 08:09:16 +0000 asID: 133798 IP address blocks: 103.44.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:83:32:ce:6f:1a:7e:74:7c:fc:fa:cd:b9:e0:00:5d:00:18:ee:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Feb 13 08:04:16 2024 GMT Not After : Feb 11 08:09:16 2025 GMT Subject: CN=C0DF2179B02295E0B4E57C56AF76F3D74C81F76F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:7c:dc:e6:fb:73:12:1d:8f:10:75:d4:49:ce: f7:e4:55:9a:65:aa:31:5a:57:54:17:eb:65:15:93: 9a:2a:6d:f5:51:8d:1f:93:a0:f0:ac:10:43:86:72: 86:2e:5b:b7:91:c3:f7:01:1a:b7:27:0f:3a:be:39: 3e:38:b0:7b:e5:c6:9f:c6:70:9f:ac:c7:61:01:d7: c7:fd:53:e1:61:b2:f7:8f:ef:39:87:86:ea:ec:92: db:f2:c9:ec:c0:88:c4:58:79:e5:ac:1f:04:be:f3: a9:4d:5a:d1:c1:72:a6:30:a4:34:c8:5b:f0:27:72: eb:64:9a:17:a2:e3:f7:fc:b9:32:54:5a:62:ad:48: 1a:ac:c0:bc:74:93:47:6b:ae:c8:3c:30:99:22:ba: f8:15:d8:42:cd:ab:f4:5d:a4:99:3e:72:19:f7:ec: a9:a4:3f:f0:02:77:d8:27:fc:75:f3:7b:f4:e2:64: f4:64:7e:84:e2:fa:94:b6:fb:8b:e5:02:ce:2c:7a: c2:e2:13:1f:45:39:13:2d:f3:4b:8d:28:3d:04:88: 2a:c7:60:fa:99:dd:12:aa:a2:02:12:70:8f:2f:61: b3:ac:27:41:d1:70:cd:13:15:1e:cd:cf:17:fc:d7: 9d:bb:9f:b6:ff:c5:01:e0:af:c8:f6:75:83:b2:e2: 60:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:DF:21:79:B0:22:95:E0:B4:E5:7C:56:AF:76:F3:D7:4C:81:F7:6F X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3130332e34342e33372e302f32342d3234203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.44.37.0/24 Signature Algorithm: sha256WithRSAEncryption 79:61:6a:d4:e5:bb:fb:3e:95:84:d8:55:e6:12:9f:a2:d7:66: ca:e6:9c:63:ed:ed:40:2e:6b:d7:1c:98:b0:75:0d:6e:e4:5e: 6c:6d:76:24:2b:aa:5c:40:5e:cd:86:f5:b5:f2:20:f1:d2:29: 46:34:b6:67:2b:13:5e:2d:b2:47:a7:5b:f2:e8:df:97:c3:47: e4:85:bd:71:bf:39:cb:69:3d:8d:67:4a:ea:6a:51:d3:6b:30: 90:78:88:08:92:bb:9d:b5:0f:ec:84:25:50:6c:07:a1:74:1d: 6c:c9:d9:9f:64:67:f6:43:c3:57:0a:4c:8e:71:8b:ba:9d:cb: a7:42:64:d8:cb:ae:3a:4a:ca:e2:76:ec:86:82:52:6e:68:8e: e2:02:ff:e3:2c:a4:bf:b6:8d:9f:47:fe:eb:61:1d:7f:d2:fb: 81:ec:61:68:21:fc:29:2d:cf:10:e9:80:8e:9b:99:05:0f:4d: 65:12:86:aa:97:8b:9f:c7:fa:43:11:3a:6f:cb:a9:c1:14:86: c1:7f:20:ae:50:ef:cc:d3:33:04:86:88:2a:2d:4c:12:f5:ab: fe:be:87:8a:15:8c:ea:78:ef:df:52:58:c1:70:da:68:0b:04: 32:79:c1:b7:92:25:14:2c:e0:42:b6:34:40:0f:09:6a:0a:fe: 75:81:76:f2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMoMyzm8afnR8/PrNueAAXQAY7j4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNDAyMTMwODA0MTZaFw0yNTAyMTEwODA5MTZaMDMxMTAvBgNV BAMTKEMwREYyMTc5QjAyMjk1RTBCNEU1N0M1NkFGNzZGM0Q3NEM4MUY3NkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnfNzm+3MSHY8QddRJzvfkVZpl qjFaV1QX62UVk5oqbfVRjR+ToPCsEEOGcoYuW7eRw/cBGrcnDzq+OT44sHvlxp/G cJ+sx2EB18f9U+FhsveP7zmHhursktvyyezAiMRYeeWsHwS+86lNWtHBcqYwpDTI W/Ancutkmhei4/f8uTJUWmKtSBqswLx0k0drrsg8MJkiuvgV2ELNq/RdpJk+chn3 7KmkP/ACd9gn/HXze/TiZPRkfoTi+pS2+4vlAs4sesLiEx9FORMt80uNKD0EiCrH YPqZ3RKqogIScI8vYbOsJ0HRcM0TFR7Nzxf81527n7b/xQHgr8j2dYOy4mA3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUwN8hebAileC05XxWr3bz10yB928wHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMxMzAzMzJlMzQzNDJlMzMzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMzM3MzkzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcsJTANBgkqhkiG 9w0BAQsFAAOCAQEAeWFq1OW7+z6VhNhV5hKfotdmyuacY+3tQC5r1xyYsHUNbuRe bG12JCuqXEBezYb1tfIg8dIpRjS2ZysTXi2yR6db8ujfl8NH5IW9cb85y2k9jWdK 6mpR02swkHiICJK7nbUP7IQlUGwHoXQdbMnZn2Rn9kPDVwpMjnGLup3Lp0Jk2Muu OkrK4nbshoJSbmiO4gL/4yykv7aNn0f+62Edf9L7gexhaCH8KS3PEOmAjpuZBQ9N ZRKGqpeLn8f6QxE6b8upwRSGwX8grlDvzNMzBIaIKi1MEvWr/r6HihWM6njv31JY wXDaaAsEMnnBt5IlFCzgQrY0QA8Jagr+dYF28g== -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org