$ rpki-client -vvf repo-rpki.idnic.net/repo/c350f078-c535-4f8e-960f-32c1623aa4b1/0/3130332e3137342e39302e302f32332d3234203d3e203338333230.roa File: 3130332e3137342e39302e302f32332d3234203d3e203338333230.roa (raw, json) Hash identifier: ZdS3jZKooJPUQyfN1HJEdr9Y75FP+FSqWLohXMul5yU= Subject key identifier: 8F:CE:33:DF:49:F2:68:56:9E:66:0F:1B:66:3B:A6:5B:4A:F9:56:55 Certificate issuer: /CN=9B77D523EDC2218C65DAB55B4538140243B7E862 Certificate serial: 2D4168803F9E1B1C178BB6B1EC5E6E798597CC39 Authority key identifier: 9B:77:D5:23:ED:C2:21:8C:65:DA:B5:5B:45:38:14:02:43:B7:E8:62 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B77D523EDC2218C65DAB55B4538140243B7E862.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c350f078-c535-4f8e-960f-32c1623aa4b1/0/3130332e3137342e39302e302f32332d3234203d3e203338333230.roa Signing time: Thu 16 May 2024 04:02:08 +0000 ROA not before: Thu 16 May 2024 03:57:08 +0000 ROA not after: Thu 15 May 2025 04:02:08 +0000 asID: 38320 IP address blocks: 103.174.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c350f078-c535-4f8e-960f-32c1623aa4b1/0/9B77D523EDC2218C65DAB55B4538140243B7E862.crl rsync://repo-rpki.idnic.net/repo/c350f078-c535-4f8e-960f-32c1623aa4b1/0/9B77D523EDC2218C65DAB55B4538140243B7E862.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B77D523EDC2218C65DAB55B4538140243B7E862.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:41:68:80:3f:9e:1b:1c:17:8b:b6:b1:ec:5e:6e:79:85:97:cc:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B77D523EDC2218C65DAB55B4538140243B7E862 Validity Not Before: May 16 03:57:08 2024 GMT Not After : May 15 04:02:08 2025 GMT Subject: CN=8FCE33DF49F268569E660F1B663BA65B4AF95655 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:52:1a:24:4b:00:ab:54:79:ab:fb:79:f8:99: 33:a7:4f:45:86:b5:93:50:2f:4a:fd:2e:d1:70:3d: 7b:04:8c:ad:0d:dd:f7:1e:0c:6f:ef:ce:31:25:fa: 4a:e9:47:8c:89:e1:ea:4a:eb:a0:c0:73:c4:12:b5: 37:e2:79:53:d8:74:74:d7:d7:6e:09:e6:5c:9b:dd: 21:a0:c6:a5:41:42:fa:b9:2a:e0:bb:73:63:ac:4c: aa:8f:bf:ca:1c:fe:f7:9a:b1:d7:2c:79:7b:00:2b: 38:cc:0b:81:dc:ef:31:6f:74:55:47:4e:f9:a5:dc: 06:5d:76:87:89:d3:7d:9f:9f:e7:98:5d:70:de:da: 0a:14:f3:4d:32:ce:8b:92:39:d4:85:ae:44:e1:16: fc:b8:9c:2d:80:58:bb:11:5e:2c:30:a0:38:dd:67: 67:89:7d:ba:76:06:8d:05:ab:d8:de:d9:65:40:94: ac:f5:fc:91:b7:7a:b4:1c:27:6e:e9:91:2d:fb:75: df:26:4f:fd:09:ef:84:7c:d8:fd:76:9d:35:39:20: 00:d7:84:e6:bb:3e:e8:b2:0d:86:a1:a6:14:36:84: 8e:8f:24:3b:75:6e:cd:88:d6:2f:6e:53:a6:c4:28: 05:61:5f:85:e7:c5:af:8e:a1:bb:0d:e6:27:ae:78: 3b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:CE:33:DF:49:F2:68:56:9E:66:0F:1B:66:3B:A6:5B:4A:F9:56:55 X509v3 Authority Key Identifier: keyid:9B:77:D5:23:ED:C2:21:8C:65:DA:B5:5B:45:38:14:02:43:B7:E8:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c350f078-c535-4f8e-960f-32c1623aa4b1/0/9B77D523EDC2218C65DAB55B4538140243B7E862.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B77D523EDC2218C65DAB55B4538140243B7E862.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c350f078-c535-4f8e-960f-32c1623aa4b1/0/3130332e3137342e39302e302f32332d3234203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.90.0/23 Signature Algorithm: sha256WithRSAEncryption 23:48:dc:ce:ea:d8:d4:b0:49:34:44:62:2e:7d:73:4b:22:2e: f2:07:59:74:d1:0b:4e:f0:f1:e4:83:e5:08:e1:1e:a9:95:d6: 08:5a:a9:37:ff:a5:13:8a:cb:6e:27:65:c9:67:92:05:ca:e6: 66:e5:af:3f:a1:18:40:58:25:8a:c3:8c:96:80:4a:56:65:2a: 32:0d:2b:b8:01:d5:a0:f6:98:eb:f1:27:3b:87:8d:09:02:f6: 53:75:1b:08:d9:fd:06:69:aa:9f:d8:60:4d:80:3b:b9:0d:30: 17:ed:00:18:81:c4:21:12:bc:bc:39:77:28:f3:3c:ef:87:0e: 53:23:e9:92:5e:bc:98:fc:a6:e6:1f:98:b5:66:9c:cc:b9:60: 93:96:5a:2d:55:66:e5:63:4a:05:04:e3:cf:b0:06:5a:a1:18: ed:9c:19:29:c1:81:57:43:3a:ab:1c:8a:83:55:cb:75:c4:b8: 01:ee:cd:89:71:54:4b:f9:c0:1f:01:09:60:22:a7:88:52:f1: ef:60:b4:a5:d4:12:34:5c:9e:30:5e:a9:c0:38:22:e3:89:3b: ef:5e:52:ae:9f:10:68:9c:c5:28:fd:5d:ec:d5:00:ce:72:93: 46:72:ec:df:05:de:1f:04:47:0e:d4:19:34:b2:77:16:74:7a: 10:c2:7c:e9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULUFogD+eGxwXi7ax7F5ueYWXzDkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUI3N0Q1MjNFREMyMjE4QzY1REFCNTVCNDUzODE0MDI0 M0I3RTg2MjAeFw0yNDA1MTYwMzU3MDhaFw0yNTA1MTUwNDAyMDhaMDMxMTAvBgNV BAMTKDhGQ0UzM0RGNDlGMjY4NTY5RTY2MEYxQjY2M0JBNjVCNEFGOTU2NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuUhokSwCrVHmr+3n4mTOnT0WG tZNQL0r9LtFwPXsEjK0N3fceDG/vzjEl+krpR4yJ4epK66DAc8QStTfieVPYdHTX 124J5lyb3SGgxqVBQvq5KuC7c2OsTKqPv8oc/veasdcseXsAKzjMC4Hc7zFvdFVH Tvml3AZddoeJ032fn+eYXXDe2goU800yzouSOdSFrkThFvy4nC2AWLsRXiwwoDjd Z2eJfbp2Bo0Fq9je2WVAlKz1/JG3erQcJ27pkS37dd8mT/0J74R82P12nTU5IADX hOa7PuiyDYahphQ2hI6PJDt1bs2I1i9uU6bEKAVhX4Xnxa+OobsN5ieueDs/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUj84z30nyaFaeZg8bZjumW0r5VlUwHwYDVR0j BBgwFoAUm3fVI+3CIYxl2rVbRTgUAkO36GIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzUwZjA3OC1jNTM1LTRmOGUtOTYwZi0zMmMxNjIzYWE0YjEvMC85Qjc3RDUyM0VE QzIyMThDNjVEQUI1NUI0NTM4MTQwMjQzQjdFODYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUI3N0Q1MjNFREMyMjE4QzY1REFCNTVCNDUzODE0MDI0M0I3 RTg2Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzNTBmMDc4LWM1MzUtNGY4ZS05 NjBmLTMyYzE2MjNhYTRiMS8wLzMxMzAzMzJlMzEzNzM0MmUzOTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzMzODMzMzIzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWeuWjANBgkqhkiG 9w0BAQsFAAOCAQEAI0jczurY1LBJNERiLn1zSyIu8gdZdNELTvDx5IPlCOEeqZXW CFqpN/+lE4rLbidlyWeSBcrmZuWvP6EYQFglisOMloBKVmUqMg0ruAHVoPaY6/En O4eNCQL2U3UbCNn9Bmmqn9hgTYA7uQ0wF+0AGIHEIRK8vDl3KPM874cOUyPpkl68 mPym5h+YtWaczLlgk5ZaLVVm5WNKBQTjz7AGWqEY7ZwZKcGBV0M6qxyKg1XLdcS4 Ae7NiXFUS/nAHwEJYCKniFLx72C0pdQSNFyeMF6pwDgi44k7715Srp8QaJzFKP1d 7NUAznKTRnLs3wXeHwRHDtQZNLJ3FnR6EMJ86Q== -----END CERTIFICATE-----Generated at Wed Nov 20 18:59:47 2024 by rpki-client on console-ams.rpki-client.org