$ rpki-client -vvf repo-rpki.idnic.net/repo/d9ee209a-1193-4d6f-9dbe-8777bb8980aa/0/3130332e3231302e3232312e302f32342d3234203d3e20313530393433.roa File: 3130332e3231302e3232312e302f32342d3234203d3e20313530393433.roa (raw, json) Hash identifier: 3VNyV+xggxa7xMMWy16vGpUaFxQO4lL/tc83QDohu80= Subject key identifier: 34:06:87:1C:71:94:9B:33:26:18:7E:BD:15:55:91:AB:1B:7B:F3:C2 Certificate issuer: /CN=3A09CF32EC4F6D5C4FD2C837A1174ED34721DB47 Certificate serial: 3BD1885A2D6B2A677738CCFE77BDEE80257DEA7A Authority key identifier: 3A:09:CF:32:EC:4F:6D:5C:4F:D2:C8:37:A1:17:4E:D3:47:21:DB:47 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A09CF32EC4F6D5C4FD2C837A1174ED34721DB47.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d9ee209a-1193-4d6f-9dbe-8777bb8980aa/0/3130332e3231302e3232312e302f32342d3234203d3e20313530393433.roa Signing time: Sat 30 Mar 2024 05:00:02 +0000 ROA not before: Sat 30 Mar 2024 04:55:02 +0000 ROA not after: Sat 29 Mar 2025 05:00:02 +0000 asID: 150943 IP address blocks: 103.210.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d9ee209a-1193-4d6f-9dbe-8777bb8980aa/0/3A09CF32EC4F6D5C4FD2C837A1174ED34721DB47.crl rsync://repo-rpki.idnic.net/repo/d9ee209a-1193-4d6f-9dbe-8777bb8980aa/0/3A09CF32EC4F6D5C4FD2C837A1174ED34721DB47.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A09CF32EC4F6D5C4FD2C837A1174ED34721DB47.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:d1:88:5a:2d:6b:2a:67:77:38:cc:fe:77:bd:ee:80:25:7d:ea:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3A09CF32EC4F6D5C4FD2C837A1174ED34721DB47 Validity Not Before: Mar 30 04:55:02 2024 GMT Not After : Mar 29 05:00:02 2025 GMT Subject: CN=3406871C71949B3326187EBD155591AB1B7BF3C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:65:aa:09:5f:92:f5:27:f9:36:28:2e:1b:dc: c3:9c:2e:8d:f1:3a:ba:ce:96:fe:b5:28:bd:d9:69: 16:ee:81:3f:03:b1:f4:c8:82:06:0a:ad:15:16:e5: 52:72:54:eb:54:91:28:0a:cc:39:6a:94:93:aa:f7: cf:a7:2a:dd:4e:3b:81:ae:ef:f8:0b:36:53:25:43: ae:ef:a4:7e:cc:79:a3:25:69:c5:f0:68:a5:d8:1f: 1f:4f:42:ce:86:69:bf:6d:90:05:d7:14:a1:b9:5a: e7:a3:0d:1d:67:06:b5:a4:b8:1d:38:ba:8a:73:0a: da:fd:72:6b:23:a3:98:99:33:af:4d:53:db:26:2e: 77:18:85:93:36:9d:2f:61:90:48:40:40:11:0f:73: aa:b7:50:fc:cf:03:21:87:31:d9:1e:b7:5d:a3:db: 48:94:dd:5a:aa:07:eb:8d:25:5e:0f:f3:54:23:27: bb:12:6f:5f:65:69:41:92:b9:7b:a7:a2:39:e6:d1: b8:21:c0:ca:de:a4:7b:5f:ed:0d:2d:29:bb:a6:61: 8f:cf:1f:cd:3f:26:e9:d9:3a:8a:00:bf:f8:f5:25: 36:31:07:72:fb:72:ec:d0:9d:c4:7d:5f:f8:b1:b1: 4b:e1:e6:3d:f3:11:00:7f:6c:ea:cf:f1:cd:1c:f2: 53:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:06:87:1C:71:94:9B:33:26:18:7E:BD:15:55:91:AB:1B:7B:F3:C2 X509v3 Authority Key Identifier: keyid:3A:09:CF:32:EC:4F:6D:5C:4F:D2:C8:37:A1:17:4E:D3:47:21:DB:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d9ee209a-1193-4d6f-9dbe-8777bb8980aa/0/3A09CF32EC4F6D5C4FD2C837A1174ED34721DB47.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A09CF32EC4F6D5C4FD2C837A1174ED34721DB47.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d9ee209a-1193-4d6f-9dbe-8777bb8980aa/0/3130332e3231302e3232312e302f32342d3234203d3e20313530393433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.210.221.0/24 Signature Algorithm: sha256WithRSAEncryption 37:a5:fe:13:f8:4f:15:ce:a8:c4:80:f9:2c:3f:75:58:f0:04: 20:7e:0d:d0:cb:87:03:2d:8c:27:11:d6:69:6c:10:c7:21:07: 49:c1:08:da:02:13:c5:18:67:60:7f:24:91:d0:53:1c:89:de: 4b:67:56:ee:9e:64:3b:de:28:48:f3:28:08:b1:10:35:07:d1: cf:ca:2f:2b:19:52:76:1d:bb:82:eb:cb:ae:61:d4:0c:c4:80: 33:19:22:fe:16:e6:a9:ff:68:be:0e:5f:21:32:fa:2e:17:1c: 1a:9e:b9:e3:ed:97:f0:6e:4a:ba:c0:ba:6a:42:b0:f2:ad:38: 87:37:ac:6d:33:c0:e8:35:bd:2e:91:cd:34:c6:c9:77:74:a5: d8:3e:e8:3d:c9:51:96:f1:50:c4:60:bb:3f:dc:20:d0:ab:f4: fc:58:ef:76:c5:44:7e:d4:29:f8:95:e0:f2:93:a6:7d:ff:2f: 94:3d:39:e6:3c:0a:93:1e:2f:13:53:20:b6:e9:6e:7e:14:97: b0:4c:46:dd:d8:f2:b6:c6:46:c4:0c:84:5d:19:c7:bb:24:a6: 42:39:ac:6a:34:1d:78:c6:6d:35:1f:87:00:0d:f0:a2:b8:78: 63:d2:02:55:4f:86:1c:b4:ab:f4:f1:7f:59:6d:92:c9:86:97: c5:c2:54:7f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUO9GIWi1rKmd3OMz+d73ugCV96nowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0EwOUNGMzJFQzRGNkQ1QzRGRDJDODM3QTExNzRFRDM0 NzIxREI0NzAeFw0yNDAzMzAwNDU1MDJaFw0yNTAzMjkwNTAwMDJaMDMxMTAvBgNV BAMTKDM0MDY4NzFDNzE5NDlCMzMyNjE4N0VCRDE1NTU5MUFCMUI3QkYzQzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/ZaoJX5L1J/k2KC4b3MOcLo3x OrrOlv61KL3ZaRbugT8DsfTIggYKrRUW5VJyVOtUkSgKzDlqlJOq98+nKt1OO4Gu 7/gLNlMlQ67vpH7MeaMlacXwaKXYHx9PQs6Gab9tkAXXFKG5WuejDR1nBrWkuB04 uopzCtr9cmsjo5iZM69NU9smLncYhZM2nS9hkEhAQBEPc6q3UPzPAyGHMdket12j 20iU3VqqB+uNJV4P81QjJ7sSb19laUGSuXunojnm0bghwMrepHtf7Q0tKbumYY/P H80/JunZOooAv/j1JTYxB3L7cuzQncR9X/ixsUvh5j3zEQB/bOrP8c0c8lPjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUNAaHHHGUmzMmGH69FVWRqxt788IwHwYDVR0j BBgwFoAUOgnPMuxPbVxP0sg3oRdO00ch20cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OWVlMjA5YS0xMTkzLTRkNmYtOWRiZS04Nzc3YmI4OTgwYWEvMC8zQTA5Q0YzMkVD NEY2RDVDNEZEMkM4MzdBMTE3NEVEMzQ3MjFEQjQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0EwOUNGMzJFQzRGNkQ1QzRGRDJDODM3QTExNzRFRDM0NzIx REI0Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q5ZWUyMDlhLTExOTMtNGQ2Zi05 ZGJlLTg3NzdiYjg5ODBhYS8wLzMxMzAzMzJlMzIzMTMwMmUzMjMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzOTM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn0t0wDQYJ KoZIhvcNAQELBQADggEBADel/hP4TxXOqMSA+Sw/dVjwBCB+DdDLhwMtjCcR1mls EMchB0nBCNoCE8UYZ2B/JJHQUxyJ3ktnVu6eZDveKEjzKAixEDUH0c/KLysZUnYd u4Lry65h1AzEgDMZIv4W5qn/aL4OXyEy+i4XHBqeuePtl/BuSrrAumpCsPKtOIc3 rG0zwOg1vS6RzTTGyXd0pdg+6D3JUZbxUMRguz/cINCr9PxY73bFRH7UKfiV4PKT pn3/L5Q9OeY8CpMeLxNTILbpbn4Ul7BMRt3Y8rbGRsQMhF0Zx7skpkI5rGo0HXjG bTUfhwAN8KK4eGPSAlVPhhy0q/Txf1ltksmGl8XCVH8= -----END CERTIFICATE-----Generated at Sat Nov 23 18:35:33 2024 by rpki-client on console-ams.rpki-client.org