$ rpki-client -vvf repo-rpki.idnic.net/repo/f26e4564-48f2-43b5-8505-93b498e7d8ab/0/3130332e3230372e39362e302f32322d3234203d3e20313334363433.roa File: 3130332e3230372e39362e302f32322d3234203d3e20313334363433.roa (raw, json) Hash identifier: pFYo+rYQ4y01OiD99PWpXB905d+F4ZorCo/4HXyMapk= Subject key identifier: 14:5A:00:54:B0:4D:AA:71:5A:E1:22:B3:01:B6:54:6F:B8:81:64:99 Certificate issuer: /CN=3BB7346C991B689223BADC6F82DD19BE3B017704 Certificate serial: 29E91888C376733E0FA60987FCC25FF0C761C6C4 Authority key identifier: 3B:B7:34:6C:99:1B:68:92:23:BA:DC:6F:82:DD:19:BE:3B:01:77:04 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BB7346C991B689223BADC6F82DD19BE3B017704.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f26e4564-48f2-43b5-8505-93b498e7d8ab/0/3130332e3230372e39362e302f32322d3234203d3e20313334363433.roa Signing time: Sun 22 Sep 2024 13:00:01 +0000 ROA not before: Sun 22 Sep 2024 12:55:01 +0000 ROA not after: Sun 21 Sep 2025 13:00:01 +0000 asID: 134643 IP address blocks: 103.207.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f26e4564-48f2-43b5-8505-93b498e7d8ab/0/3BB7346C991B689223BADC6F82DD19BE3B017704.crl rsync://repo-rpki.idnic.net/repo/f26e4564-48f2-43b5-8505-93b498e7d8ab/0/3BB7346C991B689223BADC6F82DD19BE3B017704.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BB7346C991B689223BADC6F82DD19BE3B017704.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 09:31:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:e9:18:88:c3:76:73:3e:0f:a6:09:87:fc:c2:5f:f0:c7:61:c6:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BB7346C991B689223BADC6F82DD19BE3B017704 Validity Not Before: Sep 22 12:55:01 2024 GMT Not After : Sep 21 13:00:01 2025 GMT Subject: CN=145A0054B04DAA715AE122B301B6546FB8816499 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:be:cb:49:6d:77:fd:b6:a1:64:81:d5:ac:52: eb:cb:16:ca:7a:d5:1b:83:1d:5e:b0:57:ec:88:9c: 67:58:4a:34:69:08:59:8b:63:3d:8d:b0:57:c4:b4: 6c:b1:ce:19:6b:cc:d9:de:6b:40:ac:26:c6:4c:95: 20:fd:16:42:f3:c9:10:ab:1e:4b:2a:6f:f4:f9:12: e4:1c:80:e1:ae:12:b1:0f:e6:57:2b:05:96:7d:79: f1:d5:23:bc:7a:44:2d:ec:b4:65:b4:88:e6:9e:f1: 4a:cb:4c:d9:b9:23:e3:c3:17:52:3a:f7:58:7f:e8: 2f:7d:01:c4:29:03:81:ae:7f:6c:15:e1:c1:6d:01: cd:15:d5:a8:5f:f0:c5:5e:e3:72:c4:24:61:03:b5: 95:05:65:45:24:ee:c5:37:c2:21:ec:69:35:cc:79: 90:23:b0:71:3e:13:5b:7f:45:26:25:0c:80:81:87: 11:37:10:aa:4c:bf:43:45:96:02:b4:ef:cd:3e:c0: 49:d7:30:f8:7f:9d:70:e4:7a:4e:e1:e9:13:72:c4: 0c:56:b1:7f:06:ba:84:d5:4e:92:b6:28:5e:6b:15: 44:e6:64:bb:06:32:ed:c7:8f:93:11:6d:33:6a:7e: af:d4:d5:f2:f9:81:54:48:03:eb:97:1f:f1:b1:c2: da:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:5A:00:54:B0:4D:AA:71:5A:E1:22:B3:01:B6:54:6F:B8:81:64:99 X509v3 Authority Key Identifier: keyid:3B:B7:34:6C:99:1B:68:92:23:BA:DC:6F:82:DD:19:BE:3B:01:77:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f26e4564-48f2-43b5-8505-93b498e7d8ab/0/3BB7346C991B689223BADC6F82DD19BE3B017704.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BB7346C991B689223BADC6F82DD19BE3B017704.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f26e4564-48f2-43b5-8505-93b498e7d8ab/0/3130332e3230372e39362e302f32322d3234203d3e20313334363433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.207.96.0/22 Signature Algorithm: sha256WithRSAEncryption 66:c2:a9:36:a9:9b:61:4f:48:6a:36:a5:15:8d:44:6f:49:9d: 3b:51:45:68:08:f2:51:87:77:4c:ac:b7:9d:d2:a0:86:0d:9b: 3f:69:d7:d7:73:df:82:8f:10:12:b2:60:22:a5:a0:7c:da:4a: 59:2e:1f:dc:f9:16:59:6d:c3:52:dc:6f:aa:46:fa:34:89:03: 80:d4:5d:10:66:aa:96:d4:1a:f5:c9:d8:33:63:ad:76:60:67: f5:6a:1c:dc:91:33:67:5c:64:87:d9:7e:99:e1:d9:72:65:ff: 24:16:46:37:fa:1f:53:dc:2b:b7:a5:6c:2d:25:0f:a9:c1:45: ff:31:ca:b3:70:1e:96:0b:a7:3a:8b:53:00:bd:ec:54:25:51: 6d:ba:42:3e:73:be:b6:a8:6e:b2:52:12:08:99:4d:c3:5b:ac: bd:18:3a:b0:bf:1d:74:a3:e2:d9:1a:fb:2f:bb:73:97:45:ee: 50:7b:d8:c5:60:fe:ee:f7:5f:e8:d0:38:87:d7:62:1b:f7:e6: 72:d7:3e:db:34:f6:d6:4c:2c:c9:cf:b9:3c:78:48:48:eb:b4: db:e6:43:e9:96:8a:2e:9c:80:ae:95:1e:c6:c4:26:6d:69:ab: 67:fd:2d:28:cb:42:5f:63:cc:4c:96:c1:b9:26:66:5e:bc:ec: 37:a1:9c:fd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKekYiMN2cz4PpgmH/MJf8MdhxsQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0JCNzM0NkM5OTFCNjg5MjIzQkFEQzZGODJERDE5QkUz QjAxNzcwNDAeFw0yNDA5MjIxMjU1MDFaFw0yNTA5MjExMzAwMDFaMDMxMTAvBgNV BAMTKDE0NUEwMDU0QjA0REFBNzE1QUUxMjJCMzAxQjY1NDZGQjg4MTY0OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFvstJbXf9tqFkgdWsUuvLFsp6 1RuDHV6wV+yInGdYSjRpCFmLYz2NsFfEtGyxzhlrzNnea0CsJsZMlSD9FkLzyRCr Hksqb/T5EuQcgOGuErEP5lcrBZZ9efHVI7x6RC3stGW0iOae8UrLTNm5I+PDF1I6 91h/6C99AcQpA4Guf2wV4cFtAc0V1ahf8MVe43LEJGEDtZUFZUUk7sU3wiHsaTXM eZAjsHE+E1t/RSYlDICBhxE3EKpMv0NFlgK0780+wEnXMPh/nXDkek7h6RNyxAxW sX8GuoTVTpK2KF5rFUTmZLsGMu3Hj5MRbTNqfq/U1fL5gVRIA+uXH/GxwtoXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFFoAVLBNqnFa4SKzAbZUb7iBZJkwHwYDVR0j BBgwFoAUO7c0bJkbaJIjutxvgt0ZvjsBdwQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MjZlNDU2NC00OGYyLTQzYjUtODUwNS05M2I0OThlN2Q4YWIvMC8zQkI3MzQ2Qzk5 MUI2ODkyMjNCQURDNkY4MkREMTlCRTNCMDE3NzA0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0JCNzM0NkM5OTFCNjg5MjIzQkFEQzZGODJERDE5QkUzQjAx NzcwNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YyNmU0NTY0LTQ4ZjItNDNiNS04 NTA1LTkzYjQ5OGU3ZDhhYi8wLzMxMzAzMzJlMzIzMDM3MmUzOTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM0MzYzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ89gMA0GCSqG SIb3DQEBCwUAA4IBAQBmwqk2qZthT0hqNqUVjURvSZ07UUVoCPJRh3dMrLed0qCG DZs/adfXc9+CjxASsmAipaB82kpZLh/c+RZZbcNS3G+qRvo0iQOA1F0QZqqW1Br1 ydgzY612YGf1ahzckTNnXGSH2X6Z4dlyZf8kFkY3+h9T3Cu3pWwtJQ+pwUX/Mcqz cB6WC6c6i1MAvexUJVFtukI+c762qG6yUhIImU3DW6y9GDqwvx10o+LZGvsvu3OX Re5Qe9jFYP7u91/o0DiH12Ib9+Zy1z7bNPbWTCzJz7k8eEhI67Tb5kPploounICu lR7GxCZtaatn/S0oy0JfY8xMlsG5JmZevOw3oZz9 -----END CERTIFICATE-----Generated at Fri Nov 22 03:51:03 2024 by rpki-client on console-fra.rpki-client.org