$ rpki-client -vvf repo-rpki.idnic.net/repo/24207523-d5f5-4acc-b0ac-bfb0954fa4e0/0/3130332e31362e37392e302f32342d3234203d3e20313331373835.roa File: 3130332e31362e37392e302f32342d3234203d3e20313331373835.roa (raw, json) Hash identifier: zdfMfvkGSDVYxsoM73xU3WNzYlifm8G/4NUbi9jkXjs= Subject key identifier: 3B:F0:B8:B4:C7:9E:52:A0:2A:03:CF:50:48:0E:60:8E:04:0C:E6:65 Certificate issuer: /CN=6D4B1748DE52DCE397B868772E128F7C58ACA8AB Certificate serial: 314B617828BDD9FE01F15345856B1E7EBA31BD71 Authority key identifier: 6D:4B:17:48:DE:52:DC:E3:97:B8:68:77:2E:12:8F:7C:58:AC:A8:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D4B1748DE52DCE397B868772E128F7C58ACA8AB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/24207523-d5f5-4acc-b0ac-bfb0954fa4e0/0/3130332e31362e37392e302f32342d3234203d3e20313331373835.roa Signing time: Sat 02 Mar 2024 11:02:02 +0000 ROA not before: Sat 02 Mar 2024 10:57:02 +0000 ROA not after: Sat 01 Mar 2025 11:02:02 +0000 asID: 131785 IP address blocks: 103.16.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/24207523-d5f5-4acc-b0ac-bfb0954fa4e0/0/6D4B1748DE52DCE397B868772E128F7C58ACA8AB.crl rsync://repo-rpki.idnic.net/repo/24207523-d5f5-4acc-b0ac-bfb0954fa4e0/0/6D4B1748DE52DCE397B868772E128F7C58ACA8AB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D4B1748DE52DCE397B868772E128F7C58ACA8AB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:4b:61:78:28:bd:d9:fe:01:f1:53:45:85:6b:1e:7e:ba:31:bd:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D4B1748DE52DCE397B868772E128F7C58ACA8AB Validity Not Before: Mar 2 10:57:02 2024 GMT Not After : Mar 1 11:02:02 2025 GMT Subject: CN=3BF0B8B4C79E52A02A03CF50480E608E040CE665 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c7:59:a8:86:c8:78:e5:04:0c:24:a9:34:37: 9a:02:51:37:12:c1:c7:ea:9c:1d:c9:50:c1:92:d2: 08:d2:94:bb:21:dc:aa:7f:d5:aa:11:05:83:b7:d3: 15:cc:4d:eb:d8:f1:4b:1e:65:9b:9e:84:29:d6:ab: 6d:67:93:d7:85:2d:8b:c5:29:b1:9a:61:be:b1:e5: 93:90:18:27:38:17:31:99:5e:54:e3:b1:f2:32:db: f3:2d:bd:39:08:aa:80:5c:16:78:1d:64:1d:ef:af: 68:b5:c4:77:b0:81:c6:88:25:e4:e4:18:89:68:60: 9b:ea:0f:d7:6d:10:71:fa:4e:74:f1:71:26:ea:f6: ee:ba:b4:9b:79:9a:fa:9f:d8:21:b5:e4:9e:93:d7: 16:aa:04:ec:46:9a:e3:0c:15:fe:b0:84:65:97:d0: d6:a7:78:26:aa:67:7b:76:e2:be:39:3e:c1:6d:4e: 86:57:f4:72:98:6e:6c:82:45:77:de:1e:fa:d3:3f: fa:41:0b:f7:be:12:83:a5:57:b2:6e:31:58:62:8c: 7e:f7:e7:b1:54:3d:22:16:f8:5e:39:a1:e9:27:12: 50:4a:8f:cc:25:87:a8:05:8b:9e:5e:83:5a:b2:84: ba:17:d1:f3:a6:0d:dc:b8:bf:10:b7:c1:e9:8f:b2: 8c:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:F0:B8:B4:C7:9E:52:A0:2A:03:CF:50:48:0E:60:8E:04:0C:E6:65 X509v3 Authority Key Identifier: keyid:6D:4B:17:48:DE:52:DC:E3:97:B8:68:77:2E:12:8F:7C:58:AC:A8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/24207523-d5f5-4acc-b0ac-bfb0954fa4e0/0/6D4B1748DE52DCE397B868772E128F7C58ACA8AB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D4B1748DE52DCE397B868772E128F7C58ACA8AB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/24207523-d5f5-4acc-b0ac-bfb0954fa4e0/0/3130332e31362e37392e302f32342d3234203d3e20313331373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.16.79.0/24 Signature Algorithm: sha256WithRSAEncryption 58:ac:6d:e2:66:a4:91:a1:c9:4c:30:54:99:6c:c6:96:36:d3: eb:d9:49:a7:23:5e:12:a1:52:fe:5b:c1:53:e0:39:2b:c9:79: 4f:0a:42:06:be:87:0b:6c:a2:c0:76:84:b3:51:f5:5e:e5:ed: c3:25:60:67:1e:51:50:42:11:c3:07:2a:2a:1d:81:12:32:94: cc:09:5b:47:a2:29:89:ea:80:40:c9:0a:ba:ff:65:32:3f:7f: 82:6f:a7:a6:64:90:b7:48:43:d3:e4:79:59:39:67:29:92:06: 48:ba:f9:a7:36:26:cb:85:a0:9a:15:5a:88:ce:cb:97:96:9d: 5e:e1:9b:d2:32:12:9e:78:c1:d3:70:10:a4:a7:d5:7f:22:2b: 52:93:6f:f4:0c:bc:50:22:3b:e4:f1:13:9d:9e:6e:6b:fe:42: e6:6d:44:a4:02:2a:39:89:5f:57:0d:ee:b8:76:cb:37:b8:5d: b1:d1:01:6f:9e:cf:46:87:0d:55:99:b1:2a:28:71:4b:1a:c8: 7c:99:fc:05:f9:b3:85:a0:ec:bd:ca:e1:fb:4a:f5:61:b3:51: 65:3a:57:1e:e5:07:f4:b3:c1:79:a6:06:ff:8a:60:95:7a:ce: f5:72:8d:71:4d:19:f9:c6:02:44:dc:16:ae:05:77:45:1c:08: 51:90:28:f5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMUtheCi92f4B8VNFhWsefroxvXEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkQ0QjE3NDhERTUyRENFMzk3Qjg2ODc3MkUxMjhGN0M1 OEFDQThBQjAeFw0yNDAzMDIxMDU3MDJaFw0yNTAzMDExMTAyMDJaMDMxMTAvBgNV BAMTKDNCRjBCOEI0Qzc5RTUyQTAyQTAzQ0Y1MDQ4MEU2MDhFMDQwQ0U2NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgx1mohsh45QQMJKk0N5oCUTcS wcfqnB3JUMGS0gjSlLsh3Kp/1aoRBYO30xXMTevY8UseZZuehCnWq21nk9eFLYvF KbGaYb6x5ZOQGCc4FzGZXlTjsfIy2/MtvTkIqoBcFngdZB3vr2i1xHewgcaIJeTk GIloYJvqD9dtEHH6TnTxcSbq9u66tJt5mvqf2CG15J6T1xaqBOxGmuMMFf6whGWX 0NaneCaqZ3t24r45PsFtToZX9HKYbmyCRXfeHvrTP/pBC/e+EoOlV7JuMVhijH73 57FUPSIW+F45oeknElBKj8wlh6gFi55eg1qyhLoX0fOmDdy4vxC3wemPsoyBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUO/C4tMeeUqAqA89QSA5gjgQM5mUwHwYDVR0j BBgwFoAUbUsXSN5S3OOXuGh3LhKPfFisqKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDIwNzUyMy1kNWY1LTRhY2MtYjBhYy1iZmIwOTU0ZmE0ZTAvMC82RDRCMTc0OERF NTJEQ0UzOTdCODY4NzcyRTEyOEY3QzU4QUNBOEFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkQ0QjE3NDhERTUyRENFMzk3Qjg2ODc3MkUxMjhGN0M1OEFD QThBQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0MjA3NTIzLWQ1ZjUtNGFjYy1i MGFjLWJmYjA5NTRmYTRlMC8wLzMxMzAzMzJlMzEzNjJlMzczOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMTM3MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcQTzANBgkqhkiG 9w0BAQsFAAOCAQEAWKxt4makkaHJTDBUmWzGljbT69lJpyNeEqFS/lvBU+A5K8l5 TwpCBr6HC2yiwHaEs1H1XuXtwyVgZx5RUEIRwwcqKh2BEjKUzAlbR6IpieqAQMkK uv9lMj9/gm+npmSQt0hD0+R5WTlnKZIGSLr5pzYmy4WgmhVaiM7Ll5adXuGb0jIS nnjB03AQpKfVfyIrUpNv9Ay8UCI75PETnZ5ua/5C5m1EpAIqOYlfVw3uuHbLN7hd sdEBb57PRocNVZmxKihxSxrIfJn8BfmzhaDsvcrh+0r1YbNRZTpXHuUH9LPBeaYG /4pglXrO9XKNcU0Z+cYCRNwWrgV3RRwIUZAo9Q== -----END CERTIFICATE-----Generated at Fri Apr 26 00:34:54 2024 by rpki-client on console-ams.rpki-client.org