$ rpki-client -vvf repo-rpki.idnic.net/repo/f398063e-57a1-40f2-8527-4d0a69c5d647/0/3130332e3233392e32332e302f32342d3234203d3e20313336383635.roa File: 3130332e3233392e32332e302f32342d3234203d3e20313336383635.roa (raw, json) Hash identifier: jyK3re0Saja2i9kA29rjCaPL/s5yhhjIplhW1rPLPno= Subject key identifier: 91:CB:EA:F1:54:AE:7E:D3:63:9E:4F:D9:AE:12:92:F4:F6:65:7E:94 Certificate issuer: /CN=4E054E064DCDF2E49F7282D7370B9EAFF42A944B Certificate serial: 5B7402A237C05C1B613A074C2F8DD64A89367321 Authority key identifier: 4E:05:4E:06:4D:CD:F2:E4:9F:72:82:D7:37:0B:9E:AF:F4:2A:94:4B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E054E064DCDF2E49F7282D7370B9EAFF42A944B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f398063e-57a1-40f2-8527-4d0a69c5d647/0/3130332e3233392e32332e302f32342d3234203d3e20313336383635.roa Signing time: Sat 04 Nov 2023 03:17:30 +0000 ROA not before: Sat 04 Nov 2023 03:12:30 +0000 ROA not after: Sat 02 Nov 2024 03:17:30 +0000 asID: 136865 IP address blocks: 103.239.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f398063e-57a1-40f2-8527-4d0a69c5d647/0/4E054E064DCDF2E49F7282D7370B9EAFF42A944B.crl rsync://repo-rpki.idnic.net/repo/f398063e-57a1-40f2-8527-4d0a69c5d647/0/4E054E064DCDF2E49F7282D7370B9EAFF42A944B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E054E064DCDF2E49F7282D7370B9EAFF42A944B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Sep 2024 06:11:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:74:02:a2:37:c0:5c:1b:61:3a:07:4c:2f:8d:d6:4a:89:36:73:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E054E064DCDF2E49F7282D7370B9EAFF42A944B Validity Not Before: Nov 4 03:12:30 2023 GMT Not After : Nov 2 03:17:30 2024 GMT Subject: CN=91CBEAF154AE7ED3639E4FD9AE1292F4F6657E94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:02:be:40:8c:0c:18:b4:36:f1:17:43:01:ef: 23:1a:3e:fb:fd:d6:83:14:ee:aa:77:5a:3f:9e:b4: ff:fe:9e:50:0f:7e:4e:a3:f9:ed:bd:bc:8e:a0:36: c2:e4:93:66:f8:bd:22:87:8a:7c:27:bb:26:a6:dc: 29:48:86:5c:5b:64:92:43:82:89:53:80:70:0a:c7: c5:77:9b:1e:4f:6d:39:49:96:80:75:9b:a3:80:f9: e3:01:00:57:c5:0b:a7:8a:a8:44:bd:d1:04:64:ac: 67:ce:79:f6:5f:79:99:e1:44:60:10:b1:7a:4e:51: 35:da:2a:0f:3a:c1:2b:2b:13:3a:cb:35:8d:fa:6a: 06:a0:c4:a3:df:49:cf:8c:af:2f:7a:36:13:9f:00: cf:78:fd:16:2f:4f:46:47:95:dc:8c:0d:d8:cd:75: c5:54:bf:a6:0b:6f:51:3a:28:ec:d6:bd:e0:20:9d: 81:e2:9a:40:4a:e0:79:f5:7a:88:63:fe:55:23:e9: 7c:d7:b6:47:d4:5e:bd:a6:cd:da:48:2c:b8:d7:6b: 9a:64:67:47:0e:03:83:f4:c6:1c:d5:3e:9a:79:e9: d0:4e:cd:99:79:ab:27:35:f9:8a:84:62:9d:80:f5: 52:d1:9c:b9:a8:8f:90:8c:1b:e5:5c:08:8d:47:99: a7:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:CB:EA:F1:54:AE:7E:D3:63:9E:4F:D9:AE:12:92:F4:F6:65:7E:94 X509v3 Authority Key Identifier: keyid:4E:05:4E:06:4D:CD:F2:E4:9F:72:82:D7:37:0B:9E:AF:F4:2A:94:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f398063e-57a1-40f2-8527-4d0a69c5d647/0/4E054E064DCDF2E49F7282D7370B9EAFF42A944B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E054E064DCDF2E49F7282D7370B9EAFF42A944B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f398063e-57a1-40f2-8527-4d0a69c5d647/0/3130332e3233392e32332e302f32342d3234203d3e20313336383635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.239.23.0/24 Signature Algorithm: sha256WithRSAEncryption c0:26:98:92:31:69:e9:cb:66:90:b9:81:9c:53:0e:78:85:b5: 5f:a1:3a:80:c3:06:66:5e:c8:cc:1e:0c:d8:69:56:da:09:26: 74:e5:3c:77:05:26:7b:e8:76:06:bd:f3:e1:73:4a:60:82:3b: f3:4c:33:da:99:b3:ea:70:6a:f3:51:d1:d3:e6:59:db:5a:c0: a5:b3:d0:2b:36:5b:e4:b4:0d:62:1d:1e:a0:93:7b:13:93:0a: 7f:44:d2:97:23:8c:5d:14:9e:ec:e9:06:1b:f0:cd:fd:04:1f: d9:75:2c:1d:0c:7d:cb:7d:ba:05:07:f3:f5:e2:b3:2b:df:7a: d8:41:0e:c8:ac:0d:91:f6:60:ef:e5:49:44:83:d3:92:7d:2a: b3:c6:0d:6a:a9:ba:28:86:f2:2c:a6:67:ee:de:59:08:0f:90: f2:0d:9d:3f:dc:18:47:22:60:3e:0f:f4:37:46:5e:c9:1b:cd: 51:38:bf:55:d0:84:ec:2f:d1:a8:71:82:a2:e2:4d:c1:a0:9d: 95:03:44:31:ac:e9:af:e3:08:91:22:e0:af:21:f7:f8:c8:ff: 62:42:5e:58:da:39:e4:12:22:21:2d:89:54:16:e4:1e:a6:ae: d1:cf:c9:e9:90:28:c6:c9:57:a5:d8:5f:8d:07:52:15:22:48: 1e:55:4c:b1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUW3QCojfAXBthOgdML43WSok2cyEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEUwNTRFMDY0RENERjJFNDlGNzI4MkQ3MzcwQjlFQUZG NDJBOTQ0QjAeFw0yMzExMDQwMzEyMzBaFw0yNDExMDIwMzE3MzBaMDMxMTAvBgNV BAMTKDkxQ0JFQUYxNTRBRTdFRDM2MzlFNEZEOUFFMTI5MkY0RjY2NTdFOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3Ar5AjAwYtDbxF0MB7yMaPvv9 1oMU7qp3Wj+etP/+nlAPfk6j+e29vI6gNsLkk2b4vSKHinwnuyam3ClIhlxbZJJD golTgHAKx8V3mx5PbTlJloB1m6OA+eMBAFfFC6eKqES90QRkrGfOefZfeZnhRGAQ sXpOUTXaKg86wSsrEzrLNY36agagxKPfSc+Mry96NhOfAM94/RYvT0ZHldyMDdjN dcVUv6YLb1E6KOzWveAgnYHimkBK4Hn1eohj/lUj6XzXtkfUXr2mzdpILLjXa5pk Z0cOA4P0xhzVPpp56dBOzZl5qyc1+YqEYp2A9VLRnLmoj5CMG+VcCI1Hmaf3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkcvq8VSuftNjnk/ZrhKS9PZlfpQwHwYDVR0j BBgwFoAUTgVOBk3N8uSfcoLXNwuer/QqlEswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m Mzk4MDYzZS01N2ExLTQwZjItODUyNy00ZDBhNjljNWQ2NDcvMC80RTA1NEUwNjRE Q0RGMkU0OUY3MjgyRDczNzBCOUVBRkY0MkE5NDRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEUwNTRFMDY0RENERjJFNDlGNzI4MkQ3MzcwQjlFQUZGNDJB OTQ0Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzOTgwNjNlLTU3YTEtNDBmMi04 NTI3LTRkMGE2OWM1ZDY0Ny8wLzMxMzAzMzJlMzIzMzM5MmUzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+8XMA0GCSqG SIb3DQEBCwUAA4IBAQDAJpiSMWnpy2aQuYGcUw54hbVfoTqAwwZmXsjMHgzYaVba CSZ05Tx3BSZ76HYGvfPhc0pggjvzTDPambPqcGrzUdHT5lnbWsCls9ArNlvktA1i HR6gk3sTkwp/RNKXI4xdFJ7s6QYb8M39BB/ZdSwdDH3LfboFB/P14rMr33rYQQ7I rA2R9mDv5UlEg9OSfSqzxg1qqboohvIspmfu3lkID5DyDZ0/3BhHImA+D/Q3Rl7J G81ROL9V0ITsL9GocYKi4k3BoJ2VA0QxrOmv4wiRIuCvIff4yP9iQl5Y2jnkEiIh LYlUFuQepq7Rz8npkCjGyVel2F+NB1IVIkgeVUyx -----END CERTIFICATE-----Generated at Fri Sep 27 14:21:42 2024 by rpki-client on console-fra.rpki-client.org