$ rpki-client -vvf repo-rpki.idnic.net/repo/0180f755-5c27-40f8-80af-2fa8df115282/0/3130312e3230332e3136382e302f32322d3234203d3e203535363734.roa File: 3130312e3230332e3136382e302f32322d3234203d3e203535363734.roa (raw, json) Hash identifier: vzqh/DIiKaxTtSHfzibTju1MXYLVCm6nZTZLoRiAMXA= Subject key identifier: F5:45:54:39:32:64:2E:B7:D0:1D:B0:A9:E6:42:A4:AC:2B:80:1D:89 Certificate issuer: /CN=2140359E23DF113617F9AB2E131D231E4D35F9AA Certificate serial: 046C6903928F280B24F7D55DC01E8DCFBAF31525 Authority key identifier: 21:40:35:9E:23:DF:11:36:17:F9:AB:2E:13:1D:23:1E:4D:35:F9:AA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2140359E23DF113617F9AB2E131D231E4D35F9AA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0180f755-5c27-40f8-80af-2fa8df115282/0/3130312e3230332e3136382e302f32322d3234203d3e203535363734.roa Signing time: Mon 01 Jul 2024 01:04:22 +0000 ROA not before: Mon 01 Jul 2024 00:59:22 +0000 ROA not after: Mon 30 Jun 2025 01:04:22 +0000 asID: 55674 IP address blocks: 101.203.168.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0180f755-5c27-40f8-80af-2fa8df115282/0/2140359E23DF113617F9AB2E131D231E4D35F9AA.crl rsync://repo-rpki.idnic.net/repo/0180f755-5c27-40f8-80af-2fa8df115282/0/2140359E23DF113617F9AB2E131D231E4D35F9AA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2140359E23DF113617F9AB2E131D231E4D35F9AA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:6c:69:03:92:8f:28:0b:24:f7:d5:5d:c0:1e:8d:cf:ba:f3:15:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2140359E23DF113617F9AB2E131D231E4D35F9AA Validity Not Before: Jul 1 00:59:22 2024 GMT Not After : Jun 30 01:04:22 2025 GMT Subject: CN=F545543932642EB7D01DB0A9E642A4AC2B801D89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:11:bf:eb:8f:ad:17:51:72:2c:93:c3:96:fc: 19:b1:ae:ad:0e:4d:22:4b:eb:e5:6c:90:b4:61:a4: b2:b5:97:1d:d3:bf:50:ba:f9:ae:49:1f:27:4a:2a: 57:49:1f:40:6c:b5:33:90:a9:2b:b1:52:0a:d6:2f: 35:a9:50:65:09:88:b5:ef:9d:00:bb:1f:93:23:cd: ce:5e:8c:1c:e7:f3:36:cf:96:61:25:31:2c:c8:78: 61:93:bd:f0:81:be:fa:b2:6a:dc:c9:5a:31:10:0b: ad:97:ab:37:d4:8d:81:b0:25:ad:c7:c6:db:c5:7f: 1d:ee:a1:5b:62:5d:b9:f7:19:fe:be:35:58:9f:b3: 21:46:e0:66:99:83:df:9b:8b:ce:dc:e8:07:74:c7: 77:7f:d4:15:24:d9:a8:31:d0:3e:d1:3f:d3:d5:26: d0:af:2d:80:84:81:f2:76:73:d1:b1:09:ed:cf:be: 44:e1:2d:a7:e1:7f:fe:12:e3:07:76:08:ec:f5:4a: ae:05:4d:a2:da:9b:08:b9:50:98:d5:fd:d8:0a:09: 31:e9:56:df:86:30:0f:9d:53:2b:2f:8e:6b:91:c5: b8:0c:54:3e:d7:80:aa:1e:21:4a:1a:4d:d0:cb:41: c9:56:da:28:6b:3d:31:34:a8:60:c4:7d:51:7c:01: 64:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:45:54:39:32:64:2E:B7:D0:1D:B0:A9:E6:42:A4:AC:2B:80:1D:89 X509v3 Authority Key Identifier: keyid:21:40:35:9E:23:DF:11:36:17:F9:AB:2E:13:1D:23:1E:4D:35:F9:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0180f755-5c27-40f8-80af-2fa8df115282/0/2140359E23DF113617F9AB2E131D231E4D35F9AA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2140359E23DF113617F9AB2E131D231E4D35F9AA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0180f755-5c27-40f8-80af-2fa8df115282/0/3130312e3230332e3136382e302f32322d3234203d3e203535363734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.203.168.0/22 Signature Algorithm: sha256WithRSAEncryption 58:e6:0b:47:21:34:3e:ea:60:62:10:5f:af:e7:a8:33:7c:48: 80:17:bc:78:e8:1c:f6:c1:b8:d4:6b:d6:80:d8:41:8d:e8:86: bc:7b:dc:7b:5b:b5:03:d4:1b:65:f1:d7:2c:88:a8:a0:88:37: 4a:99:c0:a3:cc:34:04:2b:be:bc:dc:d5:cf:ed:99:a3:a1:fe: 7e:a6:e6:12:fb:65:2e:f0:c5:56:8c:71:e5:1d:c8:b0:47:d1: d4:7d:4e:72:77:6f:83:64:58:1a:43:8c:b9:57:a5:50:46:23: a3:d1:67:89:11:5c:1c:0c:96:9d:9f:6b:e1:3f:bc:fc:0b:bb: ed:c1:23:27:38:f3:05:b4:fb:06:79:59:70:f0:dc:8e:ef:78: 2e:f3:4e:95:f1:d7:04:9e:42:83:7d:3d:da:e7:80:21:40:fb: ab:35:7c:ac:3f:b0:50:33:a5:2f:32:3f:38:95:73:4d:d2:82: e4:22:4f:52:dd:21:fa:8e:f6:38:3a:2a:5f:84:8b:5f:a6:e6: 52:64:2d:ec:00:c1:cd:79:75:e9:5b:64:69:3c:b8:81:96:7a: a4:70:a2:14:d3:60:90:3a:5d:72:ed:3b:55:5d:6a:9b:f0:b7: f3:59:7d:61:36:ca:e5:d7:00:3d:cf:2b:8b:83:37:3d:02:d6: 1c:4c:18:58 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBGxpA5KPKAsk99VdwB6Nz7rzFSUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE0MDM1OUUyM0RGMTEzNjE3RjlBQjJFMTMxRDIzMUU0 RDM1RjlBQTAeFw0yNDA3MDEwMDU5MjJaFw0yNTA2MzAwMTA0MjJaMDMxMTAvBgNV BAMTKEY1NDU1NDM5MzI2NDJFQjdEMDFEQjBBOUU2NDJBNEFDMkI4MDFEODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEEb/rj60XUXIsk8OW/Bmxrq0O TSJL6+VskLRhpLK1lx3Tv1C6+a5JHydKKldJH0BstTOQqSuxUgrWLzWpUGUJiLXv nQC7H5Mjzc5ejBzn8zbPlmElMSzIeGGTvfCBvvqyatzJWjEQC62XqzfUjYGwJa3H xtvFfx3uoVtiXbn3Gf6+NVifsyFG4GaZg9+bi87c6Ad0x3d/1BUk2agx0D7RP9PV JtCvLYCEgfJ2c9GxCe3PvkThLafhf/4S4wd2COz1Sq4FTaLamwi5UJjV/dgKCTHp Vt+GMA+dUysvjmuRxbgMVD7XgKoeIUoaTdDLQclW2ihrPTE0qGDEfVF8AWQpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9UVUOTJkLrfQHbCp5kKkrCuAHYkwHwYDVR0j BBgwFoAUIUA1niPfETYX+asuEx0jHk01+aowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MTgwZjc1NS01YzI3LTQwZjgtODBhZi0yZmE4ZGYxMTUyODIvMC8yMTQwMzU5RTIz REYxMTM2MTdGOUFCMkUxMzFEMjMxRTREMzVGOUFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjE0MDM1OUUyM0RGMTEzNjE3RjlBQjJFMTMxRDIzMUU0RDM1 RjlBQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAxODBmNzU1LTVjMjctNDBmOC04 MGFmLTJmYThkZjExNTI4Mi8wLzMxMzAzMTJlMzIzMDMzMmUzMTM2MzgyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM1MzYzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZcuoMA0GCSqG SIb3DQEBCwUAA4IBAQBY5gtHITQ+6mBiEF+v56gzfEiAF7x46Bz2wbjUa9aA2EGN 6Ia8e9x7W7UD1Btl8dcsiKigiDdKmcCjzDQEK7683NXP7Zmjof5+puYS+2Uu8MVW jHHlHciwR9HUfU5yd2+DZFgaQ4y5V6VQRiOj0WeJEVwcDJadn2vhP7z8C7vtwSMn OPMFtPsGeVlw8NyO73gu806V8dcEnkKDfT3a54AhQPurNXysP7BQM6UvMj84lXNN 0oLkIk9S3SH6jvY4OipfhItfpuZSZC3sAMHNeXXpW2RpPLiBlnqkcKIU02CQOl1y 7TtVXWqb8LfzWX1hNsrl1wA9zyuLgzc9AtYcTBhY -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org