$ rpki-client -vvf repo-rpki.idnic.net/repo/02cb0b3a-692d-442e-9308-903c02d5718f/0/3130332e3134302e3138382e302f32332d3234203d3e20313338383831.roa File: 3130332e3134302e3138382e302f32332d3234203d3e20313338383831.roa (raw, json) Hash identifier: kPetak0oa7CoPtOUMOQ1lR+1Xty+xt04wCPOf9zMDGw= Subject key identifier: BF:9F:D4:9A:18:9A:45:46:BC:C9:05:54:C4:2B:41:F7:3F:EA:09:B0 Certificate issuer: /CN=02AC8DC3B003059A7040EDCFC881D9C93B064C18 Certificate serial: 306527CFF8AF474305DF5E7452A4C92704C9C82F Authority key identifier: 02:AC:8D:C3:B0:03:05:9A:70:40:ED:CF:C8:81:D9:C9:3B:06:4C:18 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/02AC8DC3B003059A7040EDCFC881D9C93B064C18.cer Subject info access: rsync://repo-rpki.idnic.net/repo/02cb0b3a-692d-442e-9308-903c02d5718f/0/3130332e3134302e3138382e302f32332d3234203d3e20313338383831.roa Signing time: Fri 02 Feb 2024 04:01:35 +0000 ROA not before: Fri 02 Feb 2024 03:56:35 +0000 ROA not after: Fri 31 Jan 2025 04:01:35 +0000 asID: 138881 IP address blocks: 103.140.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/02cb0b3a-692d-442e-9308-903c02d5718f/0/02AC8DC3B003059A7040EDCFC881D9C93B064C18.crl rsync://repo-rpki.idnic.net/repo/02cb0b3a-692d-442e-9308-903c02d5718f/0/02AC8DC3B003059A7040EDCFC881D9C93B064C18.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/02AC8DC3B003059A7040EDCFC881D9C93B064C18.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:65:27:cf:f8:af:47:43:05:df:5e:74:52:a4:c9:27:04:c9:c8:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02AC8DC3B003059A7040EDCFC881D9C93B064C18 Validity Not Before: Feb 2 03:56:35 2024 GMT Not After : Jan 31 04:01:35 2025 GMT Subject: CN=BF9FD49A189A4546BCC90554C42B41F73FEA09B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ac:b6:94:f5:0a:bf:65:93:1d:3b:1e:75:c7: 2b:44:ba:fd:50:09:43:9b:8a:a3:6c:c7:de:5a:ef: 1f:f9:14:46:e6:fe:d6:4c:09:4d:85:d4:79:e4:2b: d5:4e:13:8f:55:2a:f5:6c:f9:4c:4d:ec:3e:ac:46: aa:08:9e:b5:5c:62:d4:2f:2b:82:d3:33:83:7b:61: 30:8d:c2:97:d8:b4:aa:75:b7:80:21:24:0a:a5:e6: 1b:a5:49:54:d8:f5:3e:cd:84:d4:07:bc:12:3e:e0: 10:94:5e:68:4c:ca:be:04:fa:b7:a4:15:89:23:bb: 97:6d:54:cb:89:c1:70:d0:6a:6b:33:a9:e2:7a:a3: 0b:b3:f2:43:4f:c9:8f:ec:fd:b7:77:15:2b:ae:fc: ce:ba:26:aa:69:f7:51:8d:7c:82:60:dc:9e:2d:74: 04:a5:e6:02:10:13:db:a0:ec:04:58:3a:c9:30:46: 0a:9e:f3:50:43:09:e8:2c:95:06:13:4a:b2:fb:16: 19:55:3f:ae:2b:aa:a4:d2:c0:93:60:8d:81:ee:39: 91:eb:5a:e6:76:dc:0d:e0:6a:a6:ee:85:69:5e:f2: 4d:17:34:96:cf:53:67:16:31:a9:77:16:c4:e2:9c: 92:50:95:04:7d:3c:90:6e:8a:f7:6e:61:24:91:53: c6:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:9F:D4:9A:18:9A:45:46:BC:C9:05:54:C4:2B:41:F7:3F:EA:09:B0 X509v3 Authority Key Identifier: keyid:02:AC:8D:C3:B0:03:05:9A:70:40:ED:CF:C8:81:D9:C9:3B:06:4C:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/02cb0b3a-692d-442e-9308-903c02d5718f/0/02AC8DC3B003059A7040EDCFC881D9C93B064C18.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/02AC8DC3B003059A7040EDCFC881D9C93B064C18.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/02cb0b3a-692d-442e-9308-903c02d5718f/0/3130332e3134302e3138382e302f32332d3234203d3e20313338383831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.188.0/23 Signature Algorithm: sha256WithRSAEncryption a0:8b:c9:25:25:3c:9a:95:66:4b:e9:a7:ba:34:00:85:cf:ab: 68:f0:57:98:89:6f:2f:13:ba:d8:de:19:c3:e0:d5:67:30:a2: b5:17:23:c8:15:59:62:7b:8a:ae:d4:6f:17:8c:ae:a1:59:19: 85:43:bb:47:ff:0b:c4:36:a4:ce:70:dc:5d:ab:80:07:ee:8f: 59:33:65:7b:13:23:7b:7d:ec:77:74:61:0c:38:d1:30:8c:9c: dc:3b:67:79:c7:9f:6d:e6:39:7f:85:04:d7:36:6a:00:29:03: 5e:87:2f:a5:09:2f:1b:aa:b2:02:42:f4:0a:3b:47:0d:8f:d3: 6c:c4:07:99:fd:eb:a3:2f:a3:ec:d6:c4:3a:6a:c8:7b:8c:2e: ea:c5:a3:72:07:5e:54:87:4d:0e:09:8c:64:23:fb:f0:35:1b: 37:ad:be:9b:2b:2c:a6:de:64:21:16:13:1a:e0:06:6f:63:dc: 8e:60:a5:6b:7f:ea:d5:7c:d5:eb:15:05:d2:7e:e2:44:b6:72: 71:2e:24:55:3b:b6:ff:ad:6e:02:8c:e9:e6:2c:a0:10:03:1b: 0c:85:85:be:b3:45:09:0a:66:e3:81:57:a4:7b:7f:6c:f2:07: 4e:58:0f:f6:3a:54:c4:97:13:de:9f:82:35:13:a4:7b:5d:ae: c0:30:3c:dc -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMGUnz/ivR0MF3150UqTJJwTJyC8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDJBQzhEQzNCMDAzMDU5QTcwNDBFRENGQzg4MUQ5Qzkz QjA2NEMxODAeFw0yNDAyMDIwMzU2MzVaFw0yNTAxMzEwNDAxMzVaMDMxMTAvBgNV BAMTKEJGOUZENDlBMTg5QTQ1NDZCQ0M5MDU1NEM0MkI0MUY3M0ZFQTA5QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCurLaU9Qq/ZZMdOx51xytEuv1Q CUObiqNsx95a7x/5FEbm/tZMCU2F1HnkK9VOE49VKvVs+UxN7D6sRqoInrVcYtQv K4LTM4N7YTCNwpfYtKp1t4AhJAql5hulSVTY9T7NhNQHvBI+4BCUXmhMyr4E+rek FYkju5dtVMuJwXDQamszqeJ6owuz8kNPyY/s/bd3FSuu/M66Jqpp91GNfIJg3J4t dASl5gIQE9ug7ARYOskwRgqe81BDCegslQYTSrL7FhlVP64rqqTSwJNgjYHuOZHr WuZ23A3gaqbuhWle8k0XNJbPU2cWMal3FsTinJJQlQR9PJBuivduYSSRU8YrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUv5/UmhiaRUa8yQVUxCtB9z/qCbAwHwYDVR0j BBgwFoAUAqyNw7ADBZpwQO3PyIHZyTsGTBgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MmNiMGIzYS02OTJkLTQ0MmUtOTMwOC05MDNjMDJkNTcxOGYvMC8wMkFDOERDM0Iw MDMwNTlBNzA0MEVEQ0ZDODgxRDlDOTNCMDY0QzE4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDJBQzhEQzNCMDAzMDU5QTcwNDBFRENGQzg4MUQ5QzkzQjA2 NEMxOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyY2IwYjNhLTY5MmQtNDQyZS05 MzA4LTkwM2MwMmQ1NzE4Zi8wLzMxMzAzMzJlMzEzNDMwMmUzMTM4MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzODM4MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnjLwwDQYJ KoZIhvcNAQELBQADggEBAKCLySUlPJqVZkvpp7o0AIXPq2jwV5iJby8TutjeGcPg 1WcworUXI8gVWWJ7iq7UbxeMrqFZGYVDu0f/C8Q2pM5w3F2rgAfuj1kzZXsTI3t9 7Hd0YQw40TCMnNw7Z3nHn23mOX+FBNc2agApA16HL6UJLxuqsgJC9Ao7Rw2P02zE B5n966Mvo+zWxDpqyHuMLurFo3IHXlSHTQ4JjGQj+/A1GzetvpsrLKbeZCEWExrg Bm9j3I5gpWt/6tV81esVBdJ+4kS2cnEuJFU7tv+tbgKM6eYsoBADGwyFhb6zRQkK ZuOBV6R7f2zyB05YD/Y6VMSXE96fgjUTpHtdrsAwPNw= -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:19 2024 by rpki-client on console-fra.rpki-client.org