$ rpki-client -vvf repo-rpki.idnic.net/repo/07a1ce4e-59c8-41cc-b5e6-bd7b7a704356/0/3130332e3135322e3233382e302f32332d3234203d3e20313430343438.roa File: 3130332e3135322e3233382e302f32332d3234203d3e20313430343438.roa (raw, json) Hash identifier: rBpy14k8W3mbLlNgX4J0/2ZVTjIArp0RYRGvkTqIoQQ= Subject key identifier: B4:79:20:39:97:06:E5:FA:73:41:03:E2:05:4A:C7:51:5C:82:A9:B2 Certificate issuer: /CN=230A81B283314BA79BFA024FDF9FF4DA66B424BE Certificate serial: 578C79BE1DE4ED5C3274E176E8E3D7FCD28A1027 Authority key identifier: 23:0A:81:B2:83:31:4B:A7:9B:FA:02:4F:DF:9F:F4:DA:66:B4:24:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/230A81B283314BA79BFA024FDF9FF4DA66B424BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07a1ce4e-59c8-41cc-b5e6-bd7b7a704356/0/3130332e3135322e3233382e302f32332d3234203d3e20313430343438.roa Signing time: Wed 23 Oct 2024 15:00:00 +0000 ROA not before: Wed 23 Oct 2024 14:55:00 +0000 ROA not after: Wed 22 Oct 2025 15:00:00 +0000 asID: 140448 IP address blocks: 103.152.238.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07a1ce4e-59c8-41cc-b5e6-bd7b7a704356/0/230A81B283314BA79BFA024FDF9FF4DA66B424BE.crl rsync://repo-rpki.idnic.net/repo/07a1ce4e-59c8-41cc-b5e6-bd7b7a704356/0/230A81B283314BA79BFA024FDF9FF4DA66B424BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/230A81B283314BA79BFA024FDF9FF4DA66B424BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:8c:79:be:1d:e4:ed:5c:32:74:e1:76:e8:e3:d7:fc:d2:8a:10:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=230A81B283314BA79BFA024FDF9FF4DA66B424BE Validity Not Before: Oct 23 14:55:00 2024 GMT Not After : Oct 22 15:00:00 2025 GMT Subject: CN=B47920399706E5FA734103E2054AC7515C82A9B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ed:ab:47:dc:47:c3:13:a1:69:71:1e:67:ef: 8c:81:0d:16:17:48:53:27:b9:6b:83:2b:6e:f2:8e: 31:8f:b2:88:73:5e:95:85:42:db:7e:57:18:ff:ea: d7:9c:72:de:36:78:58:27:3e:00:69:e8:f1:97:b0: 09:1d:29:dd:36:41:9f:a8:c9:77:93:af:35:8c:17: ce:22:8a:75:27:71:7c:4e:9e:01:83:9f:b9:dd:00: eb:eb:bd:6a:f1:2c:fb:5a:b8:cb:3a:bc:2a:78:e6: ba:46:01:5b:88:94:b1:80:b8:d6:70:b2:25:9e:57: af:a9:04:af:bf:ae:2a:11:cb:89:d3:c1:f0:ef:d3: bf:8b:0e:a3:b1:e1:b2:83:da:0a:b2:24:ed:86:0d: 9d:0d:c1:4b:5c:63:70:0c:96:8a:d9:b6:7f:67:53: d9:81:63:25:91:b3:40:6d:5a:bb:ce:c3:5a:2a:7e: b4:80:37:23:03:ab:1b:86:29:d9:32:08:c1:24:21: 00:03:69:9d:40:b8:c5:f3:ce:f8:ad:34:84:59:b9: 71:37:6a:31:91:81:e2:db:89:b7:fd:27:0c:06:64: 3a:af:26:31:d8:38:f4:e9:5b:5d:e8:8f:76:b2:ea: 21:92:06:cf:b2:26:46:8f:fc:f9:79:99:71:98:1d: cb:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:79:20:39:97:06:E5:FA:73:41:03:E2:05:4A:C7:51:5C:82:A9:B2 X509v3 Authority Key Identifier: keyid:23:0A:81:B2:83:31:4B:A7:9B:FA:02:4F:DF:9F:F4:DA:66:B4:24:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07a1ce4e-59c8-41cc-b5e6-bd7b7a704356/0/230A81B283314BA79BFA024FDF9FF4DA66B424BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/230A81B283314BA79BFA024FDF9FF4DA66B424BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07a1ce4e-59c8-41cc-b5e6-bd7b7a704356/0/3130332e3135322e3233382e302f32332d3234203d3e20313430343438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.238.0/23 Signature Algorithm: sha256WithRSAEncryption 86:f8:9f:61:3b:b5:e2:4a:22:22:81:4c:1d:bb:a9:ac:1d:c1: 70:12:47:b1:a8:d7:54:cf:b8:06:7f:b7:fe:d2:8e:0f:bf:26: 06:4c:84:88:9d:fd:d8:5c:5b:95:68:a8:33:74:41:30:35:a4: 02:31:89:5b:b9:70:96:88:4a:3c:a0:83:55:b2:03:ff:52:be: 39:69:e0:ce:42:d6:81:43:80:87:e2:43:32:3d:df:7d:df:71: 1b:d2:6a:ff:f6:0c:b3:16:db:01:a2:26:eb:f8:85:77:3b:f8: f6:48:cf:fa:fa:d6:88:44:d2:a5:45:04:16:46:96:7f:7d:c5: a3:67:78:ac:02:5e:8f:32:a3:ee:b9:ab:df:29:30:b6:50:31: 11:53:3a:5e:86:aa:76:7f:48:66:36:41:2b:9b:00:5d:a7:4a: 2c:65:e1:e3:bf:de:ac:2a:39:5a:1d:13:70:8e:a4:fb:18:52: 54:86:6a:67:b3:8a:87:cb:d8:67:81:b7:72:95:de:ac:52:fc: 0a:01:ff:52:dc:00:c5:b9:69:1f:81:67:95:17:9d:28:ce:e6: 2d:55:47:c2:0d:75:99:e1:d6:81:d4:9b:2d:d6:77:9b:c9:92: c8:1d:8c:53:6b:e8:bd:31:ec:f4:9f:8e:e6:bc:83:cd:76:77: 0f:ad:f5:18 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUV4x5vh3k7VwydOF26OPX/NKKECcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjMwQTgxQjI4MzMxNEJBNzlCRkEwMjRGREY5RkY0REE2 NkI0MjRCRTAeFw0yNDEwMjMxNDU1MDBaFw0yNTEwMjIxNTAwMDBaMDMxMTAvBgNV BAMTKEI0NzkyMDM5OTcwNkU1RkE3MzQxMDNFMjA1NEFDNzUxNUM4MkE5QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL7atH3EfDE6FpcR5n74yBDRYX SFMnuWuDK27yjjGPsohzXpWFQtt+Vxj/6tecct42eFgnPgBp6PGXsAkdKd02QZ+o yXeTrzWMF84iinUncXxOngGDn7ndAOvrvWrxLPtauMs6vCp45rpGAVuIlLGAuNZw siWeV6+pBK+/rioRy4nTwfDv07+LDqOx4bKD2gqyJO2GDZ0NwUtcY3AMlorZtn9n U9mBYyWRs0BtWrvOw1oqfrSANyMDqxuGKdkyCMEkIQADaZ1AuMXzzvitNIRZuXE3 ajGRgeLbibf9JwwGZDqvJjHYOPTpW13oj3ay6iGSBs+yJkaP/Pl5mXGYHcvLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUtHkgOZcG5fpzQQPiBUrHUVyCqbIwHwYDVR0j BBgwFoAUIwqBsoMxS6eb+gJP35/02ma0JL4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w N2ExY2U0ZS01OWM4LTQxY2MtYjVlNi1iZDdiN2E3MDQzNTYvMC8yMzBBODFCMjgz MzE0QkE3OUJGQTAyNEZERjlGRjREQTY2QjQyNEJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjMwQTgxQjI4MzMxNEJBNzlCRkEwMjRGREY5RkY0REE2NkI0 MjRCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA3YTFjZTRlLTU5YzgtNDFjYy1i NWU2LWJkN2I3YTcwNDM1Ni8wLzMxMzAzMzJlMzEzNTMyMmUzMjMzMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM0Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnmO4wDQYJ KoZIhvcNAQELBQADggEBAIb4n2E7teJKIiKBTB27qawdwXASR7Go11TPuAZ/t/7S jg+/JgZMhIid/dhcW5VoqDN0QTA1pAIxiVu5cJaISjygg1WyA/9Svjlp4M5C1oFD gIfiQzI9333fcRvSav/2DLMW2wGiJuv4hXc7+PZIz/r61ohE0qVFBBZGln99xaNn eKwCXo8yo+65q98pMLZQMRFTOl6GqnZ/SGY2QSubAF2nSixl4eO/3qwqOVodE3CO pPsYUlSGameziofL2GeBt3KV3qxS/AoB/1LcAMW5aR+BZ5UXnSjO5i1VR8INdZnh 1oHUmy3Wd5vJksgdjFNr6L0x7PSfjua8g812dw+t9Rg= -----END CERTIFICATE-----Generated at Mon Nov 25 23:52:54 2024 by rpki-client on console-ams.rpki-client.org