$ rpki-client -vvf repo-rpki.idnic.net/repo/0d4dcde3-757f-43d4-ade2-ff0887cc2487/0/3130332e3138322e37372e302f32342d3234203d3e20313439333938.roa File: 3130332e3138322e37372e302f32342d3234203d3e20313439333938.roa (raw, json) Hash identifier: sDxRXCQp0YhA4EUoYPlhgRc1l3DUG/A3owlHLie+cQg= Subject key identifier: EF:77:39:D7:41:C4:3F:33:1D:A7:7C:83:7D:5F:9F:EC:FC:8F:47:73 Certificate issuer: /CN=14CB3B6CE8B43BB7439AAEA86D73DF3AF1594D9E Certificate serial: 6B278EFA0C8492D5FAFB5D1D061C042824E9B12C Authority key identifier: 14:CB:3B:6C:E8:B4:3B:B7:43:9A:AE:A8:6D:73:DF:3A:F1:59:4D:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CB3B6CE8B43BB7439AAEA86D73DF3AF1594D9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0d4dcde3-757f-43d4-ade2-ff0887cc2487/0/3130332e3138322e37372e302f32342d3234203d3e20313439333938.roa Signing time: Thu 08 Aug 2024 07:00:00 +0000 ROA not before: Thu 08 Aug 2024 06:55:00 +0000 ROA not after: Thu 07 Aug 2025 07:00:00 +0000 asID: 149398 IP address blocks: 103.182.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0d4dcde3-757f-43d4-ade2-ff0887cc2487/0/14CB3B6CE8B43BB7439AAEA86D73DF3AF1594D9E.crl rsync://repo-rpki.idnic.net/repo/0d4dcde3-757f-43d4-ade2-ff0887cc2487/0/14CB3B6CE8B43BB7439AAEA86D73DF3AF1594D9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CB3B6CE8B43BB7439AAEA86D73DF3AF1594D9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:27:8e:fa:0c:84:92:d5:fa:fb:5d:1d:06:1c:04:28:24:e9:b1:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14CB3B6CE8B43BB7439AAEA86D73DF3AF1594D9E Validity Not Before: Aug 8 06:55:00 2024 GMT Not After : Aug 7 07:00:00 2025 GMT Subject: CN=EF7739D741C43F331DA77C837D5F9FECFC8F4773 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:47:ad:ef:74:0a:a7:f4:31:ad:d8:a3:59:18: 88:f9:bd:40:47:7b:0b:d9:b3:3c:8d:91:1c:62:98: ea:9d:9c:e5:63:1a:ca:89:35:da:0c:60:3b:3e:6a: 1c:86:19:f8:bd:bb:ef:5e:94:eb:df:d7:6c:39:48: c6:90:73:2d:d1:bb:f0:9a:ec:ca:a3:7e:f8:75:92: 0a:c3:4b:0f:2f:68:f0:fe:75:52:95:ae:eb:b0:9d: 43:91:54:00:9f:60:e9:77:a9:de:05:bb:5e:e6:d4: 3b:ca:d0:72:dd:3b:40:1a:a7:52:73:bd:ab:40:05: df:29:2b:01:71:de:75:0d:48:2d:a2:7f:1a:24:e2: c5:6e:17:0d:e7:f7:b3:4a:8a:56:0a:ed:de:63:2b: ff:18:a8:cb:2c:af:85:c3:42:55:16:89:a2:4a:50: 8f:47:52:27:ca:a0:8d:11:28:80:b9:f1:f0:76:e1: 78:6f:93:9c:b5:1d:db:09:f0:b9:fb:d4:4e:65:d9: a9:3b:92:d1:d1:12:ea:99:a3:7a:f4:99:6e:90:2d: 4e:8f:eb:38:41:51:16:56:40:eb:f4:65:81:5b:29: df:b3:27:4f:75:81:35:dd:f3:8b:b4:56:38:72:66: 1d:ed:60:72:c0:3b:d9:65:bb:25:fd:74:32:7f:32: 1d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:77:39:D7:41:C4:3F:33:1D:A7:7C:83:7D:5F:9F:EC:FC:8F:47:73 X509v3 Authority Key Identifier: keyid:14:CB:3B:6C:E8:B4:3B:B7:43:9A:AE:A8:6D:73:DF:3A:F1:59:4D:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0d4dcde3-757f-43d4-ade2-ff0887cc2487/0/14CB3B6CE8B43BB7439AAEA86D73DF3AF1594D9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CB3B6CE8B43BB7439AAEA86D73DF3AF1594D9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d4dcde3-757f-43d4-ade2-ff0887cc2487/0/3130332e3138322e37372e302f32342d3234203d3e20313439333938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.182.77.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:e8:6d:de:9b:19:42:56:38:05:4c:0d:99:3b:e3:81:03:c4: e0:f6:43:39:1e:ea:1c:99:07:64:28:f7:64:3b:55:55:62:2f: d5:ca:dd:4e:ce:7e:19:c5:10:9f:7c:40:ba:50:65:58:9b:94: e2:1d:f2:f4:3b:92:b6:3e:16:5d:68:f9:e3:c9:2a:b9:55:fc: 09:83:46:c7:db:86:aa:9e:d7:01:6d:9c:e3:a4:2b:26:2c:21: 7e:f2:5e:3d:2a:38:6d:af:28:f5:e7:00:b8:7a:d4:61:9a:ea: 85:47:58:7f:32:64:6d:72:e7:4e:a0:7c:72:a0:6d:f7:d9:b0: b4:d1:a3:da:db:4c:bd:28:9d:81:1e:cd:7e:9f:c3:c1:1a:a8: 1e:90:e1:96:36:b6:36:53:b3:a3:6e:c2:57:7f:a0:67:1c:2e: 4f:fe:28:73:f0:7d:ce:5f:b5:a4:7a:73:f8:55:4a:77:e4:d1: b6:0c:5b:c3:08:fa:25:d8:03:ae:62:e1:c6:76:3c:06:3e:dc: 10:d9:0e:6d:dc:56:e8:d2:98:95:d5:eb:40:92:bd:0f:70:bb: 33:e8:dc:3c:43:eb:5a:20:99:14:5f:da:12:11:98:94:36:dd: 2a:ac:eb:8d:b2:2d:56:72:2a:c5:4f:b1:2e:55:77:84:69:10: db:fb:9f:df -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUayeO+gyEktX6+10dBhwEKCTpsSwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRDQjNCNkNFOEI0M0JCNzQzOUFBRUE4NkQ3M0RGM0FG MTU5NEQ5RTAeFw0yNDA4MDgwNjU1MDBaFw0yNTA4MDcwNzAwMDBaMDMxMTAvBgNV BAMTKEVGNzczOUQ3NDFDNDNGMzMxREE3N0M4MzdENUY5RkVDRkM4RjQ3NzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtR63vdAqn9DGt2KNZGIj5vUBH ewvZszyNkRximOqdnOVjGsqJNdoMYDs+ahyGGfi9u+9elOvf12w5SMaQcy3Ru/Ca 7Mqjfvh1kgrDSw8vaPD+dVKVruuwnUORVACfYOl3qd4Fu17m1DvK0HLdO0Aap1Jz vatABd8pKwFx3nUNSC2ifxok4sVuFw3n97NKilYK7d5jK/8YqMssr4XDQlUWiaJK UI9HUifKoI0RKIC58fB24Xhvk5y1HdsJ8Ln71E5l2ak7ktHREuqZo3r0mW6QLU6P 6zhBURZWQOv0ZYFbKd+zJ091gTXd84u0VjhyZh3tYHLAO9lluyX9dDJ/Mh3xAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU73c510HEPzMdp3yDfV+f7PyPR3MwHwYDVR0j BBgwFoAUFMs7bOi0O7dDmq6obXPfOvFZTZ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZDRkY2RlMy03NTdmLTQzZDQtYWRlMi1mZjA4ODdjYzI0ODcvMC8xNENCM0I2Q0U4 QjQzQkI3NDM5QUFFQTg2RDczREYzQUYxNTk0RDlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTRDQjNCNkNFOEI0M0JCNzQzOUFBRUE4NkQ3M0RGM0FGMTU5 NEQ5RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBkNGRjZGUzLTc1N2YtNDNkNC1h ZGUyLWZmMDg4N2NjMjQ4Ny8wLzMxMzAzMzJlMzEzODMyMmUzNzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzMzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7ZNMA0GCSqG SIb3DQEBCwUAA4IBAQA96G3emxlCVjgFTA2ZO+OBA8Tg9kM5HuocmQdkKPdkO1VV Yi/Vyt1Ozn4ZxRCffEC6UGVYm5TiHfL0O5K2PhZdaPnjySq5VfwJg0bH24aqntcB bZzjpCsmLCF+8l49Kjhtryj15wC4etRhmuqFR1h/MmRtcudOoHxyoG332bC00aPa 20y9KJ2BHs1+n8PBGqgekOGWNrY2U7OjbsJXf6BnHC5P/ihz8H3OX7WkenP4VUp3 5NG2DFvDCPol2AOuYuHGdjwGPtwQ2Q5t3Fbo0piV1etAkr0PcLsz6Nw8Q+taIJkU X9oSEZiUNt0qrOuNsi1WcirFT7EuVXeEaRDb+5/f -----END CERTIFICATE-----Generated at Fri Nov 22 21:02:27 2024 by rpki-client on console-fra.rpki-client.org