$ rpki-client -vvf repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3130332e3234362e3131382e302f32342d3234203d3e203536323433.roa File: 3130332e3234362e3131382e302f32342d3234203d3e203536323433.roa (raw, json) Hash identifier: t52eJXlW+ERzycl9kqFHv1XwYTDg6KYCfH15hjThwBc= Subject key identifier: 1C:20:28:5D:42:A1:EA:C4:29:6C:56:CC:26:B9:CF:2E:25:A9:CB:ED Certificate issuer: /CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Certificate serial: 32B17609DA5C262EFCF7EDF9577BF428E9542552 Authority key identifier: 01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3130332e3234362e3131382e302f32342d3234203d3e203536323433.roa Signing time: Wed 05 Jun 2024 10:00:00 +0000 ROA not before: Wed 05 Jun 2024 09:55:00 +0000 ROA not after: Wed 04 Jun 2025 10:00:00 +0000 asID: 56243 IP address blocks: 103.246.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:b1:76:09:da:5c:26:2e:fc:f7:ed:f9:57:7b:f4:28:e9:54:25:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C Validity Not Before: Jun 5 09:55:00 2024 GMT Not After : Jun 4 10:00:00 2025 GMT Subject: CN=1C20285D42A1EAC4296C56CC26B9CF2E25A9CBED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:71:dc:89:d8:5c:c7:00:8a:ed:0d:c7:d6:c3: eb:83:ac:d4:0d:9b:7d:9f:4c:85:56:ab:a2:9f:e7: e6:b0:b1:eb:4c:ed:5c:56:df:2d:9c:09:a3:2a:20: e4:60:d8:be:83:5d:a5:98:ed:d4:08:48:69:2f:c9: d5:39:d1:cc:15:4a:38:2d:80:d0:9f:97:cb:5b:cc: d0:db:46:f6:07:18:b7:58:50:ce:9c:8f:83:f8:e9: 7a:39:98:f0:45:d4:37:51:f4:72:ab:18:6b:a8:78: 27:c1:08:3c:f4:af:61:c8:1a:17:07:77:bd:10:ef: 42:4b:94:06:19:b1:06:9d:9b:1d:06:74:10:2b:91: 67:d2:f0:4b:2b:8a:1a:0c:fb:16:35:1f:5a:fd:91: 1a:c5:c4:a5:26:4f:be:30:78:a0:0a:f4:44:2e:93: c6:9f:f5:ae:80:28:97:33:34:9c:2f:f1:e3:38:ff: 0d:cd:d3:be:85:e6:14:3f:e5:45:05:78:ca:7c:96: 9a:36:a2:bc:8f:4e:3b:90:38:12:16:85:4a:dc:3f: fc:ac:65:5f:c9:1f:1d:2f:a8:1b:7e:e8:be:f9:0d: ca:0b:1b:db:46:3c:50:9a:d9:01:91:94:9d:ef:58: a4:74:8b:56:82:f2:6b:75:28:cd:62:18:81:57:88: 50:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:20:28:5D:42:A1:EA:C4:29:6C:56:CC:26:B9:CF:2E:25:A9:CB:ED X509v3 Authority Key Identifier: keyid:01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3130332e3234362e3131382e302f32342d3234203d3e203536323433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.246.118.0/24 Signature Algorithm: sha256WithRSAEncryption b2:7a:6e:0d:6d:40:af:e2:75:87:8e:b3:ab:27:7d:23:29:38: 2e:2d:d9:9b:33:a0:57:d9:19:62:47:4b:97:b4:7f:32:1f:d4: 9a:1b:b9:df:64:57:8f:cc:b7:05:95:0a:15:e1:7c:0d:9e:73: 54:5c:6f:f1:39:da:9c:10:79:01:ff:0f:d4:b6:90:1b:51:f5: 29:02:86:d8:06:1d:82:d2:cd:e4:3d:fa:11:ac:cf:60:98:fc: 54:8b:f5:3e:4f:00:5b:0f:34:e1:1a:1b:e1:30:45:d4:b6:65: 8f:4b:11:26:fb:53:98:ca:8f:13:10:3d:d9:7e:da:c4:62:b5: 35:69:a9:fd:e6:7d:c6:4c:65:0a:b3:b5:b8:34:c1:b0:b4:64: c5:c8:22:63:17:eb:2c:aa:51:3b:0d:1a:e8:dc:83:15:4b:78: f7:8f:88:75:62:bb:76:65:57:c8:51:8e:1e:88:dd:7e:dc:01: 97:75:9f:81:c4:b0:e6:6a:64:81:ff:0e:86:a0:16:28:63:7e: 63:da:3f:1d:09:66:4b:11:43:26:fa:7f:5f:c9:5e:72:07:7b: 1a:d1:22:c6:eb:5f:69:af:4b:ec:c9:9e:26:95:78:e9:b4:f7: bd:e8:27:7b:be:95:7c:1a:e6:be:96:fb:08:28:05:fe:d8:cf: 25:44:66:3d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMrF2CdpcJi789+35V3v0KOlUJVIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMx RUZEQTkzQzAeFw0yNDA2MDUwOTU1MDBaFw0yNTA2MDQxMDAwMDBaMDMxMTAvBgNV BAMTKDFDMjAyODVENDJBMUVBQzQyOTZDNTZDQzI2QjlDRjJFMjVBOUNCRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9cdyJ2FzHAIrtDcfWw+uDrNQN m32fTIVWq6Kf5+awsetM7VxW3y2cCaMqIORg2L6DXaWY7dQISGkvydU50cwVSjgt gNCfl8tbzNDbRvYHGLdYUM6cj4P46Xo5mPBF1DdR9HKrGGuoeCfBCDz0r2HIGhcH d70Q70JLlAYZsQadmx0GdBArkWfS8EsrihoM+xY1H1r9kRrFxKUmT74weKAK9EQu k8af9a6AKJczNJwv8eM4/w3N076F5hQ/5UUFeMp8lpo2oryPTjuQOBIWhUrcP/ys ZV/JHx0vqBt+6L75DcoLG9tGPFCa2QGRlJ3vWKR0i1aC8mt1KM1iGIFXiFAjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHCAoXUKh6sQpbFbMJrnPLiWpy+0wHwYDVR0j BBgwFoAUAS0vWZN/2+ZQlbnrSXHZ0x79qTwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODZiMzg4OS02OTY2LTQ1ZWYtOTA3My1hZDE0MDExYWMzYjIvMC8wMTJEMkY1OTkz N0ZEQkU2NTA5NUI5RUI0OTcxRDlEMzFFRkRBOTNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDEyRDJGNTk5MzdGREJFNjUwOTVCOUVCNDk3MUQ5RDMxRUZE QTkzQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4NmIzODg5LTY5NjYtNDVlZi05 MDczLWFkMTQwMTFhYzNiMi8wLzMxMzAzMzJlMzIzNDM2MmUzMTMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM2MzIzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/Z2MA0GCSqG SIb3DQEBCwUAA4IBAQCyem4NbUCv4nWHjrOrJ30jKTguLdmbM6BX2RliR0uXtH8y H9SaG7nfZFePzLcFlQoV4XwNnnNUXG/xOdqcEHkB/w/UtpAbUfUpAobYBh2C0s3k PfoRrM9gmPxUi/U+TwBbDzThGhvhMEXUtmWPSxEm+1OYyo8TED3ZftrEYrU1aan9 5n3GTGUKs7W4NMGwtGTFyCJjF+ssqlE7DRro3IMVS3j3j4h1Yrt2ZVfIUY4eiN1+ 3AGXdZ+BxLDmamSB/w6GoBYoY35j2j8dCWZLEUMm+n9fyV5yB3sa0SLG619pr0vs yZ4mlXjptPe96Cd7vpV8Gua+lvsIKAX+2M8lRGY9 -----END CERTIFICATE-----Generated at Thu Nov 21 09:07:03 2024 by rpki-client on console-ams.rpki-client.org