$ rpki-client -vvf repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31342e302f32342d3234203d3e20313339343338.roa File: 3130332e3134352e31342e302f32342d3234203d3e20313339343338.roa (raw, json) Hash identifier: igZUGj9WZ1hy1WLn/uUmoBiqqH+6kXF5u53eZj34KGg= Subject key identifier: 66:6C:4E:B5:1D:E8:C6:D2:E2:98:1D:B3:C9:DE:AD:1D:C8:71:22:22 Certificate issuer: /CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17 Certificate serial: 53D965572C7FCB43039735F84FF46B607010A326 Authority key identifier: 25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31342e302f32342d3234203d3e20313339343338.roa Signing time: Sat 28 Sep 2024 21:00:02 +0000 ROA not before: Sat 28 Sep 2024 20:55:02 +0000 ROA not after: Sat 27 Sep 2025 21:00:02 +0000 asID: 139438 IP address blocks: 103.145.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:d9:65:57:2c:7f:cb:43:03:97:35:f8:4f:f4:6b:60:70:10:a3:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17 Validity Not Before: Sep 28 20:55:02 2024 GMT Not After : Sep 27 21:00:02 2025 GMT Subject: CN=666C4EB51DE8C6D2E2981DB3C9DEAD1DC8712222 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:4c:26:8e:5c:6e:25:72:4c:c8:52:b6:ec:9d: 3a:f7:ab:d9:ca:b2:bf:f7:f4:69:c7:42:c9:2c:0c: c0:84:b6:35:d2:3f:4d:d3:0f:99:ec:73:77:1d:cd: df:5e:26:60:aa:d3:9d:47:57:7d:5f:67:00:e4:08: 0b:05:13:df:f3:59:c9:04:4b:13:c5:28:1d:83:af: 77:45:d1:cd:85:57:07:23:58:33:2a:20:e3:a5:4c: c0:2e:9d:dc:8d:dc:94:61:c6:7d:19:da:65:60:2a: 12:8a:41:c8:c2:a7:21:8d:16:12:86:c9:4e:ed:47: ca:65:a1:58:f5:eb:56:90:a7:71:e9:07:47:18:c0: 87:23:5d:8f:82:18:2b:ad:bf:08:b5:b6:3c:a5:50: 9b:1b:dc:8d:b4:5f:0c:b4:af:82:a1:82:85:39:1d: 1f:05:6a:b8:6a:33:8b:d7:96:64:10:29:11:97:31: 6c:97:14:a6:81:cb:b1:21:4a:56:af:c5:8a:4d:28: fd:70:68:e3:95:0a:29:5c:2b:17:9b:03:6a:8b:1e: 3e:8d:fc:3c:42:60:22:30:89:b9:c5:cf:61:ec:fc: e7:d7:48:47:60:ed:ba:22:18:19:a6:a7:eb:b9:9d: 5b:b0:31:20:c8:fb:29:5d:af:cc:b1:67:f9:6e:43: 4b:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:6C:4E:B5:1D:E8:C6:D2:E2:98:1D:B3:C9:DE:AD:1D:C8:71:22:22 X509v3 Authority Key Identifier: keyid:25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31342e302f32342d3234203d3e20313339343338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.14.0/24 Signature Algorithm: sha256WithRSAEncryption 86:d3:04:5a:e9:af:d3:ff:e4:ba:bf:6f:0a:85:5a:53:a0:51: e3:86:44:0b:6c:9c:4c:36:42:ac:03:60:48:cc:25:01:ba:35: ac:f4:28:97:a1:84:eb:15:94:85:f9:57:3d:11:05:b6:f7:e2: 80:b7:ff:27:eb:5a:ca:31:a3:45:83:63:8f:64:1e:c6:dc:f6: da:65:c2:ee:d5:ab:43:d2:e2:6e:0f:c6:20:85:08:94:16:20: 98:79:73:e9:7a:64:3c:f1:56:b7:37:75:13:5b:a9:58:68:8c: a1:5c:a1:d8:18:a8:53:8a:f7:63:b4:17:2c:18:13:ce:bd:46: 73:4b:80:fb:e5:d0:54:41:f4:2f:4f:70:55:cf:f3:76:40:b6: 4c:1d:96:99:76:cc:ee:19:fa:0a:5b:a8:16:fa:4c:37:9e:f7: e9:f5:26:3c:7d:c5:e7:d9:c1:e1:91:6f:b9:8f:ea:47:fd:90: f0:ab:f1:dc:e5:58:5b:fe:93:65:e3:39:b4:48:02:98:f5:03: 98:09:6c:93:77:2b:68:79:df:7e:6d:95:d3:62:1d:42:6a:81: 21:b7:b3:5f:15:60:f5:f3:fa:86:3c:66:91:6a:3b:3d:4d:6b: 02:9f:33:45:a6:30:da:f2:9e:70:14:c3:c1:ef:11:54:d2:db: 0d:47:62:a1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUU9llVyx/y0MDlzX4T/RrYHAQoyYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5Mzcy RUJEMkExNzAeFw0yNDA5MjgyMDU1MDJaFw0yNTA5MjcyMTAwMDJaMDMxMTAvBgNV BAMTKDY2NkM0RUI1MURFOEM2RDJFMjk4MURCM0M5REVBRDFEQzg3MTIyMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZTCaOXG4lckzIUrbsnTr3q9nK sr/39GnHQsksDMCEtjXSP03TD5nsc3cdzd9eJmCq051HV31fZwDkCAsFE9/zWckE SxPFKB2Dr3dF0c2FVwcjWDMqIOOlTMAundyN3JRhxn0Z2mVgKhKKQcjCpyGNFhKG yU7tR8ploVj161aQp3HpB0cYwIcjXY+CGCutvwi1tjylUJsb3I20Xwy0r4KhgoU5 HR8FarhqM4vXlmQQKRGXMWyXFKaBy7EhSlavxYpNKP1waOOVCilcKxebA2qLHj6N /DxCYCIwibnFz2Hs/OfXSEdg7boiGBmmp+u5nVuwMSDI+yldr8yxZ/luQ0vvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZmxOtR3oxtLimB2zyd6tHchxIiIwHwYDVR0j BBgwFoAUJVIkDv/uL2D1aE3QPt5JNy69KhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDA0MjMzZi1iYjJjLTQ3ZDctOTAxYy1lM2M4MmY4ZDQyM2MvMC8yNTUyMjQwRUZG RUUyRjYwRjU2ODRERDAzRURFNDkzNzJFQkQyQTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5MzcyRUJE MkExNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMDQyMzNmLWJiMmMtNDdkNy05 MDFjLWUzYzgyZjhkNDIzYy8wLzMxMzAzMzJlMzEzNDM1MmUzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5EOMA0GCSqG SIb3DQEBCwUAA4IBAQCG0wRa6a/T/+S6v28KhVpToFHjhkQLbJxMNkKsA2BIzCUB ujWs9CiXoYTrFZSF+Vc9EQW29+KAt/8n61rKMaNFg2OPZB7G3PbaZcLu1atD0uJu D8YghQiUFiCYeXPpemQ88Va3N3UTW6lYaIyhXKHYGKhTivdjtBcsGBPOvUZzS4D7 5dBUQfQvT3BVz/N2QLZMHZaZdszuGfoKW6gW+kw3nvfp9SY8fcXn2cHhkW+5j+pH /ZDwq/Hc5Vhb/pNl4zm0SAKY9QOYCWyTdytoed9+bZXTYh1CaoEht7NfFWD18/qG PGaRajs9TWsCnzNFpjDa8p5wFMPB7xFU0tsNR2Kh -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:05 2024 by rpki-client on console-fra.rpki-client.org