$ rpki-client -vvf repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130322e302f32342d3234203d3e20313334363438.roa File: 3130332e3230382e3130322e302f32342d3234203d3e20313334363438.roa (raw, json) Hash identifier: TKNDudTeAYDpPafjacK5yotzzfWGVA+h/O5Pirph36Y= Subject key identifier: D2:DA:20:73:76:D7:58:4E:89:A6:3C:4A:7C:7F:8F:CF:D0:1C:3B:06 Certificate issuer: /CN=97D77F08669FB94E4E99F795519FB61DCAC62C9F Certificate serial: 6823FFE9E88DAC0C0EB4C39623B3B029AA78C596 Authority key identifier: 97:D7:7F:08:66:9F:B9:4E:4E:99:F7:95:51:9F:B6:1D:CA:C6:2C:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/97D77F08669FB94E4E99F795519FB61DCAC62C9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130322e302f32342d3234203d3e20313334363438.roa Signing time: Mon 01 Jul 2024 01:03:27 +0000 ROA not before: Mon 01 Jul 2024 00:58:27 +0000 ROA not after: Mon 30 Jun 2025 01:03:27 +0000 asID: 134648 IP address blocks: 103.208.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/97D77F08669FB94E4E99F795519FB61DCAC62C9F.crl rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/97D77F08669FB94E4E99F795519FB61DCAC62C9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/97D77F08669FB94E4E99F795519FB61DCAC62C9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 09:25:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:23:ff:e9:e8:8d:ac:0c:0e:b4:c3:96:23:b3:b0:29:aa:78:c5:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97D77F08669FB94E4E99F795519FB61DCAC62C9F Validity Not Before: Jul 1 00:58:27 2024 GMT Not After : Jun 30 01:03:27 2025 GMT Subject: CN=D2DA207376D7584E89A63C4A7C7F8FCFD01C3B06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b8:24:1b:2f:24:d6:30:68:b4:8c:ce:d6:c2: fd:3f:43:a3:8f:c9:14:cc:a0:61:45:16:7f:0e:49: bf:1d:d5:2a:35:ae:87:cb:06:20:a7:64:66:af:36: 85:78:f1:69:c7:0e:fd:42:9d:0a:9a:49:39:6a:83: 06:63:f0:28:29:33:db:57:90:8b:57:00:e2:36:49: 17:23:7a:0c:f8:e2:bb:cc:90:76:18:66:d9:e8:70: 50:21:02:bc:d7:4b:03:4d:d9:7c:cc:fa:ff:9b:af: 38:ae:35:b1:f1:e6:2d:c7:c5:3f:2f:13:3c:7c:c4: 26:c4:b0:3f:c6:b9:7a:d6:6e:a2:da:96:7c:2e:ae: f8:8c:65:b3:99:6b:10:85:7b:43:f9:6f:4c:73:7f: 84:f1:e9:e4:c4:ad:85:17:8e:9e:1d:10:52:12:c5: fc:9c:3f:e9:94:fe:6f:ea:de:2d:ef:56:f5:2d:2a: 56:f0:c3:09:32:7e:f8:e0:d7:b7:a1:df:5b:ba:1a: 6c:13:8c:ad:e9:31:d8:53:e0:49:16:18:b3:88:78: 00:e1:40:b3:8b:fd:90:ad:d6:71:0d:ba:34:8c:c3: 05:cd:84:69:47:43:98:82:66:91:f8:b4:67:c5:72: fa:3c:83:96:fd:7c:f3:3c:ca:d2:3f:37:01:f8:bf: ad:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:DA:20:73:76:D7:58:4E:89:A6:3C:4A:7C:7F:8F:CF:D0:1C:3B:06 X509v3 Authority Key Identifier: keyid:97:D7:7F:08:66:9F:B9:4E:4E:99:F7:95:51:9F:B6:1D:CA:C6:2C:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/97D77F08669FB94E4E99F795519FB61DCAC62C9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/97D77F08669FB94E4E99F795519FB61DCAC62C9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130322e302f32342d3234203d3e20313334363438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.208.102.0/24 Signature Algorithm: sha256WithRSAEncryption 20:25:73:c6:67:75:6e:f1:f8:45:1e:75:0a:43:99:52:d8:28: 18:16:1c:1a:fc:53:65:58:55:30:e4:c5:59:71:c1:6b:ea:e7: 3d:31:fd:2a:e2:ee:89:c0:b4:2f:2a:1b:0d:f9:23:da:5d:47: 28:da:42:af:b1:a7:19:42:e7:bd:fe:86:63:55:e6:ce:f1:02: b3:3f:85:58:4c:d5:22:14:8b:dd:b5:d7:70:51:da:bd:6e:c3: c0:38:20:64:d8:31:55:b5:99:10:37:59:c5:11:43:b2:6f:6e: 33:1d:7b:61:eb:5f:e8:f8:2f:d1:ff:d5:b3:cc:71:e1:a4:39: 58:7a:3d:ff:f7:e2:74:a4:c3:35:95:ea:cc:b3:e4:1c:55:85: 87:f6:83:27:66:ab:3a:cb:67:f7:3b:5c:21:92:9a:a5:d8:f9: 50:0b:38:91:85:55:96:10:ca:2f:55:9f:1e:f5:99:97:80:58: e0:5f:1c:41:c3:c7:1d:24:7d:f2:a3:ad:cf:b3:2c:c8:99:0c: c5:20:61:41:60:07:06:4c:fb:5a:bc:58:30:94:67:28:02:33: ae:c4:6e:22:e2:25:8b:93:96:5d:6b:4a:15:9b:0e:a8:15:7a: 7f:03:63:c9:80:20:49:8d:22:3d:b3:02:19:19:ea:e8:2b:40: 7d:16:c9:35 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUaCP/6eiNrAwOtMOWI7OwKap4xZYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTdENzdGMDg2NjlGQjk0RTRFOTlGNzk1NTE5RkI2MURD QUM2MkM5RjAeFw0yNDA3MDEwMDU4MjdaFw0yNTA2MzAwMTAzMjdaMDMxMTAvBgNV BAMTKEQyREEyMDczNzZENzU4NEU4OUE2M0M0QTdDN0Y4RkNGRDAxQzNCMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTuCQbLyTWMGi0jM7Wwv0/Q6OP yRTMoGFFFn8OSb8d1So1rofLBiCnZGavNoV48WnHDv1CnQqaSTlqgwZj8CgpM9tX kItXAOI2SRcjegz44rvMkHYYZtnocFAhArzXSwNN2XzM+v+brziuNbHx5i3HxT8v Ezx8xCbEsD/GuXrWbqLalnwurviMZbOZaxCFe0P5b0xzf4Tx6eTErYUXjp4dEFIS xfycP+mU/m/q3i3vVvUtKlbwwwkyfvjg17eh31u6GmwTjK3pMdhT4EkWGLOIeADh QLOL/ZCt1nENujSMwwXNhGlHQ5iCZpH4tGfFcvo8g5b9fPM8ytI/NwH4v615AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU0togc3bXWE6JpjxKfH+Pz9AcOwYwHwYDVR0j BBgwFoAUl9d/CGafuU5OmfeVUZ+2HcrGLJ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MmM2OTQ0MC04YjE3LTRhNjgtYTBmYS02NjE1OWUyMTYyZTAvMC85N0Q3N0YwODY2 OUZCOTRFNEU5OUY3OTU1MTlGQjYxRENBQzYyQzlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTdENzdGMDg2NjlGQjk0RTRFOTlGNzk1NTE5RkI2MURDQUM2 MkM5Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyYzY5NDQwLThiMTctNGE2OC1h MGZhLTY2MTU5ZTIxNjJlMC8wLzMxMzAzMzJlMzIzMDM4MmUzMTMwMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM0Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn0GYwDQYJ KoZIhvcNAQELBQADggEBACAlc8ZndW7x+EUedQpDmVLYKBgWHBr8U2VYVTDkxVlx wWvq5z0x/Sri7onAtC8qGw35I9pdRyjaQq+xpxlC573+hmNV5s7xArM/hVhM1SIU i92113BR2r1uw8A4IGTYMVW1mRA3WcURQ7JvbjMde2HrX+j4L9H/1bPMceGkOVh6 Pf/34nSkwzWV6syz5BxVhYf2gydmqzrLZ/c7XCGSmqXY+VALOJGFVZYQyi9Vnx71 mZeAWOBfHEHDxx0kffKjrc+zLMiZDMUgYUFgBwZM+1q8WDCUZygCM67EbiLiJYuT ll1rShWbDqgVen8DY8mAIEmNIj2zAhkZ6ugrQH0WyTU= -----END CERTIFICATE-----Generated at Mon Nov 25 06:03:03 2024 by rpki-client on console-fra.rpki-client.org