$ rpki-client -vvf repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/3130332e3230382e3230342e302f32322d3234203d3e20313334363531.roa File: 3130332e3230382e3230342e302f32322d3234203d3e20313334363531.roa (raw, json) Hash identifier: bfDh6ZRJDvBPymHjC3pLTltfVhpAl5f2lYkL9hZt1pY= Subject key identifier: FA:40:75:E5:1B:24:81:69:DC:6B:74:DA:10:3D:B8:C2:31:A1:9F:6C Certificate issuer: /CN=803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3 Certificate serial: 43392D9963C0692B05A3B70A5DCB30A695E1522A Authority key identifier: 80:3C:9F:F1:02:83:6C:EC:8C:EC:49:F0:1F:CF:AA:0E:92:E2:6A:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/3130332e3230382e3230342e302f32322d3234203d3e20313334363531.roa Signing time: Mon 07 Oct 2024 05:00:01 +0000 ROA not before: Mon 07 Oct 2024 04:55:01 +0000 ROA not after: Mon 06 Oct 2025 05:00:01 +0000 asID: 134651 IP address blocks: 103.208.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.crl rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:39:2d:99:63:c0:69:2b:05:a3:b7:0a:5d:cb:30:a6:95:e1:52:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3 Validity Not Before: Oct 7 04:55:01 2024 GMT Not After : Oct 6 05:00:01 2025 GMT Subject: CN=FA4075E51B248169DC6B74DA103DB8C231A19F6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:96:eb:21:3c:06:55:0d:d1:85:ae:3a:3d:28: 50:b0:5d:bf:93:2a:02:47:8f:0a:ff:33:85:06:ba: 17:ee:7e:51:8d:8a:e6:21:4d:44:0a:be:e6:57:fa: 90:11:08:0c:e5:f8:ce:09:57:54:a0:e4:05:15:0d: 3f:f5:96:16:86:e4:c3:d7:d3:e7:95:f6:d9:a6:00: c7:bd:2d:66:0a:ae:10:d2:8f:da:e5:70:79:17:68: 14:32:f8:aa:e2:63:ef:b5:27:9a:a1:53:24:a9:f1: 1a:d7:99:d0:1c:27:e4:79:e4:87:f3:87:e2:3a:3e: d1:5a:7c:0f:b4:3c:51:0f:d0:c6:8c:3a:8b:da:2e: 96:d9:98:a8:1b:86:d0:e8:de:c8:ab:bc:9f:4f:be: eb:4a:4c:05:0c:63:b1:41:f6:a8:85:5b:f7:91:a5: 03:e2:0b:6c:84:4c:4c:48:6c:ba:6c:cc:bc:7d:79: 99:e5:f1:0d:fb:35:2d:0d:42:fc:a0:9b:e9:1b:8c: bb:69:76:35:3f:d2:fe:6f:09:c6:02:14:d8:7b:4c: 5e:6e:46:57:b9:67:2c:7f:d7:59:17:5e:00:73:13: 3a:b3:ac:d5:33:52:ce:e4:bd:d9:9c:22:57:08:3b: 96:b5:17:93:64:d0:6b:5d:9b:eb:e7:9a:05:af:56: ec:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:40:75:E5:1B:24:81:69:DC:6B:74:DA:10:3D:B8:C2:31:A1:9F:6C X509v3 Authority Key Identifier: keyid:80:3C:9F:F1:02:83:6C:EC:8C:EC:49:F0:1F:CF:AA:0E:92:E2:6A:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/803C9FF102836CEC8CEC49F01FCFAA0E92E26AF3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27727c3e-9c1a-46de-a2b8-c88b90399f3d/0/3130332e3230382e3230342e302f32322d3234203d3e20313334363531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.208.204.0/22 Signature Algorithm: sha256WithRSAEncryption 3d:1b:e6:53:e8:d7:39:9e:36:0c:26:b8:d0:cf:c0:3c:ba:43: 4a:22:0b:31:03:a9:3f:46:88:cd:77:f5:76:b2:6a:53:9f:f0: e8:30:5f:ac:c3:b1:4b:e7:ed:b0:27:91:20:69:c4:cf:46:1c: f3:73:8e:26:8b:35:d0:f5:b8:c3:e2:c9:b5:20:81:de:7f:5d: fe:7b:f5:d7:a8:50:7c:a0:02:0d:a0:76:a5:0c:12:d5:81:49: 71:44:8a:b9:f3:62:4d:8a:6e:a0:63:24:ef:8e:95:a4:c8:c0: 5f:e3:f9:2e:71:41:6a:0f:08:2e:d7:03:5d:3b:32:d4:66:9c: 5c:31:ff:df:84:cd:75:56:31:f3:b6:b3:a3:7c:da:e2:de:21: 03:7d:e5:e2:5a:57:5a:1e:7f:1f:8b:e2:96:24:7a:0c:bb:ac: d5:c5:cd:89:75:7e:d5:49:8b:2b:fd:a5:fc:9c:e3:ee:2a:9f: 1f:06:dc:aa:a0:4f:b4:72:4d:0a:42:a4:a5:76:86:ae:76:9b: 64:9d:2d:a7:f2:d2:56:ae:06:98:1a:25:5f:b1:22:97:7e:31: a8:3a:68:58:54:7e:e7:56:f1:a6:f1:b2:6c:70:5c:bd:f8:c3: dd:74:e7:59:97:a7:a1:89:d8:12:c1:2d:0e:14:4d:c2:5f:7a: 2c:29:ae:3e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQzktmWPAaSsFo7cKXcswppXhUiowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODAzQzlGRjEwMjgzNkNFQzhDRUM0OUYwMUZDRkFBMEU5 MkUyNkFGMzAeFw0yNDEwMDcwNDU1MDFaFw0yNTEwMDYwNTAwMDFaMDMxMTAvBgNV BAMTKEZBNDA3NUU1MUIyNDgxNjlEQzZCNzREQTEwM0RCOEMyMzFBMTlGNkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3lushPAZVDdGFrjo9KFCwXb+T KgJHjwr/M4UGuhfuflGNiuYhTUQKvuZX+pARCAzl+M4JV1Sg5AUVDT/1lhaG5MPX 0+eV9tmmAMe9LWYKrhDSj9rlcHkXaBQy+KriY++1J5qhUySp8RrXmdAcJ+R55Ifz h+I6PtFafA+0PFEP0MaMOovaLpbZmKgbhtDo3sirvJ9PvutKTAUMY7FB9qiFW/eR pQPiC2yETExIbLpszLx9eZnl8Q37NS0NQvygm+kbjLtpdjU/0v5vCcYCFNh7TF5u Rle5Zyx/11kXXgBzEzqzrNUzUs7kvdmcIlcIO5a1F5Nk0Gtdm+vnmgWvVuxnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU+kB15RskgWnca3TaED24wjGhn2wwHwYDVR0j BBgwFoAUgDyf8QKDbOyM7EnwH8+qDpLiavMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NzcyN2MzZS05YzFhLTQ2ZGUtYTJiOC1jODhiOTAzOTlmM2QvMC84MDNDOUZGMTAy ODM2Q0VDOENFQzQ5RjAxRkNGQUEwRTkyRTI2QUYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODAzQzlGRjEwMjgzNkNFQzhDRUM0OUYwMUZDRkFBMEU5MkUy NkFGMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3NzI3YzNlLTljMWEtNDZkZS1h MmI4LWM4OGI5MDM5OWYzZC8wLzMxMzAzMzJlMzIzMDM4MmUzMjMwMzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM1MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn0MwwDQYJ KoZIhvcNAQELBQADggEBAD0b5lPo1zmeNgwmuNDPwDy6Q0oiCzEDqT9GiM139Xay alOf8OgwX6zDsUvn7bAnkSBpxM9GHPNzjiaLNdD1uMPiybUggd5/Xf579deoUHyg Ag2gdqUMEtWBSXFEirnzYk2KbqBjJO+OlaTIwF/j+S5xQWoPCC7XA107MtRmnFwx /9+EzXVWMfO2s6N82uLeIQN95eJaV1oefx+L4pYkegy7rNXFzYl1ftVJiyv9pfyc 4+4qnx8G3KqgT7RyTQpCpKV2hq52m2SdLafy0lauBpgaJV+xIpd+Mag6aFhUfudW 8abxsmxwXL34w91051mXp6GJ2BLBLQ4UTcJfeiwprj4= -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:45 2024 by rpki-client on console-ams.rpki-client.org