$ rpki-client -vvf repo-rpki.idnic.net/repo/2a18f8a0-93ae-4359-8a5d-1ca678be5668/0/3130332e3136342e38332e302f32342d3234203d3e20313431393036.roa File: 3130332e3136342e38332e302f32342d3234203d3e20313431393036.roa (raw, json) Hash identifier: kIIeMyYHLpwRsUVcjh/TOWu2x/y3f9Oc8PMmrWTrStE= Subject key identifier: 17:1E:A8:9C:48:14:8A:1B:66:85:A2:5F:5E:70:37:A0:DD:6F:BC:3D Certificate issuer: /CN=DB1E31B6A9856791C31B99A73C0F390118E54EB8 Certificate serial: 3299703D8FB78366ACD498230D75514EEAB21E54 Authority key identifier: DB:1E:31:B6:A9:85:67:91:C3:1B:99:A7:3C:0F:39:01:18:E5:4E:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB1E31B6A9856791C31B99A73C0F390118E54EB8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a18f8a0-93ae-4359-8a5d-1ca678be5668/0/3130332e3136342e38332e302f32342d3234203d3e20313431393036.roa Signing time: Thu 23 May 2024 03:00:36 +0000 ROA not before: Thu 23 May 2024 02:55:36 +0000 ROA not after: Thu 22 May 2025 03:00:36 +0000 asID: 141906 IP address blocks: 103.164.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a18f8a0-93ae-4359-8a5d-1ca678be5668/0/DB1E31B6A9856791C31B99A73C0F390118E54EB8.crl rsync://repo-rpki.idnic.net/repo/2a18f8a0-93ae-4359-8a5d-1ca678be5668/0/DB1E31B6A9856791C31B99A73C0F390118E54EB8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB1E31B6A9856791C31B99A73C0F390118E54EB8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 10:40:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:99:70:3d:8f:b7:83:66:ac:d4:98:23:0d:75:51:4e:ea:b2:1e:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DB1E31B6A9856791C31B99A73C0F390118E54EB8 Validity Not Before: May 23 02:55:36 2024 GMT Not After : May 22 03:00:36 2025 GMT Subject: CN=171EA89C48148A1B6685A25F5E7037A0DD6FBC3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:69:60:88:e2:6f:e7:d9:43:71:71:df:da:39: d7:cd:1a:fe:52:da:75:3f:ca:25:9b:ba:e2:2f:57: 6b:91:03:53:ed:5c:97:cb:b0:7a:2e:81:be:22:1c: 9b:76:cf:30:34:07:83:56:a3:1b:a8:02:b4:12:13: 5d:18:6b:ad:87:bd:da:02:34:e9:29:02:c5:bc:a2: e9:51:45:c7:63:d6:af:40:20:74:65:da:9f:ad:37: 75:9c:52:ae:5e:a5:f6:73:2a:07:7e:b4:0f:30:ae: 43:85:ac:59:0e:47:9e:3a:08:10:ea:39:8d:ce:1f: 51:50:3b:15:2d:30:0f:a6:d0:b8:f9:9c:09:d3:bb: 44:af:93:eb:f0:a5:cc:c3:8e:d3:5c:6a:bd:4f:a1: a1:4b:8a:f3:8d:2c:6f:02:85:ca:04:e2:96:0b:8d: d8:1d:a4:24:0f:4f:87:42:a6:6e:ca:95:fc:cf:fd: dc:cd:7b:b2:0e:b1:c5:f2:5b:98:5d:cd:60:7b:44: 34:fe:80:93:03:a6:22:3c:e3:bf:10:e5:0a:da:ff: 3c:26:7a:bf:94:fc:7a:7a:37:f2:37:91:0f:19:b7: ca:14:44:85:53:69:dc:61:f5:8d:82:d4:3f:f6:b9: d9:44:93:a4:ef:c7:e8:0c:99:c0:1f:54:98:52:44: 5c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:1E:A8:9C:48:14:8A:1B:66:85:A2:5F:5E:70:37:A0:DD:6F:BC:3D X509v3 Authority Key Identifier: keyid:DB:1E:31:B6:A9:85:67:91:C3:1B:99:A7:3C:0F:39:01:18:E5:4E:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a18f8a0-93ae-4359-8a5d-1ca678be5668/0/DB1E31B6A9856791C31B99A73C0F390118E54EB8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB1E31B6A9856791C31B99A73C0F390118E54EB8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a18f8a0-93ae-4359-8a5d-1ca678be5668/0/3130332e3136342e38332e302f32342d3234203d3e20313431393036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.83.0/24 Signature Algorithm: sha256WithRSAEncryption 97:46:cf:3b:58:8a:99:3f:bf:ee:f1:a6:54:a2:88:21:c9:98: 2d:bf:e0:47:16:69:aa:37:1f:96:9a:e9:34:d8:75:f8:20:3b: 77:0e:a1:4a:dc:89:34:3f:d7:88:d8:e1:3d:48:55:e8:f3:2a: cf:3b:c6:05:20:3e:61:45:cd:ee:0c:a9:f2:2b:0c:89:e1:65: b8:ce:95:ef:d1:59:80:95:c2:69:01:bd:d6:34:17:4f:4d:85: 5a:10:41:9a:e3:20:96:72:a7:93:5a:03:74:4a:c2:d9:1e:ba: 92:95:b5:2f:06:cd:6c:9c:04:3b:91:c1:2e:db:23:54:c5:56: e1:13:42:ec:c3:a4:8f:83:1c:97:d7:5e:a7:79:48:19:5c:72: c7:0f:c1:27:78:6d:d2:0e:68:f9:92:75:2d:b2:25:15:dc:ff: a3:82:52:76:64:af:d3:86:c4:d8:f0:62:44:c6:23:0f:41:fa: b1:56:30:c3:e9:32:c2:f5:ce:bb:e6:13:02:21:d2:27:84:d9: 1b:2f:63:01:22:a2:84:4b:1f:7c:80:fb:30:e9:e7:64:fc:b0: 26:bb:a3:9f:bd:86:20:c2:4d:0e:17:11:dc:5e:fa:b4:f9:0e: bb:f3:16:a0:b2:9e:04:14:83:f7:a1:45:0a:c1:78:65:94:d4: e8:7f:38:4b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMplwPY+3g2as1JgjDXVRTuqyHlQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREIxRTMxQjZBOTg1Njc5MUMzMUI5OUE3M0MwRjM5MDEx OEU1NEVCODAeFw0yNDA1MjMwMjU1MzZaFw0yNTA1MjIwMzAwMzZaMDMxMTAvBgNV BAMTKDE3MUVBODlDNDgxNDhBMUI2Njg1QTI1RjVFNzAzN0EwREQ2RkJDM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDaWCI4m/n2UNxcd/aOdfNGv5S 2nU/yiWbuuIvV2uRA1PtXJfLsHougb4iHJt2zzA0B4NWoxuoArQSE10Ya62HvdoC NOkpAsW8oulRRcdj1q9AIHRl2p+tN3WcUq5epfZzKgd+tA8wrkOFrFkOR546CBDq OY3OH1FQOxUtMA+m0Lj5nAnTu0Svk+vwpczDjtNcar1PoaFLivONLG8ChcoE4pYL jdgdpCQPT4dCpm7KlfzP/dzNe7IOscXyW5hdzWB7RDT+gJMDpiI8478Q5Qra/zwm er+U/Hp6N/I3kQ8Zt8oURIVTadxh9Y2C1D/2udlEk6Tvx+gMmcAfVJhSRFwzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFx6onEgUihtmhaJfXnA3oN1vvD0wHwYDVR0j BBgwFoAU2x4xtqmFZ5HDG5mnPA85ARjlTrgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTE4ZjhhMC05M2FlLTQzNTktOGE1ZC0xY2E2NzhiZTU2NjgvMC9EQjFFMzFCNkE5 ODU2NzkxQzMxQjk5QTczQzBGMzkwMTE4RTU0RUI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREIxRTMxQjZBOTg1Njc5MUMzMUI5OUE3M0MwRjM5MDExOEU1 NEVCOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhMThmOGEwLTkzYWUtNDM1OS04 YTVkLTFjYTY3OGJlNTY2OC8wLzMxMzAzMzJlMzEzNjM0MmUzODMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzkzMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6RTMA0GCSqG SIb3DQEBCwUAA4IBAQCXRs87WIqZP7/u8aZUooghyZgtv+BHFmmqNx+Wmuk02HX4 IDt3DqFK3Ik0P9eI2OE9SFXo8yrPO8YFID5hRc3uDKnyKwyJ4WW4zpXv0VmAlcJp Ab3WNBdPTYVaEEGa4yCWcqeTWgN0SsLZHrqSlbUvBs1snAQ7kcEu2yNUxVbhE0Ls w6SPgxyX116neUgZXHLHD8EneG3SDmj5knUtsiUV3P+jglJ2ZK/ThsTY8GJExiMP QfqxVjDD6TLC9c675hMCIdInhNkbL2MBIqKESx98gPsw6edk/LAmu6OfvYYgwk0O FxHcXvq0+Q678xagsp4EFIP3oUUKwXhllNTofzhL -----END CERTIFICATE-----Generated at Tue Nov 26 07:01:24 2024 by rpki-client on console-ams.rpki-client.org