$ rpki-client -vvf repo-rpki.idnic.net/repo/2bc65b8c-39e9-478d-8742-c535b61bae59/0/3130332e3135372e32342e302f32342d3234203d3e20313431313035.roa File: 3130332e3135372e32342e302f32342d3234203d3e20313431313035.roa (raw, json) Hash identifier: PvGUACm4ijzIPaxD0+PAB/B/JCQ56MWhw9C11hrAztM= Subject key identifier: 48:48:72:34:46:E9:39:78:FF:18:7A:6C:17:29:04:1B:66:98:C1:83 Certificate issuer: /CN=82EE517606C76902159E8886F875EF96B0327C72 Certificate serial: 0B94AEDD519BA2B2D6CF1362FF8645AA4815F558 Authority key identifier: 82:EE:51:76:06:C7:69:02:15:9E:88:86:F8:75:EF:96:B0:32:7C:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82EE517606C76902159E8886F875EF96B0327C72.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2bc65b8c-39e9-478d-8742-c535b61bae59/0/3130332e3135372e32342e302f32342d3234203d3e20313431313035.roa Signing time: Thu 10 Oct 2024 12:00:01 +0000 ROA not before: Thu 10 Oct 2024 11:55:01 +0000 ROA not after: Thu 09 Oct 2025 12:00:01 +0000 asID: 141105 IP address blocks: 103.157.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2bc65b8c-39e9-478d-8742-c535b61bae59/0/82EE517606C76902159E8886F875EF96B0327C72.crl rsync://repo-rpki.idnic.net/repo/2bc65b8c-39e9-478d-8742-c535b61bae59/0/82EE517606C76902159E8886F875EF96B0327C72.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82EE517606C76902159E8886F875EF96B0327C72.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:94:ae:dd:51:9b:a2:b2:d6:cf:13:62:ff:86:45:aa:48:15:f5:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82EE517606C76902159E8886F875EF96B0327C72 Validity Not Before: Oct 10 11:55:01 2024 GMT Not After : Oct 9 12:00:01 2025 GMT Subject: CN=4848723446E93978FF187A6C1729041B6698C183 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:19:37:7b:dd:7d:4f:ce:85:81:88:f7:ef:8b: ba:76:61:33:a6:ce:52:1f:04:92:40:30:25:04:49: 0b:10:cc:11:bb:e3:f2:5e:b1:ab:b1:35:69:93:c0: 1d:6f:36:4c:39:02:bd:42:c7:fe:f3:f4:aa:10:e7: 60:84:00:d6:5b:25:46:8b:af:9c:b3:68:9a:94:54: 05:42:f5:c0:97:d9:9f:ce:79:c9:e3:63:d7:6a:6d: c1:c6:29:39:af:c0:55:14:b6:cf:19:2b:0e:ba:ff: 0a:1a:3f:05:28:d6:43:22:92:21:3c:b0:05:65:4c: 50:dc:e3:90:29:35:df:16:a3:c3:89:7f:de:47:6f: 6c:c2:94:40:75:29:3f:99:7b:a1:4f:16:16:ce:34: 4b:61:38:bf:7e:e7:5f:d4:eb:c4:7d:7f:30:85:0c: b1:32:a9:fe:7c:e4:72:df:fa:dc:55:61:dd:ee:5d: 70:3c:12:9d:ff:fe:13:56:76:03:57:3f:84:a4:50: 49:81:de:f0:5a:0c:34:a8:e8:13:e5:46:4e:26:a6: d0:b1:a6:cb:d1:79:9b:b2:ee:e2:95:16:9a:5b:c1: 71:10:8c:1a:7e:48:71:fd:54:ee:3d:4a:86:d8:05: 99:56:94:fd:39:ab:71:70:81:b8:b3:68:56:c6:4b: 57:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:48:72:34:46:E9:39:78:FF:18:7A:6C:17:29:04:1B:66:98:C1:83 X509v3 Authority Key Identifier: keyid:82:EE:51:76:06:C7:69:02:15:9E:88:86:F8:75:EF:96:B0:32:7C:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2bc65b8c-39e9-478d-8742-c535b61bae59/0/82EE517606C76902159E8886F875EF96B0327C72.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82EE517606C76902159E8886F875EF96B0327C72.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2bc65b8c-39e9-478d-8742-c535b61bae59/0/3130332e3135372e32342e302f32342d3234203d3e20313431313035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.24.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:3f:30:f8:7b:fa:6f:a2:47:9a:c1:e9:cd:14:fb:61:50:89: 60:ea:e8:70:df:bd:cf:fe:14:01:89:16:8c:a9:83:7c:1a:f9: b9:7d:04:d5:b7:19:15:a8:4f:7a:db:3d:4a:2f:22:1e:3f:1c: d8:fd:95:b8:b5:ec:51:f4:0f:8e:74:d5:88:ce:66:6c:20:0d: 22:c4:7b:32:b3:79:f9:e9:33:3a:be:e1:f1:72:c1:3e:41:30: e8:34:6c:97:de:62:a3:aa:e8:04:1c:42:6d:72:13:bb:21:04: 0a:c1:9a:9b:a7:e4:c0:5e:99:58:e1:58:68:18:99:a4:fa:51: ce:3b:fe:f1:cd:d7:fb:ac:c5:8a:04:0c:6c:ff:03:cc:73:df: 81:d6:ab:23:10:01:57:f5:68:79:8d:24:de:3c:b9:42:d0:6a: 91:d5:f9:ab:fc:03:7b:46:da:07:a5:8e:26:9f:75:99:aa:9d: 32:c4:bd:7c:7d:e8:85:7d:d4:a4:1b:04:24:d8:15:e3:1c:d8: 3f:c2:f0:31:95:54:a9:cc:a8:01:29:7b:a3:cb:cd:78:96:23: 0c:7c:50:dc:46:01:31:08:83:e9:dd:9c:c7:8c:da:fd:9e:cb: 5a:7a:70:79:23:ea:00:90:0e:bd:9e:d8:f6:bf:58:2f:38:36: bd:76:05:ba -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUC5Su3VGborLWzxNi/4ZFqkgV9VgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODJFRTUxNzYwNkM3NjkwMjE1OUU4ODg2Rjg3NUVGOTZC MDMyN0M3MjAeFw0yNDEwMTAxMTU1MDFaFw0yNTEwMDkxMjAwMDFaMDMxMTAvBgNV BAMTKDQ4NDg3MjM0NDZFOTM5NzhGRjE4N0E2QzE3MjkwNDFCNjY5OEMxODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyGTd73X1PzoWBiPfvi7p2YTOm zlIfBJJAMCUESQsQzBG74/JesauxNWmTwB1vNkw5Ar1Cx/7z9KoQ52CEANZbJUaL r5yzaJqUVAVC9cCX2Z/OecnjY9dqbcHGKTmvwFUUts8ZKw66/woaPwUo1kMikiE8 sAVlTFDc45ApNd8Wo8OJf95Hb2zClEB1KT+Ze6FPFhbONEthOL9+51/U68R9fzCF DLEyqf585HLf+txVYd3uXXA8Ep3//hNWdgNXP4SkUEmB3vBaDDSo6BPlRk4mptCx psvReZuy7uKVFppbwXEQjBp+SHH9VO49SobYBZlWlP05q3FwgbizaFbGS1fDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSEhyNEbpOXj/GHpsFykEG2aYwYMwHwYDVR0j BBgwFoAUgu5RdgbHaQIVnoiG+HXvlrAyfHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YmM2NWI4Yy0zOWU5LTQ3OGQtODc0Mi1jNTM1YjYxYmFlNTkvMC84MkVFNTE3NjA2 Qzc2OTAyMTU5RTg4ODZGODc1RUY5NkIwMzI3QzcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODJFRTUxNzYwNkM3NjkwMjE1OUU4ODg2Rjg3NUVGOTZCMDMy N0M3Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJiYzY1YjhjLTM5ZTktNDc4ZC04 NzQyLWM1MzViNjFiYWU1OS8wLzMxMzAzMzJlMzEzNTM3MmUzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ50YMA0GCSqG SIb3DQEBCwUAA4IBAQA+PzD4e/pvokeawenNFPthUIlg6uhw373P/hQBiRaMqYN8 Gvm5fQTVtxkVqE962z1KLyIePxzY/ZW4texR9A+OdNWIzmZsIA0ixHsys3n56TM6 vuHxcsE+QTDoNGyX3mKjqugEHEJtchO7IQQKwZqbp+TAXplY4VhoGJmk+lHOO/7x zdf7rMWKBAxs/wPMc9+B1qsjEAFX9Wh5jSTePLlC0GqR1fmr/AN7RtoHpY4mn3WZ qp0yxL18feiFfdSkGwQk2BXjHNg/wvAxlVSpzKgBKXujy814liMMfFDcRgExCIPp 3ZzHjNr9nstaenB5I+oAkA69ntj2v1gvODa9dgW6 -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:54 2024 by rpki-client on console-fra.rpki-client.org