$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231352e302f32342d3234203d3e203538343837.roa File: 3130332e3235332e3231352e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: uw2rUyDAuur+H0kWMyfo+StxjquIulxfj16YL5BSCig= Subject key identifier: 07:5E:FD:5C:B7:5B:99:10:72:24:48:10:26:E3:D5:5D:6A:83:CA:AF Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 2835301CADF54F973D7B9166D3C4FAD013FC35FA Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231352e302f32342d3234203d3e203538343837.roa Signing time: Wed 20 Nov 2024 09:00:03 +0000 ROA not before: Wed 20 Nov 2024 08:55:03 +0000 ROA not after: Wed 19 Nov 2025 09:00:03 +0000 asID: 58487 IP address blocks: 103.253.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:29:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:35:30:1c:ad:f5:4f:97:3d:7b:91:66:d3:c4:fa:d0:13:fc:35:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Nov 20 08:55:03 2024 GMT Not After : Nov 19 09:00:03 2025 GMT Subject: CN=075EFD5CB75B99107224481026E3D55D6A83CAAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:51:05:d8:79:e1:88:46:09:99:93:73:5a:5a: a6:d1:75:75:2a:77:4b:a3:27:34:c6:85:83:e8:ad: b4:c4:3e:02:8d:6a:0f:b2:8c:6b:ff:b3:2b:fa:ca: 85:e9:22:92:ce:26:b0:9f:48:43:64:dd:c0:e2:89: 04:43:1b:12:3d:4b:21:79:2f:25:ea:d2:19:fd:15: 95:0d:d1:fb:ad:62:0f:b6:11:52:a6:94:64:ae:0b: c4:5d:8a:62:47:36:d9:1f:ee:0e:cb:f8:7c:2f:11: ef:80:39:4f:50:eb:14:fc:46:6b:a9:3f:bc:57:93: 80:2e:d1:3b:3f:3a:ff:48:81:15:28:1e:36:f4:10: 61:e1:d8:f7:b5:82:61:82:41:54:7e:8b:3b:07:f1: bf:8a:49:0c:b0:b7:33:f0:b2:64:c0:91:7b:b7:d4: e7:29:7b:64:9e:73:4f:04:87:83:38:35:3b:f9:2b: 0d:52:94:85:46:a4:ff:70:1d:56:bb:eb:f9:11:b0: b7:0c:0c:1e:87:70:aa:2e:97:37:bc:46:40:67:48: b0:32:69:de:89:15:bf:80:05:81:fa:73:c6:c5:5f: 85:5a:e3:57:b0:40:03:a0:20:40:4d:d6:0a:ab:eb: a8:60:1f:b7:ed:65:ef:0b:01:7d:57:b5:66:db:86: 5d:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:5E:FD:5C:B7:5B:99:10:72:24:48:10:26:E3:D5:5D:6A:83:CA:AF X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231352e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.215.0/24 Signature Algorithm: sha256WithRSAEncryption 24:c9:f5:1a:ec:a4:a0:a9:44:8c:d7:b9:9a:93:73:34:be:51: 7e:12:cb:f0:2b:6c:2d:fb:b2:6c:86:d0:30:0b:68:5c:6f:83: a5:f0:18:fe:d6:0c:25:7d:92:c1:fe:40:42:a5:c4:eb:98:7a: 93:c3:0c:b0:50:30:b3:f9:2d:1f:17:6b:58:7f:3a:9d:b5:82: 17:6d:c8:6e:73:46:38:15:7c:48:b8:a2:cc:aa:0a:8c:c4:bd: e3:bc:d9:c8:b2:67:65:c6:d7:47:fe:0d:a0:26:ac:91:ab:ef: 3f:3d:f0:e2:c9:62:92:49:4c:2a:bd:0a:5b:84:13:8c:97:cc: a5:17:cf:27:88:48:6d:ee:10:27:a6:1d:5d:50:06:d0:b4:be: 7a:22:a2:d4:90:ff:49:64:b2:f6:a8:ef:74:c2:16:55:c2:75: 0a:7b:a9:b2:da:58:29:0c:cd:9d:60:9b:40:b5:d5:14:80:eb: 75:ae:ac:bd:eb:f6:5b:b3:4a:7b:42:ee:5a:4f:de:00:74:b5: 90:34:c8:99:9e:09:ed:52:ca:85:26:5a:8b:c3:84:2b:a6:c1: 6b:81:cb:0d:92:5d:db:04:ab:f9:1f:a4:97:1a:3a:48:60:44: 07:2d:58:0f:1d:96:ea:25:32:94:09:2e:18:10:c5:ff:e8:ac: 33:20:d3:1c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKDUwHK31T5c9e5Fm08T60BP8NfowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNDExMjAwODU1MDNaFw0yNTExMTkwOTAwMDNaMDMxMTAvBgNV BAMTKDA3NUVGRDVDQjc1Qjk5MTA3MjI0NDgxMDI2RTNENTVENkE4M0NBQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8UQXYeeGIRgmZk3NaWqbRdXUq d0ujJzTGhYPorbTEPgKNag+yjGv/syv6yoXpIpLOJrCfSENk3cDiiQRDGxI9SyF5 LyXq0hn9FZUN0futYg+2EVKmlGSuC8RdimJHNtkf7g7L+HwvEe+AOU9Q6xT8Rmup P7xXk4Au0Ts/Ov9IgRUoHjb0EGHh2Pe1gmGCQVR+izsH8b+KSQywtzPwsmTAkXu3 1Ocpe2Sec08Eh4M4NTv5Kw1SlIVGpP9wHVa76/kRsLcMDB6HcKoulze8RkBnSLAy ad6JFb+ABYH6c8bFX4Va41ewQAOgIEBN1gqr66hgH7ftZe8LAX1XtWbbhl1FAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUB179XLdbmRByJEgQJuPVXWqDyq8wHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMxMzAzMzJlMzIzNTMzMmUzMjMxMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzQzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/3XMA0GCSqG SIb3DQEBCwUAA4IBAQAkyfUa7KSgqUSM17mak3M0vlF+EsvwK2wt+7JshtAwC2hc b4Ol8Bj+1gwlfZLB/kBCpcTrmHqTwwywUDCz+S0fF2tYfzqdtYIXbchuc0Y4FXxI uKLMqgqMxL3jvNnIsmdlxtdH/g2gJqyRq+8/PfDiyWKSSUwqvQpbhBOMl8ylF88n iEht7hAnph1dUAbQtL56IqLUkP9JZLL2qO90whZVwnUKe6my2lgpDM2dYJtAtdUU gOt1rqy96/Zbs0p7Qu5aT94AdLWQNMiZngntUsqFJlqLw4QrpsFrgcsNkl3bBKv5 H6SXGjpIYEQHLVgPHZbqJTKUCS4YEMX/6KwzINMc -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:50 2024 by rpki-client on console-fra.rpki-client.org