$ rpki-client -vvf repo-rpki.idnic.net/repo/2fbd7cf6-f55a-4b78-a588-d9261f15f763/0/3130332e3130362e3137322e302f32332d3234203d3e20313336383838.roa File: 3130332e3130362e3137322e302f32332d3234203d3e20313336383838.roa (raw, json) Hash identifier: 14jGGBn2Kt0co6w/+KEhuzlWDhDnoT2pTYw5uk4snHY= Subject key identifier: 7F:B7:D2:11:B3:00:74:95:FB:B9:02:64:AD:40:DD:34:BA:2D:BD:ED Certificate issuer: /CN=B2FA6DD62C0D60EAAD64F6B471D22D294432B7B8 Certificate serial: 5454111341AFBBB0EA2BF0F641A601F88BEE158F Authority key identifier: B2:FA:6D:D6:2C:0D:60:EA:AD:64:F6:B4:71:D2:2D:29:44:32:B7:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2FA6DD62C0D60EAAD64F6B471D22D294432B7B8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2fbd7cf6-f55a-4b78-a588-d9261f15f763/0/3130332e3130362e3137322e302f32332d3234203d3e20313336383838.roa Signing time: Mon 01 Jul 2024 01:02:39 +0000 ROA not before: Mon 01 Jul 2024 00:57:39 +0000 ROA not after: Mon 30 Jun 2025 01:02:39 +0000 asID: 136888 IP address blocks: 103.106.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2fbd7cf6-f55a-4b78-a588-d9261f15f763/0/B2FA6DD62C0D60EAAD64F6B471D22D294432B7B8.crl rsync://repo-rpki.idnic.net/repo/2fbd7cf6-f55a-4b78-a588-d9261f15f763/0/B2FA6DD62C0D60EAAD64F6B471D22D294432B7B8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2FA6DD62C0D60EAAD64F6B471D22D294432B7B8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:54:11:13:41:af:bb:b0:ea:2b:f0:f6:41:a6:01:f8:8b:ee:15:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2FA6DD62C0D60EAAD64F6B471D22D294432B7B8 Validity Not Before: Jul 1 00:57:39 2024 GMT Not After : Jun 30 01:02:39 2025 GMT Subject: CN=7FB7D211B3007495FBB90264AD40DD34BA2DBDED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:69:48:6e:f3:62:ad:bd:2a:9a:3a:d5:f1:9b: 1d:b7:ce:17:66:65:8b:39:89:f2:d9:da:76:f8:94: 38:18:42:a9:92:3e:0e:da:ba:44:4c:8a:ed:f8:f5: 0f:46:5e:bf:cd:a4:16:ca:82:59:95:ec:91:c3:e6: 36:0a:21:08:0b:ab:8c:a9:a6:11:a0:dd:dc:33:c9: 32:5c:47:82:d2:10:55:81:7e:ec:f7:29:4c:f3:86: ee:95:06:a8:23:30:70:56:cb:0f:d0:06:d5:0b:3a: e4:55:7f:ba:ec:00:38:a3:ca:10:5a:dd:b5:0c:8a: b1:3a:fd:d7:41:b5:94:fe:17:d7:7c:48:74:31:ac: 40:ad:52:87:1c:70:cd:f1:76:aa:04:59:aa:da:c3: 46:dd:18:0c:75:43:5a:8b:84:a6:04:de:ee:ca:30: af:f5:94:ae:e2:d5:43:50:b9:68:e5:9c:a7:4a:51: f8:09:b8:a4:b2:a9:e5:39:4e:61:44:be:b2:0d:65: ae:62:15:fa:64:a5:9e:b3:e6:b4:89:5c:58:49:1a: 18:04:5b:14:ac:2a:c1:4f:f5:00:6c:c7:ca:b6:c9: f2:fe:7c:22:77:aa:d7:de:77:8d:3e:5d:e7:92:f8: 26:92:5b:ec:73:fd:54:75:42:64:0c:9a:a1:7f:27: 82:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:B7:D2:11:B3:00:74:95:FB:B9:02:64:AD:40:DD:34:BA:2D:BD:ED X509v3 Authority Key Identifier: keyid:B2:FA:6D:D6:2C:0D:60:EA:AD:64:F6:B4:71:D2:2D:29:44:32:B7:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2fbd7cf6-f55a-4b78-a588-d9261f15f763/0/B2FA6DD62C0D60EAAD64F6B471D22D294432B7B8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2FA6DD62C0D60EAAD64F6B471D22D294432B7B8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fbd7cf6-f55a-4b78-a588-d9261f15f763/0/3130332e3130362e3137322e302f32332d3234203d3e20313336383838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.106.172.0/23 Signature Algorithm: sha256WithRSAEncryption 47:00:95:9f:3f:f3:3d:d9:6c:e3:ca:56:3f:ec:ce:cc:c8:83: 4f:a1:e0:e2:26:34:b8:c5:6a:fa:b4:00:a3:92:40:3d:c0:bf: 41:5a:17:36:fb:f0:2c:8d:02:e4:e7:93:e0:8a:d7:92:93:70: 8e:39:66:69:d6:03:cc:22:46:10:9d:42:e8:0d:83:6b:84:09: 3d:50:3e:d0:5e:44:43:b3:fe:54:3f:c2:fc:f4:9c:91:06:47: 3c:97:b2:00:d1:08:16:cd:21:3b:ae:a7:0d:35:14:54:37:0f: 9e:b0:79:62:42:fd:b5:77:03:57:f5:52:2d:33:86:3a:1c:eb: 0e:bf:d4:a3:e7:9c:4a:08:92:b3:47:a6:7d:0b:bc:c1:e7:8f: 0f:04:18:bf:92:af:7c:6b:e9:6c:6a:47:5d:23:3a:50:47:31: c4:81:b2:b6:b8:51:35:28:95:5f:5b:af:46:30:ae:ab:c4:f0: 1d:4c:54:82:8f:0e:97:83:91:dd:c9:dc:16:b1:a1:83:97:a3: d5:a1:90:cd:bd:91:30:e9:c7:40:59:41:c2:e2:5a:90:eb:ed: fd:20:4f:8a:b0:85:3b:a3:a0:f8:45:b7:02:21:9a:76:a7:cc: e2:a1:12:4a:86:3a:19:db:16:37:50:f0:0b:ab:f0:7f:f7:87: a6:f5:b4:04 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVFQRE0Gvu7DqK/D2QaYB+IvuFY8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjJGQTZERDYyQzBENjBFQUFENjRGNkI0NzFEMjJEMjk0 NDMyQjdCODAeFw0yNDA3MDEwMDU3MzlaFw0yNTA2MzAwMTAyMzlaMDMxMTAvBgNV BAMTKDdGQjdEMjExQjMwMDc0OTVGQkI5MDI2NEFENDBERDM0QkEyREJERUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIaUhu82KtvSqaOtXxmx23zhdm ZYs5ifLZ2nb4lDgYQqmSPg7aukRMiu349Q9GXr/NpBbKglmV7JHD5jYKIQgLq4yp phGg3dwzyTJcR4LSEFWBfuz3KUzzhu6VBqgjMHBWyw/QBtULOuRVf7rsADijyhBa 3bUMirE6/ddBtZT+F9d8SHQxrECtUocccM3xdqoEWaraw0bdGAx1Q1qLhKYE3u7K MK/1lK7i1UNQuWjlnKdKUfgJuKSyqeU5TmFEvrINZa5iFfpkpZ6z5rSJXFhJGhgE WxSsKsFP9QBsx8q2yfL+fCJ3qtfed40+XeeS+CaSW+xz/VR1QmQMmqF/J4ITAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUf7fSEbMAdJX7uQJkrUDdNLotve0wHwYDVR0j BBgwFoAUsvpt1iwNYOqtZPa0cdItKUQyt7gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZmJkN2NmNi1mNTVhLTRiNzgtYTU4OC1kOTI2MWYxNWY3NjMvMC9CMkZBNkRENjJD MEQ2MEVBQUQ2NEY2QjQ3MUQyMkQyOTQ0MzJCN0I4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjJGQTZERDYyQzBENjBFQUFENjRGNkI0NzFEMjJEMjk0NDMy QjdCOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJmYmQ3Y2Y2LWY1NWEtNGI3OC1h NTg4LWQ5MjYxZjE1Zjc2My8wLzMxMzAzMzJlMzEzMDM2MmUzMTM3MzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzYzODM4Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnaqwwDQYJ KoZIhvcNAQELBQADggEBAEcAlZ8/8z3ZbOPKVj/szszIg0+h4OImNLjFavq0AKOS QD3Av0FaFzb78CyNAuTnk+CK15KTcI45ZmnWA8wiRhCdQugNg2uECT1QPtBeREOz /lQ/wvz0nJEGRzyXsgDRCBbNITuupw01FFQ3D56weWJC/bV3A1f1Ui0zhjoc6w6/ 1KPnnEoIkrNHpn0LvMHnjw8EGL+Sr3xr6WxqR10jOlBHMcSBsra4UTUolV9br0Yw rqvE8B1MVIKPDpeDkd3J3BaxoYOXo9WhkM29kTDpx0BZQcLiWpDr7f0gT4qwhTuj oPhFtwIhmnanzOKhEkqGOhnbFjdQ8Aur8H/3h6b1tAQ= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:56 2024 by rpki-client on console-ams.rpki-client.org