$ rpki-client -vvf repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/3130332e3132362e35362e302f32322d3234203d3e20313338313037.roa File: 3130332e3132362e35362e302f32322d3234203d3e20313338313037.roa (raw, json) Hash identifier: kLTlxWEFNfnVHoct9vSIbW94LzE1qa0ElrbO/1tRpX4= Subject key identifier: 3A:E1:57:94:87:DA:13:BB:55:31:FD:B4:7E:B2:A7:40:02:B1:F2:1D Certificate issuer: /CN=986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F Certificate serial: 2C97F3D1BBBA4DC251E72A905059784950EAA829 Authority key identifier: 98:6E:FE:1C:2B:B8:B0:E4:E1:47:2E:9D:AA:5B:77:5A:A4:F6:68:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/3130332e3132362e35362e302f32322d3234203d3e20313338313037.roa Signing time: Mon 01 Jul 2024 01:04:03 +0000 ROA not before: Mon 01 Jul 2024 00:59:03 +0000 ROA not after: Mon 30 Jun 2025 01:04:03 +0000 asID: 138107 IP address blocks: 103.126.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.crl rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:97:f3:d1:bb:ba:4d:c2:51:e7:2a:90:50:59:78:49:50:ea:a8:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F Validity Not Before: Jul 1 00:59:03 2024 GMT Not After : Jun 30 01:04:03 2025 GMT Subject: CN=3AE1579487DA13BB5531FDB47EB2A74002B1F21D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:2c:60:d2:b6:36:a7:ea:f1:c6:fa:d3:75:7d: ae:b4:8e:97:2c:82:b8:1c:3c:ec:0c:26:62:b9:93: cd:cb:6c:ce:dc:05:b9:9a:61:c4:54:e1:67:66:8a: 13:96:7e:f2:6b:7f:d4:af:6a:6b:72:2b:86:ee:5a: 63:a1:a0:48:fc:c4:1f:57:be:2b:ce:89:96:ce:c5: 83:cb:c4:80:73:28:4e:3f:f2:a8:a8:84:05:a6:48: 92:7f:d1:06:4a:c2:77:9e:bb:ec:bb:96:ce:9e:05: ca:4f:49:13:17:7a:59:4f:7e:8a:d1:2a:06:6e:45: f2:ae:14:e4:72:34:fc:92:72:69:7d:4d:03:0e:69: f2:6f:d5:49:11:cf:b7:0a:96:07:64:c1:7a:4b:7b: 41:e1:4a:10:4e:d0:46:5b:32:22:3a:cc:1b:7c:d2: 34:af:29:ad:9c:23:26:e9:af:64:29:1a:fd:cf:73: bc:42:ae:3a:fc:39:a3:94:1d:4d:5b:d6:fb:a8:09: d8:dc:83:cd:b0:c3:09:7c:cd:cf:ed:6b:e4:73:00: 48:94:06:1b:7f:fc:55:a8:d8:f7:bf:76:f6:07:89: f5:68:e4:2f:fb:94:93:b5:f8:43:0e:9c:c7:ea:71: a4:f9:6d:0a:64:14:85:ef:fc:81:90:14:f1:b5:8c: d1:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:E1:57:94:87:DA:13:BB:55:31:FD:B4:7E:B2:A7:40:02:B1:F2:1D X509v3 Authority Key Identifier: keyid:98:6E:FE:1C:2B:B8:B0:E4:E1:47:2E:9D:AA:5B:77:5A:A4:F6:68:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/3130332e3132362e35362e302f32322d3234203d3e20313338313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.126.56.0/22 Signature Algorithm: sha256WithRSAEncryption 8b:48:c9:2f:07:9d:96:73:0a:11:b9:58:ad:92:b9:ae:0d:01: 75:f9:ea:39:08:a0:d7:57:6a:5f:53:ff:97:39:39:57:b6:24: 0e:01:38:8b:c4:9f:58:72:ba:44:8c:19:8d:f9:f0:5c:13:0b: fd:d3:09:32:99:8f:88:8d:e5:ba:ca:ca:00:98:7b:35:51:df: 75:0b:cb:9f:1a:00:00:6c:86:6a:90:1a:d9:79:ac:96:55:3c: 82:41:96:a7:21:5d:f3:ab:16:de:b6:d4:b0:18:05:1f:83:27: 3b:77:20:2d:5b:3b:9d:3a:06:fd:fb:90:9b:f1:70:26:05:6b: 84:b8:b4:fc:99:19:cb:70:ec:c6:40:81:cf:4e:a1:d5:67:a4: 73:b5:a8:24:89:51:1c:46:e5:6c:83:13:a4:0c:ba:00:7d:33: 1b:4b:8a:77:34:8d:81:b7:da:1b:da:95:81:9f:ad:69:95:c0: bc:93:d5:3c:ca:f2:fb:4b:96:8e:29:a9:b6:07:74:4d:54:d1: 8c:10:74:29:6a:3e:bc:9e:0b:8f:4f:5a:fa:bf:31:e0:c6:39: 4d:8c:8b:b1:8f:f2:c7:9c:cc:31:0c:04:09:f5:ac:f3:ab:1c: fb:50:fd:98:2c:9b:bb:e5:a2:3e:86:80:c0:de:09:b5:06:c8: 75:34:04:af -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULJfz0bu6TcJR5yqQUFl4SVDqqCkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTg2RUZFMUMyQkI4QjBFNEUxNDcyRTlEQUE1Qjc3NUFB NEY2Njg5RjAeFw0yNDA3MDEwMDU5MDNaFw0yNTA2MzAwMTA0MDNaMDMxMTAvBgNV BAMTKDNBRTE1Nzk0ODdEQTEzQkI1NTMxRkRCNDdFQjJBNzQwMDJCMUYyMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDLGDStjan6vHG+tN1fa60jpcs grgcPOwMJmK5k83LbM7cBbmaYcRU4WdmihOWfvJrf9SvamtyK4buWmOhoEj8xB9X vivOiZbOxYPLxIBzKE4/8qiohAWmSJJ/0QZKwneeu+y7ls6eBcpPSRMXellPforR KgZuRfKuFORyNPyScml9TQMOafJv1UkRz7cKlgdkwXpLe0HhShBO0EZbMiI6zBt8 0jSvKa2cIybpr2QpGv3Pc7xCrjr8OaOUHU1b1vuoCdjcg82wwwl8zc/ta+RzAEiU Bht//FWo2Pe/dvYHifVo5C/7lJO1+EMOnMfqcaT5bQpkFIXv/IGQFPG1jNFLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOuFXlIfaE7tVMf20frKnQAKx8h0wHwYDVR0j BBgwFoAUmG7+HCu4sOThRy6dqlt3WqT2aJ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MTYyZDE1Yi0xMDJiLTQzMWYtYTUzOS0wYTkzMmIzMTM2NmMvMC85ODZFRkUxQzJC QjhCMEU0RTE0NzJFOURBQTVCNzc1QUE0RjY2ODlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTg2RUZFMUMyQkI4QjBFNEUxNDcyRTlEQUE1Qjc3NUFBNEY2 Njg5Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxNjJkMTViLTEwMmItNDMxZi1h NTM5LTBhOTMyYjMxMzY2Yy8wLzMxMzAzMzJlMzEzMjM2MmUzNTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ344MA0GCSqG SIb3DQEBCwUAA4IBAQCLSMkvB52WcwoRuVitkrmuDQF1+eo5CKDXV2pfU/+XOTlX tiQOATiLxJ9YcrpEjBmN+fBcEwv90wkymY+IjeW6ysoAmHs1Ud91C8ufGgAAbIZq kBrZeayWVTyCQZanIV3zqxbettSwGAUfgyc7dyAtWzudOgb9+5Cb8XAmBWuEuLT8 mRnLcOzGQIHPTqHVZ6RztagkiVEcRuVsgxOkDLoAfTMbS4p3NI2Bt9ob2pWBn61p lcC8k9U8yvL7S5aOKam2B3RNVNGMEHQpaj68nguPT1r6vzHgxjlNjIuxj/LHnMwx DAQJ9azzqxz7UP2YLJu75aI+hoDA3gm1Bsh1NASv -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:43 2024 by rpki-client on console-fra.rpki-client.org