$ rpki-client -vvf repo-rpki.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/3130332e35312e3132332e302f32342d3234203d3e20313530343730.roa File: 3130332e35312e3132332e302f32342d3234203d3e20313530343730.roa (raw, json) Hash identifier: acV9j3XIcn+bea9k3sYuulK5VVRC16qFjnWStKLLjhQ= Subject key identifier: 71:34:39:09:E7:D9:FC:6E:3D:AF:D8:1A:A3:D5:AF:E9:FB:B5:68:AD Certificate issuer: /CN=104C4FCF888F3C86B8C128D81C5B95FE5389BB59 Certificate serial: 41EF76C7391B4150E28E95B8CF75A5A91D617BF4 Authority key identifier: 10:4C:4F:CF:88:8F:3C:86:B8:C1:28:D8:1C:5B:95:FE:53:89:BB:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/104C4FCF888F3C86B8C128D81C5B95FE5389BB59.cer Subject info access: rsync://repo-rpki.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/3130332e35312e3132332e302f32342d3234203d3e20313530343730.roa Signing time: Wed 23 Oct 2024 05:00:00 +0000 ROA not before: Wed 23 Oct 2024 04:55:00 +0000 ROA not after: Wed 22 Oct 2025 05:00:00 +0000 asID: 150470 IP address blocks: 103.51.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/104C4FCF888F3C86B8C128D81C5B95FE5389BB59.crl rsync://repo-rpki.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/104C4FCF888F3C86B8C128D81C5B95FE5389BB59.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/104C4FCF888F3C86B8C128D81C5B95FE5389BB59.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:ef:76:c7:39:1b:41:50:e2:8e:95:b8:cf:75:a5:a9:1d:61:7b:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=104C4FCF888F3C86B8C128D81C5B95FE5389BB59 Validity Not Before: Oct 23 04:55:00 2024 GMT Not After : Oct 22 05:00:00 2025 GMT Subject: CN=71343909E7D9FC6E3DAFD81AA3D5AFE9FBB568AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:d8:34:a5:e3:91:db:e1:4c:e8:ee:07:70:c8: 21:31:2c:aa:56:13:81:ba:57:93:2c:f8:57:4c:14: 91:41:3b:97:8c:32:0c:4c:7a:56:bc:e2:f2:7a:5f: b4:c9:c0:ad:75:50:cc:3d:10:35:d6:87:ca:f9:3d: 43:64:e8:2e:ec:59:5b:1a:b2:af:f8:41:49:2f:ff: 14:06:80:00:0e:34:43:ef:f1:34:f6:bc:f1:71:05: ab:8e:c8:c6:44:cb:99:91:6f:5b:5b:86:8f:4f:d0: e8:f3:91:e4:a5:e7:e4:8a:0b:c8:0d:a1:f5:20:5e: 08:b6:0c:bd:f9:a4:54:bb:0c:aa:1b:18:14:38:b3: e4:66:dd:2a:ff:e1:1d:6e:ba:c6:ad:b7:a2:dd:0e: 63:0a:28:4d:7e:97:cc:91:c3:e2:94:7a:08:fd:9c: b8:3b:09:30:21:76:d7:38:83:77:9a:5f:20:8e:b9: 5d:22:08:d2:88:7a:fa:cf:95:9a:1e:59:f2:47:a1: 43:28:6b:52:53:32:14:44:ef:ed:d1:80:b9:2f:ea: 61:78:89:96:db:8c:5f:f5:1f:54:7a:0c:91:b6:ce: b4:2d:36:17:8c:e5:4f:93:97:c7:1b:1f:83:f3:e9: 71:4e:7e:ba:2b:b1:52:71:ce:fa:7a:c3:cd:40:bf: e0:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:34:39:09:E7:D9:FC:6E:3D:AF:D8:1A:A3:D5:AF:E9:FB:B5:68:AD X509v3 Authority Key Identifier: keyid:10:4C:4F:CF:88:8F:3C:86:B8:C1:28:D8:1C:5B:95:FE:53:89:BB:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/104C4FCF888F3C86B8C128D81C5B95FE5389BB59.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/104C4FCF888F3C86B8C128D81C5B95FE5389BB59.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/3130332e35312e3132332e302f32342d3234203d3e20313530343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.51.123.0/24 Signature Algorithm: sha256WithRSAEncryption a0:32:54:09:9f:42:a8:de:01:6f:a0:54:9a:96:8d:7b:19:be: 2d:02:53:fc:cc:d0:1a:91:bc:62:45:a4:ad:bc:95:d9:4e:ce: 19:4c:54:04:f6:ba:d3:a4:23:9d:15:56:6d:ad:2f:9a:49:37: 08:c9:97:55:ec:fc:38:f5:50:ca:60:86:78:eb:db:ad:cf:06: 67:b2:37:1a:7c:2d:b1:af:3f:2a:bf:db:5c:72:de:0e:10:b5: f3:1c:0d:a4:55:55:d2:b7:f0:d3:d3:92:ec:5b:63:94:8e:35: 16:1a:0c:18:7f:91:23:95:df:78:20:bd:33:78:4b:d9:03:89: 13:98:fa:7e:e8:5b:a1:e3:9b:36:8c:df:aa:5a:31:46:56:d5: d7:62:10:09:0f:f5:f3:09:7e:7f:28:83:e1:23:86:0b:f3:d8: bc:e5:91:85:65:32:28:04:b2:04:b8:03:83:f4:fc:d9:72:c1: 02:14:2f:f4:f8:eb:0d:b8:7b:37:7e:cf:54:67:79:8c:a2:8f: 5c:c6:74:1a:df:c7:e7:07:25:1b:c5:d7:23:ec:df:3a:d4:d5: 1e:b9:86:8a:88:68:cd:20:d7:46:54:b9:cf:e2:1b:2b:b1:62: 51:8c:38:e3:93:aa:1f:ca:af:05:c4:1e:36:5a:24:63:e0:57: d0:19:35:7c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQe92xzkbQVDijpW4z3WlqR1he/QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA0QzRGQ0Y4ODhGM0M4NkI4QzEyOEQ4MUM1Qjk1RkU1 Mzg5QkI1OTAeFw0yNDEwMjMwNDU1MDBaFw0yNTEwMjIwNTAwMDBaMDMxMTAvBgNV BAMTKDcxMzQzOTA5RTdEOUZDNkUzREFGRDgxQUEzRDVBRkU5RkJCNTY4QUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCT2DSl45Hb4Uzo7gdwyCExLKpW E4G6V5Ms+FdMFJFBO5eMMgxMela84vJ6X7TJwK11UMw9EDXWh8r5PUNk6C7sWVsa sq/4QUkv/xQGgAAONEPv8TT2vPFxBauOyMZEy5mRb1tbho9P0OjzkeSl5+SKC8gN ofUgXgi2DL35pFS7DKobGBQ4s+Rm3Sr/4R1uusatt6LdDmMKKE1+l8yRw+KUegj9 nLg7CTAhdtc4g3eaXyCOuV0iCNKIevrPlZoeWfJHoUMoa1JTMhRE7+3RgLkv6mF4 iZbbjF/1H1R6DJG2zrQtNheM5U+Tl8cbH4Pz6XFOfrorsVJxzvp6w81Av+DRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcTQ5CefZ/G49r9gao9Wv6fu1aK0wHwYDVR0j BBgwFoAUEExPz4iPPIa4wSjYHFuV/lOJu1kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MjhlZWM1Yi01MzI0LTQ0MjItYTMyZi05YjFkY2VkMzc1OWYvMC8xMDRDNEZDRjg4 OEYzQzg2QjhDMTI4RDgxQzVCOTVGRTUzODlCQjU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTA0QzRGQ0Y4ODhGM0M4NkI4QzEyOEQ4MUM1Qjk1RkU1Mzg5 QkI1OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMyOGVlYzViLTUzMjQtNDQyMi1h MzJmLTliMWRjZWQzNzU5Zi8wLzMxMzAzMzJlMzUzMTJlMzEzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzQzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzN7MA0GCSqG SIb3DQEBCwUAA4IBAQCgMlQJn0Ko3gFvoFSalo17Gb4tAlP8zNAakbxiRaStvJXZ Ts4ZTFQE9rrTpCOdFVZtrS+aSTcIyZdV7Pw49VDKYIZ469utzwZnsjcafC2xrz8q v9tcct4OELXzHA2kVVXSt/DT05LsW2OUjjUWGgwYf5Ejld94IL0zeEvZA4kTmPp+ 6Fuh45s2jN+qWjFGVtXXYhAJD/XzCX5/KIPhI4YL89i85ZGFZTIoBLIEuAOD9PzZ csECFC/0+OsNuHs3fs9UZ3mMoo9cxnQa38fnByUbxdcj7N861NUeuYaKiGjNINdG VLnP4hsrsWJRjDjjk6ofyq8FxB42WiRj4FfQGTV8 -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:56 2024 by rpki-client on console-ams.rpki-client.org