$ rpki-client -vvf repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e3234322e3138302e302f32332d3233203d3e203338373838.roa File: 3130332e3234322e3138302e302f32332d3233203d3e203338373838.roa (raw, json) Hash identifier: YXql7fxttoFZNwhdUVJjEI/x+s9mIL1d+UUjSd3+HKY= Subject key identifier: 37:94:B3:D7:75:C7:CD:70:D9:AF:E1:9A:4C:7D:3D:14:E5:43:A6:11 Certificate issuer: /CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Certificate serial: 184150E9E9346AE8B3D66DCE0FAD6A73A5E9798E Authority key identifier: 8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e3234322e3138302e302f32332d3233203d3e203338373838.roa Signing time: Mon 01 Jul 2024 01:06:07 +0000 ROA not before: Mon 01 Jul 2024 01:01:07 +0000 ROA not after: Mon 30 Jun 2025 01:06:07 +0000 asID: 38788 IP address blocks: 103.242.180.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:41:50:e9:e9:34:6a:e8:b3:d6:6d:ce:0f:ad:6a:73:a5:e9:79:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Validity Not Before: Jul 1 01:01:07 2024 GMT Not After : Jun 30 01:06:07 2025 GMT Subject: CN=3794B3D775C7CD70D9AFE19A4C7D3D14E543A611 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:66:03:0e:96:8f:7c:be:75:98:6a:1e:db:dd: 62:47:bf:c2:58:c1:0b:a3:c3:11:67:9a:2a:12:b0: 43:21:4e:f3:f9:13:cf:15:52:36:65:72:6d:6c:94: 99:75:59:0e:b0:13:04:84:5d:9b:9d:8a:37:c6:42: 8f:df:87:8f:a6:b5:2f:e4:25:bf:d1:08:29:79:a7: f2:e1:ae:f7:d4:21:5b:3f:6d:6a:3b:70:ab:57:53: 68:b9:ce:f1:b1:f9:d5:1d:87:7f:5f:ce:2d:b3:9f: 44:56:c6:74:97:e8:1e:10:73:4f:4e:23:cb:5c:9b: ab:08:cc:ed:b9:38:b5:c0:64:8e:96:c4:95:af:59: c0:f2:67:a5:1b:af:d8:1f:71:36:60:79:03:be:91: 5f:d9:3c:31:5c:27:ba:9c:35:7c:df:33:06:d9:a2: f5:c9:d6:38:ce:93:29:c0:25:e9:fd:be:90:a4:3a: 38:11:6c:59:05:6f:75:5d:06:d6:99:f1:6f:d2:41: 14:14:42:b3:2b:dc:99:b5:25:6c:a6:d8:36:09:f3: b5:25:7d:68:e1:b6:9a:3e:09:eb:62:47:bd:58:77: e0:27:e3:1c:34:d7:26:d5:59:0f:73:02:9e:15:92: 74:ad:da:4a:80:b8:e1:08:68:02:bf:f1:8a:db:d3: f5:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:94:B3:D7:75:C7:CD:70:D9:AF:E1:9A:4C:7D:3D:14:E5:43:A6:11 X509v3 Authority Key Identifier: keyid:8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e3234322e3138302e302f32332d3233203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.242.180.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:dd:ea:0a:e1:28:e5:45:26:8f:1a:02:a6:ba:d6:41:00:ea: a2:c1:23:78:5f:bb:36:85:01:6d:84:95:5e:c7:36:26:e4:d7: 00:b3:b2:aa:9a:3a:28:b8:97:ac:a8:e3:9c:9e:cc:30:21:84: 98:76:3b:18:6f:0a:b7:8b:09:27:d3:24:8f:06:ef:84:70:49: b7:be:f0:fd:32:15:c5:b7:98:30:5c:31:67:dd:b7:cb:23:14: 27:70:b5:d5:b6:3c:d0:21:ed:2a:fe:6d:79:73:a2:6b:22:8d: d7:b2:14:1e:ba:67:91:cd:dc:45:24:a4:45:a9:b2:66:d2:a1: d7:92:f0:f5:21:a1:2e:8b:c8:50:ad:10:4f:4f:67:28:c8:82: 5b:fe:8a:ea:29:a6:32:b2:52:56:d6:96:4a:c9:9d:a7:7b:bc: a3:b6:12:7f:89:20:87:61:6c:d7:a9:ae:a9:7b:ab:e1:a4:fd: 7c:26:2b:24:1d:7a:40:44:a0:4e:dd:5c:9b:ea:e8:63:55:18: e1:40:7b:48:d5:2c:f8:b4:ae:ca:de:1e:90:d2:be:54:62:67: 63:44:9d:21:82:d5:89:a1:ad:53:4f:88:d0:fc:d8:65:0b:01: 1c:71:db:10:01:52:01:96:89:94:10:a9:04:35:38:05:c1:05: cf:bd:46:30 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGEFQ6ek0auiz1m3OD61qc6XpeY4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAw MUZFRkVDQTAeFw0yNDA3MDEwMTAxMDdaFw0yNTA2MzAwMTA2MDdaMDMxMTAvBgNV BAMTKDM3OTRCM0Q3NzVDN0NENzBEOUFGRTE5QTRDN0QzRDE0RTU0M0E2MTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvZgMOlo98vnWYah7b3WJHv8JY wQujwxFnmioSsEMhTvP5E88VUjZlcm1slJl1WQ6wEwSEXZudijfGQo/fh4+mtS/k Jb/RCCl5p/LhrvfUIVs/bWo7cKtXU2i5zvGx+dUdh39fzi2zn0RWxnSX6B4Qc09O I8tcm6sIzO25OLXAZI6WxJWvWcDyZ6Ubr9gfcTZgeQO+kV/ZPDFcJ7qcNXzfMwbZ ovXJ1jjOkynAJen9vpCkOjgRbFkFb3VdBtaZ8W/SQRQUQrMr3Jm1JWym2DYJ87Ul fWjhtpo+CetiR71Yd+An4xw01ybVWQ9zAp4VknSt2kqAuOEIaAK/8Yrb0/WTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUN5Sz13XHzXDZr+GaTH09FOVDphEwHwYDVR0j BBgwFoAUjD5EouK0ddXPSkjlLRcpAAH+/sowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGUyYmYwOS01ZjQyLTRiNjUtYTQyZC02M2QwNzk2ZDIwNmMvMC84QzNFNDRBMkUy QjQ3NUQ1Q0Y0QTQ4RTUyRDE3MjkwMDAxRkVGRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAwMUZF RkVDQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM0ZTJiZjA5LTVmNDItNGI2NS1h NDJkLTYzZDA3OTZkMjA2Yy8wLzMxMzAzMzJlMzIzNDMyMmUzMTM4MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMzM4MzczODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ/K0MA0GCSqG SIb3DQEBCwUAA4IBAQAO3eoK4SjlRSaPGgKmutZBAOqiwSN4X7s2hQFthJVexzYm 5NcAs7KqmjoouJesqOOcnswwIYSYdjsYbwq3iwkn0ySPBu+EcEm3vvD9MhXFt5gw XDFn3bfLIxQncLXVtjzQIe0q/m15c6JrIo3XshQeumeRzdxFJKRFqbJm0qHXkvD1 IaEui8hQrRBPT2coyIJb/orqKaYyslJW1pZKyZ2ne7yjthJ/iSCHYWzXqa6pe6vh pP18JiskHXpARKBO3Vyb6uhjVRjhQHtI1Sz4tK7K3h6Q0r5UYmdjRJ0hgtWJoa1T T4jQ/NhlCwEccdsQAVIBlomUEKkENTgFwQXPvUYw -----END CERTIFICATE-----Generated at Sat Nov 23 18:35:32 2024 by rpki-client on console-ams.rpki-client.org