$ rpki-client -vvf repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e3234322e3138312e302f32342d3234203d3e203338373838.roa File: 3130332e3234322e3138312e302f32342d3234203d3e203338373838.roa (raw, json) Hash identifier: Wfn3mViCtbYcO116Nit8juuVUmxE7iFy1wIgqkeF8m8= Subject key identifier: FE:A0:EC:93:11:33:C9:36:59:2C:EF:D3:F3:9F:92:54:A7:2B:56:57 Certificate issuer: /CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Certificate serial: 5C39E69AD2471CE6C676D4CE73E61261C2687DA9 Authority key identifier: 8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e3234322e3138312e302f32342d3234203d3e203338373838.roa Signing time: Sat 13 Jul 2024 06:00:03 +0000 ROA not before: Sat 13 Jul 2024 05:55:03 +0000 ROA not after: Sat 12 Jul 2025 06:00:03 +0000 asID: 38788 IP address blocks: 103.242.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:39:e6:9a:d2:47:1c:e6:c6:76:d4:ce:73:e6:12:61:c2:68:7d:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Validity Not Before: Jul 13 05:55:03 2024 GMT Not After : Jul 12 06:00:03 2025 GMT Subject: CN=FEA0EC931133C936592CEFD3F39F9254A72B5657 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8c:11:b9:c9:0b:22:7f:11:53:62:27:86:c2: 14:49:26:28:fe:6b:8e:b5:54:02:a2:62:72:04:c3: d7:b0:bd:fb:0c:d5:92:61:55:47:e0:29:62:66:ba: 45:9d:cd:46:f0:81:21:dc:2b:2c:a4:11:db:bc:05: 79:81:d4:66:31:c5:24:91:68:9c:83:a1:bc:32:94: 7e:3e:fd:27:2b:2e:3e:89:72:9e:2e:7b:8c:d7:62: bb:b4:5a:a2:cb:25:82:a2:09:54:03:2b:03:78:11: ef:54:98:f7:70:af:5f:cb:21:d1:03:77:1f:86:82: 31:5e:49:f5:47:fb:46:f7:57:5c:7f:b7:df:70:f4: cf:81:13:ef:af:e8:45:ee:17:1f:8d:34:e0:c9:ec: 4e:42:18:ef:95:bc:67:f3:3a:ee:ae:34:a8:60:7b: 2b:c4:d7:03:ba:34:85:91:ec:9c:79:2d:ea:13:f2: 62:5b:e1:27:f0:3e:55:2b:89:6e:4a:6c:3e:a8:49: 30:ac:7c:d3:03:e5:d8:a0:65:af:52:bd:62:64:0e: 61:57:5c:88:2c:35:7f:c0:d9:a6:15:26:70:bd:1c: c2:a3:d5:b1:b8:15:e5:36:e5:3f:c4:e8:42:26:47: 3c:f8:7a:9d:51:02:64:b9:c3:2e:ed:4b:b6:22:0e: 05:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:A0:EC:93:11:33:C9:36:59:2C:EF:D3:F3:9F:92:54:A7:2B:56:57 X509v3 Authority Key Identifier: keyid:8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/3130332e3234322e3138312e302f32342d3234203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.242.181.0/24 Signature Algorithm: sha256WithRSAEncryption 13:20:1c:c3:72:c0:98:c1:69:23:cf:a9:49:fb:12:38:cc:69: 7d:1f:d3:1f:03:ba:22:94:96:f4:48:98:79:62:9a:40:36:41: ce:a0:2a:77:0b:1d:af:bd:a3:88:7d:74:ad:02:ff:3a:3d:13: 70:86:35:73:9e:c6:4b:cb:35:55:2d:e5:2d:3c:fb:af:6d:ed: e9:8f:9f:fa:26:6a:49:c2:6e:43:22:45:7a:c3:1e:bf:84:61: 43:53:ed:2b:92:0d:e1:bd:95:c3:fb:8b:f8:cf:4d:13:47:ae: 31:9c:dc:11:d6:e7:ca:71:1c:46:73:41:e4:3e:95:5f:32:56: 02:a3:a9:6a:af:8d:41:23:74:01:f0:42:77:60:13:47:19:5f: 4a:c9:fe:77:a9:f3:9e:f8:81:35:69:3e:ea:f3:75:76:1e:3a: 60:02:6a:9c:15:cf:fc:02:ff:69:fb:25:77:b2:4f:dd:cf:58: fc:cc:11:20:14:d8:4f:3e:8a:2c:32:56:30:09:a1:61:9c:0b: 5f:eb:d3:0b:e9:df:46:c1:72:45:fb:98:83:c4:e4:ab:04:29: c9:4e:d8:04:b2:30:ac:f4:16:f1:bc:e7:23:a1:94:f7:fa:97: b9:35:74:0b:5b:ab:ad:02:78:d0:00:11:70:a1:4e:d7:2e:14: 8a:a4:b0:ab -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXDnmmtJHHObGdtTOc+YSYcJofakwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAw MUZFRkVDQTAeFw0yNDA3MTMwNTU1MDNaFw0yNTA3MTIwNjAwMDNaMDMxMTAvBgNV BAMTKEZFQTBFQzkzMTEzM0M5MzY1OTJDRUZEM0YzOUY5MjU0QTcyQjU2NTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3jBG5yQsifxFTYieGwhRJJij+ a461VAKiYnIEw9ewvfsM1ZJhVUfgKWJmukWdzUbwgSHcKyykEdu8BXmB1GYxxSSR aJyDobwylH4+/ScrLj6Jcp4ue4zXYru0WqLLJYKiCVQDKwN4Ee9UmPdwr1/LIdED dx+GgjFeSfVH+0b3V1x/t99w9M+BE++v6EXuFx+NNODJ7E5CGO+VvGfzOu6uNKhg eyvE1wO6NIWR7Jx5LeoT8mJb4SfwPlUriW5KbD6oSTCsfNMD5digZa9SvWJkDmFX XIgsNX/A2aYVJnC9HMKj1bG4FeU25T/E6EImRzz4ep1RAmS5wy7tS7YiDgUhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/qDskxEzyTZZLO/T85+SVKcrVlcwHwYDVR0j BBgwFoAUjD5EouK0ddXPSkjlLRcpAAH+/sowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGUyYmYwOS01ZjQyLTRiNjUtYTQyZC02M2QwNzk2ZDIwNmMvMC84QzNFNDRBMkUy QjQ3NUQ1Q0Y0QTQ4RTUyRDE3MjkwMDAxRkVGRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAwMUZF RkVDQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM0ZTJiZjA5LTVmNDItNGI2NS1h NDJkLTYzZDA3OTZkMjA2Yy8wLzMxMzAzMzJlMzIzNDMyMmUzMTM4MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/K1MA0GCSqG SIb3DQEBCwUAA4IBAQATIBzDcsCYwWkjz6lJ+xI4zGl9H9MfA7oilJb0SJh5YppA NkHOoCp3Cx2vvaOIfXStAv86PRNwhjVznsZLyzVVLeUtPPuvbe3pj5/6JmpJwm5D IkV6wx6/hGFDU+0rkg3hvZXD+4v4z00TR64xnNwR1ufKcRxGc0HkPpVfMlYCo6lq r41BI3QB8EJ3YBNHGV9Kyf53qfOe+IE1aT7q83V2HjpgAmqcFc/8Av9p+yV3sk/d z1j8zBEgFNhPPoosMlYwCaFhnAtf69ML6d9GwXJF+5iDxOSrBCnJTtgEsjCs9Bbx vOcjoZT3+pe5NXQLW6utAnjQABFwoU7XLhSKpLCr -----END CERTIFICATE-----Generated at Sat Nov 23 18:47:51 2024 by rpki-client on console-fra.rpki-client.org