$ rpki-client -vvf repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/3130332e3135332e3132372e302f32342d3234203d3e20313338303839.roa File: 3130332e3135332e3132372e302f32342d3234203d3e20313338303839.roa (raw, json) Hash identifier: 8VUGnzcMPXIpTspZmhiyhZx+oMBSf2HNxnt+5LZcldc= Subject key identifier: 28:93:F2:48:25:10:F9:99:1A:71:2A:B7:F2:46:6D:31:1D:8B:48:4E Certificate issuer: /CN=EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C Certificate serial: 2B1BC0D8522846E34608968DAF51C47EC4FB28A2 Authority key identifier: EF:C0:FE:32:8F:7B:86:F9:C6:82:F4:FE:37:36:0C:4E:3A:D9:94:2C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/3130332e3135332e3132372e302f32342d3234203d3e20313338303839.roa Signing time: Tue 06 Feb 2024 13:00:00 +0000 ROA not before: Tue 06 Feb 2024 12:55:00 +0000 ROA not after: Tue 04 Feb 2025 13:00:00 +0000 asID: 138089 IP address blocks: 103.153.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.crl rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:1b:c0:d8:52:28:46:e3:46:08:96:8d:af:51:c4:7e:c4:fb:28:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C Validity Not Before: Feb 6 12:55:00 2024 GMT Not After : Feb 4 13:00:00 2025 GMT Subject: CN=2893F2482510F9991A712AB7F2466D311D8B484E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:36:de:5c:b0:d4:a4:80:3e:ab:59:d8:77:c4: b7:4d:1c:3e:23:56:8f:60:da:60:96:d5:0f:79:50: 8e:85:1f:fa:0e:ec:6a:32:3e:72:d0:df:ba:57:ba: 2a:34:35:2e:e6:4e:82:a4:cb:be:b5:0b:bf:92:2d: ec:4b:45:b8:93:c9:d6:34:95:50:3f:de:09:b8:9a: 2f:63:0c:94:8c:91:1b:19:22:99:63:1c:97:59:20: c6:68:d0:c5:35:f2:0c:00:27:1c:60:c7:e8:f1:58: f0:31:c6:9e:b0:54:8d:b0:69:b4:9b:e6:88:b8:44: f3:37:85:0b:72:fa:d7:3f:88:47:65:87:d3:2c:71: 47:0a:56:3f:22:2c:4e:5e:b7:1c:32:a9:aa:dc:08: 16:68:50:c2:1c:e0:5d:00:20:a6:1b:c5:e2:7f:a2: 24:85:35:57:8a:1c:bf:05:d6:dd:b8:4d:49:6a:59: a6:7c:6c:8d:c8:47:12:56:ed:a5:dc:5a:7b:fb:1d: de:c0:ab:c5:b7:c4:27:7b:57:b9:5d:60:ef:f0:d5: cb:72:b8:6c:a3:13:2a:27:cc:14:3c:98:8f:7a:26: ad:36:ed:c5:ac:b3:0a:e0:c7:db:a3:04:3c:23:3a: 90:53:1c:e9:ea:5a:2b:0a:38:6c:56:07:d8:20:84: 21:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:93:F2:48:25:10:F9:99:1A:71:2A:B7:F2:46:6D:31:1D:8B:48:4E X509v3 Authority Key Identifier: keyid:EF:C0:FE:32:8F:7B:86:F9:C6:82:F4:FE:37:36:0C:4E:3A:D9:94:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/3130332e3135332e3132372e302f32342d3234203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.127.0/24 Signature Algorithm: sha256WithRSAEncryption 94:80:d8:ad:6a:d9:9f:06:a7:12:a1:80:c1:75:c8:e4:57:e1: c4:6a:8b:e0:38:78:b4:b0:40:21:fd:c5:9c:09:59:24:1d:78: b5:bd:d9:7a:9f:06:cf:7c:7e:56:b6:b3:a6:08:31:ff:ee:a2: f0:0a:24:03:e4:4f:c2:32:de:e6:a4:f3:11:14:6d:51:9d:4f: fa:ad:55:ce:77:de:aa:3a:57:0c:7f:fe:9c:14:e2:c7:60:39: c2:49:fa:1c:b9:1d:94:5d:db:20:65:72:1e:71:86:ed:80:99: fb:6f:b0:a0:ee:1d:b5:73:16:91:3a:e5:5b:59:e9:23:e3:e4: cd:c3:c6:0f:86:5d:bf:f0:de:37:9a:54:67:b7:72:33:47:16: 43:68:ce:91:9f:b7:e9:aa:0a:56:64:a1:59:1c:12:ab:bc:cb: 1b:e3:b7:71:95:71:6a:90:81:38:ee:1b:dd:d8:35:2f:69:42: 6a:a8:96:c9:51:6f:63:55:ae:93:36:f8:c4:17:03:72:c0:e4: a8:bb:48:64:cf:60:d2:91:b7:3c:89:77:bc:81:41:8d:f1:f5: 67:8c:25:fb:61:f7:a5:a6:bb:08:51:bd:09:21:ff:40:ec:4f: f9:ec:d1:53:08:80:2b:83:c4:18:af:fd:71:84:97:1b:81:1f: 8f:22:61:a1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKxvA2FIoRuNGCJaNr1HEfsT7KKIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUZDMEZFMzI4RjdCODZGOUM2ODJGNEZFMzczNjBDNEUz QUQ5OTQyQzAeFw0yNDAyMDYxMjU1MDBaFw0yNTAyMDQxMzAwMDBaMDMxMTAvBgNV BAMTKDI4OTNGMjQ4MjUxMEY5OTkxQTcxMkFCN0YyNDY2RDMxMUQ4QjQ4NEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNNt5csNSkgD6rWdh3xLdNHD4j Vo9g2mCW1Q95UI6FH/oO7GoyPnLQ37pXuio0NS7mToKky761C7+SLexLRbiTydY0 lVA/3gm4mi9jDJSMkRsZIpljHJdZIMZo0MU18gwAJxxgx+jxWPAxxp6wVI2wabSb 5oi4RPM3hQty+tc/iEdlh9MscUcKVj8iLE5etxwyqarcCBZoUMIc4F0AIKYbxeJ/ oiSFNVeKHL8F1t24TUlqWaZ8bI3IRxJW7aXcWnv7Hd7Aq8W3xCd7V7ldYO/w1cty uGyjEyonzBQ8mI96Jq027cWsswrgx9ujBDwjOpBTHOnqWisKOGxWB9gghCERAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUKJPySCUQ+ZkacSq38kZtMR2LSE4wHwYDVR0j BBgwFoAU78D+Mo97hvnGgvT+NzYMTjrZlCwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODNlZDdhYi0xYWM5LTRmNDItYWNkZC01MzU1N2FjN2IzZjMvMC9FRkMwRkUzMjhG N0I4NkY5QzY4MkY0RkUzNzM2MEM0RTNBRDk5NDJDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUZDMEZFMzI4RjdCODZGOUM2ODJGNEZFMzczNjBDNEUzQUQ5 OTQyQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4M2VkN2FiLTFhYzktNGY0Mi1h Y2RkLTUzNTU3YWM3YjNmMy8wLzMxMzAzMzJlMzEzNTMzMmUzMTMyMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnmX8wDQYJ KoZIhvcNAQELBQADggEBAJSA2K1q2Z8GpxKhgMF1yORX4cRqi+A4eLSwQCH9xZwJ WSQdeLW92XqfBs98fla2s6YIMf/uovAKJAPkT8Iy3uak8xEUbVGdT/qtVc533qo6 Vwx//pwU4sdgOcJJ+hy5HZRd2yBlch5xhu2AmftvsKDuHbVzFpE65VtZ6SPj5M3D xg+GXb/w3jeaVGe3cjNHFkNozpGft+mqClZkoVkcEqu8yxvjt3GVcWqQgTjuG93Y NS9pQmqolslRb2NVrpM2+MQXA3LA5Ki7SGTPYNKRtzyJd7yBQY3x9WeMJfth96Wm uwhRvQkh/0DsT/ns0VMIgCuDxBiv/XGElxuBH48iYaE= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:11 2024 by rpki-client on console-fra.rpki-client.org