$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/3130332e3134372e35332e302f32342d3234203d3e20313339393730.roa File: 3130332e3134372e35332e302f32342d3234203d3e20313339393730.roa (raw, json) Hash identifier: HIoJThuHqvo3723nMTnvAhmWLc53frjDsf5GVSadtxs= Subject key identifier: 2E:40:4D:A7:DA:FE:58:2B:9F:A1:A8:E2:20:CE:F7:21:E3:7B:FC:F1 Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 4D86960EAC27D2B9F8EB1592F80E7D436829BF34 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/3130332e3134372e35332e302f32342d3234203d3e20313339393730.roa Signing time: Mon 05 Aug 2024 04:29:58 +0000 ROA not before: Mon 05 Aug 2024 04:24:58 +0000 ROA not after: Mon 04 Aug 2025 04:29:58 +0000 asID: 139970 IP address blocks: 103.147.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:86:96:0e:ac:27:d2:b9:f8:eb:15:92:f8:0e:7d:43:68:29:bf:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Aug 5 04:24:58 2024 GMT Not After : Aug 4 04:29:58 2025 GMT Subject: CN=2E404DA7DAFE582B9FA1A8E220CEF721E37BFCF1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:4a:fa:03:f9:77:8c:08:48:12:b8:a0:6b:70: 9b:97:99:b5:23:8e:8a:6d:2d:ed:52:04:fd:e8:cc: 73:a6:80:4d:b4:b2:01:f2:b8:b8:a7:20:41:05:fa: a9:67:94:af:ee:3a:f6:69:58:07:5f:35:3a:9d:25: 17:61:7f:ff:cf:6f:ae:36:b6:50:b6:5f:11:2f:9d: ab:07:38:ff:3d:ea:0c:59:d2:d7:c4:21:f1:58:c0: 30:92:d0:6c:cd:92:01:53:5c:47:44:1a:3f:2e:73: 0d:d2:95:f1:12:41:d3:80:73:ec:8e:f1:21:d6:4d: dd:87:4a:b7:21:bd:40:c8:de:d5:43:7d:78:30:32: e2:de:6b:81:df:d3:a1:b0:ea:b1:08:08:6d:46:76: 2f:fa:20:d6:bd:17:23:be:a0:f0:8d:6c:d0:0f:a9: 18:7e:e9:c3:59:cf:b9:84:66:dd:eb:ae:61:33:7b: 44:79:f6:be:18:af:3a:93:ec:f9:0f:c3:97:fa:73: 20:1f:ff:1b:aa:70:08:31:94:99:53:16:6a:ac:48: 8f:5d:db:32:e2:e3:b9:69:cf:72:a9:7d:78:92:57: 2e:af:1e:af:af:eb:c3:b7:2a:6c:e5:d7:99:9f:ca: 37:33:9d:f1:02:40:b6:bf:72:c3:db:62:81:0d:56: 79:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:40:4D:A7:DA:FE:58:2B:9F:A1:A8:E2:20:CE:F7:21:E3:7B:FC:F1 X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/3130332e3134372e35332e302f32342d3234203d3e20313339393730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.53.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:39:31:07:3e:42:0b:66:b4:cb:7e:25:d7:6c:c6:fa:37:24: e3:58:a2:4b:90:4f:29:2a:13:9f:56:6b:d5:90:12:1b:22:a5: 48:9b:7a:ec:1e:15:8d:12:aa:6e:bf:79:e9:ee:8f:bb:f3:2b: d0:39:8b:86:69:75:d7:56:37:f2:d6:ae:2a:43:8f:98:db:79: cf:49:13:50:48:e0:bf:a0:88:8b:c7:65:32:33:6e:21:7a:47: b4:e0:a1:86:46:2f:b3:e9:e0:98:ef:0b:fa:b3:15:66:3a:62: 0b:45:8d:51:73:67:bc:ed:30:f6:c9:8e:c2:0c:ff:12:25:dc: 89:30:b6:a6:a0:5a:c5:a4:66:89:3f:c9:c6:8c:66:77:64:fc: 98:1f:cf:55:57:01:71:4d:60:88:ed:3c:23:57:a7:3b:9e:cb: c9:ed:6d:94:7c:60:de:8e:68:10:8f:58:1f:e3:96:5e:13:27: f2:54:21:24:33:61:f8:f9:e7:9a:8b:03:e2:06:48:a9:b5:5a: 69:86:bb:9a:8d:70:94:83:09:e7:99:55:29:63:a0:a9:4e:36: 56:52:2c:39:07:85:d3:c6:e9:8e:37:b2:6c:36:59:93:47:10: cd:88:3e:e0:52:7d:9b:33:ef:3a:e3:fd:24:1e:58:4b:1c:48: 7a:f4:a2:a4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTYaWDqwn0rn46xWS+A59Q2gpvzQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNDA4MDUwNDI0NThaFw0yNTA4MDQwNDI5NThaMDMxMTAvBgNV BAMTKDJFNDA0REE3REFGRTU4MkI5RkExQThFMjIwQ0VGNzIxRTM3QkZDRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqSvoD+XeMCEgSuKBrcJuXmbUj joptLe1SBP3ozHOmgE20sgHyuLinIEEF+qlnlK/uOvZpWAdfNTqdJRdhf//Pb642 tlC2XxEvnasHOP896gxZ0tfEIfFYwDCS0GzNkgFTXEdEGj8ucw3SlfESQdOAc+yO 8SHWTd2HSrchvUDI3tVDfXgwMuLea4Hf06Gw6rEICG1Gdi/6INa9FyO+oPCNbNAP qRh+6cNZz7mEZt3rrmEze0R59r4YrzqT7PkPw5f6cyAf/xuqcAgxlJlTFmqsSI9d 2zLi47lpz3KpfXiSVy6vHq+v68O3Kmzl15mfyjcznfECQLa/csPbYoENVnnjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQULkBNp9r+WCufoajiIM73IeN7/PEwHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMxMzAzMzJlMzEzNDM3MmUzNTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5M1MA0GCSqG SIb3DQEBCwUAA4IBAQBtOTEHPkILZrTLfiXXbMb6NyTjWKJLkE8pKhOfVmvVkBIb IqVIm3rsHhWNEqpuv3np7o+78yvQOYuGaXXXVjfy1q4qQ4+Y23nPSRNQSOC/oIiL x2UyM24heke04KGGRi+z6eCY7wv6sxVmOmILRY1Rc2e87TD2yY7CDP8SJdyJMLam oFrFpGaJP8nGjGZ3ZPyYH89VVwFxTWCI7TwjV6c7nsvJ7W2UfGDejmgQj1gf45Ze EyfyVCEkM2H4+eeaiwPiBkiptVpphruajXCUgwnnmVUpY6CpTjZWUiw5B4XTxumO N7JsNlmTRxDNiD7gUn2bM+864/0kHlhLHEh69KKk -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:32 2024 by rpki-client on console-fra.rpki-client.org