$ rpki-client -vvf repo-rpki.idnic.net/repo/40457d20-023a-4509-bb4a-62c86929dd97/0/3130332e3233302e3138382e302f32332d3234203d3e20313333333439.roa File: 3130332e3233302e3138382e302f32332d3234203d3e20313333333439.roa (raw, json) Hash identifier: HSCUNLaKeqcd7Fit+HRGDE0GHJLW2sIkUfc8pivqrjg= Subject key identifier: B1:80:3B:F9:EC:D0:B1:D5:AE:FE:68:FA:C5:0A:2C:CE:80:81:A2:91 Certificate issuer: /CN=4960A8427FEA5814EF9E80EF3786E0CAAE063745 Certificate serial: 1A455A0B56B175E9A734ECC3624B4B24D5B54FE8 Authority key identifier: 49:60:A8:42:7F:EA:58:14:EF:9E:80:EF:37:86:E0:CA:AE:06:37:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4960A8427FEA5814EF9E80EF3786E0CAAE063745.cer Subject info access: rsync://repo-rpki.idnic.net/repo/40457d20-023a-4509-bb4a-62c86929dd97/0/3130332e3233302e3138382e302f32332d3234203d3e20313333333439.roa Signing time: Thu 12 Sep 2024 08:25:17 +0000 ROA not before: Thu 12 Sep 2024 08:20:17 +0000 ROA not after: Thu 11 Sep 2025 08:25:17 +0000 asID: 133349 IP address blocks: 103.230.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/40457d20-023a-4509-bb4a-62c86929dd97/0/4960A8427FEA5814EF9E80EF3786E0CAAE063745.crl rsync://repo-rpki.idnic.net/repo/40457d20-023a-4509-bb4a-62c86929dd97/0/4960A8427FEA5814EF9E80EF3786E0CAAE063745.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4960A8427FEA5814EF9E80EF3786E0CAAE063745.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:45:5a:0b:56:b1:75:e9:a7:34:ec:c3:62:4b:4b:24:d5:b5:4f:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4960A8427FEA5814EF9E80EF3786E0CAAE063745 Validity Not Before: Sep 12 08:20:17 2024 GMT Not After : Sep 11 08:25:17 2025 GMT Subject: CN=B1803BF9ECD0B1D5AEFE68FAC50A2CCE8081A291 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8c:5e:da:de:df:b7:27:2c:a3:85:06:ee:f2: 2f:d2:5d:21:6b:88:66:1c:d0:3d:ad:43:02:2d:ba: 66:de:11:e7:31:6d:25:66:ab:61:17:80:0b:30:0b: ca:f2:05:f4:f8:20:59:77:4e:8e:b0:33:c0:96:35: 01:7c:22:33:50:61:af:3a:63:9e:70:c5:17:a5:2d: 38:0e:6e:44:fc:5a:63:d1:02:6d:46:cb:a4:2d:d2: 79:15:e9:42:a1:fd:4e:12:b1:79:9d:60:4d:61:85: 2b:cc:96:91:fd:7a:2b:e4:c6:23:5a:2e:2a:97:f6: 17:76:c6:db:a7:99:94:e0:21:df:d6:b2:c7:e9:f1: 8e:fa:93:1d:a5:bc:33:b3:5b:8c:85:67:e9:45:dc: 84:52:21:93:eb:34:44:c1:82:21:f0:45:d4:02:17: ff:9f:4c:41:37:dc:0f:c4:2d:3b:e3:ad:64:17:a3: e2:20:a0:26:d3:05:1d:15:d8:d1:d2:91:1d:87:dd: 96:d1:27:46:e1:b4:57:11:29:4e:89:fd:e4:71:7a: c6:7a:dc:d5:64:ce:5d:63:af:37:d9:67:f1:20:ea: b1:e0:c4:38:1e:37:67:10:af:03:c7:38:35:6f:8d: 6f:cd:95:8f:d3:92:cf:c4:33:26:56:ff:d5:0a:39: 39:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:80:3B:F9:EC:D0:B1:D5:AE:FE:68:FA:C5:0A:2C:CE:80:81:A2:91 X509v3 Authority Key Identifier: keyid:49:60:A8:42:7F:EA:58:14:EF:9E:80:EF:37:86:E0:CA:AE:06:37:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/40457d20-023a-4509-bb4a-62c86929dd97/0/4960A8427FEA5814EF9E80EF3786E0CAAE063745.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4960A8427FEA5814EF9E80EF3786E0CAAE063745.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/40457d20-023a-4509-bb4a-62c86929dd97/0/3130332e3233302e3138382e302f32332d3234203d3e20313333333439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.230.188.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:ad:83:4b:b3:bd:9a:a0:56:cb:2c:8f:f8:30:5a:c1:f9:38: 06:f8:a2:c9:17:e1:58:ba:b4:1a:cf:aa:ef:60:4a:94:ab:6d: 5b:c0:b7:19:d9:15:b1:2d:6c:bd:a9:5e:da:13:dd:9c:e6:c4: 3d:3c:65:bb:e1:55:dd:fa:fd:40:c5:6f:89:f4:8a:3d:5a:bc: f2:ad:9c:a4:60:94:05:41:6d:0b:62:6b:70:33:ac:b8:0a:f3: 53:91:6c:6d:9f:89:71:d2:f4:e2:e0:b9:dd:61:c3:03:84:7f: b9:26:02:10:98:b4:2d:da:74:d6:9f:9f:3e:19:97:83:7f:f0: ca:60:54:97:82:76:36:15:47:ec:cc:08:87:f7:d9:62:6c:81: 9d:94:e3:53:73:a3:8e:e2:9b:e7:76:6a:e3:2f:5c:01:56:3f: 23:1b:43:4d:95:74:8c:a4:26:9f:02:2f:09:36:45:0d:6d:01: d3:0a:56:67:34:97:a4:e8:f9:25:1f:df:1e:cb:94:fe:63:72: b9:c3:9e:75:e6:f3:22:b5:ff:72:3e:76:01:28:f9:0a:58:96: ca:87:b5:19:11:8f:5c:d2:a8:b4:9b:e3:be:0a:2f:b1:f4:23: 23:c9:bb:96:ae:1c:bf:e0:7e:23:4c:1e:b3:55:dd:94:28:c2: 4a:4d:6d:d3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGkVaC1axdemnNOzDYktLJNW1T+gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDk2MEE4NDI3RkVBNTgxNEVGOUU4MEVGMzc4NkUwQ0FB RTA2Mzc0NTAeFw0yNDA5MTIwODIwMTdaFw0yNTA5MTEwODI1MTdaMDMxMTAvBgNV BAMTKEIxODAzQkY5RUNEMEIxRDVBRUZFNjhGQUM1MEEyQ0NFODA4MUEyOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4jF7a3t+3JyyjhQbu8i/SXSFr iGYc0D2tQwItumbeEecxbSVmq2EXgAswC8ryBfT4IFl3To6wM8CWNQF8IjNQYa86 Y55wxRelLTgObkT8WmPRAm1Gy6Qt0nkV6UKh/U4SsXmdYE1hhSvMlpH9eivkxiNa LiqX9hd2xtunmZTgId/Wssfp8Y76kx2lvDOzW4yFZ+lF3IRSIZPrNETBgiHwRdQC F/+fTEE33A/ELTvjrWQXo+IgoCbTBR0V2NHSkR2H3ZbRJ0bhtFcRKU6J/eRxesZ6 3NVkzl1jrzfZZ/Eg6rHgxDgeN2cQrwPHODVvjW/NlY/Tks/EMyZW/9UKOTmhAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUsYA7+ezQsdWu/mj6xQoszoCBopEwHwYDVR0j BBgwFoAUSWCoQn/qWBTvnoDvN4bgyq4GN0UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MDQ1N2QyMC0wMjNhLTQ1MDktYmI0YS02MmM4NjkyOWRkOTcvMC80OTYwQTg0MjdG RUE1ODE0RUY5RTgwRUYzNzg2RTBDQUFFMDYzNzQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDk2MEE4NDI3RkVBNTgxNEVGOUU4MEVGMzc4NkUwQ0FBRTA2 Mzc0NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQwNDU3ZDIwLTAyM2EtNDUwOS1i YjRhLTYyYzg2OTI5ZGQ5Ny8wLzMxMzAzMzJlMzIzMzMwMmUzMTM4MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzMzMzM0Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn5rwwDQYJ KoZIhvcNAQELBQADggEBAHutg0uzvZqgVsssj/gwWsH5OAb4oskX4Vi6tBrPqu9g SpSrbVvAtxnZFbEtbL2pXtoT3ZzmxD08ZbvhVd36/UDFb4n0ij1avPKtnKRglAVB bQtia3AzrLgK81ORbG2fiXHS9OLgud1hwwOEf7kmAhCYtC3adNafnz4Zl4N/8Mpg VJeCdjYVR+zMCIf32WJsgZ2U41Nzo47im+d2auMvXAFWPyMbQ02VdIykJp8CLwk2 RQ1tAdMKVmc0l6To+SUf3x7LlP5jcrnDnnXm8yK1/3I+dgEo+QpYlsqHtRkRj1zS qLSb474KL7H0IyPJu5auHL/gfiNMHrNV3ZQowkpNbdM= -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:56 2024 by rpki-client on console-fra.rpki-client.org