$ rpki-client -vvf repo-rpki.idnic.net/repo/44469ee9-814e-457a-bb13-a5c4b6f1b5af/0/3130332e3138342e36362e302f32332d3234203d3e20313439363730.roa File: 3130332e3138342e36362e302f32332d3234203d3e20313439363730.roa (raw, json) Hash identifier: GAmzCAzoPI+4HcsABxBZWaJGPyauDprmMRh/jUFWaeU= Subject key identifier: 5D:56:07:25:20:FA:4B:21:05:39:0F:D0:78:44:FE:CF:B6:E3:5A:67 Certificate issuer: /CN=28E2707085C2950AF9267465A3801841D8077215 Certificate serial: 2255C0475972556332723BF8A05293E38953CACA Authority key identifier: 28:E2:70:70:85:C2:95:0A:F9:26:74:65:A3:80:18:41:D8:07:72:15 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28E2707085C2950AF9267465A3801841D8077215.cer Subject info access: rsync://repo-rpki.idnic.net/repo/44469ee9-814e-457a-bb13-a5c4b6f1b5af/0/3130332e3138342e36362e302f32332d3234203d3e20313439363730.roa Signing time: Tue 16 Jan 2024 04:00:25 +0000 ROA not before: Tue 16 Jan 2024 03:55:25 +0000 ROA not after: Tue 14 Jan 2025 04:00:25 +0000 asID: 149670 IP address blocks: 103.184.66.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/44469ee9-814e-457a-bb13-a5c4b6f1b5af/0/28E2707085C2950AF9267465A3801841D8077215.crl rsync://repo-rpki.idnic.net/repo/44469ee9-814e-457a-bb13-a5c4b6f1b5af/0/28E2707085C2950AF9267465A3801841D8077215.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28E2707085C2950AF9267465A3801841D8077215.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:55:c0:47:59:72:55:63:32:72:3b:f8:a0:52:93:e3:89:53:ca:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28E2707085C2950AF9267465A3801841D8077215 Validity Not Before: Jan 16 03:55:25 2024 GMT Not After : Jan 14 04:00:25 2025 GMT Subject: CN=5D56072520FA4B2105390FD07844FECFB6E35A67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:dc:ad:fe:8a:35:d1:a3:ca:6e:a3:fe:b7:80: 09:3e:01:c1:35:08:27:ca:39:ed:17:fe:f7:5d:9e: 71:cf:7c:d0:90:71:9c:e4:a8:1d:c0:8e:53:32:0b: 7a:aa:57:f7:d3:a9:2e:23:f1:df:04:40:08:04:8b: 84:ab:f3:57:14:9e:50:88:80:93:53:ee:84:37:8a: 2d:2b:73:26:52:a2:a0:f2:c4:f8:bc:a4:8a:95:70: a4:41:aa:55:f4:40:28:16:b3:40:b3:f3:35:1b:b3: b5:09:51:1a:1c:29:48:fe:34:10:55:e0:e0:ab:b4: 41:38:ca:0d:1a:14:a8:d4:79:94:bd:4c:9e:94:28: 0b:ec:e5:69:7d:ca:f5:c0:63:1f:ba:59:d8:7e:dc: 02:f5:3c:84:56:77:06:ee:85:d0:95:52:2b:62:d8: bb:69:3a:d7:58:8f:98:bc:86:e8:a7:10:00:20:4a: ba:de:12:71:15:ed:21:b7:4b:4f:b6:d6:75:43:48: 7f:5f:c1:d6:77:d8:24:19:61:20:92:6e:c6:7b:4b: 40:59:bf:cf:13:e1:8a:b0:c7:9c:45:c5:29:44:fb: 0f:17:29:01:dc:16:d2:61:80:23:59:52:49:b2:34: 84:63:37:88:3d:f3:93:36:8b:bb:e2:da:28:a6:62: 3d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:56:07:25:20:FA:4B:21:05:39:0F:D0:78:44:FE:CF:B6:E3:5A:67 X509v3 Authority Key Identifier: keyid:28:E2:70:70:85:C2:95:0A:F9:26:74:65:A3:80:18:41:D8:07:72:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/44469ee9-814e-457a-bb13-a5c4b6f1b5af/0/28E2707085C2950AF9267465A3801841D8077215.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28E2707085C2950AF9267465A3801841D8077215.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44469ee9-814e-457a-bb13-a5c4b6f1b5af/0/3130332e3138342e36362e302f32332d3234203d3e20313439363730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.66.0/23 Signature Algorithm: sha256WithRSAEncryption 64:93:4c:d5:5f:d9:91:2f:75:c6:cc:a3:df:69:7e:35:d2:06: 62:bb:61:cb:56:51:36:e7:9c:8f:a5:43:58:25:50:4e:b1:a4: c7:77:c0:9e:19:24:54:47:4c:f0:40:46:1f:4d:f5:8e:c2:9a: 63:e6:7c:00:5d:2c:0b:f8:d0:75:57:61:fc:da:11:ce:bc:ca: 9d:c4:b2:8d:90:00:1a:3c:dc:bc:d8:0f:2d:5d:d8:5f:5f:7e: 5d:8e:82:90:6d:db:61:b1:e7:9e:ae:bc:22:d8:22:1e:bb:92: 66:60:97:2c:de:e4:2b:24:2d:de:43:ca:97:78:a5:ca:49:cc: 96:e3:b0:ac:26:8a:75:9e:72:8e:0a:c1:04:91:a9:99:07:af: 0e:fc:85:a6:c5:8d:ae:b9:37:63:70:b0:ee:83:7f:2e:ee:a1: 98:69:b6:3c:21:94:cb:95:7d:b6:7f:45:e8:9a:2b:b5:af:03: a7:d1:80:f5:eb:60:b9:49:51:33:2e:4f:3b:06:c7:6f:f7:ae: ee:e2:dc:57:10:0d:b8:0b:fe:d3:b3:3d:2d:8f:71:b6:c9:90: e0:3c:e0:8c:ec:b4:a5:18:7d:4c:c8:c8:99:bf:a8:83:c4:1a: 9b:23:da:1a:57:d2:8b:7e:29:cc:60:2e:0c:39:60:d2:1e:9d: 26:84:53:29 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIlXAR1lyVWMycjv4oFKT44lTysowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjhFMjcwNzA4NUMyOTUwQUY5MjY3NDY1QTM4MDE4NDFE ODA3NzIxNTAeFw0yNDAxMTYwMzU1MjVaFw0yNTAxMTQwNDAwMjVaMDMxMTAvBgNV BAMTKDVENTYwNzI1MjBGQTRCMjEwNTM5MEZEMDc4NDRGRUNGQjZFMzVBNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB3K3+ijXRo8puo/63gAk+AcE1 CCfKOe0X/vddnnHPfNCQcZzkqB3AjlMyC3qqV/fTqS4j8d8EQAgEi4Sr81cUnlCI gJNT7oQ3ii0rcyZSoqDyxPi8pIqVcKRBqlX0QCgWs0Cz8zUbs7UJURocKUj+NBBV 4OCrtEE4yg0aFKjUeZS9TJ6UKAvs5Wl9yvXAYx+6Wdh+3AL1PIRWdwbuhdCVUiti 2LtpOtdYj5i8huinEAAgSrreEnEV7SG3S0+21nVDSH9fwdZ32CQZYSCSbsZ7S0BZ v88T4Yqwx5xFxSlE+w8XKQHcFtJhgCNZUkmyNIRjN4g985M2i7vi2iimYj3XAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXVYHJSD6SyEFOQ/QeET+z7bjWmcwHwYDVR0j BBgwFoAUKOJwcIXClQr5JnRlo4AYQdgHchUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDQ2OWVlOS04MTRlLTQ1N2EtYmIxMy1hNWM0YjZmMWI1YWYvMC8yOEUyNzA3MDg1 QzI5NTBBRjkyNjc0NjVBMzgwMTg0MUQ4MDc3MjE1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjhFMjcwNzA4NUMyOTUwQUY5MjY3NDY1QTM4MDE4NDFEODA3 NzIxNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0NDY5ZWU5LTgxNGUtNDU3YS1i YjEzLWE1YzRiNmYxYjVhZi8wLzMxMzAzMzJlMzEzODM0MmUzNjM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM5MzYzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7hCMA0GCSqG SIb3DQEBCwUAA4IBAQBkk0zVX9mRL3XGzKPfaX410gZiu2HLVlE255yPpUNYJVBO saTHd8CeGSRUR0zwQEYfTfWOwppj5nwAXSwL+NB1V2H82hHOvMqdxLKNkAAaPNy8 2A8tXdhfX35djoKQbdthseeerrwi2CIeu5JmYJcs3uQrJC3eQ8qXeKXKScyW47Cs Jop1nnKOCsEEkamZB68O/IWmxY2uuTdjcLDug38u7qGYabY8IZTLlX22f0Xomiu1 rwOn0YD162C5SVEzLk87Bsdv967u4txXEA24C/7Tsz0tj3G2yZDgPOCM7LSlGH1M yMiZv6iDxBqbI9oaV9KLfinMYC4MOWDSHp0mhFMp -----END CERTIFICATE-----Generated at Wed Nov 20 18:59:25 2024 by rpki-client on console-ams.rpki-client.org