$ rpki-client -vvf repo-rpki.idnic.net/repo/483a1db2-b11e-4cdc-a25c-0f124cae70ee/0/3130332e3136342e3137342e302f32332d3234203d3e203538383231.roa File: 3130332e3136342e3137342e302f32332d3234203d3e203538383231.roa (raw, json) Hash identifier: eCE1Vldg+6Zu0UbUoAu76XxJnAdggVm2QDq2eX1tBXk= Subject key identifier: EF:68:49:30:B8:F7:E1:F2:93:65:58:3B:D1:BF:C0:76:09:06:8E:65 Certificate issuer: /CN=FF467F8613654288ED5F52ACB466941450FA5DF8 Certificate serial: 71151D951E54388F23C198F6F31B8AEF44F0A286 Authority key identifier: FF:46:7F:86:13:65:42:88:ED:5F:52:AC:B4:66:94:14:50:FA:5D:F8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF467F8613654288ED5F52ACB466941450FA5DF8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/483a1db2-b11e-4cdc-a25c-0f124cae70ee/0/3130332e3136342e3137342e302f32332d3234203d3e203538383231.roa Signing time: Thu 16 May 2024 06:00:00 +0000 ROA not before: Thu 16 May 2024 05:55:00 +0000 ROA not after: Thu 15 May 2025 06:00:00 +0000 asID: 58821 IP address blocks: 103.164.174.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/483a1db2-b11e-4cdc-a25c-0f124cae70ee/0/FF467F8613654288ED5F52ACB466941450FA5DF8.crl rsync://repo-rpki.idnic.net/repo/483a1db2-b11e-4cdc-a25c-0f124cae70ee/0/FF467F8613654288ED5F52ACB466941450FA5DF8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF467F8613654288ED5F52ACB466941450FA5DF8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 17:02:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:15:1d:95:1e:54:38:8f:23:c1:98:f6:f3:1b:8a:ef:44:f0:a2:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF467F8613654288ED5F52ACB466941450FA5DF8 Validity Not Before: May 16 05:55:00 2024 GMT Not After : May 15 06:00:00 2025 GMT Subject: CN=EF684930B8F7E1F29365583BD1BFC07609068E65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:fd:cb:df:17:ea:b4:2a:86:fe:79:73:47:88: 5a:11:4a:12:c9:04:8d:8d:51:7a:50:4c:6b:72:03: ea:a5:c2:d2:e6:ec:8e:5a:87:47:8e:95:3b:32:8f: f8:94:60:17:b5:5e:61:5f:91:53:bd:fd:b8:c0:65: 9b:6e:95:ad:b5:6d:2f:af:f7:42:c3:6f:c8:3e:84: ac:7c:40:d1:fe:e4:a9:20:b4:2f:8b:1c:18:11:38: 04:cb:37:a4:99:4e:d9:b2:48:bc:3c:92:15:ad:7f: 8b:f8:1c:c0:50:ae:75:ea:77:56:5b:b2:ff:34:d0: ff:27:98:d7:1e:be:31:a2:58:27:99:d3:c3:62:44: ba:55:df:af:af:e7:b7:1b:28:2f:22:95:6e:51:e8: 02:0b:7d:71:8e:ab:80:97:75:20:08:3d:be:64:8e: a8:ac:37:38:11:04:b0:3b:c7:d2:05:eb:9a:f2:b7: 03:26:e5:83:8a:c1:64:ca:cf:12:d3:71:56:fa:46: 0d:e8:18:20:72:fb:61:f7:d9:7a:94:2d:22:23:0c: 69:57:d1:1d:af:24:ff:76:cd:59:40:23:bd:c1:ea: 26:3c:31:22:21:ef:e5:a3:8d:f0:4c:b1:2c:35:6b: 2f:76:57:b9:12:d2:2d:51:e0:d2:72:14:51:54:1e: f3:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:68:49:30:B8:F7:E1:F2:93:65:58:3B:D1:BF:C0:76:09:06:8E:65 X509v3 Authority Key Identifier: keyid:FF:46:7F:86:13:65:42:88:ED:5F:52:AC:B4:66:94:14:50:FA:5D:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/483a1db2-b11e-4cdc-a25c-0f124cae70ee/0/FF467F8613654288ED5F52ACB466941450FA5DF8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF467F8613654288ED5F52ACB466941450FA5DF8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/483a1db2-b11e-4cdc-a25c-0f124cae70ee/0/3130332e3136342e3137342e302f32332d3234203d3e203538383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.174.0/23 Signature Algorithm: sha256WithRSAEncryption 78:e8:c9:19:b5:b3:26:c3:fb:46:91:32:2a:04:38:70:0f:3a: 9e:10:a0:bf:6c:e8:13:3c:6a:98:d2:c0:02:f2:2d:c5:11:e5: 7a:b4:a7:3c:9b:c0:2f:9b:11:d4:60:a5:1f:8e:43:20:e9:d0: 0a:6b:27:9a:61:d1:17:c3:ec:7c:6d:2f:24:26:f6:d6:f1:d9: 0e:51:ae:d4:12:64:b4:08:c7:a1:8f:1e:0e:0f:67:f5:6f:d2: e2:88:66:ff:7e:86:ee:a0:d4:73:09:a0:f8:90:b8:9a:47:b4: 54:56:a1:fa:46:24:c0:0e:cf:a5:bc:ce:68:60:17:67:aa:ac: 6f:c5:d4:9b:67:5b:43:89:4a:cc:29:60:ee:cd:bb:8f:df:79: 9b:51:79:d9:be:56:79:ff:9d:76:35:55:95:7e:b1:ef:3f:ec: 67:d9:4c:57:0f:bc:9a:7d:67:13:e0:7d:69:68:1f:8f:0f:3e: 06:4e:31:03:46:6c:b5:cf:64:6c:58:40:70:45:58:e3:c1:c3: fc:a6:93:36:71:9a:dc:af:70:13:ab:d6:c8:a5:64:fc:99:ca: 34:dc:11:86:47:f1:d7:d3:d5:30:9a:2b:04:fa:da:b7:4e:5d: c9:57:93:68:d9:ab:f0:03:4b:8b:44:cb:c4:5f:fe:29:8f:f5: d8:59:fa:da -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcRUdlR5UOI8jwZj28xuK70TwooYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkY0NjdGODYxMzY1NDI4OEVENUY1MkFDQjQ2Njk0MTQ1 MEZBNURGODAeFw0yNDA1MTYwNTU1MDBaFw0yNTA1MTUwNjAwMDBaMDMxMTAvBgNV BAMTKEVGNjg0OTMwQjhGN0UxRjI5MzY1NTgzQkQxQkZDMDc2MDkwNjhFNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG/cvfF+q0Kob+eXNHiFoRShLJ BI2NUXpQTGtyA+qlwtLm7I5ah0eOlTsyj/iUYBe1XmFfkVO9/bjAZZtula21bS+v 90LDb8g+hKx8QNH+5KkgtC+LHBgROATLN6SZTtmySLw8khWtf4v4HMBQrnXqd1Zb sv800P8nmNcevjGiWCeZ08NiRLpV36+v57cbKC8ilW5R6AILfXGOq4CXdSAIPb5k jqisNzgRBLA7x9IF65rytwMm5YOKwWTKzxLTcVb6Rg3oGCBy+2H32XqULSIjDGlX 0R2vJP92zVlAI73B6iY8MSIh7+WjjfBMsSw1ay92V7kS0i1R4NJyFFFUHvOnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU72hJMLj34fKTZVg70b/AdgkGjmUwHwYDVR0j BBgwFoAU/0Z/hhNlQojtX1KstGaUFFD6XfgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ODNhMWRiMi1iMTFlLTRjZGMtYTI1Yy0wZjEyNGNhZTcwZWUvMC9GRjQ2N0Y4NjEz NjU0Mjg4RUQ1RjUyQUNCNDY2OTQxNDUwRkE1REY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkY0NjdGODYxMzY1NDI4OEVENUY1MkFDQjQ2Njk0MTQ1MEZB NURGOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ4M2ExZGIyLWIxMWUtNGNkYy1h MjVjLTBmMTI0Y2FlNzBlZS8wLzMxMzAzMzJlMzEzNjM0MmUzMTM3MzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNTM4MzgzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6SuMA0GCSqG SIb3DQEBCwUAA4IBAQB46MkZtbMmw/tGkTIqBDhwDzqeEKC/bOgTPGqY0sAC8i3F EeV6tKc8m8AvmxHUYKUfjkMg6dAKayeaYdEXw+x8bS8kJvbW8dkOUa7UEmS0CMeh jx4OD2f1b9LiiGb/fobuoNRzCaD4kLiaR7RUVqH6RiTADs+lvM5oYBdnqqxvxdSb Z1tDiUrMKWDuzbuP33mbUXnZvlZ5/512NVWVfrHvP+xn2UxXD7yafWcT4H1paB+P Dz4GTjEDRmy1z2RsWEBwRVjjwcP8ppM2cZrcr3ATq9bIpWT8mco03BGGR/HX09Uw misE+tq3Tl3JV5No2avwA0uLRMvEX/4pj/XYWfra -----END CERTIFICATE-----Generated at Fri Nov 22 09:38:56 2024 by rpki-client on console-ams.rpki-client.org