$ rpki-client -vvf repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/3130332e37312e3139302e302f32332d3233203d3e20313335343732.roa File: 3130332e37312e3139302e302f32332d3233203d3e20313335343732.roa (raw, json) Hash identifier: MUfVq8flNGOivhnl4jjR14qjwu6GNOjMW+mPbMeDTjo= Subject key identifier: AD:FE:8B:57:71:34:94:0B:9D:B4:7B:8D:4B:FD:55:69:AB:A7:F4:7F Certificate issuer: /CN=59B19DD1D646793F5F17D89C42AC2F6399FB1854 Certificate serial: 6A130DB71FC01044546EDFBE8AA39F6B26330403 Authority key identifier: 59:B1:9D:D1:D6:46:79:3F:5F:17:D8:9C:42:AC:2F:63:99:FB:18:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/59B19DD1D646793F5F17D89C42AC2F6399FB1854.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/3130332e37312e3139302e302f32332d3233203d3e20313335343732.roa Signing time: Mon 01 Jul 2024 01:05:51 +0000 ROA not before: Mon 01 Jul 2024 01:00:51 +0000 ROA not after: Mon 30 Jun 2025 01:05:51 +0000 asID: 135472 IP address blocks: 103.71.190.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/59B19DD1D646793F5F17D89C42AC2F6399FB1854.crl rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/59B19DD1D646793F5F17D89C42AC2F6399FB1854.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/59B19DD1D646793F5F17D89C42AC2F6399FB1854.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:13:0d:b7:1f:c0:10:44:54:6e:df:be:8a:a3:9f:6b:26:33:04:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=59B19DD1D646793F5F17D89C42AC2F6399FB1854 Validity Not Before: Jul 1 01:00:51 2024 GMT Not After : Jun 30 01:05:51 2025 GMT Subject: CN=ADFE8B577134940B9DB47B8D4BFD5569ABA7F47F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:83:f4:01:21:c5:f4:11:6e:73:69:13:42:1a: 9a:4b:bf:f9:2f:32:07:63:5a:52:7f:ab:5a:31:c6: ff:c4:09:e3:48:f1:6d:bd:4f:df:c3:73:0d:6a:14: 18:06:98:51:63:2c:cd:a3:13:ac:2d:eb:f0:8a:23: e6:b7:a2:34:6e:cc:69:16:d2:b8:ff:7e:45:fc:76: c4:e4:cd:c1:d5:0e:a1:00:43:12:16:6a:06:15:ab: a7:3a:b3:bc:88:41:4d:77:80:6f:be:43:bf:8e:7e: 9d:2e:9e:ac:47:da:c9:ad:e9:1e:f3:ef:6e:c3:ef: be:05:f7:1c:84:4c:ee:a4:e9:84:4f:35:7a:16:ca: fe:9f:36:93:1f:43:80:0d:36:12:f0:1d:bb:6d:5d: 46:95:8b:9a:89:b5:aa:ea:e5:e0:be:74:f5:1f:3a: 68:ca:dd:59:72:ba:b6:5d:f6:0a:05:81:aa:d4:65: 60:79:c1:6c:8b:6c:34:be:c9:f9:66:c7:bc:6e:8b: 02:1d:82:82:1b:3f:ac:09:14:de:b4:e1:fa:73:cf: f4:7d:0f:9a:b6:ec:d7:32:11:ea:64:a6:21:63:04: bc:e9:1c:99:c7:39:c7:05:b4:f3:d0:c7:cf:29:a2: 73:e7:77:b1:fd:61:49:a0:55:ef:40:8c:0b:cd:6d: b5:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:FE:8B:57:71:34:94:0B:9D:B4:7B:8D:4B:FD:55:69:AB:A7:F4:7F X509v3 Authority Key Identifier: keyid:59:B1:9D:D1:D6:46:79:3F:5F:17:D8:9C:42:AC:2F:63:99:FB:18:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/59B19DD1D646793F5F17D89C42AC2F6399FB1854.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/59B19DD1D646793F5F17D89C42AC2F6399FB1854.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/3130332e37312e3139302e302f32332d3233203d3e20313335343732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.190.0/23 Signature Algorithm: sha256WithRSAEncryption 01:25:90:a2:f5:f4:44:83:ce:3d:d8:4c:ee:6f:fe:d3:5f:e1: 52:90:d8:9b:fc:a6:40:7f:2e:64:b9:36:57:73:fe:ff:36:c2: 92:f8:d6:8f:48:62:f9:a9:e4:ea:f0:58:03:a9:c6:bc:63:69: 9d:8b:bb:e7:37:79:90:e6:69:7c:52:d2:67:81:5e:a8:ea:37: b7:cf:08:da:b7:6b:3c:eb:09:e4:b1:d6:95:66:de:67:03:3d: 2e:46:b1:5e:db:69:5f:96:7c:7a:29:a0:39:d7:da:6f:e9:d7: 04:68:9f:6d:a1:38:b0:90:b9:6d:bb:f9:fa:be:5a:4a:b2:05: 55:d7:23:28:cc:d9:95:fd:af:98:8b:18:29:16:37:b2:d3:08: d6:00:80:a6:48:e2:8f:61:41:7a:aa:8b:62:cf:a8:f0:01:77: 30:be:5d:bf:68:3d:4e:be:fc:51:1a:b2:72:ae:49:2b:ad:41: 56:30:a3:83:98:eb:12:fd:7a:2a:2b:0f:41:c3:e1:8d:bd:df: 6d:eb:b5:42:f7:a5:5e:66:95:95:38:18:2b:77:3e:ba:24:92: ab:cc:33:48:93:39:6a:40:64:5c:9e:c4:25:c2:41:65:20:0f: c3:ee:56:ba:fc:e2:12:db:5e:43:e3:6d:7a:01:73:14:18:69: 39:ac:b4:25 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUahMNtx/AEERUbt++iqOfayYzBAMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTlCMTlERDFENjQ2NzkzRjVGMTdEODlDNDJBQzJGNjM5 OUZCMTg1NDAeFw0yNDA3MDEwMTAwNTFaFw0yNTA2MzAwMTA1NTFaMDMxMTAvBgNV BAMTKEFERkU4QjU3NzEzNDk0MEI5REI0N0I4RDRCRkQ1NTY5QUJBN0Y0N0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtg/QBIcX0EW5zaRNCGppLv/kv MgdjWlJ/q1oxxv/ECeNI8W29T9/Dcw1qFBgGmFFjLM2jE6wt6/CKI+a3ojRuzGkW 0rj/fkX8dsTkzcHVDqEAQxIWagYVq6c6s7yIQU13gG++Q7+Ofp0unqxH2smt6R7z 727D774F9xyETO6k6YRPNXoWyv6fNpMfQ4ANNhLwHbttXUaVi5qJtarq5eC+dPUf OmjK3VlyurZd9goFgarUZWB5wWyLbDS+yflmx7xuiwIdgoIbP6wJFN604fpzz/R9 D5q27NcyEepkpiFjBLzpHJnHOccFtPPQx88ponPnd7H9YUmgVe9AjAvNbbVzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrf6LV3E0lAudtHuNS/1Vaaun9H8wHwYDVR0j BBgwFoAUWbGd0dZGeT9fF9icQqwvY5n7GFQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjA0ODA2NC04N2RlLTRkZTctYjBiZC0xMmZhMGRlYjhlMzIvMC81OUIxOUREMUQ2 NDY3OTNGNUYxN0Q4OUM0MkFDMkY2Mzk5RkIxODU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTlCMTlERDFENjQ2NzkzRjVGMTdEODlDNDJBQzJGNjM5OUZC MTg1NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiMDQ4MDY0LTg3ZGUtNGRlNy1i MGJkLTEyZmEwZGViOGUzMi8wLzMxMzAzMzJlMzczMTJlMzEzOTMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM1MzQzNzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ0e+MA0GCSqG SIb3DQEBCwUAA4IBAQABJZCi9fREg8492Ezub/7TX+FSkNib/KZAfy5kuTZXc/7/ NsKS+NaPSGL5qeTq8FgDqca8Y2mdi7vnN3mQ5ml8UtJngV6o6je3zwjat2s86wnk sdaVZt5nAz0uRrFe22lflnx6KaA519pv6dcEaJ9toTiwkLltu/n6vlpKsgVV1yMo zNmV/a+YixgpFjey0wjWAICmSOKPYUF6qotiz6jwAXcwvl2/aD1OvvxRGrJyrkkr rUFWMKODmOsS/XoqKw9Bw+GNvd9t67VC96VeZpWVOBgrdz66JJKrzDNIkzlqQGRc nsQlwkFlIA/D7la6/OIS215D4216AXMUGGk5rLQl -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:59 2024 by rpki-client on console-ams.rpki-client.org