$ rpki-client -vvf repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/3130332e31342e3233312e302f32342d3234203d3e20313439393435.roa File: 3130332e31342e3233312e302f32342d3234203d3e20313439393435.roa (raw, json) Hash identifier: yNuk/WaxNIr8hCitKM0Fj2fYpqSLEg7Ounb0durD57g= Subject key identifier: C7:8A:93:D2:8B:5D:51:1B:3D:14:DC:4D:D6:BC:B2:7D:51:9A:54:5C Certificate issuer: /CN=40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D Certificate serial: 66A6D1DC1CE8C2D064F5D489A5C209B12C4F252D Authority key identifier: 40:70:6A:5C:CF:A8:96:C8:EE:0C:1F:9A:5B:6D:CD:A1:91:5A:C7:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/3130332e31342e3233312e302f32342d3234203d3e20313439393435.roa Signing time: Mon 10 Jun 2024 05:00:01 +0000 ROA not before: Mon 10 Jun 2024 04:55:01 +0000 ROA not after: Mon 09 Jun 2025 05:00:01 +0000 asID: 149945 IP address blocks: 103.14.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.crl rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:a6:d1:dc:1c:e8:c2:d0:64:f5:d4:89:a5:c2:09:b1:2c:4f:25:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D Validity Not Before: Jun 10 04:55:01 2024 GMT Not After : Jun 9 05:00:01 2025 GMT Subject: CN=C78A93D28B5D511B3D14DC4DD6BCB27D519A545C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:fb:f5:e9:38:3a:9a:07:6b:f9:07:da:f4:f8: 83:e2:8f:8c:d0:08:2a:e7:6c:db:14:24:dc:2f:44: 81:f2:47:b3:1f:b1:b0:11:76:d6:60:10:37:c2:b8: bf:51:94:de:2f:e8:4d:c0:46:7e:bd:9f:3c:be:cc: 8c:9b:71:93:38:1d:ad:a2:13:45:f5:71:35:51:3d: de:f3:3d:b3:76:63:09:02:30:2c:d7:bb:06:f6:a4: 88:e2:13:b4:8f:bb:35:3c:43:2f:43:97:39:8e:76: 76:4e:f4:e2:65:f6:d8:49:ff:6c:db:93:c9:53:81: 67:52:94:22:b9:7d:a0:6a:e7:67:86:7f:97:00:2d: 47:2f:3c:d9:c7:fd:c9:a4:12:a6:97:bc:2a:49:30: df:71:d9:68:05:55:78:74:2c:4e:ed:cf:be:2c:56: f0:0b:e2:6f:73:b8:0f:a6:b3:e5:ac:c5:1e:66:32: 21:f9:3e:3d:e1:83:84:45:b0:2f:1c:24:a0:ee:f4: f4:5d:2d:1a:ad:64:08:63:11:b1:17:a6:c7:df:b7: 13:70:4f:0e:b6:84:a5:f6:15:98:dd:c2:81:5e:fe: 3a:10:53:87:a7:32:2b:e5:1c:9c:a6:cc:ee:9b:f8: 64:e0:6b:64:79:ef:4e:6e:7c:92:9f:b5:7e:c9:63: c6:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:8A:93:D2:8B:5D:51:1B:3D:14:DC:4D:D6:BC:B2:7D:51:9A:54:5C X509v3 Authority Key Identifier: keyid:40:70:6A:5C:CF:A8:96:C8:EE:0C:1F:9A:5B:6D:CD:A1:91:5A:C7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/3130332e31342e3233312e302f32342d3234203d3e20313439393435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.14.231.0/24 Signature Algorithm: sha256WithRSAEncryption 90:16:5e:c8:c8:eb:f1:0e:19:2a:9c:af:9d:5f:f3:0f:d7:5c: 35:7e:01:11:73:c3:3e:42:6d:b4:5b:b1:af:59:ac:89:43:c5: 70:37:d2:4a:a8:fe:9d:d8:aa:79:4c:a5:f7:d1:3b:ef:fb:32: 25:7e:f2:f7:e7:d9:e5:9b:78:27:dc:08:3d:3b:59:52:bd:d5: e9:29:95:38:7e:68:50:51:dc:34:30:d2:61:0a:10:3a:d9:bf: f0:72:bd:17:6a:27:d8:5c:be:2f:ee:95:b2:30:ce:91:e0:b9: 39:9d:fb:63:f5:ae:10:1a:86:3a:fa:57:7d:77:2c:49:4e:31: 20:fd:70:07:c2:54:c1:a2:eb:a7:8f:21:f5:ef:4c:90:e8:85: 91:d0:29:a2:eb:a7:d4:be:2d:ee:46:b6:ed:59:59:dc:ac:a7: c5:e3:9c:de:bc:66:2f:37:ce:46:3c:97:2e:64:57:88:16:07: eb:84:96:b9:ee:f1:8e:21:77:ae:5f:a6:14:fd:8e:a7:cc:2f: fb:e3:b1:7a:07:87:e6:dd:9d:1d:44:a7:e6:f5:be:6b:54:c1: 5a:84:ac:40:6a:c0:96:34:4d:26:df:3d:84:fa:f1:d3:3f:fc: ad:62:3a:c5:55:19:03:8d:58:43:db:14:07:72:75:2f:9e:c4: ed:a9:e8:51 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZqbR3BzowtBk9dSJpcIJsSxPJS0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA3MDZBNUNDRkE4OTZDOEVFMEMxRjlBNUI2RENEQTE5 MTVBQzc2RDAeFw0yNDA2MTAwNDU1MDFaFw0yNTA2MDkwNTAwMDFaMDMxMTAvBgNV BAMTKEM3OEE5M0QyOEI1RDUxMUIzRDE0REM0REQ2QkNCMjdENTE5QTU0NUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv+/XpODqaB2v5B9r0+IPij4zQ CCrnbNsUJNwvRIHyR7MfsbARdtZgEDfCuL9RlN4v6E3ARn69nzy+zIybcZM4Ha2i E0X1cTVRPd7zPbN2YwkCMCzXuwb2pIjiE7SPuzU8Qy9DlzmOdnZO9OJl9thJ/2zb k8lTgWdSlCK5faBq52eGf5cALUcvPNnH/cmkEqaXvCpJMN9x2WgFVXh0LE7tz74s VvAL4m9zuA+ms+WsxR5mMiH5Pj3hg4RFsC8cJKDu9PRdLRqtZAhjEbEXpsfftxNw Tw62hKX2FZjdwoFe/joQU4enMivlHJymzO6b+GTga2R5705ufJKftX7JY8ZtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUx4qT0otdURs9FNxN1ryyfVGaVFwwHwYDVR0j BBgwFoAUQHBqXM+olsjuDB+aW23NoZFax20wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZGY0Mjk2Zi0xY2E5LTQ1ZmMtYmIwOC04NDEzNWViMDBmYTcvMC80MDcwNkE1Q0NG QTg5NkM4RUUwQzFGOUE1QjZEQ0RBMTkxNUFDNzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDA3MDZBNUNDRkE4OTZDOEVFMEMxRjlBNUI2RENEQTE5MTVB Qzc2RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkZjQyOTZmLTFjYTktNDVmYy1i YjA4LTg0MTM1ZWIwMGZhNy8wLzMxMzAzMzJlMzEzNDJlMzIzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzkzNDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZw7nMA0GCSqG SIb3DQEBCwUAA4IBAQCQFl7IyOvxDhkqnK+dX/MP11w1fgERc8M+Qm20W7GvWayJ Q8VwN9JKqP6d2Kp5TKX30Tvv+zIlfvL359nlm3gn3Ag9O1lSvdXpKZU4fmhQUdw0 MNJhChA62b/wcr0XaifYXL4v7pWyMM6R4Lk5nftj9a4QGoY6+ld9dyxJTjEg/XAH wlTBouunjyH170yQ6IWR0Cmi66fUvi3uRrbtWVncrKfF45zevGYvN85GPJcuZFeI FgfrhJa57vGOIXeuX6YU/Y6nzC/747F6B4fm3Z0dRKfm9b5rVMFahKxAasCWNE0m 3z2E+vHTP/ytYjrFVRkDjVhD2xQHcnUvnsTtqehR -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:26 2024 by rpki-client on console-ams.rpki-client.org