$ rpki-client -vvf repo-rpki.idnic.net/repo/51292911-da7d-4636-b153-02a4b66205b5/0/3130332e3135382e39362e302f32342d3234203d3e20313431313330.roa File: 3130332e3135382e39362e302f32342d3234203d3e20313431313330.roa (raw, json) Hash identifier: ZjQFdpco2N0/KeIs/epUGzod3br0O3SVJCGHi6x4Sgc= Subject key identifier: 3F:F9:44:BE:80:05:BC:A5:31:1D:49:D3:8B:E3:90:FE:62:B5:86:93 Certificate issuer: /CN=42CD38BF795E0099BD3E143DD8383778ADEAE850 Certificate serial: 6773832D03CB08AF32E1CA0DEE6055901F7A26D5 Authority key identifier: 42:CD:38:BF:79:5E:00:99:BD:3E:14:3D:D8:38:37:78:AD:EA:E8:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CD38BF795E0099BD3E143DD8383778ADEAE850.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51292911-da7d-4636-b153-02a4b66205b5/0/3130332e3135382e39362e302f32342d3234203d3e20313431313330.roa Signing time: Tue 05 Sep 2023 03:00:01 +0000 ROA not before: Tue 05 Sep 2023 02:55:01 +0000 ROA not after: Tue 03 Sep 2024 03:00:01 +0000 asID: 141130 IP address blocks: 103.158.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51292911-da7d-4636-b153-02a4b66205b5/0/42CD38BF795E0099BD3E143DD8383778ADEAE850.crl rsync://repo-rpki.idnic.net/repo/51292911-da7d-4636-b153-02a4b66205b5/0/42CD38BF795E0099BD3E143DD8383778ADEAE850.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CD38BF795E0099BD3E143DD8383778ADEAE850.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 12:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:73:83:2d:03:cb:08:af:32:e1:ca:0d:ee:60:55:90:1f:7a:26:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42CD38BF795E0099BD3E143DD8383778ADEAE850 Validity Not Before: Sep 5 02:55:01 2023 GMT Not After : Sep 3 03:00:01 2024 GMT Subject: CN=3FF944BE8005BCA5311D49D38BE390FE62B58693 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e7:e3:b7:1a:7c:09:27:41:39:b6:9e:dd:04: f8:e0:12:99:6a:f9:15:ce:e4:dd:9b:b3:96:23:8c: 8c:82:84:40:6f:19:bc:35:23:9c:1e:96:93:15:14: be:a4:38:e4:70:41:03:07:29:4a:90:a3:44:c4:58: 35:58:fe:44:3e:78:84:ca:8d:c4:19:5d:bb:e4:20: e4:8e:19:66:72:94:a9:71:b5:1c:ef:1e:f5:67:a3: 87:f6:19:67:de:49:80:1f:fd:0b:60:33:88:04:1a: f1:e2:3e:24:9d:05:1a:08:8b:1b:2e:97:cb:c2:61: 0a:b6:0f:f2:75:e4:a7:c7:2d:7f:89:b0:2e:73:92: d3:a6:76:bb:cb:80:37:a8:c8:cd:ac:dc:9b:da:b2: 03:45:52:f1:63:b1:21:ef:c9:4f:15:07:e3:4f:de: e9:b1:81:25:93:93:22:60:f7:a6:65:45:65:a2:db: b5:8f:ee:11:9d:cc:4d:00:f0:7f:91:39:57:2c:2f: 64:23:81:2f:cf:ec:20:9e:99:e3:0c:a3:40:f1:de: 21:d5:f3:61:87:1d:f0:8c:76:05:2b:0b:2a:20:77: af:b6:fc:3b:d4:a8:33:30:80:d3:3f:06:28:d9:15: 66:9a:9b:5e:61:5a:90:48:28:0a:a9:1c:29:ee:49: 5f:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:F9:44:BE:80:05:BC:A5:31:1D:49:D3:8B:E3:90:FE:62:B5:86:93 X509v3 Authority Key Identifier: keyid:42:CD:38:BF:79:5E:00:99:BD:3E:14:3D:D8:38:37:78:AD:EA:E8:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51292911-da7d-4636-b153-02a4b66205b5/0/42CD38BF795E0099BD3E143DD8383778ADEAE850.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CD38BF795E0099BD3E143DD8383778ADEAE850.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51292911-da7d-4636-b153-02a4b66205b5/0/3130332e3135382e39362e302f32342d3234203d3e20313431313330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.96.0/24 Signature Algorithm: sha256WithRSAEncryption c5:64:7d:d1:5b:80:2c:ac:7b:d4:e6:40:1d:e2:56:c1:4e:48: 64:06:3c:1e:ae:3f:18:1e:57:db:9d:0f:bb:f5:bb:51:ad:a7: f1:85:5f:cf:87:ef:30:c8:36:ce:87:5c:05:8a:44:71:a0:c8: ec:e3:d0:97:98:33:d6:4f:5e:a4:a0:c1:47:69:1b:db:8b:12: a9:c8:94:4a:f5:9a:00:6f:b3:20:90:6a:1c:59:16:92:f9:46: 57:92:a0:eb:59:1f:13:20:7b:ce:bf:a8:d2:e1:95:6b:2a:ce: da:21:6e:a4:ab:54:5c:2d:e3:5c:15:5a:dd:e3:63:7d:14:98: 3c:c8:a3:b2:7c:5e:8b:55:ea:39:88:6b:6e:bf:92:26:a2:0c: 39:c9:88:bc:49:8b:dd:f1:08:8e:dd:73:ac:78:0b:e4:ee:53: d7:a7:e9:fa:41:4e:c6:0f:59:40:e6:01:d9:bd:78:e5:51:29: f2:05:60:6a:20:f7:89:ac:22:e4:cc:4f:b1:cd:d6:1d:e8:bb: b7:f0:ac:40:29:72:05:f2:88:87:73:a3:17:a7:b2:d8:8c:15: 93:bf:49:52:c3:69:f2:ea:c9:c4:87:46:90:2b:87:70:89:05: 7b:7f:82:0e:df:e6:35:21:5e:43:22:db:33:1e:0a:e7:28:c3: 49:2e:4f:6a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZ3ODLQPLCK8y4coN7mBVkB96JtUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJDRDM4QkY3OTVFMDA5OUJEM0UxNDNERDgzODM3NzhB REVBRTg1MDAeFw0yMzA5MDUwMjU1MDFaFw0yNDA5MDMwMzAwMDFaMDMxMTAvBgNV BAMTKDNGRjk0NEJFODAwNUJDQTUzMTFENDlEMzhCRTM5MEZFNjJCNTg2OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH5+O3GnwJJ0E5tp7dBPjgEplq +RXO5N2bs5YjjIyChEBvGbw1I5welpMVFL6kOORwQQMHKUqQo0TEWDVY/kQ+eITK jcQZXbvkIOSOGWZylKlxtRzvHvVno4f2GWfeSYAf/QtgM4gEGvHiPiSdBRoIixsu l8vCYQq2D/J15KfHLX+JsC5zktOmdrvLgDeoyM2s3JvasgNFUvFjsSHvyU8VB+NP 3umxgSWTkyJg96ZlRWWi27WP7hGdzE0A8H+ROVcsL2QjgS/P7CCemeMMo0Dx3iHV 82GHHfCMdgUrCyogd6+2/DvUqDMwgNM/BijZFWaam15hWpBIKAqpHCnuSV9bAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUP/lEvoAFvKUxHUnTi+OQ/mK1hpMwHwYDVR0j BBgwFoAUQs04v3leAJm9PhQ92Dg3eK3q6FAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MTI5MjkxMS1kYTdkLTQ2MzYtYjE1My0wMmE0YjY2MjA1YjUvMC80MkNEMzhCRjc5 NUUwMDk5QkQzRTE0M0REODM4Mzc3OEFERUFFODUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDJDRDM4QkY3OTVFMDA5OUJEM0UxNDNERDgzODM3NzhBREVB RTg1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxMjkyOTExLWRhN2QtNDYzNi1i MTUzLTAyYTRiNjYyMDViNS8wLzMxMzAzMzJlMzEzNTM4MmUzOTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ55gMA0GCSqG SIb3DQEBCwUAA4IBAQDFZH3RW4AsrHvU5kAd4lbBTkhkBjwerj8YHlfbnQ+79btR rafxhV/Ph+8wyDbOh1wFikRxoMjs49CXmDPWT16koMFHaRvbixKpyJRK9ZoAb7Mg kGocWRaS+UZXkqDrWR8TIHvOv6jS4ZVrKs7aIW6kq1RcLeNcFVrd42N9FJg8yKOy fF6LVeo5iGtuv5Imogw5yYi8SYvd8QiO3XOseAvk7lPXp+n6QU7GD1lA5gHZvXjl USnyBWBqIPeJrCLkzE+xzdYd6Lu38KxAKXIF8oiHc6MXp7LYjBWTv0lSw2ny6snE h0aQK4dwiQV7f4IO3+Y1IV5DItszHgrnKMNJLk9q -----END CERTIFICATE-----Generated at Sun May 5 22:49:23 2024 by rpki-client on console-fra.rpki-client.org