$ rpki-client -vvf repo-rpki.idnic.net/repo/51e00779-4a39-47f0-8338-44f88c291706/0/3130332e3132312e3134362e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3134362e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: IB/k58JOygrV7ALPH5/X7kZ/kyo+yHHt+N8oBmaL++s= Subject key identifier: 89:7A:80:90:A5:42:88:BF:FC:10:8F:47:9B:C1:74:EB:81:CD:BC:BA Certificate issuer: /CN=D714F468978E86AB39DC1CFD7B22A6CED936605D Certificate serial: 20E00437DCC7CCF33A73E0501AD6F007DB346F31 Authority key identifier: D7:14:F4:68:97:8E:86:AB:39:DC:1C:FD:7B:22:A6:CE:D9:36:60:5D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D714F468978E86AB39DC1CFD7B22A6CED936605D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51e00779-4a39-47f0-8338-44f88c291706/0/3130332e3132312e3134362e302f32332d3234203d3e20313335343738.roa Signing time: Wed 03 Jan 2024 08:02:01 +0000 ROA not before: Wed 03 Jan 2024 07:57:01 +0000 ROA not after: Wed 01 Jan 2025 08:02:01 +0000 asID: 135478 IP address blocks: 103.121.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51e00779-4a39-47f0-8338-44f88c291706/0/D714F468978E86AB39DC1CFD7B22A6CED936605D.crl rsync://repo-rpki.idnic.net/repo/51e00779-4a39-47f0-8338-44f88c291706/0/D714F468978E86AB39DC1CFD7B22A6CED936605D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D714F468978E86AB39DC1CFD7B22A6CED936605D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:e0:04:37:dc:c7:cc:f3:3a:73:e0:50:1a:d6:f0:07:db:34:6f:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D714F468978E86AB39DC1CFD7B22A6CED936605D Validity Not Before: Jan 3 07:57:01 2024 GMT Not After : Jan 1 08:02:01 2025 GMT Subject: CN=897A8090A54288BFFC108F479BC174EB81CDBCBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:53:db:5f:05:d7:b0:df:d0:fc:49:74:e6:e1: 7b:21:24:73:90:35:4b:18:d6:33:0c:0c:21:00:cc: 6d:1f:92:28:5a:d8:89:3c:8a:c7:a6:cb:4c:0d:c3: 4a:09:71:aa:e5:e4:3f:79:b4:f6:ed:f8:2e:d2:95: 12:5a:15:94:c8:82:e4:14:ed:ce:f2:a3:d2:73:02: 74:0d:61:65:9c:f7:97:cd:f4:57:cb:38:dc:e3:ed: 3e:78:94:40:54:8e:62:82:25:0d:86:c2:aa:0f:f1: 38:bd:ff:23:f6:98:26:a8:c5:5c:16:44:cf:cc:7b: ad:0d:b0:6c:a3:e7:e0:7d:3e:f4:53:72:ab:af:d8: ba:69:36:bd:60:f2:4e:93:0f:96:49:27:e5:2b:27: cc:35:cb:9b:3e:5d:30:4e:59:78:b7:a9:52:0a:38: 85:c9:3b:05:9f:cc:27:b1:51:22:7d:ea:63:23:c8: 45:b3:9d:22:8f:84:06:25:e5:33:e8:ef:df:03:6a: 44:d1:30:10:f7:28:a2:88:5c:22:e7:b1:b4:4d:19: bb:8e:87:60:94:8f:ae:05:6b:f8:f0:88:b7:10:85: 3d:8a:12:25:8a:34:60:e6:54:ed:8c:14:c0:db:76: a3:2a:c4:1b:b5:4c:96:f1:a7:23:52:9a:26:f0:be: e0:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:7A:80:90:A5:42:88:BF:FC:10:8F:47:9B:C1:74:EB:81:CD:BC:BA X509v3 Authority Key Identifier: keyid:D7:14:F4:68:97:8E:86:AB:39:DC:1C:FD:7B:22:A6:CE:D9:36:60:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51e00779-4a39-47f0-8338-44f88c291706/0/D714F468978E86AB39DC1CFD7B22A6CED936605D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D714F468978E86AB39DC1CFD7B22A6CED936605D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51e00779-4a39-47f0-8338-44f88c291706/0/3130332e3132312e3134362e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.146.0/23 Signature Algorithm: sha256WithRSAEncryption b7:ed:68:a6:3e:cf:29:f8:7b:bf:d0:62:88:1f:4f:ce:e0:81: 25:e4:5d:a1:74:17:5a:9d:bb:5c:df:26:fc:dc:45:fc:db:80: a7:31:43:0b:23:59:f3:68:7d:a3:52:91:e2:66:a3:83:5c:ce: e8:85:8f:21:b9:81:e9:4d:b0:2b:76:85:bc:ad:78:45:df:5b: 39:ea:82:85:6c:56:cf:bb:52:e6:23:87:bb:91:09:86:38:aa: 4c:79:f6:13:02:a5:32:db:55:9f:07:a7:fc:1b:7f:1e:11:e8: 40:67:b0:30:5e:b1:58:cf:aa:45:26:35:b3:dc:a1:52:a2:2d: d6:0c:e5:ba:68:45:61:0a:8c:26:9a:ab:15:cd:65:d2:f4:10: 22:a9:10:35:1a:ad:b1:e0:f5:b4:a8:62:1c:8b:9e:b3:09:3f: 9f:fc:b5:cc:17:28:f1:57:83:6f:d9:90:81:6b:5b:c1:44:3c: e5:bf:d3:62:f7:de:f8:24:13:50:bc:cc:0f:cf:14:4f:3e:11: 61:7a:30:e5:de:05:73:94:e0:46:b5:ad:88:c8:8f:07:47:07: c2:ea:fd:36:c0:2a:83:09:2f:b6:44:65:54:b8:97:fc:ea:aa: d5:5c:d9:e2:ad:73:74:bc:a2:df:a0:99:a9:4f:27:09:62:2b: c7:3a:e3:f0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIOAEN9zHzPM6c+BQGtbwB9s0bzEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDcxNEY0Njg5NzhFODZBQjM5REMxQ0ZEN0IyMkE2Q0VE OTM2NjA1RDAeFw0yNDAxMDMwNzU3MDFaFw0yNTAxMDEwODAyMDFaMDMxMTAvBgNV BAMTKDg5N0E4MDkwQTU0Mjg4QkZGQzEwOEY0NzlCQzE3NEVCODFDREJDQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIU9tfBdew39D8SXTm4XshJHOQ NUsY1jMMDCEAzG0fkiha2Ik8isemy0wNw0oJcarl5D95tPbt+C7SlRJaFZTIguQU 7c7yo9JzAnQNYWWc95fN9FfLONzj7T54lEBUjmKCJQ2GwqoP8Ti9/yP2mCaoxVwW RM/Me60NsGyj5+B9PvRTcquv2LppNr1g8k6TD5ZJJ+UrJ8w1y5s+XTBOWXi3qVIK OIXJOwWfzCexUSJ96mMjyEWznSKPhAYl5TPo798DakTRMBD3KKKIXCLnsbRNGbuO h2CUj64Fa/jwiLcQhT2KEiWKNGDmVO2MFMDbdqMqxBu1TJbxpyNSmibwvuCnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUiXqAkKVCiL/8EI9Hm8F064HNvLowHwYDVR0j BBgwFoAU1xT0aJeOhqs53Bz9eyKmztk2YF0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MWUwMDc3OS00YTM5LTQ3ZjAtODMzOC00NGY4OGMyOTE3MDYvMC9ENzE0RjQ2ODk3 OEU4NkFCMzlEQzFDRkQ3QjIyQTZDRUQ5MzY2MDVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDcxNEY0Njg5NzhFODZBQjM5REMxQ0ZEN0IyMkE2Q0VEOTM2 NjA1RC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxZTAwNzc5LTRhMzktNDdmMC04 MzM4LTQ0Zjg4YzI5MTcwNi8wLzMxMzAzMzJlMzEzMjMxMmUzMTM0MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneZIwDQYJ KoZIhvcNAQELBQADggEBALftaKY+zyn4e7/QYogfT87ggSXkXaF0F1qdu1zfJvzc RfzbgKcxQwsjWfNofaNSkeJmo4NczuiFjyG5gelNsCt2hbyteEXfWznqgoVsVs+7 UuYjh7uRCYY4qkx59hMCpTLbVZ8Hp/wbfx4R6EBnsDBesVjPqkUmNbPcoVKiLdYM 5bpoRWEKjCaaqxXNZdL0ECKpEDUarbHg9bSoYhyLnrMJP5/8tcwXKPFXg2/ZkIFr W8FEPOW/02L33vgkE1C8zA/PFE8+EWF6MOXeBXOU4Ea1rYjIjwdHB8Lq/TbAKoMJ L7ZEZVS4l/zqqtVc2eKtc3S8ot+gmalPJwliK8c64/A= -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:00 2024 by rpki-client on console-ams.rpki-client.org