$ rpki-client -vvf repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/3130332e3233342e3231382e302f32342d3234203d3e203338373638.roa File: 3130332e3233342e3231382e302f32342d3234203d3e203338373638.roa (raw, json) Hash identifier: gORjIIdFdIdiU22QklWkmGPrm7I4ZFddEdMVwl14ZoE= Subject key identifier: 0C:9E:B9:71:5B:F5:2E:87:54:3F:96:24:DD:D2:47:3B:09:EE:A6:D2 Certificate issuer: /CN=FBACFC63658425B36399C4B9D0322622B8C5B7F0 Certificate serial: 3EED190EF0789BC5C7433E53B40EABE898420595 Authority key identifier: FB:AC:FC:63:65:84:25:B3:63:99:C4:B9:D0:32:26:22:B8:C5:B7:F0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBACFC63658425B36399C4B9D0322622B8C5B7F0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/3130332e3233342e3231382e302f32342d3234203d3e203338373638.roa Signing time: Mon 14 Aug 2023 03:00:01 +0000 ROA not before: Mon 14 Aug 2023 02:55:01 +0000 ROA not after: Mon 12 Aug 2024 03:00:01 +0000 asID: 38768 IP address blocks: 103.234.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/FBACFC63658425B36399C4B9D0322622B8C5B7F0.crl rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/FBACFC63658425B36399C4B9D0322622B8C5B7F0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBACFC63658425B36399C4B9D0322622B8C5B7F0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 00:40:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:ed:19:0e:f0:78:9b:c5:c7:43:3e:53:b4:0e:ab:e8:98:42:05:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FBACFC63658425B36399C4B9D0322622B8C5B7F0 Validity Not Before: Aug 14 02:55:01 2023 GMT Not After : Aug 12 03:00:01 2024 GMT Subject: CN=0C9EB9715BF52E87543F9624DDD2473B09EEA6D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:52:0f:40:46:18:56:e7:ea:a3:f2:a7:0d:8a: 88:8e:74:c4:a5:0c:f4:10:08:48:c0:28:98:8a:da: 50:04:9b:9c:34:e5:aa:fa:5a:6d:b9:e9:87:c1:6e: 9b:31:61:52:61:e8:b9:60:f6:99:3d:28:50:dd:7b: a5:e1:fe:de:71:65:ad:0f:5b:31:b1:fe:e3:bd:26: c4:6a:ee:67:f5:a1:87:ea:8f:6b:09:83:cc:d9:2d: ee:84:29:23:37:37:58:35:e4:d3:5e:fb:34:34:21: 3a:38:ee:25:5a:ac:3b:79:b6:ae:8d:ce:e4:cd:48: cb:e1:ce:a4:97:99:8d:40:3b:32:b4:b8:b6:9f:64: f3:4c:a2:78:fe:fc:67:87:6e:05:30:c8:b7:50:b0: 28:9b:be:fd:36:9b:7a:1b:b4:6b:a8:06:4a:be:41: 06:b7:42:c2:d7:da:6d:e4:50:49:8a:47:64:70:29: bc:89:a1:40:c1:39:c9:18:55:c7:7f:ef:7e:54:c4: 19:ba:76:ee:25:56:dc:13:66:c9:c4:4f:1e:40:04: d3:24:81:8a:32:d1:a3:e5:20:b9:ca:a7:6f:cb:da: 83:7e:ba:15:42:a9:97:9b:90:72:99:fd:a9:3c:2b: fb:11:ac:41:f5:14:46:a7:8b:c4:17:ed:15:3f:a8: b9:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:9E:B9:71:5B:F5:2E:87:54:3F:96:24:DD:D2:47:3B:09:EE:A6:D2 X509v3 Authority Key Identifier: keyid:FB:AC:FC:63:65:84:25:B3:63:99:C4:B9:D0:32:26:22:B8:C5:B7:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/FBACFC63658425B36399C4B9D0322622B8C5B7F0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBACFC63658425B36399C4B9D0322622B8C5B7F0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/3130332e3233342e3231382e302f32342d3234203d3e203338373638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.234.218.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:bc:dc:99:69:c7:bf:da:5f:56:19:4d:37:81:86:5c:5b:9b: 78:ca:3f:cf:6d:16:bc:51:fa:45:65:90:3f:62:c8:41:74:03: 2c:df:03:9d:4b:87:b1:d2:42:7d:12:57:5e:d3:90:23:03:7c: 8c:9a:d4:3e:95:7c:c6:c9:a8:f5:0b:da:f3:72:fe:a4:6c:37: 14:74:1c:d7:e6:5d:77:db:b2:a8:29:37:05:5a:16:c5:6d:b2: fd:1c:34:04:2e:08:75:35:cc:a8:8d:53:56:b0:59:1d:90:16: 2b:52:4c:f5:0b:df:36:1b:cd:cb:53:b8:e7:76:85:82:cf:11: 7b:19:16:88:43:fa:19:6a:d7:7a:5f:ef:32:e8:20:16:e2:41: 73:11:6c:5c:6a:6a:8b:9a:e6:36:cf:bc:3a:8a:b1:f4:5b:34: ae:3d:a7:d1:99:29:c3:d1:eb:12:fc:92:50:aa:47:98:47:70: 15:d4:a1:a2:91:47:ff:02:9a:df:26:33:7a:96:09:f1:c8:87: 04:e5:7f:3b:4e:32:fa:09:ee:a6:d7:cc:77:30:16:38:3f:aa: fa:c2:26:35:8c:8b:ed:4c:83:99:8d:9d:8a:af:c6:90:9c:8e: 89:59:21:79:68:ab:75:18:7f:f8:90:c2:7b:7a:25:8d:f2:66: d1:be:e0:23 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPu0ZDvB4m8XHQz5TtA6r6JhCBZUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkJBQ0ZDNjM2NTg0MjVCMzYzOTlDNEI5RDAzMjI2MjJC OEM1QjdGMDAeFw0yMzA4MTQwMjU1MDFaFw0yNDA4MTIwMzAwMDFaMDMxMTAvBgNV BAMTKDBDOUVCOTcxNUJGNTJFODc1NDNGOTYyNERERDI0NzNCMDlFRUE2RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiUg9ARhhW5+qj8qcNioiOdMSl DPQQCEjAKJiK2lAEm5w05ar6Wm256YfBbpsxYVJh6Llg9pk9KFDde6Xh/t5xZa0P WzGx/uO9JsRq7mf1oYfqj2sJg8zZLe6EKSM3N1g15NNe+zQ0ITo47iVarDt5tq6N zuTNSMvhzqSXmY1AOzK0uLafZPNMonj+/GeHbgUwyLdQsCibvv02m3obtGuoBkq+ QQa3QsLX2m3kUEmKR2RwKbyJoUDBOckYVcd/735UxBm6du4lVtwTZsnETx5ABNMk gYoy0aPlILnKp2/L2oN+uhVCqZebkHKZ/ak8K/sRrEH1FEani8QX7RU/qLndAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDJ65cVv1LodUP5Yk3dJHOwnuptIwHwYDVR0j BBgwFoAU+6z8Y2WEJbNjmcS50DImIrjFt/AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MWU5NDI0My04N2YwLTQyNmYtYTljYS00YzE5ZWRiMDZiNDIvMC9GQkFDRkM2MzY1 ODQyNUIzNjM5OUM0QjlEMDMyMjYyMkI4QzVCN0YwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkJBQ0ZDNjM2NTg0MjVCMzYzOTlDNEI5RDAzMjI2MjJCOEM1 QjdGMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxZTk0MjQzLTg3ZjAtNDI2Zi1h OWNhLTRjMTllZGIwNmI0Mi8wLzMxMzAzMzJlMzIzMzM0MmUzMjMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+raMA0GCSqG SIb3DQEBCwUAA4IBAQB9vNyZace/2l9WGU03gYZcW5t4yj/PbRa8UfpFZZA/YshB dAMs3wOdS4ex0kJ9Elde05AjA3yMmtQ+lXzGyaj1C9rzcv6kbDcUdBzX5l1327Ko KTcFWhbFbbL9HDQELgh1NcyojVNWsFkdkBYrUkz1C982G83LU7jndoWCzxF7GRaI Q/oZatd6X+8y6CAW4kFzEWxcamqLmuY2z7w6irH0WzSuPafRmSnD0esS/JJQqkeY R3AV1KGikUf/AprfJjN6lgnxyIcE5X87TjL6Ce6m18x3MBY4P6r6wiY1jIvtTIOZ jZ2Kr8aQnI6JWSF5aKt1GH/4kMJ7eiWN8mbRvuAj -----END CERTIFICATE-----Generated at Thu May 2 17:39:54 2024 by rpki-client on console-fra.rpki-client.org