$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31302e3132302e302f32332d3233203d3e203536323436.roa File: 3130332e31302e3132302e302f32332d3233203d3e203536323436.roa (raw, json) Hash identifier: MTIL1RQbE8mkD815LYZJMCaZZydHdQ5ONZPGglMp6rE= Subject key identifier: 34:E4:E2:24:CA:79:E8:8E:BF:DD:53:4F:2B:80:DB:12:95:F2:6F:46 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 439175EFF3A8304750C0C1C070EAEFC117E74987 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31302e3132302e302f32332d3233203d3e203536323436.roa Signing time: Mon 01 Jul 2024 01:03:06 +0000 ROA not before: Mon 01 Jul 2024 00:58:06 +0000 ROA not after: Mon 30 Jun 2025 01:03:06 +0000 asID: 56246 IP address blocks: 103.10.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 18:59:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:91:75:ef:f3:a8:30:47:50:c0:c1:c0:70:ea:ef:c1:17:e7:49:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Jul 1 00:58:06 2024 GMT Not After : Jun 30 01:03:06 2025 GMT Subject: CN=34E4E224CA79E88EBFDD534F2B80DB1295F26F46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d4:81:fc:e8:0b:ae:13:28:81:78:2f:7c:0e: 1c:80:3e:24:18:62:a6:d0:40:7e:89:02:40:36:97: 00:ba:ff:73:73:8e:9a:61:78:20:b8:42:34:5a:a1: ba:0e:97:ed:3b:78:5b:d0:6c:e7:15:c5:11:96:0b: ce:c1:7b:d0:7a:c7:2f:31:3a:36:25:aa:fa:43:a0: 01:7e:c4:7e:77:2e:2d:c0:32:41:cb:fd:26:db:70: 9f:ec:35:7b:39:e4:4f:0d:c5:a8:af:0c:c3:d6:30: a5:ae:b0:bb:96:54:c6:27:02:ea:49:34:db:b4:ac: a0:1d:b2:31:34:c0:af:eb:42:6c:7c:26:b0:c9:51: af:e0:f8:76:49:8e:7a:68:49:f7:c6:72:a3:eb:07: 98:e4:87:b7:bc:ac:6d:5e:80:39:49:c5:16:f2:63: cf:be:82:92:f3:92:41:fa:4d:80:41:a7:d2:e7:9b: ea:54:2e:5b:08:fe:dc:1d:78:6e:5e:25:7b:95:2a: 33:00:5f:a5:1a:6a:17:b8:bc:07:7d:ed:d7:c2:7c: c3:6b:66:77:5b:6c:c4:8e:74:8e:74:20:13:17:4b: 6e:68:fa:1c:bf:d1:df:75:1c:ef:ef:39:62:4e:17: 1c:c5:7c:46:d1:a6:66:b5:e1:bd:5a:e1:d8:f5:88: b3:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:E4:E2:24:CA:79:E8:8E:BF:DD:53:4F:2B:80:DB:12:95:F2:6F:46 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31302e3132302e302f32332d3233203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.120.0/23 Signature Algorithm: sha256WithRSAEncryption 94:9f:08:14:88:55:c8:7c:58:ab:c4:f0:6e:66:8a:1e:ec:93: c6:25:54:43:ad:99:3f:07:6a:ca:f7:14:91:88:fd:f8:79:e8: c5:2e:60:04:69:a3:c6:92:dc:7c:d9:bf:a9:f5:4a:3f:eb:c5: 8c:c3:e9:25:cb:92:a6:e7:a1:52:d7:1d:8d:b5:4e:06:9a:3a: 09:3b:6b:4a:07:cc:bc:bd:e7:64:95:31:60:42:53:b2:bd:ca: b7:9c:a7:73:93:75:f1:ba:0b:aa:82:80:59:25:18:66:85:e2: bd:66:65:d1:df:e7:d8:df:fc:5e:d6:a7:b1:db:84:69:65:93: 96:b4:b1:d4:bc:bd:62:45:f6:7d:b6:ff:ed:99:02:00:3f:48: 93:ae:e6:36:5f:e0:06:6b:ab:24:43:05:df:fd:8a:3d:be:8d: 55:69:bb:4e:04:29:e6:7d:85:26:53:9c:23:3d:bb:af:87:3c: db:04:24:60:e3:86:26:88:0f:5f:ed:cf:32:73:ec:b8:66:a9: df:67:31:06:6f:05:02:af:56:f5:15:f1:62:eb:33:09:37:a5: e2:e7:4f:6e:c0:b2:cc:d7:29:e6:cc:d9:ad:43:e2:ae:3f:48: fd:9c:d1:a0:0e:c0:02:51:c3:d5:ff:29:28:fc:80:33:ab:0f: a2:2e:40:c3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQ5F17/OoMEdQwMHAcOrvwRfnSYcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNDA3MDEwMDU4MDZaFw0yNTA2MzAwMTAzMDZaMDMxMTAvBgNV BAMTKDM0RTRFMjI0Q0E3OUU4OEVCRkRENTM0RjJCODBEQjEyOTVGMjZGNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe1IH86AuuEyiBeC98DhyAPiQY YqbQQH6JAkA2lwC6/3NzjppheCC4QjRaoboOl+07eFvQbOcVxRGWC87Be9B6xy8x OjYlqvpDoAF+xH53Li3AMkHL/SbbcJ/sNXs55E8NxaivDMPWMKWusLuWVMYnAupJ NNu0rKAdsjE0wK/rQmx8JrDJUa/g+HZJjnpoSffGcqPrB5jkh7e8rG1egDlJxRby Y8++gpLzkkH6TYBBp9Lnm+pULlsI/twdeG5eJXuVKjMAX6Uaahe4vAd97dfCfMNr ZndbbMSOdI50IBMXS25o+hy/0d91HO/vOWJOFxzFfEbRpma14b1a4dj1iLONAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNOTiJMp56I6/3VNPK4DbEpXyb0YwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMxMzAzMzJlMzEzMDJlMzEzMjMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzUzNjMyMzQzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcKeDANBgkqhkiG 9w0BAQsFAAOCAQEAlJ8IFIhVyHxYq8TwbmaKHuyTxiVUQ62ZPwdqyvcUkYj9+Hno xS5gBGmjxpLcfNm/qfVKP+vFjMPpJcuSpuehUtcdjbVOBpo6CTtrSgfMvL3nZJUx YEJTsr3Kt5ync5N18boLqoKAWSUYZoXivWZl0d/n2N/8XtansduEaWWTlrSx1Ly9 YkX2fbb/7ZkCAD9Ik67mNl/gBmurJEMF3/2KPb6NVWm7TgQp5n2FJlOcIz27r4c8 2wQkYOOGJogPX+3PMnPsuGap32cxBm8FAq9W9RXxYuszCTel4udPbsCyzNcp5szZ rUPirj9I/ZzRoA7AAlHD1f8pKPyAM6sPoi5Aww== -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:41 2024 by rpki-client on console-ams.rpki-client.org