$ rpki-client -vvf repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138302e302f32342d3234203d3e20313336383430.roa File: 3130332e3130302e3138302e302f32342d3234203d3e20313336383430.roa (raw, json) Hash identifier: nlKrd5AKR7h3FCJzv+3n5dJLAh4Gtx9yY/SstgPTAXs= Subject key identifier: 53:C6:46:5D:19:4F:18:D3:14:58:8F:0F:63:F2:28:58:6F:D9:3A:84 Certificate issuer: /CN=F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3 Certificate serial: 2277B45F32CBA1067082D64ECDF65B980A0BA228 Authority key identifier: F3:F9:AB:30:AC:2C:50:B3:ED:F7:C9:1C:45:31:CC:9A:EE:9C:9D:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138302e302f32342d3234203d3e20313336383430.roa Signing time: Mon 01 Jul 2024 01:05:41 +0000 ROA not before: Mon 01 Jul 2024 01:00:41 +0000 ROA not after: Mon 30 Jun 2025 01:05:41 +0000 asID: 136840 IP address blocks: 103.100.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.crl rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:77:b4:5f:32:cb:a1:06:70:82:d6:4e:cd:f6:5b:98:0a:0b:a2:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3 Validity Not Before: Jul 1 01:00:41 2024 GMT Not After : Jun 30 01:05:41 2025 GMT Subject: CN=53C6465D194F18D314588F0F63F228586FD93A84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:f4:5d:15:e0:51:5c:be:93:d0:de:64:54:64: 2c:d0:dd:b4:cb:e4:d1:44:c8:c7:7e:08:be:26:da: 9e:ce:a5:c8:55:ca:0e:1d:20:21:c0:ef:6c:27:19: 19:c4:2e:8d:a6:56:36:c1:98:c0:02:18:f3:07:7f: 0d:c4:ca:fc:35:04:44:9a:e7:e7:d8:69:71:97:c1: 06:99:1f:3f:ec:2b:52:41:80:9b:c7:7a:30:e0:df: b8:df:e2:61:5f:f8:a7:29:29:ec:0b:98:ac:79:48: d2:4e:9b:d0:08:79:ae:4b:48:2b:24:2d:1e:03:ce: c8:dd:31:40:3d:b7:45:d2:48:21:e5:fe:4a:26:bd: 9e:3b:3e:a6:81:7e:66:76:5d:9a:da:de:48:52:20: 91:a6:27:ce:50:16:07:16:de:d9:2f:db:c7:04:31: 29:6b:b6:d0:53:c0:bc:9e:27:b5:b6:43:b7:80:eb: ba:af:29:be:44:ec:9c:37:8d:85:f0:b7:f5:74:8f: e5:c3:e0:9e:64:e1:96:39:51:96:b0:8f:83:46:9f: d6:ba:97:bb:94:ab:69:73:a9:1f:17:8f:8b:36:4b: cd:38:26:6a:ff:a0:69:32:37:72:26:72:99:39:0a: 7e:17:52:9c:d3:2b:c5:54:28:27:33:c3:c8:23:f0: d3:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:C6:46:5D:19:4F:18:D3:14:58:8F:0F:63:F2:28:58:6F:D9:3A:84 X509v3 Authority Key Identifier: keyid:F3:F9:AB:30:AC:2C:50:B3:ED:F7:C9:1C:45:31:CC:9A:EE:9C:9D:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138302e302f32342d3234203d3e20313336383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.100.180.0/24 Signature Algorithm: sha256WithRSAEncryption 64:7d:b6:05:67:a5:b4:5d:eb:10:8e:c8:0f:20:0c:32:45:0c: 5f:48:ec:4c:c2:11:8c:2d:c8:7d:55:4f:30:89:2f:37:4d:d4: cf:02:0b:d4:3a:db:ac:f9:73:8c:5f:72:0d:2d:1d:ec:0a:10: 1b:7a:c3:c0:28:e8:1e:37:59:8e:18:6a:07:b1:14:d3:39:3b: 33:9a:cf:b8:a7:bb:54:c9:61:53:8a:e5:e1:e3:91:06:0d:2d: f2:2f:4f:f5:04:85:ef:c8:ea:ca:29:dd:db:7b:97:4b:c0:9c: fd:82:c4:dc:cc:86:97:04:e8:9b:6a:ef:0f:fc:71:35:98:cb: 4a:95:a1:c7:77:2a:f7:f3:ff:ad:f0:de:ea:46:c0:3a:16:72: b3:fe:1e:c5:36:71:97:01:18:74:54:57:e2:bd:d3:94:a4:fb: ab:e1:50:56:d9:63:22:ef:c7:f0:cc:ce:3e:28:5f:76:39:ba: 20:98:2c:57:e5:59:16:b8:4d:57:01:94:0a:bd:16:f6:68:cb: 9c:99:ee:a1:2c:b6:3e:b4:16:be:35:4c:4a:39:46:fb:14:95: 6d:71:14:13:2f:d9:16:78:bc:9a:68:51:66:d0:3f:1c:ed:6c: d7:dd:33:ae:94:cc:83:bf:b3:ff:68:0e:5d:d6:64:f6:43:f9: 59:cf:00:24 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIne0XzLLoQZwgtZOzfZbmAoLoigwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNGOUFCMzBBQzJDNTBCM0VERjdDOTFDNDUzMUNDOUFF RTlDOURBMzAeFw0yNDA3MDEwMTAwNDFaFw0yNTA2MzAwMTA1NDFaMDMxMTAvBgNV BAMTKDUzQzY0NjVEMTk0RjE4RDMxNDU4OEYwRjYzRjIyODU4NkZEOTNBODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDj9F0V4FFcvpPQ3mRUZCzQ3bTL 5NFEyMd+CL4m2p7OpchVyg4dICHA72wnGRnELo2mVjbBmMACGPMHfw3Eyvw1BESa 5+fYaXGXwQaZHz/sK1JBgJvHejDg37jf4mFf+KcpKewLmKx5SNJOm9AIea5LSCsk LR4DzsjdMUA9t0XSSCHl/komvZ47PqaBfmZ2XZra3khSIJGmJ85QFgcW3tkv28cE MSlrttBTwLyeJ7W2Q7eA67qvKb5E7Jw3jYXwt/V0j+XD4J5k4ZY5UZawj4NGn9a6 l7uUq2lzqR8Xj4s2S804Jmr/oGkyN3Imcpk5Cn4XUpzTK8VUKCczw8gj8NNXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUU8ZGXRlPGNMUWI8PY/IoWG/ZOoQwHwYDVR0j BBgwFoAU8/mrMKwsULPt98kcRTHMmu6cnaMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWYwODkwMC1mMmM2LTRkMDctYjY5NC1kMTg4YmFhM2I4ZjIvMC9GM0Y5QUIzMEFD MkM1MEIzRURGN0M5MUM0NTMxQ0M5QUVFOUM5REEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjNGOUFCMzBBQzJDNTBCM0VERjdDOTFDNDUzMUNDOUFFRTlD OURBMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlZjA4OTAwLWYyYzYtNGQwNy1i Njk0LWQxODhiYWEzYjhmMi8wLzMxMzAzMzJlMzEzMDMwMmUzMTM4MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM0MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZLQwDQYJ KoZIhvcNAQELBQADggEBAGR9tgVnpbRd6xCOyA8gDDJFDF9I7EzCEYwtyH1VTzCJ LzdN1M8CC9Q626z5c4xfcg0tHewKEBt6w8Ao6B43WY4YagexFNM5OzOaz7inu1TJ YVOK5eHjkQYNLfIvT/UEhe/I6sop3dt7l0vAnP2CxNzMhpcE6Jtq7w/8cTWYy0qV ocd3Kvfz/63w3upGwDoWcrP+HsU2cZcBGHRUV+K905Sk+6vhUFbZYyLvx/DMzj4o X3Y5uiCYLFflWRa4TVcBlAq9FvZoy5yZ7qEstj60Fr41TEo5RvsUlW1xFBMv2RZ4 vJpoUWbQPxztbNfdM66UzIO/s/9oDl3WZPZD+VnPACQ= -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org