$ rpki-client -vvf repo-rpki.idnic.net/repo/60eea08c-3fd2-488e-a574-9f9bb631a62b/0/3130332e38342e3230372e302f32342d3234203d3e203538343837.roa File: 3130332e38342e3230372e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: 88IBv6cQcVEHkf+P28Avyyz4PrcBixcj5Be74wH4xLY= Subject key identifier: 9B:63:90:E5:24:53:96:68:80:B2:38:51:55:E9:4A:2F:FC:CA:77:1E Certificate issuer: /CN=FFCC3C879250F6351654AFE2ED137EED71DCACA1 Certificate serial: 5BEB1C548E31F4FD6478924139E6D46EABD3FE7F Authority key identifier: FF:CC:3C:87:92:50:F6:35:16:54:AF:E2:ED:13:7E:ED:71:DC:AC:A1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FFCC3C879250F6351654AFE2ED137EED71DCACA1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/60eea08c-3fd2-488e-a574-9f9bb631a62b/0/3130332e38342e3230372e302f32342d3234203d3e203538343837.roa Signing time: Tue 23 Jan 2024 10:01:55 +0000 ROA not before: Tue 23 Jan 2024 09:56:55 +0000 ROA not after: Tue 21 Jan 2025 10:01:55 +0000 asID: 58487 IP address blocks: 103.84.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/60eea08c-3fd2-488e-a574-9f9bb631a62b/0/FFCC3C879250F6351654AFE2ED137EED71DCACA1.crl rsync://repo-rpki.idnic.net/repo/60eea08c-3fd2-488e-a574-9f9bb631a62b/0/FFCC3C879250F6351654AFE2ED137EED71DCACA1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FFCC3C879250F6351654AFE2ED137EED71DCACA1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:eb:1c:54:8e:31:f4:fd:64:78:92:41:39:e6:d4:6e:ab:d3:fe:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FFCC3C879250F6351654AFE2ED137EED71DCACA1 Validity Not Before: Jan 23 09:56:55 2024 GMT Not After : Jan 21 10:01:55 2025 GMT Subject: CN=9B6390E52453966880B2385155E94A2FFCCA771E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0c:2a:0e:29:54:38:b6:5a:b8:dc:a9:cf:c1: bd:06:09:39:67:30:8f:d8:f2:f4:84:37:1a:fb:51: 40:32:e1:ab:a5:34:7a:28:2d:ed:dc:9d:0f:95:33: f9:30:05:66:c6:64:7e:2e:b5:9a:2a:8f:e5:fc:c1: 6c:11:5b:5f:b9:4c:68:9b:1d:37:cf:6e:e0:90:1a: 78:57:31:de:a1:88:89:4d:eb:3a:c0:86:c3:5c:11: f6:7e:46:85:08:e9:4e:fc:fe:2e:01:f9:cd:0e:c5: aa:c8:2c:82:d5:db:6c:c5:e9:a4:59:79:b5:24:6e: 85:cc:8f:cb:3f:e5:83:e8:a4:60:9e:4d:ad:0e:a8: 9d:0c:e5:98:d3:80:82:37:2d:02:b8:b0:0b:95:2a: 44:e8:81:d3:5e:4b:81:5e:d5:74:11:62:b7:2f:30: 5c:13:90:3d:40:7a:8e:ca:1f:2a:aa:0a:50:99:71: 53:7e:c4:2f:58:a8:85:0b:e6:d5:09:0b:51:19:54: fb:a9:c4:29:e4:49:79:06:3c:92:ff:79:ff:cb:51: 4c:2f:46:03:9f:68:6d:a8:93:9e:c5:a5:95:82:13: 23:55:07:37:fb:74:db:b7:ff:73:22:29:48:25:31: 75:d2:83:0b:81:db:6b:4e:52:25:4d:a0:5d:a7:5a: 1f:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:63:90:E5:24:53:96:68:80:B2:38:51:55:E9:4A:2F:FC:CA:77:1E X509v3 Authority Key Identifier: keyid:FF:CC:3C:87:92:50:F6:35:16:54:AF:E2:ED:13:7E:ED:71:DC:AC:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/60eea08c-3fd2-488e-a574-9f9bb631a62b/0/FFCC3C879250F6351654AFE2ED137EED71DCACA1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FFCC3C879250F6351654AFE2ED137EED71DCACA1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/60eea08c-3fd2-488e-a574-9f9bb631a62b/0/3130332e38342e3230372e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.84.207.0/24 Signature Algorithm: sha256WithRSAEncryption 62:b6:0c:bb:c0:5c:8a:ad:74:90:b8:74:2d:87:17:b3:0a:a0: 54:a7:a1:db:31:14:82:10:8e:7c:22:03:0b:e6:b7:38:d2:9d: a6:d1:bb:33:3d:2d:58:32:b1:4f:d7:fc:84:6a:d0:93:7d:df: 77:32:3d:d2:e0:81:eb:eb:dd:9a:ea:fb:bc:3c:23:af:7b:d7: 0b:5c:10:82:24:61:34:8d:36:62:47:da:c7:90:31:bd:58:ae: 57:1e:1d:79:7d:a7:af:7b:8e:c1:66:97:e0:d8:ec:b6:4a:e3: 50:10:30:7c:00:32:52:e8:cd:1b:76:43:f3:03:34:d1:b2:ab: ab:8e:dd:d6:ea:81:ba:1c:68:82:9d:11:64:f9:37:67:34:88: 73:bb:ff:ce:62:41:94:f3:96:a4:7a:64:65:f1:99:af:47:92: e0:18:3a:91:01:56:f1:37:96:74:db:87:4e:ad:1c:ae:c5:62: c3:b1:16:c2:28:15:ca:ba:f1:7c:83:e9:cc:72:c5:69:e1:cf: 6b:9c:d3:0d:3c:dd:00:9c:18:36:c9:64:22:ae:0e:83:0a:1c: 43:a7:65:f6:95:d7:6c:b7:11:90:49:86:dd:d9:8a:06:03:53: 45:8c:55:e3:55:1a:f1:b1:a9:3e:c8:41:05:c9:5b:15:66:ba: 6e:b8:a9:d3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUW+scVI4x9P1keJJBOebUbqvT/n8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkZDQzNDODc5MjUwRjYzNTE2NTRBRkUyRUQxMzdFRUQ3 MURDQUNBMTAeFw0yNDAxMjMwOTU2NTVaFw0yNTAxMjExMDAxNTVaMDMxMTAvBgNV BAMTKDlCNjM5MEU1MjQ1Mzk2Njg4MEIyMzg1MTU1RTk0QTJGRkNDQTc3MUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDADCoOKVQ4tlq43KnPwb0GCTln MI/Y8vSENxr7UUAy4aulNHooLe3cnQ+VM/kwBWbGZH4utZoqj+X8wWwRW1+5TGib HTfPbuCQGnhXMd6hiIlN6zrAhsNcEfZ+RoUI6U78/i4B+c0OxarILILV22zF6aRZ ebUkboXMj8s/5YPopGCeTa0OqJ0M5ZjTgII3LQK4sAuVKkTogdNeS4Fe1XQRYrcv MFwTkD1Aeo7KHyqqClCZcVN+xC9YqIUL5tUJC1EZVPupxCnkSXkGPJL/ef/LUUwv RgOfaG2ok57FpZWCEyNVBzf7dNu3/3MiKUglMXXSgwuB22tOUiVNoF2nWh9fAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUm2OQ5SRTlmiAsjhRVelKL/zKdx4wHwYDVR0j BBgwFoAU/8w8h5JQ9jUWVK/i7RN+7XHcrKEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MGVlYTA4Yy0zZmQyLTQ4OGUtYTU3NC05ZjliYjYzMWE2MmIvMC9GRkNDM0M4Nzky NTBGNjM1MTY1NEFGRTJFRDEzN0VFRDcxRENBQ0ExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkZDQzNDODc5MjUwRjYzNTE2NTRBRkUyRUQxMzdFRUQ3MURD QUNBMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwZWVhMDhjLTNmZDItNDg4ZS1h NTc0LTlmOWJiNjMxYTYyYi8wLzMxMzAzMzJlMzgzNDJlMzIzMDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdUzzANBgkqhkiG 9w0BAQsFAAOCAQEAYrYMu8Bciq10kLh0LYcXswqgVKeh2zEUghCOfCIDC+a3ONKd ptG7Mz0tWDKxT9f8hGrQk33fdzI90uCB6+vdmur7vDwjr3vXC1wQgiRhNI02Ykfa x5AxvViuVx4deX2nr3uOwWaX4NjstkrjUBAwfAAyUujNG3ZD8wM00bKrq47d1uqB uhxogp0RZPk3ZzSIc7v/zmJBlPOWpHpkZfGZr0eS4Bg6kQFW8TeWdNuHTq0crsVi w7EWwigVyrrxfIPpzHLFaeHPa5zTDTzdAJwYNslkIq4OgwocQ6dl9pXXbLcRkEmG 3dmKBgNTRYxV41Ua8bGpPshBBclbFWa6brip0w== -----END CERTIFICATE-----Generated at Thu Nov 21 15:45:24 2024 by rpki-client on console-ams.rpki-client.org