$ rpki-client -vvf repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3130332e3130392e3132352e302f32342d3234203d3e20313337333136.roa File: 3130332e3130392e3132352e302f32342d3234203d3e20313337333136.roa (raw, json) Hash identifier: WPyESz38g5FUhna53eGOxnNN+FutNUfu/db0LFOTyWQ= Subject key identifier: 0A:F4:1B:9A:81:98:3A:40:6E:47:DE:9D:F3:2A:DD:33:E1:79:98:6B Certificate issuer: /CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D Certificate serial: 19F051683A37AB1A39472EA98492EEC45682B269 Authority key identifier: 7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3130332e3130392e3132352e302f32342d3234203d3e20313337333136.roa Signing time: Fri 16 Aug 2024 16:00:01 +0000 ROA not before: Fri 16 Aug 2024 15:55:01 +0000 ROA not after: Fri 15 Aug 2025 16:00:01 +0000 asID: 137316 IP address blocks: 103.109.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:f0:51:68:3a:37:ab:1a:39:47:2e:a9:84:92:ee:c4:56:82:b2:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D Validity Not Before: Aug 16 15:55:01 2024 GMT Not After : Aug 15 16:00:01 2025 GMT Subject: CN=0AF41B9A81983A406E47DE9DF32ADD33E179986B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:73:48:99:1e:d5:e8:d0:ee:66:ed:29:2a:c2: 4a:ed:8b:ec:7f:4b:c9:2c:bb:1f:4e:d3:d9:b9:e8: a5:04:05:d2:6a:fd:34:39:5a:58:0f:86:44:17:d0: 50:ca:00:c6:47:c5:7c:47:f8:cf:fe:fa:a4:ff:07: df:b3:89:46:ee:b6:5e:b3:bb:67:a7:47:b4:a5:dd: 4e:26:db:3c:96:47:b6:d1:10:1f:96:07:23:01:fe: 21:8c:40:2b:06:f8:15:16:26:f2:f0:8c:40:56:b5: de:ea:f2:4a:cf:4c:46:d8:76:43:04:24:a7:17:54: 99:d7:18:bc:43:50:1a:88:b1:8e:8d:b1:91:44:8c: 41:c6:0f:ca:f8:4a:58:e4:ff:2c:81:3c:d1:51:a2: 43:45:72:6b:41:77:2b:ff:51:90:ff:41:ee:d9:8a: 41:bb:8e:9c:ae:50:73:6f:8c:0b:19:b0:7c:16:c9: 18:71:b3:7b:ff:ef:c9:21:dc:45:33:19:fb:68:07: 7a:b0:c0:bc:f1:e2:79:74:67:0e:26:40:f7:cc:da: a5:af:a1:97:6d:7d:d6:19:70:de:c1:80:53:0d:27: 2a:9c:2d:4a:94:99:6e:ac:f4:1c:95:d5:72:98:89: fa:9b:e2:aa:8a:98:61:5c:ab:1e:d8:e1:41:26:91: 0a:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:F4:1B:9A:81:98:3A:40:6E:47:DE:9D:F3:2A:DD:33:E1:79:98:6B X509v3 Authority Key Identifier: keyid:7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3130332e3130392e3132352e302f32342d3234203d3e20313337333136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.109.125.0/24 Signature Algorithm: sha256WithRSAEncryption 16:64:be:f2:4f:9b:46:f2:75:89:b1:32:08:cf:26:35:d5:3c: 40:b6:e3:89:dc:2f:69:11:88:0a:3c:05:7e:8d:c6:86:0d:50: 13:5a:43:ca:b4:90:e1:00:ce:23:cb:26:66:2f:b8:c5:36:b7: 9a:03:cb:8c:d3:94:45:79:b4:49:93:3a:f0:c6:a9:9f:3b:f2: e4:9e:c1:68:ac:69:91:8d:a0:d9:05:ac:04:13:12:03:e0:79: 78:9e:c2:39:cb:df:4f:79:3a:24:09:32:78:c9:45:25:32:8f: ed:d5:10:94:a5:27:31:29:10:51:81:83:db:92:0e:a0:4e:82: d5:70:24:73:78:2c:92:7c:de:f0:ee:d8:03:92:a7:54:b0:57: 84:77:8a:52:38:93:a9:44:2e:7c:64:1d:e0:21:01:80:6d:9b: a9:44:d5:85:09:48:d2:d2:7e:76:e1:6a:de:91:92:4c:a0:f9: b0:04:75:65:9d:62:ab:6e:a2:54:e0:94:1d:14:4c:f0:52:9f: 40:87:2b:a4:6d:03:52:78:d3:ff:bf:49:8b:dd:ac:65:e8:85: 3a:26:9a:a7:dc:b9:eb:34:1a:d3:74:77:a2:62:c7:26:bf:b7: 87:89:a0:1e:16:3e:5c:61:a9:cf:12:7c:fc:d7:27:6b:98:e6: 1f:77:f4:b3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGfBRaDo3qxo5Ry6phJLuxFaCsmkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0IzNTgzNEE0NzA0QzdFRDg1RDYyMjEyRkM2MkM0NkZB NUEwNjY2RDAeFw0yNDA4MTYxNTU1MDFaFw0yNTA4MTUxNjAwMDFaMDMxMTAvBgNV BAMTKDBBRjQxQjlBODE5ODNBNDA2RTQ3REU5REYzMkFERDMzRTE3OTk4NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCec0iZHtXo0O5m7Skqwkrti+x/ S8ksux9O09m56KUEBdJq/TQ5WlgPhkQX0FDKAMZHxXxH+M/++qT/B9+ziUbutl6z u2enR7Sl3U4m2zyWR7bREB+WByMB/iGMQCsG+BUWJvLwjEBWtd7q8krPTEbYdkME JKcXVJnXGLxDUBqIsY6NsZFEjEHGD8r4Sljk/yyBPNFRokNFcmtBdyv/UZD/Qe7Z ikG7jpyuUHNvjAsZsHwWyRhxs3v/78kh3EUzGftoB3qwwLzx4nl0Zw4mQPfM2qWv oZdtfdYZcN7BgFMNJyqcLUqUmW6s9ByV1XKYifqb4qqKmGFcqx7Y4UEmkQr5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUCvQbmoGYOkBuR96d8yrdM+F5mGswHwYDVR0j BBgwFoAUezWDSkcEx+2F1iIS/GLEb6WgZm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 Y2M0NjJhNS04Zjc0LTQyYWYtODgzYi01ZTg5ZWU1ZjJkZjMvMC83QjM1ODM0QTQ3 MDRDN0VEODVENjIyMTJGQzYyQzQ2RkE1QTA2NjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0IzNTgzNEE0NzA0QzdFRDg1RDYyMjEyRkM2MkM0NkZBNUEw NjY2RC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjYzQ2MmE1LThmNzQtNDJhZi04 ODNiLTVlODllZTVmMmRmMy8wLzMxMzAzMzJlMzEzMDM5MmUzMTMyMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMxMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnbX0wDQYJ KoZIhvcNAQELBQADggEBABZkvvJPm0bydYmxMgjPJjXVPEC244ncL2kRiAo8BX6N xoYNUBNaQ8q0kOEAziPLJmYvuMU2t5oDy4zTlEV5tEmTOvDGqZ878uSewWisaZGN oNkFrAQTEgPgeXiewjnL3095OiQJMnjJRSUyj+3VEJSlJzEpEFGBg9uSDqBOgtVw JHN4LJJ83vDu2AOSp1SwV4R3ilI4k6lELnxkHeAhAYBtm6lE1YUJSNLSfnbhat6R kkyg+bAEdWWdYqtuolTglB0UTPBSn0CHK6RtA1J40/+/SYvdrGXohTommqfcues0 GtN0d6Jixya/t4eJoB4WPlxhqc8SfPzXJ2uY5h939LM= -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org