$ rpki-client -vvf repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/3130332e32382e31342e302f32332d3234203d3e203538343034.roa File: 3130332e32382e31342e302f32332d3234203d3e203538343034.roa (raw, json) Hash identifier: g8UPVDpb1m/IFnDlcUZIzOXR04b/PAWmv165hevmi70= Subject key identifier: 09:B8:6E:6A:8B:EB:E6:89:7B:20:E8:34:80:EA:83:89:BA:60:12:75 Certificate issuer: /CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Certificate serial: 5B92A37AAF5DAAF1BFB4FA1B4508F792AB68D690 Authority key identifier: C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/3130332e32382e31342e302f32332d3234203d3e203538343034.roa Signing time: Wed 20 Nov 2024 12:00:01 +0000 ROA not before: Wed 20 Nov 2024 11:55:01 +0000 ROA not after: Wed 19 Nov 2025 12:00:01 +0000 asID: 58404 IP address blocks: 103.28.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:92:a3:7a:af:5d:aa:f1:bf:b4:fa:1b:45:08:f7:92:ab:68:d6:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Validity Not Before: Nov 20 11:55:01 2024 GMT Not After : Nov 19 12:00:01 2025 GMT Subject: CN=09B86E6A8BEBE6897B20E83480EA8389BA601275 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d9:fb:5f:69:00:9e:09:78:80:9b:01:d7:2e: a9:a0:72:49:2f:0c:85:0a:5e:e6:32:b4:99:fd:b2: 88:67:e4:8e:49:53:95:9d:60:96:95:58:f9:11:70: 91:2e:60:f9:30:69:8d:82:6f:f4:f6:a7:fa:7a:3c: 63:29:1e:9f:7a:5f:1f:59:98:b4:42:9d:6e:79:c5: e2:b6:e7:be:4d:8c:f5:53:04:b7:d7:f6:0c:c1:b5: cc:05:67:41:22:57:2f:4b:70:3c:14:f5:f3:4c:fb: 0d:12:9d:42:43:bf:be:b5:43:85:38:c1:e3:7d:f0: b7:7c:dc:99:8b:35:1c:df:51:7c:bf:d9:db:05:4f: 3e:e9:1b:c7:bb:30:fa:19:20:52:7b:ae:56:3f:37: d7:9a:eb:b6:b8:b5:87:a7:a6:dd:53:32:d5:30:ba: b8:5f:6f:1c:82:4e:18:27:0f:3a:f9:2e:4d:1b:51: 6d:ae:a0:1d:03:82:54:f1:ac:70:9f:df:0b:45:0d: bc:f9:01:5d:d4:ae:9a:d7:b3:3e:b1:4b:cc:7a:16: b3:2b:02:d6:08:50:de:b4:0f:ed:fc:6c:64:10:1a: 4c:e4:89:33:7d:ed:b6:b9:71:f1:2b:51:cd:5b:87: 15:b9:e9:95:55:b4:7a:14:09:10:f0:b5:e9:a7:cd: d9:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:B8:6E:6A:8B:EB:E6:89:7B:20:E8:34:80:EA:83:89:BA:60:12:75 X509v3 Authority Key Identifier: keyid:C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/3130332e32382e31342e302f32332d3234203d3e203538343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.14.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:ba:ab:17:c3:cd:fb:4c:05:8e:cb:82:0f:b2:d8:b6:2f:99: aa:ee:31:df:c2:56:c7:60:56:f0:6c:71:84:b5:6c:c3:d2:df: 95:53:ed:f5:57:11:fd:35:a8:fd:20:74:f3:f1:de:a3:96:ff: d2:7d:af:77:cb:41:6f:a3:4f:42:12:89:cf:46:8a:cc:30:81: 33:a7:a8:9a:8d:93:5e:98:9d:f0:9e:8e:70:b4:3c:8a:86:6e: 2a:91:cc:4b:58:2c:8b:50:7b:8e:5d:63:99:92:61:ff:5c:6c: 35:09:b6:6f:e2:a2:b6:b7:79:31:b4:b8:5c:a2:21:8f:aa:12: 12:d7:81:0c:31:d2:29:bf:7c:ca:8a:a0:07:28:0c:4c:eb:d4: a7:ca:82:91:c3:24:e7:f8:60:50:1f:de:25:1e:52:10:22:d5: 8a:34:5c:6a:fa:32:0b:3f:fd:9d:5c:f4:5b:de:64:70:38:6d: 8e:ce:1f:c1:ae:c6:e9:ae:31:ce:a3:0b:d3:4c:ac:d9:ba:15: 8b:43:9e:70:98:24:91:62:b6:cc:8d:4c:1a:49:6a:71:a5:70: 2c:b8:15:cd:86:02:69:40:e9:f4:f1:a9:8a:a2:03:67:53:1b: ab:3b:b0:56:8c:5b:fc:3d:47:28:66:f0:2f:db:77:68:a9:cd: 1e:28:32:93 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUW5Kjeq9dqvG/tPobRQj3kqto1pAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZG QjQ4ODcxQTAeFw0yNDExMjAxMTU1MDFaFw0yNTExMTkxMjAwMDFaMDMxMTAvBgNV BAMTKDA5Qjg2RTZBOEJFQkU2ODk3QjIwRTgzNDgwRUE4Mzg5QkE2MDEyNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC62ftfaQCeCXiAmwHXLqmgckkv DIUKXuYytJn9sohn5I5JU5WdYJaVWPkRcJEuYPkwaY2Cb/T2p/p6PGMpHp96Xx9Z mLRCnW55xeK2575NjPVTBLfX9gzBtcwFZ0EiVy9LcDwU9fNM+w0SnUJDv761Q4U4 weN98Ld83JmLNRzfUXy/2dsFTz7pG8e7MPoZIFJ7rlY/N9ea67a4tYenpt1TMtUw urhfbxyCThgnDzr5Lk0bUW2uoB0DglTxrHCf3wtFDbz5AV3UrprXsz6xS8x6FrMr AtYIUN60D+38bGQQGkzkiTN97ba5cfErUc1bhxW56ZVVtHoUCRDwtemnzdn7AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUCbhuaovr5ol7IOg0gOqDibpgEnUwHwYDVR0j BBgwFoAUwlRKDB7oq/naBhRQCTABL/tIhxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTBmOTE2My0zZTVhLTRlZmEtOGJkOS00YWM0YmM2MzA0MTQvMC9DMjU0NEEwQzFF RThBQkY5REEwNjE0NTAwOTMwMDEyRkZCNDg4NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZGQjQ4 ODcxQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlMGY5MTYzLTNlNWEtNGVmYS04 YmQ5LTRhYzRiYzYzMDQxNC8wLzMxMzAzMzJlMzIzODJlMzEzNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDM1MzgzNDMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnHA4wDQYJKoZIhvcN AQELBQADggEBAI66qxfDzftMBY7Lgg+y2LYvmaruMd/CVsdgVvBscYS1bMPS35VT 7fVXEf01qP0gdPPx3qOW/9J9r3fLQW+jT0ISic9GiswwgTOnqJqNk16YnfCejnC0 PIqGbiqRzEtYLItQe45dY5mSYf9cbDUJtm/iora3eTG0uFyiIY+qEhLXgQwx0im/ fMqKoAcoDEzr1KfKgpHDJOf4YFAf3iUeUhAi1Yo0XGr6Mgs//Z1c9FveZHA4bY7O H8GuxumuMc6jC9NMrNm6FYtDnnCYJJFitsyNTBpJanGlcCy4Fc2GAmlA6fTxqYqi A2dTG6s7sFaMW/w9Ryhm8C/bd2ipzR4oMpM= -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:26 2024 by rpki-client on console-ams.rpki-client.org