$ rpki-client -vvf repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/3130332e32382e31342e302f32332d3234203d3e203538343034.roa File: 3130332e32382e31342e302f32332d3234203d3e203538343034.roa (raw, json) Hash identifier: TYanWHMpregDr4E1iIZzCFBC+NEEhazNFpWOvRWmhsg= Subject key identifier: B4:67:1C:09:EB:FA:42:F0:F9:3F:E7:D3:60:F3:73:FE:68:04:6C:BC Certificate issuer: /CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Certificate serial: 4A7FD9270ECC4A95A11B91A9F5DE55A68BA86734 Authority key identifier: C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/3130332e32382e31342e302f32332d3234203d3e203538343034.roa Signing time: Wed 20 Dec 2023 11:00:01 +0000 ROA not before: Wed 20 Dec 2023 10:55:01 +0000 ROA not after: Wed 18 Dec 2024 11:00:01 +0000 asID: 58404 IP address blocks: 103.28.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 06:31:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:7f:d9:27:0e:cc:4a:95:a1:1b:91:a9:f5:de:55:a6:8b:a8:67:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Validity Not Before: Dec 20 10:55:01 2023 GMT Not After : Dec 18 11:00:01 2024 GMT Subject: CN=B4671C09EBFA42F0F93FE7D360F373FE68046CBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:97:64:c2:e3:10:c1:0f:dc:1d:6e:4c:a4:bf: fe:9d:a8:46:1a:4d:5f:2f:11:71:a2:d9:35:8a:4d: f6:db:28:e4:43:4c:87:a3:bf:7d:d2:31:7c:aa:44: bf:9f:75:fd:67:d6:57:dd:60:ca:e0:7a:ca:b2:e2: be:18:99:a3:09:50:f6:63:7c:3a:50:b9:f0:96:17: b3:cf:34:39:42:47:16:51:0d:a1:3e:79:a9:34:65: 52:2a:46:5b:3d:d6:6e:c1:6b:c6:77:b5:f1:4c:82: 02:08:6c:ff:66:6a:29:ec:92:0a:b3:9c:86:e0:2c: e1:8f:69:9b:a4:a1:13:2a:9c:c1:7b:43:56:69:b1: cc:a9:48:ed:ff:e9:25:34:dc:9d:b0:22:a2:b6:56: 9d:fc:59:7b:ce:c1:8b:d0:01:3d:c5:8d:a0:22:96: 31:19:2f:9d:41:d8:c3:21:29:37:69:c9:13:ea:d5: 57:ba:6f:fc:bd:51:d9:44:c1:e6:04:d7:41:7f:d5: c8:8f:ab:6f:95:c4:b2:65:ee:8d:45:00:fb:fc:bb: a8:3e:ba:c8:b3:84:e8:e4:4a:47:b2:b7:f0:e6:45: c0:f8:8d:89:fa:f2:ab:b8:9c:f3:69:9d:6a:20:16: fa:59:c8:01:05:92:5c:08:28:2e:af:93:be:c0:94: d6:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:67:1C:09:EB:FA:42:F0:F9:3F:E7:D3:60:F3:73:FE:68:04:6C:BC X509v3 Authority Key Identifier: keyid:C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/3130332e32382e31342e302f32332d3234203d3e203538343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.14.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:39:2a:8c:1c:11:d5:d8:cd:8b:32:85:38:2d:93:27:dd:05: d6:0b:a8:33:73:6e:d8:e5:d0:39:d6:57:72:8e:bf:2b:53:f1: 59:84:8b:aa:e7:ef:d5:0f:b8:dc:d6:b3:e8:38:90:af:18:56: 59:e2:56:27:14:ea:d0:72:2b:95:58:4f:7a:8d:e0:0d:a7:c9: af:d7:4a:fb:64:5d:1c:7b:8a:ca:9d:12:5d:52:8d:fe:5a:fc: 32:f2:00:b4:32:68:26:8c:ce:44:49:fb:5c:8f:df:f5:ad:8b: 97:1f:84:69:43:ac:b3:ef:e3:af:c3:9c:7a:cf:68:4e:89:71: e4:6c:a4:d3:26:99:12:a3:c3:15:7c:97:52:92:c8:4f:64:c0: be:e5:73:a8:bf:db:b8:aa:80:11:e8:35:ad:91:34:ca:c1:3e: 59:e0:43:de:ea:1f:f6:e1:4b:de:e0:a2:10:85:f4:05:dc:56: 75:37:92:4a:3a:27:16:e7:ad:fc:b5:38:da:c4:c8:2d:88:7c: 26:10:d2:33:76:29:75:cf:f3:15:d2:2e:e0:4d:86:a8:f3:ab: ed:73:ee:8a:2c:be:74:24:31:03:be:f7:76:58:89:ae:a1:cf: de:ca:7d:0f:72:82:3b:34:46:c4:26:3e:fc:b7:23:01:be:f6: 8b:d8:c3:77 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUSn/ZJw7MSpWhG5Gp9d5VpouoZzQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZG QjQ4ODcxQTAeFw0yMzEyMjAxMDU1MDFaFw0yNDEyMTgxMTAwMDFaMDMxMTAvBgNV BAMTKEI0NjcxQzA5RUJGQTQyRjBGOTNGRTdEMzYwRjM3M0ZFNjgwNDZDQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhl2TC4xDBD9wdbkykv/6dqEYa TV8vEXGi2TWKTfbbKORDTIejv33SMXyqRL+fdf1n1lfdYMrgesqy4r4YmaMJUPZj fDpQufCWF7PPNDlCRxZRDaE+eak0ZVIqRls91m7Ba8Z3tfFMggIIbP9mainskgqz nIbgLOGPaZukoRMqnMF7Q1ZpscypSO3/6SU03J2wIqK2Vp38WXvOwYvQAT3FjaAi ljEZL51B2MMhKTdpyRPq1Ve6b/y9UdlEweYE10F/1ciPq2+VxLJl7o1FAPv8u6g+ usizhOjkSkeyt/DmRcD4jYn68qu4nPNpnWogFvpZyAEFklwIKC6vk77AlNZBAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUtGccCev6QvD5P+fTYPNz/mgEbLwwHwYDVR0j BBgwFoAUwlRKDB7oq/naBhRQCTABL/tIhxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTBmOTE2My0zZTVhLTRlZmEtOGJkOS00YWM0YmM2MzA0MTQvMC9DMjU0NEEwQzFF RThBQkY5REEwNjE0NTAwOTMwMDEyRkZCNDg4NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZGQjQ4 ODcxQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlMGY5MTYzLTNlNWEtNGVmYS04 YmQ5LTRhYzRiYzYzMDQxNC8wLzMxMzAzMzJlMzIzODJlMzEzNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDM1MzgzNDMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnHA4wDQYJKoZIhvcN AQELBQADggEBAD05KowcEdXYzYsyhTgtkyfdBdYLqDNzbtjl0DnWV3KOvytT8VmE i6rn79UPuNzWs+g4kK8YVlniVicU6tByK5VYT3qN4A2nya/XSvtkXRx7isqdEl1S jf5a/DLyALQyaCaMzkRJ+1yP3/Wti5cfhGlDrLPv46/DnHrPaE6JceRspNMmmRKj wxV8l1KSyE9kwL7lc6i/27iqgBHoNa2RNMrBPlngQ97qH/bhS97gohCF9AXcVnU3 kko6Jxbnrfy1ONrEyC2IfCYQ0jN2KXXP8xXSLuBNhqjzq+1z7oosvnQkMQO+93ZY ia6hz97KfQ9ygjs0RsQmPvy3IwG+9ovYw3c= -----END CERTIFICATE-----Generated at Tue Apr 30 21:57:34 2024 by rpki-client on console-ams.rpki-client.org