$ rpki-client -vvf repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3130332e3231332e3131372e302f32342d3234203d3e203338373530.roa File: 3130332e3231332e3131372e302f32342d3234203d3e203338373530.roa (raw, json) Hash identifier: AVCQCYheS5BSoSfK63mymGbndnc3O67DIxifLxMIMRQ= Subject key identifier: 08:6D:5F:2E:5E:7C:04:A8:92:54:0D:53:B1:DC:81:87:CE:98:EF:39 Certificate issuer: /CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Certificate serial: 3BE18D33786015F6B1CD3AB72918D89E9B758551 Authority key identifier: D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3130332e3231332e3131372e302f32342d3234203d3e203338373530.roa Signing time: Mon 11 Nov 2024 08:00:02 +0000 ROA not before: Mon 11 Nov 2024 07:55:02 +0000 ROA not after: Mon 10 Nov 2025 08:00:02 +0000 asID: 38750 IP address blocks: 103.213.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:e1:8d:33:78:60:15:f6:b1:cd:3a:b7:29:18:d8:9e:9b:75:85:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Validity Not Before: Nov 11 07:55:02 2024 GMT Not After : Nov 10 08:00:02 2025 GMT Subject: CN=086D5F2E5E7C04A892540D53B1DC8187CE98EF39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d3:8a:80:c7:00:9c:32:92:a3:72:28:b6:3e: ae:e0:8c:f4:8c:d2:87:9d:02:4f:8c:e8:25:4b:c0: 81:5b:ca:26:79:1a:1c:5f:48:d1:63:c5:89:31:59: 4a:c6:89:26:38:17:29:28:e6:b1:11:55:c9:72:85: d1:27:66:15:b4:59:67:c7:cd:3d:e9:93:40:61:1c: db:19:69:c7:85:43:fc:51:e4:30:26:c2:14:e9:58: a1:c4:74:72:05:09:ca:04:12:0c:35:2c:ae:5f:e7: b8:c1:27:bd:f1:ca:56:01:1d:80:cd:21:be:b1:50: a7:a9:8d:dd:fb:40:58:5d:48:1e:22:cd:92:8c:54: 58:90:a6:f5:7e:78:c6:fa:e1:81:db:73:ad:92:d1: 68:de:b9:d1:d2:06:e7:2b:24:f3:ff:a5:e0:bb:86: 95:d3:f5:a3:4d:b4:91:82:bc:06:fc:2b:01:46:1b: f7:34:40:f6:38:ae:a5:05:06:d1:cf:c3:c3:1a:5c: c4:fd:b2:07:f1:f4:f8:3f:0b:6a:5b:60:1c:c3:1a: c4:b1:09:44:b2:2a:14:e8:7d:92:74:c5:5f:7e:13: c8:40:59:60:c1:eb:67:6d:d9:c8:6b:ba:3b:16:3a: 3e:77:1b:3c:7d:23:ce:e1:7c:d8:8e:a9:0e:27:ec: b7:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:6D:5F:2E:5E:7C:04:A8:92:54:0D:53:B1:DC:81:87:CE:98:EF:39 X509v3 Authority Key Identifier: keyid:D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3130332e3231332e3131372e302f32342d3234203d3e203338373530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.213.117.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:4d:a2:7f:f4:36:87:42:f9:5b:11:0d:f7:89:f6:df:e8:df: 0c:cc:ab:78:97:46:65:d3:4e:86:10:51:e4:53:eb:69:9a:8b: 9f:ac:ab:d7:03:ef:8b:37:9e:ce:82:6c:6b:9d:8c:45:a3:39: 10:fc:0c:74:30:a0:0d:8f:51:1e:15:13:7f:b9:28:ac:10:10: 3f:78:26:fd:4b:ed:01:f2:bf:9e:f7:33:f9:a1:d9:b9:bf:df: 8b:6c:c3:dd:c2:fb:9a:b5:d9:45:f5:a8:7d:07:1b:55:51:9c: 76:5b:28:95:56:47:1c:13:12:e4:e5:35:2e:ea:60:25:b8:14: b3:db:c2:f5:68:1f:d7:8c:3d:a2:d6:1a:a7:ea:86:72:f7:0d: 46:93:73:64:6e:58:3e:e8:a2:c3:1c:74:e1:56:7a:3e:01:f9: f4:9f:3d:68:81:19:58:81:b3:f9:71:09:1d:2c:a8:9d:58:74: 3a:ed:44:76:a3:58:27:4f:ae:16:f6:bb:58:b6:f2:99:98:6a: 81:4a:74:8e:62:58:e4:94:74:7a:69:2b:c0:ee:af:4b:d7:3f: 63:ec:ff:64:e0:be:c8:df:e1:0e:f4:c1:05:e8:c8:6a:81:d5: b3:80:84:18:58:bd:97:8c:12:b2:f5:ed:81:22:8b:87:22:db: 14:bb:80:9e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUO+GNM3hgFfaxzTq3KRjYnpt1hVEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5 REUzMjAxQjAeFw0yNDExMTEwNzU1MDJaFw0yNTExMTAwODAwMDJaMDMxMTAvBgNV BAMTKDA4NkQ1RjJFNUU3QzA0QTg5MjU0MEQ1M0IxREM4MTg3Q0U5OEVGMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV04qAxwCcMpKjcii2Pq7gjPSM 0oedAk+M6CVLwIFbyiZ5GhxfSNFjxYkxWUrGiSY4Fyko5rERVclyhdEnZhW0WWfH zT3pk0BhHNsZaceFQ/xR5DAmwhTpWKHEdHIFCcoEEgw1LK5f57jBJ73xylYBHYDN Ib6xUKepjd37QFhdSB4izZKMVFiQpvV+eMb64YHbc62S0WjeudHSBucrJPP/peC7 hpXT9aNNtJGCvAb8KwFGG/c0QPY4rqUFBtHPw8MaXMT9sgfx9Pg/C2pbYBzDGsSx CUSyKhTofZJ0xV9+E8hAWWDB62dt2chrujsWOj53Gzx9I87hfNiOqQ4n7Lf9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCG1fLl58BKiSVA1TsdyBh86Y7zkwHwYDVR0j BBgwFoAU1VvoIXoiIS+Xe9lbQffJ7p3jIBswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGY1Y2ZkYi03OTg3LTQzNTEtYmMyZS02NmMyNGY0OWY0NDAvMC9ENTVCRTgyMTdB MjIyMTJGOTc3QkQ5NUI0MUY3QzlFRTlERTMyMDFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5REUz MjAxQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwZjVjZmRiLTc5ODctNDM1MS1i YzJlLTY2YzI0ZjQ5ZjQ0MC8wLzMxMzAzMzJlMzIzMTMzMmUzMTMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9V1MA0GCSqG SIb3DQEBCwUAA4IBAQAsTaJ/9DaHQvlbEQ33ifbf6N8MzKt4l0Zl006GEFHkU+tp moufrKvXA++LN57OgmxrnYxFozkQ/Ax0MKANj1EeFRN/uSisEBA/eCb9S+0B8r+e 9zP5odm5v9+LbMPdwvuatdlF9ah9BxtVUZx2WyiVVkccExLk5TUu6mAluBSz28L1 aB/XjD2i1hqn6oZy9w1Gk3Nkblg+6KLDHHThVno+Afn0nz1ogRlYgbP5cQkdLKid WHQ67UR2o1gnT64W9rtYtvKZmGqBSnSOYljklHR6aSvA7q9L1z9j7P9k4L7I3+EO 9MEF6MhqgdWzgIQYWL2XjBKy9e2BIouHItsUu4Ce -----END CERTIFICATE-----Generated at Sun Nov 24 18:20:18 2024 by rpki-client on console-ams.rpki-client.org