$ rpki-client -vvf repo-rpki.idnic.net/repo/7c4935d8-96a2-4564-85a3-32a53189367e/0/3130332e3234352e33382e302f32332d3234203d3e203535363838.roa File: 3130332e3234352e33382e302f32332d3234203d3e203535363838.roa (raw, json) Hash identifier: sfkJ0JTL5ebL+3NyzyS4seDOCuegsswJp2YAbd6RC9s= Subject key identifier: ED:52:D8:FA:C6:9D:91:6A:E1:64:1E:A4:65:FA:5C:6A:C4:68:9D:14 Certificate issuer: /CN=4A9E8C61BE3670D865B8A79D7D32798550E64F2B Certificate serial: 6D5D06E06F5D8F2D2D9CED229E2B36EFC81636B5 Authority key identifier: 4A:9E:8C:61:BE:36:70:D8:65:B8:A7:9D:7D:32:79:85:50:E6:4F:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A9E8C61BE3670D865B8A79D7D32798550E64F2B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7c4935d8-96a2-4564-85a3-32a53189367e/0/3130332e3234352e33382e302f32332d3234203d3e203535363838.roa Signing time: Mon 14 Oct 2024 02:00:00 +0000 ROA not before: Mon 14 Oct 2024 01:55:00 +0000 ROA not after: Mon 13 Oct 2025 02:00:00 +0000 asID: 55688 IP address blocks: 103.245.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7c4935d8-96a2-4564-85a3-32a53189367e/0/4A9E8C61BE3670D865B8A79D7D32798550E64F2B.crl rsync://repo-rpki.idnic.net/repo/7c4935d8-96a2-4564-85a3-32a53189367e/0/4A9E8C61BE3670D865B8A79D7D32798550E64F2B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A9E8C61BE3670D865B8A79D7D32798550E64F2B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:5d:06:e0:6f:5d:8f:2d:2d:9c:ed:22:9e:2b:36:ef:c8:16:36:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A9E8C61BE3670D865B8A79D7D32798550E64F2B Validity Not Before: Oct 14 01:55:00 2024 GMT Not After : Oct 13 02:00:00 2025 GMT Subject: CN=ED52D8FAC69D916AE1641EA465FA5C6AC4689D14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f9:63:38:5f:f8:5b:98:ca:3b:a0:3b:bb:3b: 0d:9f:53:da:b2:64:ed:b4:0c:9f:eb:54:64:f0:fd: 3c:f9:22:73:b2:38:8b:8f:92:21:42:42:18:c7:62: 12:de:66:1f:56:ae:cc:3c:95:a7:ec:16:d1:98:e8: c7:26:10:ab:ac:1b:5a:09:e8:51:c2:f1:15:07:ef: 2b:b0:25:c4:ac:34:8d:51:2e:54:b5:16:76:f4:df: 43:46:68:33:4f:f5:00:b8:63:fb:c7:03:b0:13:1f: 50:6d:34:18:53:62:9e:70:86:9e:4a:fc:92:5c:39: f3:38:2f:4b:52:34:7e:ef:c0:2b:dd:b4:e7:f0:64: 41:cc:b9:09:4c:37:e8:e1:ec:c7:6d:d3:40:a3:7b: 32:04:3b:a4:ed:ce:ab:d6:9f:e0:24:be:3f:2c:c8: e4:28:75:2f:e5:52:91:2e:b7:da:50:44:e9:34:dd: f3:e3:75:de:21:3c:73:a2:2e:03:ff:fc:cd:5a:82: bd:28:40:87:1c:77:15:1d:f6:47:39:9e:df:4d:8a: 5f:8f:31:6a:45:7d:e8:fc:46:f7:c1:cb:d2:7e:e8: 2c:e6:a4:8c:05:77:08:79:90:56:ae:75:07:ba:99: e3:53:a0:ab:a7:7a:11:8e:5c:f2:01:bb:e5:4d:d2: 56:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:52:D8:FA:C6:9D:91:6A:E1:64:1E:A4:65:FA:5C:6A:C4:68:9D:14 X509v3 Authority Key Identifier: keyid:4A:9E:8C:61:BE:36:70:D8:65:B8:A7:9D:7D:32:79:85:50:E6:4F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7c4935d8-96a2-4564-85a3-32a53189367e/0/4A9E8C61BE3670D865B8A79D7D32798550E64F2B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A9E8C61BE3670D865B8A79D7D32798550E64F2B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7c4935d8-96a2-4564-85a3-32a53189367e/0/3130332e3234352e33382e302f32332d3234203d3e203535363838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.245.38.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:7b:1b:84:66:f6:ec:48:2b:bb:39:ed:39:5d:41:e4:07:f2: ba:62:a0:bf:30:a0:ac:a6:b8:d2:57:44:12:b8:85:fd:ad:c5: f5:14:ac:7d:60:51:7f:50:bc:ba:71:af:18:32:02:24:a8:0b: f8:c3:2c:a0:ba:d9:aa:b6:ed:8a:74:77:ea:7c:1f:46:1d:70: dc:85:06:44:f8:91:9e:ed:5a:43:45:85:e5:d8:3c:8c:cc:fc: 30:15:a6:ea:d2:80:ea:b5:f8:20:2d:74:10:bf:66:4b:46:03: 38:19:f1:f1:5c:93:91:14:de:6d:2f:0f:25:f5:d0:57:fe:e1: 61:e0:ca:e8:dc:2b:13:e7:b9:d0:c4:04:aa:e5:ce:08:fc:49: 86:fe:3f:66:01:d0:7d:c4:d4:20:d3:9e:ee:e5:a3:2b:03:36: 73:fe:66:1d:99:6f:d0:07:50:0d:47:f5:03:9c:6b:44:de:69: 32:06:7a:6b:d9:55:f6:8f:96:67:3c:72:77:c5:fe:17:99:a3: 30:2e:ed:0f:53:1c:8b:f1:5f:6a:4a:a9:b7:72:75:57:e1:82: 38:7b:a8:93:9f:23:1e:81:39:63:03:19:1b:fd:ec:bf:98:fc: 9e:87:91:b5:99:76:61:40:d2:82:b3:d9:4f:6b:ac:45:91:6d: 02:33:96:df -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbV0G4G9djy0tnO0inis278gWNrUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEE5RThDNjFCRTM2NzBEODY1QjhBNzlEN0QzMjc5ODU1 MEU2NEYyQjAeFw0yNDEwMTQwMTU1MDBaFw0yNTEwMTMwMjAwMDBaMDMxMTAvBgNV BAMTKEVENTJEOEZBQzY5RDkxNkFFMTY0MUVBNDY1RkE1QzZBQzQ2ODlEMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE+WM4X/hbmMo7oDu7Ow2fU9qy ZO20DJ/rVGTw/Tz5InOyOIuPkiFCQhjHYhLeZh9Wrsw8lafsFtGY6McmEKusG1oJ 6FHC8RUH7yuwJcSsNI1RLlS1Fnb030NGaDNP9QC4Y/vHA7ATH1BtNBhTYp5whp5K /JJcOfM4L0tSNH7vwCvdtOfwZEHMuQlMN+jh7Mdt00CjezIEO6TtzqvWn+Akvj8s yOQodS/lUpEut9pQROk03fPjdd4hPHOiLgP//M1agr0oQIccdxUd9kc5nt9Nil+P MWpFfej8RvfBy9J+6CzmpIwFdwh5kFaudQe6meNToKunehGOXPIBu+VN0lbHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU7VLY+sadkWrhZB6kZfpcasRonRQwHwYDVR0j BBgwFoAUSp6MYb42cNhluKedfTJ5hVDmTyswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YzQ5MzVkOC05NmEyLTQ1NjQtODVhMy0zMmE1MzE4OTM2N2UvMC80QTlFOEM2MUJF MzY3MEQ4NjVCOEE3OUQ3RDMyNzk4NTUwRTY0RjJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEE5RThDNjFCRTM2NzBEODY1QjhBNzlEN0QzMjc5ODU1MEU2 NEYyQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjNDkzNWQ4LTk2YTItNDU2NC04 NWEzLTMyYTUzMTg5MzY3ZS8wLzMxMzAzMzJlMzIzNDM1MmUzMzM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzNTM2MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWf1JjANBgkqhkiG 9w0BAQsFAAOCAQEAbHsbhGb27EgruzntOV1B5AfyumKgvzCgrKa40ldEEriF/a3F 9RSsfWBRf1C8unGvGDICJKgL+MMsoLrZqrbtinR36nwfRh1w3IUGRPiRnu1aQ0WF 5dg8jMz8MBWm6tKA6rX4IC10EL9mS0YDOBnx8VyTkRTebS8PJfXQV/7hYeDK6Nwr E+e50MQEquXOCPxJhv4/ZgHQfcTUINOe7uWjKwM2c/5mHZlv0AdQDUf1A5xrRN5p MgZ6a9lV9o+WZzxyd8X+F5mjMC7tD1Mci/Ffakqpt3J1V+GCOHuok58jHoE5YwMZ G/3sv5j8noeRtZl2YUDSgrPZT2usRZFtAjOW3w== -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:57 2024 by rpki-client on console-fra.rpki-client.org