$ rpki-client -vvf repo-rpki.idnic.net/repo/7d266511-639e-4c2b-9634-9cc1e22fa708/0/3130332e3136322e3231382e302f32332d3233203d3e20313331373433.roa File: 3130332e3136322e3231382e302f32332d3233203d3e20313331373433.roa (raw, json) Hash identifier: uar2KWHhA09iuCkv6r0L7oyWWvVO/yeR/R//2EimVbM= Subject key identifier: 5B:BE:66:69:41:3E:C6:20:7B:25:5E:09:6A:A4:68:96:40:DE:23:B8 Certificate issuer: /CN=6CDF5CD1FDDFF2C024C13A29264D70FA51F9587A Certificate serial: 48E6F5450739324C87E658BD07C76F40C84E357F Authority key identifier: 6C:DF:5C:D1:FD:DF:F2:C0:24:C1:3A:29:26:4D:70:FA:51:F9:58:7A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6CDF5CD1FDDFF2C024C13A29264D70FA51F9587A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d266511-639e-4c2b-9634-9cc1e22fa708/0/3130332e3136322e3231382e302f32332d3233203d3e20313331373433.roa Signing time: Tue 26 Dec 2023 12:00:02 +0000 ROA not before: Tue 26 Dec 2023 11:55:02 +0000 ROA not after: Tue 24 Dec 2024 12:00:02 +0000 asID: 131743 IP address blocks: 103.162.218.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d266511-639e-4c2b-9634-9cc1e22fa708/0/6CDF5CD1FDDFF2C024C13A29264D70FA51F9587A.crl rsync://repo-rpki.idnic.net/repo/7d266511-639e-4c2b-9634-9cc1e22fa708/0/6CDF5CD1FDDFF2C024C13A29264D70FA51F9587A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6CDF5CD1FDDFF2C024C13A29264D70FA51F9587A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:e6:f5:45:07:39:32:4c:87:e6:58:bd:07:c7:6f:40:c8:4e:35:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6CDF5CD1FDDFF2C024C13A29264D70FA51F9587A Validity Not Before: Dec 26 11:55:02 2023 GMT Not After : Dec 24 12:00:02 2024 GMT Subject: CN=5BBE6669413EC6207B255E096AA4689640DE23B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e1:52:bc:3b:02:18:82:14:b8:c4:59:d5:4c: 63:6d:a9:9d:5e:fd:54:a9:73:3d:98:ce:91:8e:06: 89:af:88:31:47:1d:cf:2d:e3:f3:57:b4:af:80:f9: 7b:92:5d:49:79:eb:20:9a:b4:e9:cb:f4:0f:0c:bd: 01:cb:6b:ca:23:b5:dd:df:03:29:60:c6:69:4a:fc: da:8a:46:1d:9d:f3:9e:e6:91:5f:4b:ed:d2:6e:9c: 75:ae:1a:41:e1:4f:26:6b:f7:a5:a2:f8:06:fa:00: d8:99:0d:09:f3:45:f4:54:dc:c3:07:93:ce:03:d6: 35:b2:c1:52:2e:ac:7f:9f:6c:46:5e:78:2f:8e:02: 2c:0e:fc:04:c3:5f:b1:a3:17:5f:b8:7f:33:d3:f8: 47:e5:7d:13:8a:12:33:d0:88:3a:40:5c:e6:13:fc: 6b:8d:34:55:74:50:3e:c7:d9:8f:59:b7:6d:3b:15: e3:74:f0:85:ce:5b:00:21:ea:22:d7:1a:6c:e5:29: b3:f5:31:1a:bf:50:26:11:f6:b5:14:af:33:bb:e0: 12:f8:99:36:37:af:60:d1:81:f4:b2:68:71:5e:00: c0:90:69:2e:79:b1:c2:26:18:41:30:43:b9:42:6b: 8c:4a:ec:33:f9:96:03:2e:9e:33:8f:39:cd:5c:80: 9f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:BE:66:69:41:3E:C6:20:7B:25:5E:09:6A:A4:68:96:40:DE:23:B8 X509v3 Authority Key Identifier: keyid:6C:DF:5C:D1:FD:DF:F2:C0:24:C1:3A:29:26:4D:70:FA:51:F9:58:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d266511-639e-4c2b-9634-9cc1e22fa708/0/6CDF5CD1FDDFF2C024C13A29264D70FA51F9587A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6CDF5CD1FDDFF2C024C13A29264D70FA51F9587A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d266511-639e-4c2b-9634-9cc1e22fa708/0/3130332e3136322e3231382e302f32332d3233203d3e20313331373433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.218.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:80:cb:28:8a:29:1f:a5:74:43:63:ea:eb:6e:16:91:41:1b: 33:19:c8:fc:bf:00:b0:8c:dc:55:68:9c:2a:2c:2c:8f:53:eb: 30:31:b2:66:56:5f:56:5e:ae:0e:e2:61:63:a7:06:ba:c2:0b: 53:08:9e:e1:57:66:79:1e:c0:25:28:a8:20:09:8f:3d:53:ff: ee:fe:f9:9d:be:59:3c:41:d4:5d:21:b0:ff:fb:23:1c:a2:7c: 83:7d:af:fa:af:71:72:7c:ba:55:32:5f:17:60:05:05:a9:f1: 98:4d:35:47:f8:72:66:df:12:fd:0e:24:89:99:a4:c6:48:39: 41:29:48:5c:35:45:a9:fd:79:5e:ba:ec:7e:f2:ad:72:ca:38: df:3a:c2:46:1c:eb:e0:d9:71:b0:7f:f0:ea:98:c2:d6:62:b8: a7:87:ac:80:b3:10:d0:0e:8f:3e:4c:8a:65:e9:05:f4:6e:c7: 62:28:0d:64:8c:54:22:47:9b:0b:55:19:ff:2b:0f:29:b2:34: 30:02:c7:9f:97:03:57:ae:44:d5:c6:17:e2:90:aa:b9:6c:63: 33:6f:79:22:7f:a2:4c:c3:c9:d8:43:9d:17:26:f0:3e:59:e9: e5:f7:d0:5d:ae:60:0a:21:f3:55:33:7c:87:a8:ad:f7:d0:3b: 43:8c:53:15 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSOb1RQc5MkyH5li9B8dvQMhONX8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkNERjVDRDFGRERGRjJDMDI0QzEzQTI5MjY0RDcwRkE1 MUY5NTg3QTAeFw0yMzEyMjYxMTU1MDJaFw0yNDEyMjQxMjAwMDJaMDMxMTAvBgNV BAMTKDVCQkU2NjY5NDEzRUM2MjA3QjI1NUUwOTZBQTQ2ODk2NDBERTIzQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF4VK8OwIYghS4xFnVTGNtqZ1e /VSpcz2YzpGOBomviDFHHc8t4/NXtK+A+XuSXUl56yCatOnL9A8MvQHLa8ojtd3f AylgxmlK/NqKRh2d857mkV9L7dJunHWuGkHhTyZr96Wi+Ab6ANiZDQnzRfRU3MMH k84D1jWywVIurH+fbEZeeC+OAiwO/ATDX7GjF1+4fzPT+EflfROKEjPQiDpAXOYT /GuNNFV0UD7H2Y9Zt207FeN08IXOWwAh6iLXGmzlKbP1MRq/UCYR9rUUrzO74BL4 mTY3r2DRgfSyaHFeAMCQaS55scImGEEwQ7lCa4xK7DP5lgMunjOPOc1cgJ/HAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUW75maUE+xiB7JV4JaqRolkDeI7gwHwYDVR0j BBgwFoAUbN9c0f3f8sAkwTopJk1w+lH5WHowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDI2NjUxMS02MzllLTRjMmItOTYzNC05Y2MxZTIyZmE3MDgvMC82Q0RGNUNEMUZE REZGMkMwMjRDMTNBMjkyNjRENzBGQTUxRjk1ODdBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkNERjVDRDFGRERGRjJDMDI0QzEzQTI5MjY0RDcwRkE1MUY5 NTg3QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkMjY2NTExLTYzOWUtNGMyYi05 NjM0LTljYzFlMjJmYTcwOC8wLzMxMzAzMzJlMzEzNjMyMmUzMjMxMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzEzNzM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnotowDQYJ KoZIhvcNAQELBQADggEBAA+AyyiKKR+ldENj6utuFpFBGzMZyPy/ALCM3FVonCos LI9T6zAxsmZWX1Zerg7iYWOnBrrCC1MInuFXZnkewCUoqCAJjz1T/+7++Z2+WTxB 1F0hsP/7IxyifIN9r/qvcXJ8ulUyXxdgBQWp8ZhNNUf4cmbfEv0OJImZpMZIOUEp SFw1Ran9eV667H7yrXLKON86wkYc6+DZcbB/8OqYwtZiuKeHrICzENAOjz5MimXp BfRux2IoDWSMVCJHmwtVGf8rDymyNDACx5+XA1euRNXGF+KQqrlsYzNveSJ/okzD ydhDnRcm8D5Z6eX30F2uYAoh81UzfIeorffQO0OMUxU= -----END CERTIFICATE-----Generated at Fri Nov 22 22:09:28 2024 by rpki-client on console-ams.rpki-client.org