$ rpki-client -vvf repo-rpki.idnic.net/repo/8165e481-5a79-4868-a4e4-facfd922d813/0/3130332e3135302e3135392e302f32342d3234203d3e20313430343331.roa File: 3130332e3135302e3135392e302f32342d3234203d3e20313430343331.roa (raw, json) Hash identifier: vtP1991mV/5NWvka+SRAlimo91EQmrcLduAqGSOxOcU= Subject key identifier: C3:E3:97:56:FA:DC:12:6C:AC:62:45:7B:F4:FA:AC:24:C0:A9:AE:1B Certificate issuer: /CN=FB3AAFE074610C85854BE75082EC16E60A126879 Certificate serial: 38EB8A20409F7F4BBFB6DC0F4BBDDF66153BD3B1 Authority key identifier: FB:3A:AF:E0:74:61:0C:85:85:4B:E7:50:82:EC:16:E6:0A:12:68:79 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FB3AAFE074610C85854BE75082EC16E60A126879.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8165e481-5a79-4868-a4e4-facfd922d813/0/3130332e3135302e3135392e302f32342d3234203d3e20313430343331.roa Signing time: Thu 04 Apr 2024 14:19:57 +0000 ROA not before: Thu 04 Apr 2024 14:14:57 +0000 ROA not after: Thu 03 Apr 2025 14:19:57 +0000 asID: 140431 IP address blocks: 103.150.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8165e481-5a79-4868-a4e4-facfd922d813/0/FB3AAFE074610C85854BE75082EC16E60A126879.crl rsync://repo-rpki.idnic.net/repo/8165e481-5a79-4868-a4e4-facfd922d813/0/FB3AAFE074610C85854BE75082EC16E60A126879.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FB3AAFE074610C85854BE75082EC16E60A126879.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:eb:8a:20:40:9f:7f:4b:bf:b6:dc:0f:4b:bd:df:66:15:3b:d3:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB3AAFE074610C85854BE75082EC16E60A126879 Validity Not Before: Apr 4 14:14:57 2024 GMT Not After : Apr 3 14:19:57 2025 GMT Subject: CN=C3E39756FADC126CAC62457BF4FAAC24C0A9AE1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:2d:98:6e:6d:6d:d1:ce:a5:af:2f:49:0e:f6: bc:b0:1d:ce:9b:0e:69:8b:59:a1:02:d7:a9:58:e5: c2:72:5f:7e:5e:50:ee:1a:c1:77:00:7c:d8:6e:a4: 5e:f7:75:45:9d:92:00:6d:72:47:80:01:52:78:85: 9f:ad:cb:9f:56:61:8a:eb:bc:86:cf:94:4b:e7:31: 61:13:d6:02:f3:f6:b8:67:d2:22:fe:9b:49:5b:98: f8:16:8c:69:c4:bd:44:9c:94:9d:7f:fa:03:07:10: 9e:97:3e:73:ce:89:da:cc:05:7e:66:b2:5a:5d:7c: c7:ad:7c:04:34:ca:1e:b0:b5:03:6b:f1:ff:bb:b4: 51:44:49:8f:6b:ca:d4:56:37:3c:47:0e:04:34:5f: 2b:f5:11:8a:b6:75:11:3b:d0:09:3f:26:57:56:4d: 07:e0:db:96:56:61:3c:7e:a1:2c:68:9a:cc:6b:b9: ac:71:e8:19:e5:9f:2f:36:57:1b:40:e5:67:5f:09: 74:32:6b:28:f1:f6:a8:76:3e:ae:77:6e:c4:16:cd: 95:f3:34:dd:ac:e2:3c:b7:4b:be:ee:5b:2d:09:1d: 9e:23:b1:e5:41:b7:1d:e1:2d:55:3a:35:4b:f3:95: 3c:4a:12:79:75:07:f2:3d:50:ad:89:90:59:63:64: 0d:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:E3:97:56:FA:DC:12:6C:AC:62:45:7B:F4:FA:AC:24:C0:A9:AE:1B X509v3 Authority Key Identifier: keyid:FB:3A:AF:E0:74:61:0C:85:85:4B:E7:50:82:EC:16:E6:0A:12:68:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8165e481-5a79-4868-a4e4-facfd922d813/0/FB3AAFE074610C85854BE75082EC16E60A126879.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FB3AAFE074610C85854BE75082EC16E60A126879.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8165e481-5a79-4868-a4e4-facfd922d813/0/3130332e3135302e3135392e302f32342d3234203d3e20313430343331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.150.159.0/24 Signature Algorithm: sha256WithRSAEncryption 96:dc:1f:81:f7:83:cb:d5:31:b9:77:17:02:b9:3a:11:50:a6: b2:d9:e7:1f:cd:99:46:b7:02:03:f6:85:03:7a:95:67:b0:5a: 20:9a:dd:3d:ca:8b:32:89:d6:fd:29:b3:fd:8a:08:2b:c8:42: a1:85:8f:64:e6:2d:a9:f0:3f:f3:06:af:29:1c:a1:ae:94:bb: 72:92:31:48:bf:02:bf:2c:a9:ef:7d:d0:21:d0:ec:b1:4b:77: 8c:91:93:f3:25:ef:0b:36:a1:37:cb:c7:87:14:69:a5:c9:7f: 0c:ab:99:87:4a:2f:44:1d:ad:03:49:55:1a:e2:e6:9f:04:0f: 7f:1e:a0:95:f4:ab:8e:dd:85:d5:9c:83:76:06:49:32:f6:14: d5:ef:64:8e:24:20:f5:cf:95:02:35:70:1e:e0:05:46:f6:15: d1:93:11:c3:a1:e4:c8:98:34:cf:a4:f9:bc:90:cc:5e:fe:e9: a8:82:e6:b0:e6:a4:38:70:15:a3:e4:6d:7a:c9:ec:2c:79:4a: 92:d3:ed:15:92:57:4a:9a:28:1f:c2:79:62:f7:a4:b1:59:4b: e8:7b:2a:55:b9:d1:94:cb:6d:45:e4:d4:49:69:1d:2d:83:7e: d5:3f:e5:7f:d4:92:45:49:9b:98:f2:d0:fa:84:65:ed:23:1a: e3:65:b2:4d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOOuKIECff0u/ttwPS73fZhU707EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkIzQUFGRTA3NDYxMEM4NTg1NEJFNzUwODJFQzE2RTYw QTEyNjg3OTAeFw0yNDA0MDQxNDE0NTdaFw0yNTA0MDMxNDE5NTdaMDMxMTAvBgNV BAMTKEMzRTM5NzU2RkFEQzEyNkNBQzYyNDU3QkY0RkFBQzI0QzBBOUFFMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWLZhubW3RzqWvL0kO9rywHc6b DmmLWaEC16lY5cJyX35eUO4awXcAfNhupF73dUWdkgBtckeAAVJ4hZ+ty59WYYrr vIbPlEvnMWET1gLz9rhn0iL+m0lbmPgWjGnEvUSclJ1/+gMHEJ6XPnPOidrMBX5m slpdfMetfAQ0yh6wtQNr8f+7tFFESY9rytRWNzxHDgQ0Xyv1EYq2dRE70Ak/JldW TQfg25ZWYTx+oSxomsxruaxx6Bnlny82VxtA5WdfCXQyayjx9qh2Pq53bsQWzZXz NN2s4jy3S77uWy0JHZ4jseVBtx3hLVU6NUvzlTxKEnl1B/I9UK2JkFljZA3DAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUw+OXVvrcEmysYkV79PqsJMCprhswHwYDVR0j BBgwFoAU+zqv4HRhDIWFS+dQguwW5goSaHkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MTY1ZTQ4MS01YTc5LTQ4NjgtYTRlNC1mYWNmZDkyMmQ4MTMvMC9GQjNBQUZFMDc0 NjEwQzg1ODU0QkU3NTA4MkVDMTZFNjBBMTI2ODc5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkIzQUFGRTA3NDYxMEM4NTg1NEJFNzUwODJFQzE2RTYwQTEy Njg3OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxNjVlNDgxLTVhNzktNDg2OC1h NGU0LWZhY2ZkOTIyZDgxMy8wLzMxMzAzMzJlMzEzNTMwMmUzMTM1MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMzMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnlp8wDQYJ KoZIhvcNAQELBQADggEBAJbcH4H3g8vVMbl3FwK5OhFQprLZ5x/NmUa3AgP2hQN6 lWewWiCa3T3KizKJ1v0ps/2KCCvIQqGFj2TmLanwP/MGrykcoa6Uu3KSMUi/Ar8s qe990CHQ7LFLd4yRk/Ml7ws2oTfLx4cUaaXJfwyrmYdKL0QdrQNJVRri5p8ED38e oJX0q47dhdWcg3YGSTL2FNXvZI4kIPXPlQI1cB7gBUb2FdGTEcOh5MiYNM+k+byQ zF7+6aiC5rDmpDhwFaPkbXrJ7Cx5SpLT7RWSV0qaKB/CeWL3pLFZS+h7KlW50ZTL bUXk1ElpHS2DftU/5X/UkkVJm5jy0PqEZe0jGuNlsk0= -----END CERTIFICATE-----Generated at Sat Nov 23 22:30:28 2024 by rpki-client on console-ams.rpki-client.org