$ rpki-client -vvf repo-rpki.idnic.net/repo/8988c0f2-2800-48da-a83e-ab54df65c574/0/3130332e3132332e3130382e302f32342d3234203d3e20313338303636.roa File: 3130332e3132332e3130382e302f32342d3234203d3e20313338303636.roa (raw, json) Hash identifier: 6vpG1FwswZyXqrOMn8CrPtMvpqJGHzx+Yb/i8Uh1oPM= Subject key identifier: 03:C7:A5:CD:07:21:95:72:F4:5F:6E:6C:9D:CA:8E:44:F4:41:EE:5B Certificate issuer: /CN=977EA5118551E98AEAA8BB11C9D99D7196D3DEBA Certificate serial: 669901A68EBF2A30ABA912EA76D6EA3029B436C1 Authority key identifier: 97:7E:A5:11:85:51:E9:8A:EA:A8:BB:11:C9:D9:9D:71:96:D3:DE:BA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/977EA5118551E98AEAA8BB11C9D99D7196D3DEBA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8988c0f2-2800-48da-a83e-ab54df65c574/0/3130332e3132332e3130382e302f32342d3234203d3e20313338303636.roa Signing time: Mon 01 Jul 2024 01:05:45 +0000 ROA not before: Mon 01 Jul 2024 01:00:45 +0000 ROA not after: Mon 30 Jun 2025 01:05:45 +0000 asID: 138066 IP address blocks: 103.123.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8988c0f2-2800-48da-a83e-ab54df65c574/0/977EA5118551E98AEAA8BB11C9D99D7196D3DEBA.crl rsync://repo-rpki.idnic.net/repo/8988c0f2-2800-48da-a83e-ab54df65c574/0/977EA5118551E98AEAA8BB11C9D99D7196D3DEBA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/977EA5118551E98AEAA8BB11C9D99D7196D3DEBA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:99:01:a6:8e:bf:2a:30:ab:a9:12:ea:76:d6:ea:30:29:b4:36:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=977EA5118551E98AEAA8BB11C9D99D7196D3DEBA Validity Not Before: Jul 1 01:00:45 2024 GMT Not After : Jun 30 01:05:45 2025 GMT Subject: CN=03C7A5CD07219572F45F6E6C9DCA8E44F441EE5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e0:1d:32:ea:a1:8f:4b:94:ab:7b:be:b9:d7: 21:99:b9:53:89:2a:11:5b:e3:fc:5e:50:82:8d:26: 90:52:cb:3d:93:96:2a:5c:40:1d:82:ce:a9:91:1d: c0:97:f9:6b:c6:3a:f6:06:91:39:a3:77:f9:78:d2: 22:7f:00:01:46:2a:19:39:b2:e4:f8:31:69:7e:24: a8:d1:72:8d:7d:1b:99:16:a5:9d:9a:3c:5e:b8:1b: 25:ff:bf:df:6d:aa:d1:80:48:42:2c:5d:01:d1:e3: 42:67:83:42:de:28:39:a7:40:99:e0:09:d0:fa:b6: fc:cf:db:1d:df:ee:14:ad:59:c2:ec:23:dd:a3:7d: fc:38:3d:55:cf:6a:ff:54:c0:42:e7:de:93:36:91: 88:19:eb:99:11:a1:2e:6b:1b:e1:27:0d:3e:4f:91: 5d:1f:ce:94:de:40:c5:14:03:4b:49:f5:ce:9e:94: a8:66:e1:67:b7:b0:65:ad:6b:9a:9d:bd:44:a1:08: a5:b1:37:48:56:fa:d2:0f:2d:12:af:fe:47:a0:ad: bf:a8:91:55:07:d7:17:1c:09:50:63:9c:d7:9e:ab: 5b:1a:77:82:fc:37:c4:7f:0c:78:ad:ba:c7:c3:42: c6:49:b5:fb:7f:09:eb:c6:f4:09:6d:1d:56:cb:1d: 4d:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:C7:A5:CD:07:21:95:72:F4:5F:6E:6C:9D:CA:8E:44:F4:41:EE:5B X509v3 Authority Key Identifier: keyid:97:7E:A5:11:85:51:E9:8A:EA:A8:BB:11:C9:D9:9D:71:96:D3:DE:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8988c0f2-2800-48da-a83e-ab54df65c574/0/977EA5118551E98AEAA8BB11C9D99D7196D3DEBA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/977EA5118551E98AEAA8BB11C9D99D7196D3DEBA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8988c0f2-2800-48da-a83e-ab54df65c574/0/3130332e3132332e3130382e302f32342d3234203d3e20313338303636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.108.0/24 Signature Algorithm: sha256WithRSAEncryption 49:8b:70:7b:b3:e4:59:3b:ac:23:68:3a:6b:fe:41:f8:db:6e: db:d4:33:b1:de:bc:fe:12:e9:a3:db:7e:88:6e:9a:5c:9d:70: d1:92:06:aa:86:64:ae:7f:ce:04:28:d1:39:2f:3b:a7:8e:d9: 2a:40:26:7c:fd:55:94:e0:1c:6a:11:cb:44:b7:ef:a6:73:a9: 59:42:51:47:7b:24:5f:28:62:47:2a:92:92:61:cb:c6:4d:c2: e9:31:43:f0:99:cd:be:37:f6:84:94:28:6b:99:59:0e:63:d7: fe:37:ff:50:d5:16:d5:1a:29:e4:06:d4:7a:cf:f6:c6:b0:c7: 6f:26:57:41:0b:e6:35:38:ff:1b:86:38:f4:64:91:c0:c6:4a: a3:69:61:8b:87:3e:89:03:2f:39:de:50:34:75:45:38:c3:71: 16:0c:39:6c:ae:b1:75:13:41:b5:f7:20:bd:5a:19:56:ce:41: cc:03:40:56:40:ae:d7:99:4e:7f:66:25:5c:a4:a2:c7:6b:27: 18:34:50:a8:9e:79:d9:ad:c8:1e:d6:57:29:95:5d:27:a7:7c: c9:f9:b0:cb:07:30:3f:16:70:cd:5c:07:62:31:64:c0:00:92: 82:48:0e:73:bc:78:f4:67:52:03:eb:d6:38:b8:cc:b6:31:15: 5d:ce:92:cb -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZpkBpo6/KjCrqRLqdtbqMCm0NsEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTc3RUE1MTE4NTUxRTk4QUVBQThCQjExQzlEOTlENzE5 NkQzREVCQTAeFw0yNDA3MDEwMTAwNDVaFw0yNTA2MzAwMTA1NDVaMDMxMTAvBgNV BAMTKDAzQzdBNUNEMDcyMTk1NzJGNDVGNkU2QzlEQ0E4RTQ0RjQ0MUVFNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW4B0y6qGPS5Sre7651yGZuVOJ KhFb4/xeUIKNJpBSyz2TlipcQB2CzqmRHcCX+WvGOvYGkTmjd/l40iJ/AAFGKhk5 suT4MWl+JKjRco19G5kWpZ2aPF64GyX/v99tqtGASEIsXQHR40Jng0LeKDmnQJng CdD6tvzP2x3f7hStWcLsI92jffw4PVXPav9UwELn3pM2kYgZ65kRoS5rG+EnDT5P kV0fzpTeQMUUA0tJ9c6elKhm4We3sGWta5qdvUShCKWxN0hW+tIPLRKv/kegrb+o kVUH1xccCVBjnNeeq1sad4L8N8R/DHitusfDQsZJtft/CevG9AltHVbLHU1jAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUA8elzQchlXL0X25sncqORPRB7lswHwYDVR0j BBgwFoAUl36lEYVR6YrqqLsRydmdcZbT3rowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OTg4YzBmMi0yODAwLTQ4ZGEtYTgzZS1hYjU0ZGY2NWM1NzQvMC85NzdFQTUxMTg1 NTFFOThBRUFBOEJCMTFDOUQ5OUQ3MTk2RDNERUJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTc3RUE1MTE4NTUxRTk4QUVBQThCQjExQzlEOTlENzE5NkQz REVCQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg5ODhjMGYyLTI4MDAtNDhkYS1h ODNlLWFiNTRkZjY1YzU3NC8wLzMxMzAzMzJlMzEzMjMzMmUzMTMwMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABne2wwDQYJ KoZIhvcNAQELBQADggEBAEmLcHuz5Fk7rCNoOmv+QfjbbtvUM7HevP4S6aPbfohu mlydcNGSBqqGZK5/zgQo0TkvO6eO2SpAJnz9VZTgHGoRy0S376ZzqVlCUUd7JF8o YkcqkpJhy8ZNwukxQ/CZzb439oSUKGuZWQ5j1/43/1DVFtUaKeQG1HrP9sawx28m V0EL5jU4/xuGOPRkkcDGSqNpYYuHPokDLzneUDR1RTjDcRYMOWyusXUTQbX3IL1a GVbOQcwDQFZArteZTn9mJVykosdrJxg0UKieedmtyB7WVymVXSenfMn5sMsHMD8W cM1cB2IxZMAAkoJIDnO8ePRnUgPr1ji4zLYxFV3Okss= -----END CERTIFICATE-----Generated at Sun Nov 24 20:57:50 2024 by rpki-client on console-fra.rpki-client.org