$ rpki-client -vvf repo-rpki.idnic.net/repo/8ab3c03d-2e2e-4897-869b-21ce48601619/0/3130332e3136322e3135322e302f32332d3234203d3e203338373532.roa File: 3130332e3136322e3135322e302f32332d3234203d3e203338373532.roa (raw, json) Hash identifier: 73r5XpLlO1W+eIYbM90ZwdPVSVFCouzcbCPE/5tQPPQ= Subject key identifier: BE:4B:CC:0F:8D:21:64:C3:74:84:22:50:96:AA:C4:CD:0E:0D:95:2E Certificate issuer: /CN=83906AB18A49EC17ADD841F2072FDC55E0EC22F6 Certificate serial: 5F7BEDB18FC380896724453C13AD710B99BDD8AE Authority key identifier: 83:90:6A:B1:8A:49:EC:17:AD:D8:41:F2:07:2F:DC:55:E0:EC:22:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83906AB18A49EC17ADD841F2072FDC55E0EC22F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8ab3c03d-2e2e-4897-869b-21ce48601619/0/3130332e3136322e3135322e302f32332d3234203d3e203338373532.roa Signing time: Sun 01 Sep 2024 07:02:24 +0000 ROA not before: Sun 01 Sep 2024 06:57:24 +0000 ROA not after: Sun 31 Aug 2025 07:02:24 +0000 asID: 38752 IP address blocks: 103.162.152.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8ab3c03d-2e2e-4897-869b-21ce48601619/0/83906AB18A49EC17ADD841F2072FDC55E0EC22F6.crl rsync://repo-rpki.idnic.net/repo/8ab3c03d-2e2e-4897-869b-21ce48601619/0/83906AB18A49EC17ADD841F2072FDC55E0EC22F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83906AB18A49EC17ADD841F2072FDC55E0EC22F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:7b:ed:b1:8f:c3:80:89:67:24:45:3c:13:ad:71:0b:99:bd:d8:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83906AB18A49EC17ADD841F2072FDC55E0EC22F6 Validity Not Before: Sep 1 06:57:24 2024 GMT Not After : Aug 31 07:02:24 2025 GMT Subject: CN=BE4BCC0F8D2164C37484225096AAC4CD0E0D952E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:17:66:2d:96:d3:ab:5d:42:ab:e5:6f:52:51: f2:72:83:41:25:ad:ce:be:9a:29:0d:ce:59:75:e5: 3f:8a:15:51:3d:ab:e0:4a:31:42:99:cd:a9:c7:ee: 5e:1f:93:ef:fc:19:55:35:7d:5a:0d:12:5a:d3:d8: c6:65:70:5f:e5:17:6d:cc:b6:2b:09:72:03:52:53: 3a:f7:5a:0f:c4:13:8e:53:b9:02:d0:e2:f3:f6:85: f3:75:47:d9:af:df:bc:66:3b:d3:2c:ae:a9:89:e7: 03:42:65:60:d0:53:24:09:44:a9:34:f5:78:e2:52: 16:89:66:2b:f7:a0:3e:76:8b:c7:8d:9f:91:c3:d5: 26:32:31:5c:97:05:71:9f:40:56:94:09:00:3b:11: e7:93:99:89:fd:f9:93:62:89:4e:61:99:c2:d3:8a: 77:7f:f2:6c:8e:56:46:70:f3:a9:41:22:db:e0:dd: 79:43:a0:82:85:be:d5:4a:57:05:6b:9f:87:98:c0: 0a:c6:06:63:7d:e5:16:6b:7f:e1:97:d0:86:c5:cb: 53:b8:45:dd:29:77:54:f2:55:3b:f0:8e:4f:67:f0: 51:61:22:20:0e:1e:00:72:df:18:0b:58:4d:94:02: 0d:e5:75:0d:db:40:39:bb:e6:28:5b:d7:ab:ca:4a: ec:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:4B:CC:0F:8D:21:64:C3:74:84:22:50:96:AA:C4:CD:0E:0D:95:2E X509v3 Authority Key Identifier: keyid:83:90:6A:B1:8A:49:EC:17:AD:D8:41:F2:07:2F:DC:55:E0:EC:22:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8ab3c03d-2e2e-4897-869b-21ce48601619/0/83906AB18A49EC17ADD841F2072FDC55E0EC22F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83906AB18A49EC17ADD841F2072FDC55E0EC22F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ab3c03d-2e2e-4897-869b-21ce48601619/0/3130332e3136322e3135322e302f32332d3234203d3e203338373532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.152.0/23 Signature Algorithm: sha256WithRSAEncryption 50:0a:a5:60:bc:8f:0e:24:2f:a3:0b:4d:02:55:d2:11:55:94: ff:49:f9:4e:72:de:db:d0:a4:06:59:06:5c:25:95:f7:ae:43: 2d:80:91:b2:09:64:91:f8:70:c1:f1:06:bb:73:de:9f:6b:dc: 62:30:42:e3:3b:19:b8:9e:f7:d6:cf:58:49:c8:6a:68:20:60: 70:19:26:05:12:a5:51:37:20:62:ae:90:dc:f5:88:d9:dc:be: c1:b4:c9:4f:71:c7:d1:0a:eb:37:17:32:44:fa:a1:e3:71:6e: dc:44:2a:9a:0b:9b:ae:00:df:c0:8a:ad:ab:b8:58:18:51:30: 9b:36:18:20:bb:c4:f1:a1:a9:d9:3b:52:16:2b:5f:84:a0:0c: cb:d4:2f:ed:48:79:b7:6b:1e:90:a6:6c:80:14:e8:ea:63:2e: 0d:57:0a:3a:50:69:a9:5d:2b:7e:d2:29:67:4f:b2:59:ab:86: 5f:b6:52:16:f7:f0:79:68:80:fc:76:30:20:31:3b:fe:a5:39: ce:a1:15:d0:26:94:2c:fd:09:61:64:ca:cd:37:90:1a:c9:ac: d1:3e:d3:84:9d:52:5d:55:1f:35:1f:b0:e6:62:78:fd:97:06: 70:bb:a3:64:2d:92:70:46:06:a2:4a:f6:20:c1:59:74:3d:35: 06:b7:a2:c1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUX3vtsY/DgIlnJEU8E61xC5m92K4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODM5MDZBQjE4QTQ5RUMxN0FERDg0MUYyMDcyRkRDNTVF MEVDMjJGNjAeFw0yNDA5MDEwNjU3MjRaFw0yNTA4MzEwNzAyMjRaMDMxMTAvBgNV BAMTKEJFNEJDQzBGOEQyMTY0QzM3NDg0MjI1MDk2QUFDNENEMEUwRDk1MkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/F2YtltOrXUKr5W9SUfJyg0El rc6+mikNzll15T+KFVE9q+BKMUKZzanH7l4fk+/8GVU1fVoNElrT2MZlcF/lF23M tisJcgNSUzr3Wg/EE45TuQLQ4vP2hfN1R9mv37xmO9MsrqmJ5wNCZWDQUyQJRKk0 9XjiUhaJZiv3oD52i8eNn5HD1SYyMVyXBXGfQFaUCQA7EeeTmYn9+ZNiiU5hmcLT ind/8myOVkZw86lBItvg3XlDoIKFvtVKVwVrn4eYwArGBmN95RZrf+GX0IbFy1O4 Rd0pd1TyVTvwjk9n8FFhIiAOHgBy3xgLWE2UAg3ldQ3bQDm75ihb16vKSuwrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvkvMD40hZMN0hCJQlqrEzQ4NlS4wHwYDVR0j BBgwFoAUg5BqsYpJ7Bet2EHyBy/cVeDsIvYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YWIzYzAzZC0yZTJlLTQ4OTctODY5Yi0yMWNlNDg2MDE2MTkvMC84MzkwNkFCMThB NDlFQzE3QUREODQxRjIwNzJGREM1NUUwRUMyMkY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODM5MDZBQjE4QTQ5RUMxN0FERDg0MUYyMDcyRkRDNTVFMEVD MjJGNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhhYjNjMDNkLTJlMmUtNDg5Ny04 NjliLTIxY2U0ODYwMTYxOS8wLzMxMzAzMzJlMzEzNjMyMmUzMTM1MzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMzM4MzczNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6KYMA0GCSqG SIb3DQEBCwUAA4IBAQBQCqVgvI8OJC+jC00CVdIRVZT/SflOct7b0KQGWQZcJZX3 rkMtgJGyCWSR+HDB8Qa7c96fa9xiMELjOxm4nvfWz1hJyGpoIGBwGSYFEqVRNyBi rpDc9YjZ3L7BtMlPccfRCus3FzJE+qHjcW7cRCqaC5uuAN/Aiq2ruFgYUTCbNhgg u8TxoanZO1IWK1+EoAzL1C/tSHm3ax6QpmyAFOjqYy4NVwo6UGmpXSt+0ilnT7JZ q4ZftlIW9/B5aID8djAgMTv+pTnOoRXQJpQs/QlhZMrNN5AayazRPtOEnVJdVR81 H7DmYnj9lwZwu6NkLZJwRgaiSvYgwVl0PTUGt6LB -----END CERTIFICATE-----Generated at Fri Nov 22 21:02:28 2024 by rpki-client on console-fra.rpki-client.org