$ rpki-client -vvf repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/3130332e3134382e38382e302f32342d3234203d3e20313430343231.roa File: 3130332e3134382e38382e302f32342d3234203d3e20313430343231.roa (raw, json) Hash identifier: W7WMatvzYXuALvuTzGQVbHotqWD0nd56JaqQ7uT/XBU= Subject key identifier: B8:B0:17:26:9D:B5:B4:3E:37:8A:A1:0F:CD:1C:23:DB:D5:B1:91:DF Certificate issuer: /CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Certificate serial: 01F45C06AB0FB014881D2403F538D9B77E48B65F Authority key identifier: 0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/3130332e3134382e38382e302f32342d3234203d3e20313430343231.roa Signing time: Fri 02 Aug 2024 03:40:49 +0000 ROA not before: Fri 02 Aug 2024 03:35:49 +0000 ROA not after: Fri 01 Aug 2025 03:40:49 +0000 asID: 140421 IP address blocks: 103.148.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:f4:5c:06:ab:0f:b0:14:88:1d:24:03:f5:38:d9:b7:7e:48:b6:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Validity Not Before: Aug 2 03:35:49 2024 GMT Not After : Aug 1 03:40:49 2025 GMT Subject: CN=B8B017269DB5B43E378AA10FCD1C23DBD5B191DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:6c:48:68:a1:46:0b:9f:e5:2d:6d:1b:eb:a1: fa:ca:4b:b9:0b:00:b8:3e:fb:83:8e:4f:2e:58:26: 8b:70:c9:dd:2b:52:09:8f:ef:fd:29:92:a7:64:54: d0:16:8d:57:d3:7b:52:95:6a:e9:3c:3b:48:27:fc: 75:20:47:56:61:8b:84:25:dd:38:2f:a7:c1:e7:49: ec:28:6f:f2:ad:17:dd:03:a5:17:d3:63:ca:56:12: 90:d3:ee:2a:7e:2f:a8:2f:a6:34:fd:d6:1f:cd:48: dc:7b:9e:ce:eb:0b:2f:f4:ec:92:94:da:18:da:78: c4:40:62:15:8f:fb:46:8e:34:a4:f5:af:f0:73:c8: b4:f0:97:f7:d2:11:4c:bb:73:d3:14:30:7b:93:a7: 0f:bd:6e:e5:e4:c0:28:68:89:5b:e7:2e:7f:20:c3: 11:37:c3:48:29:11:bd:b6:25:42:7b:89:79:87:f8: 86:c6:e6:c9:c0:45:53:ca:d2:c3:74:42:f2:6d:76: d5:df:0d:60:e1:57:10:1c:27:e3:49:ec:99:80:ca: d7:e6:27:ca:18:a4:ae:a6:bd:bf:69:e2:bb:9a:c3: 6b:a5:c4:e9:96:e3:bc:bd:d2:e4:56:13:87:10:0f: 38:db:de:06:aa:05:f5:a9:27:43:72:b4:8d:84:ac: d1:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:B0:17:26:9D:B5:B4:3E:37:8A:A1:0F:CD:1C:23:DB:D5:B1:91:DF X509v3 Authority Key Identifier: keyid:0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/3130332e3134382e38382e302f32342d3234203d3e20313430343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.88.0/24 Signature Algorithm: sha256WithRSAEncryption bb:8f:6b:59:20:3d:6b:b6:f1:d9:6f:70:0a:40:29:68:db:af: 26:dc:be:fa:b7:48:18:89:6d:22:50:0d:34:a2:04:51:46:88: 95:74:db:c4:ed:af:ac:07:d0:e5:03:34:fc:f0:1b:35:e6:ce: 28:74:4d:87:2a:97:d0:59:be:ec:7e:33:20:6b:d2:cf:bc:70: 96:a2:da:c4:f2:19:60:76:fb:e6:95:28:63:b9:2d:26:2e:e0: 67:8b:88:e8:e2:f0:f8:7e:99:36:78:c0:82:9c:5e:03:5e:0b: 23:21:60:63:b3:b2:40:04:ff:d5:e2:55:09:a4:1d:b4:1e:89: 60:63:01:7d:35:e4:b0:09:00:b4:b2:ec:42:86:14:0b:33:4b: c0:92:b5:6f:e1:7d:90:23:e1:fc:7f:9f:73:19:d9:e6:fb:61: c0:4d:fe:6e:82:1b:8e:e7:25:dc:b3:51:9e:cc:2a:cc:ab:be: fc:58:d1:5d:6c:3b:49:b8:12:e6:2a:cd:9e:79:13:9b:03:74: f6:50:40:32:8f:21:07:dc:12:ba:de:1b:52:e1:c5:da:99:60: b7:ab:11:75:59:09:21:27:ac:c0:91:d4:5d:9c:14:fd:8b:c9: 09:14:c3:84:a8:3f:ca:75:72:e5:8b:e1:60:b4:cc:05:da:29: a8:22:3b:c6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAfRcBqsPsBSIHSQD9TjZt35Itl8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0 NDk3QkZFMzAeFw0yNDA4MDIwMzM1NDlaFw0yNTA4MDEwMzQwNDlaMDMxMTAvBgNV BAMTKEI4QjAxNzI2OURCNUI0M0UzNzhBQTEwRkNEMUMyM0RCRDVCMTkxREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXbEhooUYLn+UtbRvrofrKS7kL ALg++4OOTy5YJotwyd0rUgmP7/0pkqdkVNAWjVfTe1KVauk8O0gn/HUgR1Zhi4Ql 3Tgvp8HnSewob/KtF90DpRfTY8pWEpDT7ip+L6gvpjT91h/NSNx7ns7rCy/07JKU 2hjaeMRAYhWP+0aONKT1r/BzyLTwl/fSEUy7c9MUMHuTpw+9buXkwChoiVvnLn8g wxE3w0gpEb22JUJ7iXmH+IbG5snARVPK0sN0QvJtdtXfDWDhVxAcJ+NJ7JmAytfm J8oYpK6mvb9p4ruaw2ulxOmW47y90uRWE4cQDzjb3gaqBfWpJ0NytI2ErNErAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuLAXJp21tD43iqEPzRwj29Wxkd8wHwYDVR0j BBgwFoAUC7TpUniaxQL6DPuVwuA/Q0SXv+MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjcyZWNhNC03M2FkLTRlMGItYTZhNi03YTY1Njk4YjczYmUvMC8wQkI0RTk1Mjc4 OUFDNTAyRkEwQ0ZCOTVDMkUwM0Y0MzQ0OTdCRkUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0NDk3 QkZFMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiNzJlY2E0LTczYWQtNGUwYi1h NmE2LTdhNjU2OThiNzNiZS8wLzMxMzAzMzJlMzEzNDM4MmUzODM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5RYMA0GCSqG SIb3DQEBCwUAA4IBAQC7j2tZID1rtvHZb3AKQClo268m3L76t0gYiW0iUA00ogRR RoiVdNvE7a+sB9DlAzT88Bs15s4odE2HKpfQWb7sfjMga9LPvHCWotrE8hlgdvvm lShjuS0mLuBni4jo4vD4fpk2eMCCnF4DXgsjIWBjs7JABP/V4lUJpB20HolgYwF9 NeSwCQC0suxChhQLM0vAkrVv4X2QI+H8f59zGdnm+2HATf5ughuO5yXcs1GezCrM q778WNFdbDtJuBLmKs2eeRObA3T2UEAyjyEH3BK63htS4cXamWC3qxF1WQkhJ6zA kdRdnBT9i8kJFMOEqD/KdXLli+FgtMwF2imoIjvG -----END CERTIFICATE-----Generated at Sun Nov 24 07:10:00 2024 by rpki-client on console-ams.rpki-client.org