$ rpki-client -vvf repo-rpki.idnic.net/repo/8d46a9ca-1096-4fe4-8993-d0be97b54a76/0/3130332e3137332e3136352e302f32342d3234203d3e20313437303831.roa File: 3130332e3137332e3136352e302f32342d3234203d3e20313437303831.roa (raw, json) Hash identifier: JsCcOYCCZcrHahiYR50Q4uI+wdcdC/l11dFP4GX5TNM= Subject key identifier: 31:0D:52:71:72:53:65:B1:A8:7D:F9:4C:9D:CC:18:70:18:22:DB:4E Certificate issuer: /CN=35AF7B054A8CC95835EC5A2F9275004D39521553 Certificate serial: 71DB038399AB3E1C28EB67DF02500E0317CF00F1 Authority key identifier: 35:AF:7B:05:4A:8C:C9:58:35:EC:5A:2F:92:75:00:4D:39:52:15:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35AF7B054A8CC95835EC5A2F9275004D39521553.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d46a9ca-1096-4fe4-8993-d0be97b54a76/0/3130332e3137332e3136352e302f32342d3234203d3e20313437303831.roa Signing time: Sat 02 Mar 2024 11:02:04 +0000 ROA not before: Sat 02 Mar 2024 10:57:04 +0000 ROA not after: Sat 01 Mar 2025 11:02:04 +0000 asID: 147081 IP address blocks: 103.173.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d46a9ca-1096-4fe4-8993-d0be97b54a76/0/35AF7B054A8CC95835EC5A2F9275004D39521553.crl rsync://repo-rpki.idnic.net/repo/8d46a9ca-1096-4fe4-8993-d0be97b54a76/0/35AF7B054A8CC95835EC5A2F9275004D39521553.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35AF7B054A8CC95835EC5A2F9275004D39521553.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 23:49:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:db:03:83:99:ab:3e:1c:28:eb:67:df:02:50:0e:03:17:cf:00:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35AF7B054A8CC95835EC5A2F9275004D39521553 Validity Not Before: Mar 2 10:57:04 2024 GMT Not After : Mar 1 11:02:04 2025 GMT Subject: CN=310D5271725365B1A87DF94C9DCC18701822DB4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f7:6b:31:d1:52:83:b7:3a:2f:45:35:d1:03: 23:13:bf:7d:c1:e2:0c:9d:f2:45:23:62:11:86:52: 66:ca:37:a6:50:50:34:1d:d1:5e:79:d8:82:fb:00: ae:54:79:b3:91:c5:29:04:d2:34:69:0c:9a:05:89: 59:cf:cc:c2:85:e0:4f:86:60:6f:63:49:32:40:3d: 71:0d:c6:be:ad:25:d6:e0:a2:92:5a:24:90:7a:1a: 72:d9:55:c0:35:05:bd:cd:11:22:67:c1:99:56:a0: 17:ce:77:de:00:15:2d:3b:06:af:63:e5:8e:78:12: 33:73:10:ca:1d:aa:cb:73:b5:b0:75:f3:54:cb:59: f7:bf:1b:b8:f2:ae:7c:36:38:fd:c2:1e:a6:be:5d: c2:a2:7c:8b:fb:9e:d4:93:f7:1c:11:04:80:61:c0: be:60:c0:e5:f9:00:f6:66:a4:0a:e0:8e:82:52:35: 2c:6a:44:1f:85:c2:47:9d:ab:26:51:65:86:91:a8: 34:38:92:96:84:9b:89:e4:9f:ac:b3:2b:31:11:07: f3:4c:92:41:5a:cb:c9:81:ac:40:16:c7:07:fe:92: f2:cf:58:5d:c7:05:48:4c:3a:61:12:b6:28:12:e5: e7:8e:4a:af:ed:45:cc:8f:7c:c7:87:5b:8e:83:a1: 82:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:0D:52:71:72:53:65:B1:A8:7D:F9:4C:9D:CC:18:70:18:22:DB:4E X509v3 Authority Key Identifier: keyid:35:AF:7B:05:4A:8C:C9:58:35:EC:5A:2F:92:75:00:4D:39:52:15:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d46a9ca-1096-4fe4-8993-d0be97b54a76/0/35AF7B054A8CC95835EC5A2F9275004D39521553.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35AF7B054A8CC95835EC5A2F9275004D39521553.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d46a9ca-1096-4fe4-8993-d0be97b54a76/0/3130332e3137332e3136352e302f32342d3234203d3e20313437303831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.173.165.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:25:77:60:6c:b1:3f:3f:51:f1:af:84:a9:bd:42:58:99:f9: 65:4a:0e:9a:0d:b9:16:7f:bf:9a:db:30:d0:7a:8e:ab:ba:36: 3f:13:f1:44:1d:fb:77:02:59:32:05:36:25:f0:d6:25:93:e5: 1a:07:38:db:33:34:e9:cd:7d:00:5a:ef:44:f5:de:19:46:46: 2b:5e:03:51:79:84:93:0a:1f:97:9b:2b:fe:8a:8b:21:f2:f9: bb:de:67:f8:5a:0e:d3:76:e3:04:57:28:83:b8:7c:0b:2a:74: 36:e2:57:9e:02:f7:d3:1c:70:b9:c2:02:d2:e3:fc:b3:89:c3: 9d:1e:f9:3c:a3:b3:53:41:da:3b:d8:d3:96:b3:45:90:65:83: a5:55:ee:11:91:d4:35:2e:a6:70:9b:d9:0c:72:ea:cf:60:86: 29:e7:b1:27:cf:02:11:5d:07:b6:47:eb:31:86:77:90:58:55: e6:93:56:8b:0e:65:ed:50:39:3c:6c:63:ed:a4:5c:b5:ff:ba: a4:c0:92:34:ff:7f:a2:b3:8f:cb:c0:6c:36:e2:a3:8d:0b:97: 94:cb:1e:3e:ea:fd:15:86:87:c3:5e:89:85:2b:db:c7:be:28: 5c:7f:c7:a0:0f:ea:ee:95:c9:7c:c6:4d:a9:69:77:20:8c:77: 8b:85:9c:34 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcdsDg5mrPhwo62ffAlAOAxfPAPEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVBRjdCMDU0QThDQzk1ODM1RUM1QTJGOTI3NTAwNEQz OTUyMTU1MzAeFw0yNDAzMDIxMDU3MDRaFw0yNTAzMDExMTAyMDRaMDMxMTAvBgNV BAMTKDMxMEQ1MjcxNzI1MzY1QjFBODdERjk0QzlEQ0MxODcwMTgyMkRCNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL92sx0VKDtzovRTXRAyMTv33B 4gyd8kUjYhGGUmbKN6ZQUDQd0V552IL7AK5UebORxSkE0jRpDJoFiVnPzMKF4E+G YG9jSTJAPXENxr6tJdbgopJaJJB6GnLZVcA1Bb3NESJnwZlWoBfOd94AFS07Bq9j 5Y54EjNzEModqstztbB181TLWfe/G7jyrnw2OP3CHqa+XcKifIv7ntST9xwRBIBh wL5gwOX5APZmpArgjoJSNSxqRB+FwkedqyZRZYaRqDQ4kpaEm4nkn6yzKzERB/NM kkFay8mBrEAWxwf+kvLPWF3HBUhMOmEStigS5eeOSq/tRcyPfMeHW46DoYJfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUMQ1ScXJTZbGofflMncwYcBgi204wHwYDVR0j BBgwFoAUNa97BUqMyVg17FovknUATTlSFVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDQ2YTljYS0xMDk2LTRmZTQtODk5My1kMGJlOTdiNTRhNzYvMC8zNUFGN0IwNTRB OENDOTU4MzVFQzVBMkY5Mjc1MDA0RDM5NTIxNTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzVBRjdCMDU0QThDQzk1ODM1RUM1QTJGOTI3NTAwNEQzOTUy MTU1My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkNDZhOWNhLTEwOTYtNGZlNC04 OTkzLWQwYmU5N2I1NGE3Ni8wLzMxMzAzMzJlMzEzNzMzMmUzMTM2MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMDM4MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnraUwDQYJ KoZIhvcNAQELBQADggEBAD0ld2BssT8/UfGvhKm9QliZ+WVKDpoNuRZ/v5rbMNB6 jqu6Nj8T8UQd+3cCWTIFNiXw1iWT5RoHONszNOnNfQBa70T13hlGRiteA1F5hJMK H5ebK/6KiyHy+bveZ/haDtN24wRXKIO4fAsqdDbiV54C99MccLnCAtLj/LOJw50e +Tyjs1NB2jvY05azRZBlg6VV7hGR1DUupnCb2Qxy6s9ghinnsSfPAhFdB7ZH6zGG d5BYVeaTVosOZe1QOTxsY+2kXLX/uqTAkjT/f6Kzj8vAbDbio40Ll5TLHj7q/RWG h8NeiYUr28e+KFx/x6AP6u6VyXzGTalpdyCMd4uFnDQ= -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:59 2024 by rpki-client on console-ams.rpki-client.org