$ rpki-client -vvf repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/3130332e3133322e31322e302f32322d3234203d3e20313331373336.roa File: 3130332e3133322e31322e302f32322d3234203d3e20313331373336.roa (raw, json) Hash identifier: ypT2E/4mQi8ZinwGIb3ksHfodPA0Ub74zZ/WxvTHyYI= Subject key identifier: 7A:60:3F:D5:2F:1D:9A:89:5D:2B:C2:0D:46:C2:ED:03:48:4C:49:9F Certificate issuer: /CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Certificate serial: 15434CB0B8402B2EFBC906F9541800E7F4E98DD8 Authority key identifier: DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/3130332e3133322e31322e302f32322d3234203d3e20313331373336.roa Signing time: Thu 13 Jun 2024 10:00:01 +0000 ROA not before: Thu 13 Jun 2024 09:55:01 +0000 ROA not after: Thu 12 Jun 2025 10:00:01 +0000 asID: 131736 IP address blocks: 103.132.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:43:4c:b0:b8:40:2b:2e:fb:c9:06:f9:54:18:00:e7:f4:e9:8d:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Validity Not Before: Jun 13 09:55:01 2024 GMT Not After : Jun 12 10:00:01 2025 GMT Subject: CN=7A603FD52F1D9A895D2BC20D46C2ED03484C499F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3f:1b:07:22:4c:b8:ef:07:7c:24:35:81:15: 62:37:43:94:bd:e9:a0:6c:fc:82:24:21:1e:fc:9f: 60:58:47:8e:3b:e1:85:96:f1:7f:4d:e0:b1:09:fc: be:50:d6:0c:23:d9:71:9e:01:d6:72:d8:42:83:bc: 57:40:a4:7c:06:0c:47:b2:28:3c:e5:f0:1f:13:2c: d7:f6:bc:e8:ec:3a:93:74:04:7f:1d:74:1b:1e:36: e8:8c:c2:1e:9d:7c:5b:e9:b0:04:c2:74:60:c8:0d: b9:f1:da:3a:3b:53:d4:fe:5e:40:fd:d8:26:ec:01: 7b:6c:9a:9c:3a:cc:1a:a0:1d:af:f7:2c:e5:66:a8: 25:cf:a0:e3:60:1c:a7:da:88:a6:54:84:e8:7a:ad: 07:b2:f7:83:27:b4:a8:39:3c:6d:66:f6:c9:47:3e: 87:17:05:04:53:18:cb:ec:4d:fc:14:5a:b6:9d:86: 64:ab:92:84:39:d2:87:13:17:c7:29:c1:bf:d1:85: cf:21:32:ff:60:63:db:a0:28:c5:a0:10:56:91:a0: ce:bb:ed:16:c1:a8:0c:14:39:b7:a6:fe:79:75:50: 10:b9:b7:1a:01:64:25:4f:7f:8d:6e:ba:99:e7:e0: 6a:00:d8:d5:55:8c:26:65:e0:7d:e1:6a:ac:4b:9c: 01:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:60:3F:D5:2F:1D:9A:89:5D:2B:C2:0D:46:C2:ED:03:48:4C:49:9F X509v3 Authority Key Identifier: keyid:DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/3130332e3133322e31322e302f32322d3234203d3e20313331373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.12.0/22 Signature Algorithm: sha256WithRSAEncryption 44:ac:c6:77:39:2a:44:e5:4c:9d:5f:7b:5e:4d:8a:34:2e:05: d9:c2:aa:e2:7f:e2:47:bc:2f:d8:0b:4f:56:64:63:d3:0f:31: c6:04:b4:6d:33:c5:4f:2f:05:90:c1:8a:42:af:0c:70:0a:5f: 33:7e:86:92:02:b9:a7:2b:fb:f4:6e:b9:75:60:af:f6:45:6b: 56:4a:ff:86:31:58:2f:c3:bf:36:00:d3:b4:3e:31:95:df:82: 53:1c:cc:92:1d:d0:ad:5e:52:7a:38:a5:fc:1b:55:09:70:60: 92:33:99:fb:f2:e7:17:4b:03:cf:8d:e3:e2:42:bf:b1:4a:3f: 5f:ee:7a:de:7f:fc:7c:20:8e:41:e6:9e:7d:7a:0d:f8:7a:3a: 20:66:e2:09:33:22:7e:99:98:20:7c:b7:e0:cc:e6:fc:3d:ed: ab:24:14:85:0d:9c:4b:f1:01:a0:e4:0c:f1:dc:16:24:1a:c6: c4:7f:9f:5f:da:61:88:79:95:17:06:9f:60:b9:2b:b8:b0:d8: be:5b:41:63:0c:85:0c:42:5a:12:1a:03:b5:06:83:a3:5f:1a: 6d:a4:e5:cc:1c:4f:de:a2:e8:cc:81:76:f2:e4:1d:72:a7:33: 31:06:23:32:ba:3f:14:70:d1:9b:7b:46:9f:07:1c:05:2f:f0: 07:85:33:90 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFUNMsLhAKy77yQb5VBgA5/TpjdgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBE OUMzNEU0QTAeFw0yNDA2MTMwOTU1MDFaFw0yNTA2MTIxMDAwMDFaMDMxMTAvBgNV BAMTKDdBNjAzRkQ1MkYxRDlBODk1RDJCQzIwRDQ2QzJFRDAzNDg0QzQ5OUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6PxsHIky47wd8JDWBFWI3Q5S9 6aBs/IIkIR78n2BYR4474YWW8X9N4LEJ/L5Q1gwj2XGeAdZy2EKDvFdApHwGDEey KDzl8B8TLNf2vOjsOpN0BH8ddBseNuiMwh6dfFvpsATCdGDIDbnx2jo7U9T+XkD9 2CbsAXtsmpw6zBqgHa/3LOVmqCXPoONgHKfaiKZUhOh6rQey94MntKg5PG1m9slH PocXBQRTGMvsTfwUWradhmSrkoQ50ocTF8cpwb/Rhc8hMv9gY9ugKMWgEFaRoM67 7RbBqAwUObem/nl1UBC5txoBZCVPf41uupnn4GoA2NVVjCZl4H3haqxLnAEhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUemA/1S8dmoldK8INRsLtA0hMSZ8wHwYDVR0j BBgwFoAU347ymUy1QgnywqOae859oNnDTkowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjVjZGEzNi02OTNhLTRjMWEtYmE5ZS1lMGUxNzgxMTIxNDAvMC9ERjhFRjI5OTRD QjU0MjA5RjJDMkEzOUE3QkNFN0RBMEQ5QzM0RTRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBEOUMz NEU0QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyNWNkYTM2LTY5M2EtNGMxYS1i YTllLWUwZTE3ODExMjE0MC8wLzMxMzAzMzJlMzEzMzMyMmUzMTMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ4QMMA0GCSqG SIb3DQEBCwUAA4IBAQBErMZ3OSpE5UydX3teTYo0LgXZwqrif+JHvC/YC09WZGPT DzHGBLRtM8VPLwWQwYpCrwxwCl8zfoaSArmnK/v0brl1YK/2RWtWSv+GMVgvw782 ANO0PjGV34JTHMySHdCtXlJ6OKX8G1UJcGCSM5n78ucXSwPPjePiQr+xSj9f7nre f/x8II5B5p59eg34ejogZuIJMyJ+mZggfLfgzOb8Pe2rJBSFDZxL8QGg5Azx3BYk GsbEf59f2mGIeZUXBp9guSu4sNi+W0FjDIUMQloSGgO1BoOjXxptpOXMHE/eoujM gXby5B1ypzMxBiMyuj8UcNGbe0afBxwFL/AHhTOQ -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:55 2024 by rpki-client on console-fra.rpki-client.org