$ rpki-client -vvf repo-rpki.idnic.net/repo/94c4314f-d3b8-4e06-b245-4a0270b22ada/0/3130332e3138342e36332e302f32342d3234203d3e20313439363734.roa File: 3130332e3138342e36332e302f32342d3234203d3e20313439363734.roa (raw, json) Hash identifier: JVwjfITPIiXwaoLA1+VjmhWI9oDXDt0QXKsa+BUATOo= Subject key identifier: 8A:1D:8C:61:BA:8B:9F:DC:B9:50:02:B1:39:5D:7A:B7:4A:C9:9F:A6 Certificate issuer: /CN=AFFB903F876CB3B8748A1C899458FF38A0D06D4B Certificate serial: 304EDB30B662A146F6504E09E4D75DC95BCB16B3 Authority key identifier: AF:FB:90:3F:87:6C:B3:B8:74:8A:1C:89:94:58:FF:38:A0:D0:6D:4B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFFB903F876CB3B8748A1C899458FF38A0D06D4B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/94c4314f-d3b8-4e06-b245-4a0270b22ada/0/3130332e3138342e36332e302f32342d3234203d3e20313439363734.roa Signing time: Thu 18 Apr 2024 10:00:02 +0000 ROA not before: Thu 18 Apr 2024 09:55:02 +0000 ROA not after: Thu 17 Apr 2025 10:00:02 +0000 asID: 149674 IP address blocks: 103.184.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/94c4314f-d3b8-4e06-b245-4a0270b22ada/0/AFFB903F876CB3B8748A1C899458FF38A0D06D4B.crl rsync://repo-rpki.idnic.net/repo/94c4314f-d3b8-4e06-b245-4a0270b22ada/0/AFFB903F876CB3B8748A1C899458FF38A0D06D4B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFFB903F876CB3B8748A1C899458FF38A0D06D4B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:4e:db:30:b6:62:a1:46:f6:50:4e:09:e4:d7:5d:c9:5b:cb:16:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFFB903F876CB3B8748A1C899458FF38A0D06D4B Validity Not Before: Apr 18 09:55:02 2024 GMT Not After : Apr 17 10:00:02 2025 GMT Subject: CN=8A1D8C61BA8B9FDCB95002B1395D7AB74AC99FA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b6:94:f9:29:90:54:28:f7:93:be:ea:f3:0c: ba:32:fb:52:25:9f:d7:79:7e:b0:17:4a:f1:e1:a7: c0:14:88:a6:df:9d:8d:ac:32:4b:c2:1e:bc:55:0d: 5e:15:9d:73:ac:6f:e8:9f:b7:33:be:f5:92:91:81: 07:e9:09:8f:01:2c:a9:4b:f8:06:cb:00:1e:ca:ea: 3c:32:15:0e:a0:63:5a:36:16:d2:74:92:e5:cd:5c: 91:61:34:1c:02:5f:ff:f1:d1:36:94:3c:ef:f1:1e: ce:db:83:3b:ed:68:ea:df:40:3c:aa:bd:6f:6b:ca: 47:70:7e:e0:9e:ba:b8:2c:ca:7a:f8:c3:96:a4:74: 50:dc:a6:00:73:57:5d:56:20:28:ec:fa:7f:23:58: 81:97:e2:be:bb:e3:b6:81:73:c5:31:ee:05:bd:1e: 8d:e4:cf:04:08:65:e4:f5:23:71:da:05:81:c4:0d: 28:97:f4:86:d4:ab:64:8e:b7:85:9e:e9:38:34:02: 78:35:d0:95:ad:7f:1b:b2:23:b5:d5:fd:9c:51:b9: 80:db:a2:7e:dd:d3:e7:15:95:80:43:7a:07:15:a1: e5:f2:62:1c:c7:3c:f2:7a:16:e5:50:0e:38:3c:37: fe:a8:33:ed:d7:f1:71:62:83:6c:f3:d5:45:9d:1d: 13:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:1D:8C:61:BA:8B:9F:DC:B9:50:02:B1:39:5D:7A:B7:4A:C9:9F:A6 X509v3 Authority Key Identifier: keyid:AF:FB:90:3F:87:6C:B3:B8:74:8A:1C:89:94:58:FF:38:A0:D0:6D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/94c4314f-d3b8-4e06-b245-4a0270b22ada/0/AFFB903F876CB3B8748A1C899458FF38A0D06D4B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFFB903F876CB3B8748A1C899458FF38A0D06D4B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/94c4314f-d3b8-4e06-b245-4a0270b22ada/0/3130332e3138342e36332e302f32342d3234203d3e20313439363734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.63.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:28:d0:a3:c9:45:ce:ec:1d:cc:84:a3:33:b9:af:3d:66:a9: b2:4c:72:96:b9:1c:c6:1e:fb:24:67:d8:b5:a7:a5:8e:e0:c4: 05:62:7a:09:10:0d:ce:ea:15:12:77:63:f9:4f:99:67:69:14: 31:d0:ff:37:ec:9e:fb:e9:03:8f:f4:2e:e5:8d:15:d6:ab:e8: c8:86:fc:04:64:5e:c3:cf:a3:4b:b2:e2:f8:4d:e3:e0:39:a4: e8:75:55:15:3b:13:fa:f9:5b:10:29:1d:0f:e5:ce:45:75:3b: 0b:0c:87:e2:5d:8e:8f:56:0b:ec:82:73:36:02:63:19:c7:a4: b0:b6:07:85:06:2b:0a:ee:31:bf:ae:52:06:eb:b9:9a:09:99: 65:ea:ad:a0:fa:8b:15:e3:66:df:cc:93:49:f7:c4:f3:f0:72: 29:de:0b:85:9a:bc:2e:99:d5:aa:2c:0b:d4:06:26:aa:29:dd: 99:63:d9:90:b9:f9:d1:20:61:3e:1c:3c:15:88:53:6e:24:f1: 85:97:d1:86:99:16:ff:4e:03:2c:9d:ef:80:0d:fb:31:24:f5: f1:62:f3:9f:5c:29:0f:7e:50:94:06:52:45:0b:37:ca:71:e2: 48:3a:8c:0e:e9:81:2c:04:4f:bb:76:46:13:56:2c:e4:ac:ce: 3f:64:0c:dd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUME7bMLZioUb2UE4J5NddyVvLFrMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUZGQjkwM0Y4NzZDQjNCODc0OEExQzg5OTQ1OEZGMzhB MEQwNkQ0QjAeFw0yNDA0MTgwOTU1MDJaFw0yNTA0MTcxMDAwMDJaMDMxMTAvBgNV BAMTKDhBMUQ4QzYxQkE4QjlGRENCOTUwMDJCMTM5NUQ3QUI3NEFDOTlGQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7tpT5KZBUKPeTvurzDLoy+1Il n9d5frAXSvHhp8AUiKbfnY2sMkvCHrxVDV4VnXOsb+iftzO+9ZKRgQfpCY8BLKlL +AbLAB7K6jwyFQ6gY1o2FtJ0kuXNXJFhNBwCX//x0TaUPO/xHs7bgzvtaOrfQDyq vW9rykdwfuCeurgsynr4w5akdFDcpgBzV11WICjs+n8jWIGX4r6747aBc8Ux7gW9 Ho3kzwQIZeT1I3HaBYHEDSiX9IbUq2SOt4We6Tg0Ang10JWtfxuyI7XV/ZxRuYDb on7d0+cVlYBDegcVoeXyYhzHPPJ6FuVQDjg8N/6oM+3X8XFig2zz1UWdHRPLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUih2MYbqLn9y5UAKxOV16t0rJn6YwHwYDVR0j BBgwFoAUr/uQP4dss7h0ihyJlFj/OKDQbUswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NGM0MzE0Zi1kM2I4LTRlMDYtYjI0NS00YTAyNzBiMjJhZGEvMC9BRkZCOTAzRjg3 NkNCM0I4NzQ4QTFDODk5NDU4RkYzOEEwRDA2RDRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUZGQjkwM0Y4NzZDQjNCODc0OEExQzg5OTQ1OEZGMzhBMEQw NkQ0Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0YzQzMTRmLWQzYjgtNGUwNi1i MjQ1LTRhMDI3MGIyMmFkYS8wLzMxMzAzMzJlMzEzODM0MmUzNjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzYzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7g/MA0GCSqG SIb3DQEBCwUAA4IBAQBdKNCjyUXO7B3MhKMzua89ZqmyTHKWuRzGHvskZ9i1p6WO 4MQFYnoJEA3O6hUSd2P5T5lnaRQx0P837J776QOP9C7ljRXWq+jIhvwEZF7Dz6NL suL4TePgOaTodVUVOxP6+VsQKR0P5c5FdTsLDIfiXY6PVgvsgnM2AmMZx6SwtgeF BisK7jG/rlIG67maCZll6q2g+osV42bfzJNJ98Tz8HIp3guFmrwumdWqLAvUBiaq Kd2ZY9mQufnRIGE+HDwViFNuJPGFl9GGmRb/TgMsne+ADfsxJPXxYvOfXCkPflCU BlJFCzfKceJIOowO6YEsBE+7dkYTVizkrM4/ZAzd -----END CERTIFICATE-----Generated at Sun Nov 24 20:07:39 2024 by rpki-client on console-ams.rpki-client.org