$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e39302e32362e302f32342d3234203d3e203633343937.roa File: 3130332e39302e32362e302f32342d3234203d3e203633343937.roa (raw, json) Hash identifier: gM3z/op2YFXyT7g7JtYZFudpoLz5+Bi5Ub/M9drayg4= Subject key identifier: B6:3B:29:41:B5:9E:0E:5D:56:B4:57:9F:41:F2:E7:67:28:7E:9C:48 Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 25EE1E2514B98C2E330F5A4968C484F9491A26C0 Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e39302e32362e302f32342d3234203d3e203633343937.roa Signing time: Mon 01 Jul 2024 01:04:49 +0000 ROA not before: Mon 01 Jul 2024 00:59:49 +0000 ROA not after: Mon 30 Jun 2025 01:04:49 +0000 asID: 63497 IP address blocks: 103.90.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 17:27:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:ee:1e:25:14:b9:8c:2e:33:0f:5a:49:68:c4:84:f9:49:1a:26:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Jul 1 00:59:49 2024 GMT Not After : Jun 30 01:04:49 2025 GMT Subject: CN=B63B2941B59E0E5D56B4579F41F2E767287E9C48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d1:e8:1c:ef:bd:fe:de:2a:7c:cb:11:9f:c9: 58:a1:03:b4:cd:bb:21:67:99:d5:f6:a6:86:17:13: 5d:b0:66:84:f1:04:c8:b5:a6:68:e0:3b:b5:99:e5: df:57:2a:3b:db:ec:ed:fa:4a:2f:08:6c:7d:f5:40: 24:1c:b9:67:b1:0d:04:41:66:da:c9:5c:e8:d9:67: 0e:2f:5d:33:e9:56:f0:bf:71:46:f2:a7:e3:4a:b0: e8:24:d8:24:56:1d:e1:36:7a:83:be:9c:21:01:06: 82:ce:f5:2a:bb:86:2a:37:c2:70:e3:0c:71:a6:35: a8:20:23:d3:8b:88:00:cb:a3:d0:c9:ff:7e:f0:60: d6:a3:98:11:4f:d7:06:cb:43:a6:bc:d0:99:ed:4f: c0:e2:29:b2:28:12:fd:ee:e6:07:58:69:31:7f:ca: ff:b7:2d:86:4d:32:38:25:bc:74:d4:77:da:05:5a: 44:67:24:1f:3e:0e:f9:c0:bf:d1:30:61:28:a4:a2: 76:58:49:41:f8:80:e2:35:59:0a:b9:16:0e:0e:43: ec:53:08:f8:8e:96:c6:7e:87:31:b4:4b:2b:b6:e4: 4d:21:76:59:0b:50:6f:07:ba:44:9d:ba:e5:73:fb: df:c0:fb:cf:20:60:52:5e:04:f7:9b:1e:60:53:9d: 05:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:3B:29:41:B5:9E:0E:5D:56:B4:57:9F:41:F2:E7:67:28:7E:9C:48 X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e39302e32362e302f32342d3234203d3e203633343937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.90.26.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:ad:99:da:27:3c:4f:7c:2d:ee:85:2e:64:0b:fb:c5:88:64: e7:b6:40:b9:01:42:32:f8:1b:c6:e5:7d:15:00:ff:62:f8:9b: 6b:cb:d8:eb:74:9c:62:e6:6e:47:63:2d:44:63:da:ee:03:92: 6d:fd:a8:9c:d2:33:8d:05:d9:19:6a:f3:69:80:ba:d2:55:e3: 2b:92:99:80:09:42:40:75:a4:cf:a5:51:2c:73:b3:93:11:21: fe:c8:20:dd:8f:5b:62:72:35:2b:7d:04:f7:48:42:51:aa:f5: 8c:cc:94:41:e9:34:1b:cc:ac:96:b9:a3:24:8a:d3:43:dc:d9: f9:89:97:63:38:8f:51:47:d6:7c:41:50:f5:a3:87:82:42:99: 1a:a4:87:4c:b5:0f:af:26:c0:3e:8e:05:79:70:5f:97:ee:be: 87:df:00:b4:fe:f6:3f:1b:23:bb:06:e6:5b:fc:89:bf:a3:7c: df:e3:a7:6e:37:b6:2c:8b:5c:7f:25:cb:70:e9:05:5e:0b:03: 78:81:ee:96:c6:b9:0d:2b:fa:74:3b:44:14:9f:fe:0e:b4:a6: 4b:2f:b6:3c:74:cd:96:8d:e3:32:13:94:b3:77:ac:b2:14:02: c3:2f:42:6f:ad:b4:4b:c1:50:8b:5a:e9:e4:62:c3:ed:88:9e: 42:d5:39:95 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUJe4eJRS5jC4zD1pJaMSE+UkaJsAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNDA3MDEwMDU5NDlaFw0yNTA2MzAwMTA0NDlaMDMxMTAvBgNV BAMTKEI2M0IyOTQxQjU5RTBFNUQ1NkI0NTc5RjQxRjJFNzY3Mjg3RTlDNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi0egc773+3ip8yxGfyVihA7TN uyFnmdX2poYXE12wZoTxBMi1pmjgO7WZ5d9XKjvb7O36Si8IbH31QCQcuWexDQRB ZtrJXOjZZw4vXTPpVvC/cUbyp+NKsOgk2CRWHeE2eoO+nCEBBoLO9Sq7hio3wnDj DHGmNaggI9OLiADLo9DJ/37wYNajmBFP1wbLQ6a80JntT8DiKbIoEv3u5gdYaTF/ yv+3LYZNMjglvHTUd9oFWkRnJB8+DvnAv9EwYSikonZYSUH4gOI1WQq5Fg4OQ+xT CPiOlsZ+hzG0Syu25E0hdlkLUG8HukSduuVz+9/A+88gYFJeBPebHmBTnQV7AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUtjspQbWeDl1WtFefQfLnZyh+nEgwHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExNjMzYjhlLTBkZjktNDRhYy05 Y2FlLWQ2ZjY3NjVhNTJjOS8wLzMxMzAzMzJlMzkzMDJlMzIzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzNDM5Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnWhowDQYJKoZIhvcN AQELBQADggEBAG+tmdonPE98Le6FLmQL+8WIZOe2QLkBQjL4G8blfRUA/2L4m2vL 2Ot0nGLmbkdjLURj2u4Dkm39qJzSM40F2Rlq82mAutJV4yuSmYAJQkB1pM+lUSxz s5MRIf7IIN2PW2JyNSt9BPdIQlGq9YzMlEHpNBvMrJa5oySK00Pc2fmJl2M4j1FH 1nxBUPWjh4JCmRqkh0y1D68mwD6OBXlwX5fuvoffALT+9j8bI7sG5lv8ib+jfN/j p243tiyLXH8ly3DpBV4LA3iB7pbGuQ0r+nQ7RBSf/g60pksvtjx0zZaN4zITlLN3 rLIUAsMvQm+ttEvBUIta6eRiw+2InkLVOZU= -----END CERTIFICATE-----Generated at Fri Nov 22 17:50:10 2024 by rpki-client on console-fra.rpki-client.org