$ rpki-client -vvf repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/3130332e35392e39342e302f32332d3234203d3e20313336303532.roa File: 3130332e35392e39342e302f32332d3234203d3e20313336303532.roa (raw, json) Hash identifier: 1GaxlmyMBH5Av+K+s7DcySXoa/4RweD6yLZx8aQoKzc= Subject key identifier: 23:F0:F1:21:51:69:49:28:B4:A4:67:BC:63:F6:06:7F:C4:71:A0:FA Certificate issuer: /CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Certificate serial: 375A6399DCFEC1E973BC6FC27E8F37E6DA09393C Authority key identifier: 67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/3130332e35392e39342e302f32332d3234203d3e20313336303532.roa Signing time: Mon 04 Nov 2024 01:00:01 +0000 ROA not before: Mon 04 Nov 2024 00:55:01 +0000 ROA not after: Mon 03 Nov 2025 01:00:01 +0000 asID: 136052 IP address blocks: 103.59.94.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:5a:63:99:dc:fe:c1:e9:73:bc:6f:c2:7e:8f:37:e6:da:09:39:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Validity Not Before: Nov 4 00:55:01 2024 GMT Not After : Nov 3 01:00:01 2025 GMT Subject: CN=23F0F12151694928B4A467BC63F6067FC471A0FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:76:f0:f4:11:2f:e7:85:0c:ae:86:78:4f:8f: 1b:93:27:76:34:f4:e6:03:ef:1b:fd:61:3d:3a:2c: 1b:9f:3b:04:12:9b:2a:b6:b8:fc:d8:9e:6a:74:9c: cd:d6:1f:82:50:25:d5:8a:7a:29:4d:c2:a6:00:a7: 61:58:3a:43:05:a1:a6:24:3c:e7:71:21:dd:92:7d: c8:02:88:1e:59:8b:3f:61:65:fe:b6:4e:af:6e:00: c8:7d:3a:c1:53:cf:6b:77:86:d2:09:ef:11:74:7e: 52:53:a9:54:a9:2c:e0:4e:ff:a9:83:02:e9:21:a8: 02:f5:dc:5e:75:fc:72:22:f1:8d:cd:3f:49:67:8d: 54:84:a6:eb:88:c6:4a:ed:a8:65:00:b9:e7:59:d4: 2a:11:6a:4c:45:6c:72:f2:ee:b2:b2:81:15:e2:0f: 49:8e:5d:df:34:bd:a2:d9:bc:31:37:29:45:b8:a8: 24:0f:27:c3:cb:94:45:65:e6:00:51:a8:01:d6:63: 77:23:d0:84:5f:52:68:a6:bb:f9:d5:21:44:5e:36: c8:83:20:5e:7f:89:03:a9:2a:27:4e:17:c2:70:ad: b1:8d:48:0e:6a:1d:de:b9:6c:95:3a:2e:7a:bb:3b: 0a:9f:cd:4e:9b:57:c7:db:c6:47:59:80:29:34:0f: 4e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:F0:F1:21:51:69:49:28:B4:A4:67:BC:63:F6:06:7F:C4:71:A0:FA X509v3 Authority Key Identifier: keyid:67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/3130332e35392e39342e302f32332d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.59.94.0/23 Signature Algorithm: sha256WithRSAEncryption ae:a7:c0:b5:37:37:20:99:a3:12:ea:00:10:f0:d2:d7:e4:0e: 6a:8a:b7:f5:3e:88:8d:5f:40:1a:23:c5:c5:68:6c:de:d4:63: 24:a6:0a:11:da:cd:eb:cf:01:a4:5a:ae:dc:bb:f6:2f:3c:af: 24:47:cf:60:c2:86:82:11:f3:78:48:ae:46:77:f4:19:1c:03: 3d:5b:3f:9f:77:7f:8d:1e:25:d3:8e:ec:f4:0f:59:14:33:94: 2a:3e:54:b1:79:9c:8a:ec:e3:eb:5f:d0:47:66:0b:ed:c4:96: 60:58:50:b9:cd:c1:4b:d6:64:48:87:66:b0:f9:7e:4f:ca:f5: 86:0d:6b:89:3f:ed:25:fd:b0:97:a5:31:cd:94:8e:52:9c:cd: a0:55:1e:93:18:53:a5:72:d7:d3:3d:22:74:c8:f9:eb:82:b0: 4e:99:7e:df:56:8b:a9:21:d9:94:65:ef:46:58:d4:5e:82:9a: ce:c8:03:0f:e6:d9:39:b4:06:40:90:2b:02:d8:ac:ca:7b:98: 75:be:d1:82:f5:3d:98:7c:be:6d:10:14:49:58:ae:3a:3a:9c: 5a:4f:54:e6:a6:06:4d:2a:81:30:68:5f:25:6b:0e:45:94:c2: 59:2d:75:06:4d:18:ff:58:f4:36:1e:8d:e0:32:b5:18:ca:9d: fa:2e:ac:87 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUN1pjmdz+welzvG/Cfo835toJOTwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1 RUMzODcxRjAeFw0yNDExMDQwMDU1MDFaFw0yNTExMDMwMTAwMDFaMDMxMTAvBgNV BAMTKDIzRjBGMTIxNTE2OTQ5MjhCNEE0NjdCQzYzRjYwNjdGQzQ3MUEwRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvdvD0ES/nhQyuhnhPjxuTJ3Y0 9OYD7xv9YT06LBufOwQSmyq2uPzYnmp0nM3WH4JQJdWKeilNwqYAp2FYOkMFoaYk POdxId2SfcgCiB5Ziz9hZf62Tq9uAMh9OsFTz2t3htIJ7xF0flJTqVSpLOBO/6mD AukhqAL13F51/HIi8Y3NP0lnjVSEpuuIxkrtqGUAuedZ1CoRakxFbHLy7rKygRXi D0mOXd80vaLZvDE3KUW4qCQPJ8PLlEVl5gBRqAHWY3cj0IRfUmimu/nVIUReNsiD IF5/iQOpKidOF8JwrbGNSA5qHd65bJU6Lnq7OwqfzU6bV8fbxkdZgCk0D07NAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUI/DxIVFpSSi0pGe8Y/YGf8RxoPowHwYDVR0j BBgwFoAUZ6Qo09yJ3e9b56xD+3yIF17Dhx8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjZhOGYyOC05YTAzLTQzNzYtYjYxMi0zMWY1YWQxYzFlZDYvMC82N0E0MjhEM0RD ODlEREVGNUJFN0FDNDNGQjdDODgxNzVFQzM4NzFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1RUMz ODcxRi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2NmE4ZjI4LTlhMDMtNDM3Ni1i NjEyLTMxZjVhZDFjMWVkNi8wLzMxMzAzMzJlMzUzOTJlMzkzNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzNjMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWc7XjANBgkqhkiG 9w0BAQsFAAOCAQEArqfAtTc3IJmjEuoAEPDS1+QOaoq39T6IjV9AGiPFxWhs3tRj JKYKEdrN688BpFqu3Lv2LzyvJEfPYMKGghHzeEiuRnf0GRwDPVs/n3d/jR4l047s 9A9ZFDOUKj5UsXmciuzj61/QR2YL7cSWYFhQuc3BS9ZkSIdmsPl+T8r1hg1riT/t Jf2wl6UxzZSOUpzNoFUekxhTpXLX0z0idMj564KwTpl+31aLqSHZlGXvRljUXoKa zsgDD+bZObQGQJArAtisynuYdb7RgvU9mHy+bRAUSViuOjqcWk9U5qYGTSqBMGhf JWsORZTCWS11Bk0Y/1j0Nh6N4DK1GMqd+i6shw== -----END CERTIFICATE-----Generated at Sun Nov 24 18:20:19 2024 by rpki-client on console-ams.rpki-client.org