$ rpki-client -vvf repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/3130332e3233392e32312e302f32342d3234203d3e20313531353139.roa File: 3130332e3233392e32312e302f32342d3234203d3e20313531353139.roa (raw, json) Hash identifier: H3hffUKrAMQgM7P8EVWElY25bwWrRFq4QzBAmlTISAU= Subject key identifier: C4:93:59:AC:D5:A5:D8:30:CD:AB:4F:69:42:A9:C0:8E:79:02:8F:43 Certificate issuer: /CN=FE5652AD4702104DB082C396B05EE5D04542E7D7 Certificate serial: 42E537DE5786B2D6B761DB1D0D0838E9AD6E921F Authority key identifier: FE:56:52:AD:47:02:10:4D:B0:82:C3:96:B0:5E:E5:D0:45:42:E7:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE5652AD4702104DB082C396B05EE5D04542E7D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/3130332e3233392e32312e302f32342d3234203d3e20313531353139.roa Signing time: Thu 03 Oct 2024 09:36:34 +0000 ROA not before: Thu 03 Oct 2024 09:31:34 +0000 ROA not after: Thu 02 Oct 2025 09:36:34 +0000 asID: 151519 IP address blocks: 103.239.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/FE5652AD4702104DB082C396B05EE5D04542E7D7.crl rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/FE5652AD4702104DB082C396B05EE5D04542E7D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE5652AD4702104DB082C396B05EE5D04542E7D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:e5:37:de:57:86:b2:d6:b7:61:db:1d:0d:08:38:e9:ad:6e:92:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FE5652AD4702104DB082C396B05EE5D04542E7D7 Validity Not Before: Oct 3 09:31:34 2024 GMT Not After : Oct 2 09:36:34 2025 GMT Subject: CN=C49359ACD5A5D830CDAB4F6942A9C08E79028F43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:23:6b:f3:38:c1:7b:cc:0b:d5:36:1e:be:88: a2:86:70:dd:10:04:f4:05:11:aa:e1:7f:8f:d3:ec: bd:d4:62:85:3e:0c:9d:0b:b6:57:1b:fb:9a:c8:b7: 26:a3:a9:82:6a:54:b9:b1:79:9f:6c:99:67:bb:3b: 41:74:dc:15:02:08:32:a0:83:91:96:0c:10:66:08: c5:80:8c:46:88:6a:74:5f:73:6b:79:d1:84:a1:81: 45:26:8b:db:29:0b:fa:21:19:50:2c:ef:79:b0:6c: 43:00:a2:63:37:43:71:eb:24:95:92:1d:97:69:06: 3e:34:87:cf:b5:22:be:92:b7:bc:85:6b:ec:fe:9d: 98:53:79:5d:e9:9b:02:b8:e6:03:17:a7:3e:64:eb: a8:ed:6c:73:d4:b9:bc:6a:e7:dd:8e:35:95:4d:09: 18:a3:b6:09:f6:2a:b1:53:5b:ed:dd:60:5a:68:16: e5:e3:0c:2c:a1:d9:7f:a0:2c:de:89:a5:e3:95:34: 9d:7a:8c:9c:4a:b7:9a:71:3d:9f:1c:c5:0d:61:5d: 45:1c:50:b2:4f:3b:7c:58:a0:ba:1a:f4:e4:e0:31: e7:3e:88:fd:a2:1c:d8:91:fa:45:e2:eb:e3:58:e0: 84:bb:33:85:a8:99:ca:3a:d1:2c:09:5d:a9:93:ff: 79:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:93:59:AC:D5:A5:D8:30:CD:AB:4F:69:42:A9:C0:8E:79:02:8F:43 X509v3 Authority Key Identifier: keyid:FE:56:52:AD:47:02:10:4D:B0:82:C3:96:B0:5E:E5:D0:45:42:E7:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/FE5652AD4702104DB082C396B05EE5D04542E7D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE5652AD4702104DB082C396B05EE5D04542E7D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/3130332e3233392e32312e302f32342d3234203d3e20313531353139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.239.21.0/24 Signature Algorithm: sha256WithRSAEncryption 46:17:86:8c:3a:64:7b:a5:ac:9f:90:7c:b0:4b:03:2d:ee:72: 75:f6:35:40:f4:58:c9:2c:d2:a8:2a:63:2d:29:b1:0d:ff:7d: c5:75:34:4d:01:96:c2:de:57:88:ec:c3:e3:16:66:91:e2:05: 4e:07:21:ce:f4:10:13:1a:7d:f7:c2:84:42:12:a7:2d:90:6b: 6f:28:f9:15:b6:eb:c9:5a:47:20:ae:68:4a:73:5a:1d:1a:31: 64:ab:13:46:c5:21:d9:ea:24:b0:5d:b2:7a:a0:7d:6a:ce:24: c0:30:ff:b1:7a:6a:34:9c:61:2a:43:83:d3:01:67:f9:8c:27: 86:78:38:a9:2b:0d:16:fd:91:31:28:4f:46:a4:10:5a:03:0e: 13:52:03:7a:22:b6:aa:93:df:96:49:1b:fd:72:80:61:6e:71: a4:1e:54:56:db:31:78:d1:8e:ec:15:3f:df:09:c9:ab:bf:3b: 75:2e:16:7d:a5:c8:7d:c1:18:2b:ac:13:dc:23:9b:2c:29:41: 52:92:e7:bb:4a:ac:ce:e1:7a:c5:25:56:6e:2c:59:f3:1f:49: 6d:49:a1:db:fb:4d:49:22:6f:ff:2b:98:e8:20:1a:48:2b:f3: 12:83:84:79:2d:41:c6:d5:67:54:68:a7:13:26:b4:d9:35:93: 1d:ca:5a:79 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQuU33leGsta3YdsdDQg46a1ukh8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkU1NjUyQUQ0NzAyMTA0REIwODJDMzk2QjA1RUU1RDA0 NTQyRTdENzAeFw0yNDEwMDMwOTMxMzRaFw0yNTEwMDIwOTM2MzRaMDMxMTAvBgNV BAMTKEM0OTM1OUFDRDVBNUQ4MzBDREFCNEY2OTQyQTlDMDhFNzkwMjhGNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4I2vzOMF7zAvVNh6+iKKGcN0Q BPQFEarhf4/T7L3UYoU+DJ0Ltlcb+5rItyajqYJqVLmxeZ9smWe7O0F03BUCCDKg g5GWDBBmCMWAjEaIanRfc2t50YShgUUmi9spC/ohGVAs73mwbEMAomM3Q3HrJJWS HZdpBj40h8+1Ir6St7yFa+z+nZhTeV3pmwK45gMXpz5k66jtbHPUubxq592ONZVN CRijtgn2KrFTW+3dYFpoFuXjDCyh2X+gLN6JpeOVNJ16jJxKt5pxPZ8cxQ1hXUUc ULJPO3xYoLoa9OTgMec+iP2iHNiR+kXi6+NY4IS7M4Womco60SwJXamT/3k3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxJNZrNWl2DDNq09pQqnAjnkCj0MwHwYDVR0j BBgwFoAU/lZSrUcCEE2wgsOWsF7l0EVC59cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h N2FmZDU3YS1lNmRlLTRhNWYtYjVjNi0xMDg2NWQ1YThjOTgvMC9GRTU2NTJBRDQ3 MDIxMDREQjA4MkMzOTZCMDVFRTVEMDQ1NDJFN0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkU1NjUyQUQ0NzAyMTA0REIwODJDMzk2QjA1RUU1RDA0NTQy RTdENy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3YWZkNTdhLWU2ZGUtNGE1Zi1i NWM2LTEwODY1ZDVhOGM5OC8wLzMxMzAzMzJlMzIzMzM5MmUzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+8VMA0GCSqG SIb3DQEBCwUAA4IBAQBGF4aMOmR7payfkHywSwMt7nJ19jVA9FjJLNKoKmMtKbEN /33FdTRNAZbC3leI7MPjFmaR4gVOByHO9BATGn33woRCEqctkGtvKPkVtuvJWkcg rmhKc1odGjFkqxNGxSHZ6iSwXbJ6oH1qziTAMP+xemo0nGEqQ4PTAWf5jCeGeDip Kw0W/ZExKE9GpBBaAw4TUgN6Iraqk9+WSRv9coBhbnGkHlRW2zF40Y7sFT/fCcmr vzt1LhZ9pch9wRgrrBPcI5ssKUFSkue7SqzO4XrFJVZuLFnzH0ltSaHb+01JIm// K5joIBpIK/MSg4R5LUHG1WdUaKcTJrTZNZMdylp5 -----END CERTIFICATE-----Generated at Thu Nov 21 22:33:06 2024 by rpki-client on console-fra.rpki-client.org