$ rpki-client -vvf repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130382e302f32332d3234203d3e20313439373037.roa File: 3130332e32302e3130382e302f32332d3234203d3e20313439373037.roa (raw, json) Hash identifier: YUh1E1cCB+Tam8Lv4+/c622A6XvCbyDIufb9eqoPvMQ= Subject key identifier: 4D:28:26:87:D0:C4:B0:C7:0A:98:83:87:F3:1E:75:70:9F:B3:F2:F2 Certificate issuer: /CN=7A216F23D8A228FBB8F563EC15DF76FD503231B3 Certificate serial: 6A6C1AEDBB606BD69A9C7D17282953482EB917B3 Authority key identifier: 7A:21:6F:23:D8:A2:28:FB:B8:F5:63:EC:15:DF:76:FD:50:32:31:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130382e302f32332d3234203d3e20313439373037.roa Signing time: Tue 15 Oct 2024 11:13:09 +0000 ROA not before: Tue 15 Oct 2024 11:08:09 +0000 ROA not after: Tue 14 Oct 2025 11:13:09 +0000 asID: 149707 IP address blocks: 103.20.108.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/7A216F23D8A228FBB8F563EC15DF76FD503231B3.crl rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/7A216F23D8A228FBB8F563EC15DF76FD503231B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:6c:1a:ed:bb:60:6b:d6:9a:9c:7d:17:28:29:53:48:2e:b9:17:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7A216F23D8A228FBB8F563EC15DF76FD503231B3 Validity Not Before: Oct 15 11:08:09 2024 GMT Not After : Oct 14 11:13:09 2025 GMT Subject: CN=4D282687D0C4B0C70A988387F31E75709FB3F2F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:cc:85:e5:cb:87:dc:ba:7d:82:82:a6:d9:ea: 4f:f7:8c:4a:43:5f:11:0e:ba:2c:08:af:2e:61:ce: 63:7e:8a:9a:ac:8e:9f:28:36:43:00:4f:d1:b9:4c: ae:5f:9d:60:30:da:3f:8a:c0:ec:ca:71:27:83:fe: ca:f7:93:c9:81:8a:a3:ab:cd:2d:99:91:e0:e0:97: 3a:be:45:8e:7d:55:b9:2e:d3:d0:9a:fb:c3:78:99: 8c:c5:7f:06:11:4f:8a:73:a9:3b:13:5b:3a:98:18: cc:10:a0:41:1d:44:ae:b4:f6:bc:31:09:15:f4:01: df:7c:84:6f:46:fb:3f:4f:30:35:4f:d2:41:88:30: 0d:38:cd:2f:de:49:8d:8d:60:fe:5b:18:e8:38:d2: 3b:df:46:6e:23:13:b8:95:b7:9f:0b:74:98:64:8d: 8d:55:f0:7c:dc:a4:ef:d7:51:76:0e:e6:87:41:e1: 70:bd:ed:58:8e:81:0e:f1:05:5b:e9:24:f2:29:b5: e2:51:c4:f2:28:b8:c5:49:b4:6c:46:36:60:5c:3d: f4:e4:e7:46:46:ff:eb:3b:b0:bb:d0:87:c4:da:0e: 8d:a2:ef:a7:4d:c2:36:28:18:a1:f3:36:e6:5f:8b: 9d:79:14:dd:5d:e8:47:5a:ad:7c:bf:2b:98:49:16: df:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:28:26:87:D0:C4:B0:C7:0A:98:83:87:F3:1E:75:70:9F:B3:F2:F2 X509v3 Authority Key Identifier: keyid:7A:21:6F:23:D8:A2:28:FB:B8:F5:63:EC:15:DF:76:FD:50:32:31:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/7A216F23D8A228FBB8F563EC15DF76FD503231B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130382e302f32332d3234203d3e20313439373037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.108.0/23 Signature Algorithm: sha256WithRSAEncryption be:8b:7c:d3:91:2a:5e:8a:c3:dd:27:7f:08:69:88:a0:7f:e2: 04:79:38:cc:e4:9c:5b:60:d4:9a:9a:f5:0a:e4:e0:69:3f:da: 78:3b:c0:22:4e:93:a7:0b:1b:6d:66:9f:07:d3:a2:93:24:e7: 12:a4:b5:cb:89:bd:d8:ed:3c:0d:2d:4c:a0:ca:4a:66:aa:0c: 02:b9:84:dc:d0:d6:17:9a:28:19:ae:09:94:47:ae:b4:9b:59: 4b:e8:50:51:fe:43:fc:24:96:3a:ea:16:75:5a:ce:8e:10:bd: 16:82:be:79:b4:92:05:c1:9d:e5:11:59:60:58:64:05:ca:ca: f9:79:9f:a1:1d:83:37:c8:36:df:4b:c3:b3:db:1f:fd:bf:c5: 8d:b6:d6:a8:e9:c7:86:0e:46:32:0f:88:7f:7a:d4:47:bf:9f: 2b:0e:57:bf:d6:a6:85:12:6d:5b:8f:3c:83:0e:8b:45:8f:cb: c0:10:0e:5a:98:f8:71:11:26:2f:66:9c:28:f9:92:1f:1c:0c: 86:da:11:ce:7e:d3:54:6a:ab:2d:b4:1e:de:04:6b:2a:f2:d5: 3c:b2:0f:01:48:2b:96:81:c1:6a:37:46:fa:8d:3a:60:a1:af: da:ce:01:23:3d:7b:d9:0a:76:2e:30:03:cc:0f:8a:8c:a0:50: e1:0e:24:de -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUamwa7btga9aanH0XKClTSC65F7MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0EyMTZGMjNEOEEyMjhGQkI4RjU2M0VDMTVERjc2RkQ1 MDMyMzFCMzAeFw0yNDEwMTUxMTA4MDlaFw0yNTEwMTQxMTEzMDlaMDMxMTAvBgNV BAMTKDREMjgyNjg3RDBDNEIwQzcwQTk4ODM4N0YzMUU3NTcwOUZCM0YyRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+zIXly4fcun2CgqbZ6k/3jEpD XxEOuiwIry5hzmN+ipqsjp8oNkMAT9G5TK5fnWAw2j+KwOzKcSeD/sr3k8mBiqOr zS2ZkeDglzq+RY59Vbku09Ca+8N4mYzFfwYRT4pzqTsTWzqYGMwQoEEdRK609rwx CRX0Ad98hG9G+z9PMDVP0kGIMA04zS/eSY2NYP5bGOg40jvfRm4jE7iVt58LdJhk jY1V8HzcpO/XUXYO5odB4XC97ViOgQ7xBVvpJPIpteJRxPIouMVJtGxGNmBcPfTk 50ZG/+s7sLvQh8TaDo2i76dNwjYoGKHzNuZfi515FN1d6EdarXy/K5hJFt+HAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTSgmh9DEsMcKmIOH8x51cJ+z8vIwHwYDVR0j BBgwFoAUeiFvI9iiKPu49WPsFd92/VAyMbMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2M2YmQ3My1mOWJkLTRmNWEtOWM1OS1mYmVhMWJkODM0NzMvMC83QTIxNkYyM0Q4 QTIyOEZCQjhGNTYzRUMxNURGNzZGRDUwMzIzMUIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0EyMTZGMjNEOEEyMjhGQkI4RjU2M0VDMTVERjc2RkQ1MDMy MzFCMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYzZiZDczLWY5YmQtNGY1YS05 YzU5LWZiZWExYmQ4MzQ3My8wLzMxMzAzMzJlMzIzMDJlMzEzMDM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM5MzczMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZxRsMA0GCSqG SIb3DQEBCwUAA4IBAQC+i3zTkSpeisPdJ38IaYigf+IEeTjM5JxbYNSamvUK5OBp P9p4O8AiTpOnCxttZp8H06KTJOcSpLXLib3Y7TwNLUygykpmqgwCuYTc0NYXmigZ rgmUR660m1lL6FBR/kP8JJY66hZ1Ws6OEL0Wgr55tJIFwZ3lEVlgWGQFysr5eZ+h HYM3yDbfS8Oz2x/9v8WNttao6ceGDkYyD4h/etRHv58rDle/1qaFEm1bjzyDDotF j8vAEA5amPhxESYvZpwo+ZIfHAyG2hHOftNUaqsttB7eBGsq8tU8sg8BSCuWgcFq N0b6jTpgoa/azgEjPXvZCnYuMAPMD4qMoFDhDiTe -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:50 2024 by rpki-client on console-ams.rpki-client.org