$ rpki-client -vvf repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/3130332e3133302e3139382e302f32332d3234203d3e20313338303737.roa File: 3130332e3133302e3139382e302f32332d3234203d3e20313338303737.roa (raw, json) Hash identifier: 6vBqzB7HjV8eXq96uXH5kMCXLoXOrJBXaIEvwNp0/Jo= Subject key identifier: F9:4C:5B:40:1E:25:A9:F8:E0:3E:8F:C4:FC:6E:17:73:25:78:5A:D4 Certificate issuer: /CN=B877CD1C542C3DE2CBB8EF151F179B857E9376E4 Certificate serial: 16043DFB62C064F7E0B482838B5F354A39E49BEA Authority key identifier: B8:77:CD:1C:54:2C:3D:E2:CB:B8:EF:15:1F:17:9B:85:7E:93:76:E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/3130332e3133302e3139382e302f32332d3234203d3e20313338303737.roa Signing time: Sat 16 Dec 2023 03:39:21 +0000 ROA not before: Sat 16 Dec 2023 03:34:21 +0000 ROA not after: Sat 14 Dec 2024 03:39:21 +0000 asID: 138077 IP address blocks: 103.130.198.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.crl rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 00:56:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:04:3d:fb:62:c0:64:f7:e0:b4:82:83:8b:5f:35:4a:39:e4:9b:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B877CD1C542C3DE2CBB8EF151F179B857E9376E4 Validity Not Before: Dec 16 03:34:21 2023 GMT Not After : Dec 14 03:39:21 2024 GMT Subject: CN=F94C5B401E25A9F8E03E8FC4FC6E177325785AD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c0:48:b7:8e:44:57:59:16:54:eb:52:06:70: 6a:5d:75:3d:59:1e:df:45:86:0f:b2:75:26:63:d0: 36:7d:3e:bb:4b:87:95:d3:88:d7:6e:8c:dc:4a:f2: 73:a4:90:ac:76:b2:18:ee:93:42:ea:93:00:8f:ca: de:5c:50:a4:bb:08:82:cb:d4:a3:2f:02:64:2c:c2: c6:de:ca:e8:60:05:9b:d8:0d:03:3c:66:52:ed:e8: 8d:ab:b3:7c:a4:19:8d:ab:8b:08:9e:cc:de:b9:ca: a7:ed:55:92:a7:7f:6d:1a:b2:a7:d1:93:5c:a2:6a: c5:f4:d1:ba:27:a4:ea:82:1d:3a:4f:6d:10:1a:7c: ed:0a:37:a3:ad:27:3b:c7:c1:58:c4:fb:e8:ad:3c: 50:2f:c3:c5:cf:81:54:ab:9f:da:77:bb:77:6e:70: 41:88:03:5c:98:0b:43:81:fa:95:39:5c:03:89:ad: 6a:da:73:d0:7a:3b:bf:3d:7c:04:fa:06:4e:5f:ad: de:cb:cd:b3:03:a4:a9:05:6b:e1:75:21:4c:58:ea: 0e:dc:e4:55:09:70:b9:d9:7a:43:24:b6:40:96:a8: 8c:e1:b0:0e:a1:9c:f1:90:6e:90:76:4c:10:50:1c: 75:20:05:ca:9a:c8:3b:c2:7b:d3:59:42:df:e0:41: 57:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:4C:5B:40:1E:25:A9:F8:E0:3E:8F:C4:FC:6E:17:73:25:78:5A:D4 X509v3 Authority Key Identifier: keyid:B8:77:CD:1C:54:2C:3D:E2:CB:B8:EF:15:1F:17:9B:85:7E:93:76:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/3130332e3133302e3139382e302f32332d3234203d3e20313338303737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.130.198.0/23 Signature Algorithm: sha256WithRSAEncryption 99:f5:c6:71:52:80:ad:02:f8:1d:6b:bd:f9:49:ef:5e:dd:a6: 21:d5:65:67:fb:04:6c:8e:02:19:69:49:c9:4a:f7:56:66:59: 57:de:09:f2:54:b9:a3:10:fc:f7:dc:3b:ec:59:27:de:f6:43: d2:1e:1c:73:0c:c2:aa:f7:0b:66:1d:d1:8c:e5:4f:91:e4:14: 2c:ee:27:71:fd:f0:a3:62:70:6a:ae:9a:83:50:3d:ab:ba:4d: d9:84:f1:48:c8:72:22:7a:f7:b9:77:c4:da:de:b3:24:5b:2e: 1a:b2:dd:87:a7:42:4e:45:55:a4:f3:77:1d:01:c2:70:c5:47: 9e:6d:e5:6e:45:2f:4d:00:dd:c3:fc:dc:b5:04:35:86:26:00: ce:c1:b2:f5:17:48:e4:60:e8:9e:2e:bc:59:48:8d:38:34:20: 2e:27:a9:79:3f:ce:28:3a:3a:76:8d:b5:39:09:b2:db:55:15: cd:a0:61:af:2c:5e:40:cd:33:a0:78:32:3a:79:c7:0f:f3:9a: 91:73:98:72:77:ab:ff:99:5f:21:8b:d0:ea:cd:79:bd:6e:af: 7f:6a:bc:8c:c6:cc:17:4e:62:3e:ee:1f:20:a0:a7:32:9b:88: 72:fc:0e:86:e7:35:c2:88:02:b4:36:40:ba:8e:de:04:a7:e5: a4:06:25:00 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFgQ9+2LAZPfgtIKDi181Sjnkm+owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg3N0NEMUM1NDJDM0RFMkNCQjhFRjE1MUYxNzlCODU3 RTkzNzZFNDAeFw0yMzEyMTYwMzM0MjFaFw0yNDEyMTQwMzM5MjFaMDMxMTAvBgNV BAMTKEY5NEM1QjQwMUUyNUE5RjhFMDNFOEZDNEZDNkUxNzczMjU3ODVBRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9wEi3jkRXWRZU61IGcGpddT1Z Ht9Fhg+ydSZj0DZ9PrtLh5XTiNdujNxK8nOkkKx2shjuk0LqkwCPyt5cUKS7CILL 1KMvAmQswsbeyuhgBZvYDQM8ZlLt6I2rs3ykGY2riwiezN65yqftVZKnf20asqfR k1yiasX00bonpOqCHTpPbRAafO0KN6OtJzvHwVjE++itPFAvw8XPgVSrn9p3u3du cEGIA1yYC0OB+pU5XAOJrWrac9B6O789fAT6Bk5frd7LzbMDpKkFa+F1IUxY6g7c 5FUJcLnZekMktkCWqIzhsA6hnPGQbpB2TBBQHHUgBcqayDvCe9NZQt/gQVfVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU+UxbQB4lqfjgPo/E/G4XcyV4WtQwHwYDVR0j BBgwFoAUuHfNHFQsPeLLuO8VHxebhX6TduQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZjZkMTg1ZS1kNGY0LTQ4MjAtYjRiNi03OThjMzA3YWQ3ZTUvMC9CODc3Q0QxQzU0 MkMzREUyQ0JCOEVGMTUxRjE3OUI4NTdFOTM3NkU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg3N0NEMUM1NDJDM0RFMkNCQjhFRjE1MUYxNzlCODU3RTkz NzZFNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FmNmQxODVlLWQ0ZjQtNDgyMC1i NGI2LTc5OGMzMDdhZDdlNS8wLzMxMzAzMzJlMzEzMzMwMmUzMTM5MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM3Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFngsYwDQYJ KoZIhvcNAQELBQADggEBAJn1xnFSgK0C+B1rvflJ717dpiHVZWf7BGyOAhlpSclK 91ZmWVfeCfJUuaMQ/PfcO+xZJ972Q9IeHHMMwqr3C2Yd0YzlT5HkFCzuJ3H98KNi cGqumoNQPau6TdmE8UjIciJ697l3xNresyRbLhqy3YenQk5FVaTzdx0BwnDFR55t 5W5FL00A3cP83LUENYYmAM7BsvUXSORg6J4uvFlIjTg0IC4nqXk/zig6OnaNtTkJ sttVFc2gYa8sXkDNM6B4Mjp5xw/zmpFzmHJ3q/+ZXyGL0OrNeb1ur39qvIzGzBdO Yj7uHyCgpzKbiHL8DobnNcKIArQ2QLqO3gSn5aQGJQA= -----END CERTIFICATE-----Generated at Thu May 2 14:39:53 2024 by rpki-client on console-ams.rpki-client.org