$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3130332e3234342e33362e302f32342d3234203d3e203338353030.roa File: 3130332e3234342e33362e302f32342d3234203d3e203338353030.roa (raw, json) Hash identifier: l5czVuVopqzNHFatDNFlv4PSjmFiS+T99enXAHNMN58= Subject key identifier: 95:EA:22:8E:01:12:DF:11:36:36:EA:D8:91:0C:35:DF:33:1A:21:B5 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 33A2E924E9142BA00290FACB19D0A67086435C5E Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3130332e3234342e33362e302f32342d3234203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:43 +0000 ROA not before: Mon 01 Jul 2024 00:59:43 +0000 ROA not after: Mon 30 Jun 2025 01:04:43 +0000 asID: 38500 IP address blocks: 103.244.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:a2:e9:24:e9:14:2b:a0:02:90:fa:cb:19:d0:a6:70:86:43:5c:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:43 2024 GMT Not After : Jun 30 01:04:43 2025 GMT Subject: CN=95EA228E0112DF113636EAD8910C35DF331A21B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:98:b8:e6:06:e6:4e:80:e6:9d:7d:78:ee:09: df:23:29:f5:cb:b0:3e:2b:ac:ba:c6:25:0f:2e:ca: 52:aa:ec:ca:da:20:60:bc:29:83:09:5d:c1:53:6a: 79:4a:ab:ac:ee:fd:c8:83:6e:95:c9:18:fd:7f:07: b0:af:f0:1b:ba:38:91:a8:85:4d:c6:6c:3c:e9:99: ef:4f:23:9f:b3:8c:a3:76:eb:6a:6a:51:fd:5b:93: 5c:43:cb:f7:56:dd:8e:c6:93:ba:b2:10:fb:0c:f0: 32:11:00:8b:78:52:27:d9:12:61:2c:16:b5:dc:4e: fc:dc:89:f1:81:69:a3:c9:5a:29:5c:8b:79:83:ef: a3:94:ab:5c:ba:8c:56:c4:e4:d5:52:ea:39:77:d7: 7f:f6:97:60:70:c8:cb:72:99:81:f3:8b:75:ce:cf: a4:b6:b0:d9:54:dc:5a:a4:25:1e:b6:c8:cf:10:5d: de:1b:79:db:58:66:75:f3:64:27:30:dc:e4:8f:80: 26:4f:ba:8b:7c:56:fd:8b:24:47:86:93:8c:74:43: 3a:33:d2:42:6e:4f:ee:ec:20:f0:e0:a3:b0:09:f2: 83:09:a6:1c:0c:74:3a:c3:8e:91:cb:e2:18:af:45: d0:c9:be:a0:4b:0a:12:2e:09:80:83:00:08:21:83: 37:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:EA:22:8E:01:12:DF:11:36:36:EA:D8:91:0C:35:DF:33:1A:21:B5 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3130332e3234342e33362e302f32342d3234203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.244.36.0/24 Signature Algorithm: sha256WithRSAEncryption b8:b1:72:75:77:28:a3:a8:4c:5c:32:6e:24:9f:af:79:0c:19: f5:b2:e1:31:ad:e1:08:86:13:cb:2d:f4:a9:b3:18:23:98:f6: 6c:fe:17:c9:e7:31:12:f3:9b:74:d8:1d:39:4c:fe:c4:7f:0f: a4:85:d3:5c:a9:bd:80:1e:75:92:24:5b:ab:0f:cb:34:c6:c1: d2:e0:fc:13:b1:f7:78:a4:43:ae:7f:7b:1d:7c:18:c1:b6:c8: 8d:01:34:92:9e:ba:ef:ff:a3:55:74:f9:d2:65:f1:8f:d4:b5: 22:2b:e3:c4:9f:81:88:6f:5c:5a:4c:c7:19:55:2c:08:be:11: 55:3a:5e:ef:20:c9:80:f6:76:a0:09:bf:b0:59:9b:77:37:37: d6:e8:b8:3f:db:77:30:df:56:08:4f:0e:3e:38:27:b1:2a:92: 44:6f:d4:61:3f:d4:4e:b0:fc:be:2c:70:19:76:5f:ad:8d:4c: d9:de:fb:3b:ce:1b:73:2b:e2:5b:9a:08:cf:c2:15:e6:b4:b1: 0b:a4:5a:b0:45:3a:97:ad:b7:8c:89:34:9a:6c:10:ab:66:57: ea:cc:45:80:a9:40:fb:c0:8c:c7:cb:f4:f4:fc:bf:8b:20:5f: b6:25:95:24:a1:12:5a:4b:36:e7:95:ee:83:9b:b8:58:64:81: fc:8e:3e:94 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUM6LpJOkUK6ACkPrLGdCmcIZDXF4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDNaFw0yNTA2MzAwMTA0NDNaMDMxMTAvBgNV BAMTKDk1RUEyMjhFMDExMkRGMTEzNjM2RUFEODkxMEMzNURGMzMxQTIxQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9mLjmBuZOgOadfXjuCd8jKfXL sD4rrLrGJQ8uylKq7MraIGC8KYMJXcFTanlKq6zu/ciDbpXJGP1/B7Cv8Bu6OJGo hU3GbDzpme9PI5+zjKN262pqUf1bk1xDy/dW3Y7Gk7qyEPsM8DIRAIt4UifZEmEs FrXcTvzcifGBaaPJWilci3mD76OUq1y6jFbE5NVS6jl313/2l2BwyMtymYHzi3XO z6S2sNlU3FqkJR62yM8QXd4bedtYZnXzZCcw3OSPgCZPuot8Vv2LJEeGk4x0Qzoz 0kJuT+7sIPDgo7AJ8oMJphwMdDrDjpHL4hivRdDJvqBLChIuCYCDAAghgzedAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUleoijgES3xE2NurYkQw13zMaIbUwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMxMzAzMzJlMzIzNDM0MmUzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGf0JDANBgkqhkiG 9w0BAQsFAAOCAQEAuLFydXcoo6hMXDJuJJ+veQwZ9bLhMa3hCIYTyy30qbMYI5j2 bP4XyecxEvObdNgdOUz+xH8PpIXTXKm9gB51kiRbqw/LNMbB0uD8E7H3eKRDrn97 HXwYwbbIjQE0kp667/+jVXT50mXxj9S1IivjxJ+BiG9cWkzHGVUsCL4RVTpe7yDJ gPZ2oAm/sFmbdzc31ui4P9t3MN9WCE8OPjgnsSqSRG/UYT/UTrD8vixwGXZfrY1M 2d77O84bcyviW5oIz8IV5rSxC6RasEU6l623jIk0mmwQq2ZX6sxFgKlA+8CMx8v0 9Py/iyBftiWVJKESWks255Xug5u4WGSB/I4+lA== -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:59 2024 by rpki-client on console-ams.rpki-client.org