$ rpki-client -vvf repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3134392e302f32342d3234203d3e20313336383533.roa File: 3130332e3130322e3134392e302f32342d3234203d3e20313336383533.roa (raw, json) Hash identifier: UstTiYAWRY3Cy+bDYUqZ/arOiMdslwlVWqwEWaGFovA= Subject key identifier: 39:74:DD:A2:A7:40:09:EF:7A:81:FF:DB:EF:59:FE:AC:71:8C:4B:E8 Certificate issuer: /CN=18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169 Certificate serial: 6ECB01C96088122FA6A0A64804113168C82A6B70 Authority key identifier: 18:E9:DC:5B:AC:AA:E6:8D:1C:9F:50:69:82:56:E0:ED:EF:9A:51:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3134392e302f32342d3234203d3e20313336383533.roa Signing time: Mon 01 Jul 2024 01:05:12 +0000 ROA not before: Mon 01 Jul 2024 01:00:12 +0000 ROA not after: Mon 30 Jun 2025 01:05:12 +0000 asID: 136853 IP address blocks: 103.102.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.crl rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:cb:01:c9:60:88:12:2f:a6:a0:a6:48:04:11:31:68:c8:2a:6b:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169 Validity Not Before: Jul 1 01:00:12 2024 GMT Not After : Jun 30 01:05:12 2025 GMT Subject: CN=3974DDA2A74009EF7A81FFDBEF59FEAC718C4BE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:14:26:d8:dd:cb:c8:6e:6f:ac:9d:47:7c:4c: a4:8d:50:6b:1a:ee:f8:19:eb:b6:2a:d5:7d:3e:e6: 5c:ac:01:52:a7:2b:b2:63:68:d7:6d:fa:1b:6e:98: 39:2b:6b:a8:40:6c:22:96:a9:f3:7e:b7:89:74:1d: 5d:e3:04:8b:28:58:0a:38:f5:6f:72:fa:ff:46:a2: af:b5:a8:69:36:a1:a3:6e:be:c0:98:f9:ea:7e:7a: 5e:3e:0b:4e:19:ae:a4:33:7d:c2:6e:19:08:90:9b: 6e:a0:15:88:0e:cb:0b:dd:3f:2d:1c:76:68:25:ec: 7e:83:78:84:83:28:21:3b:fe:3e:51:10:3b:c4:19: 31:54:ee:5a:0c:e1:32:a2:48:71:67:64:dc:7c:2f: 8a:02:25:0c:fe:77:ab:db:49:d9:12:70:b7:ea:fe: 98:93:a3:8c:76:ca:eb:7e:81:1d:bd:5c:4b:ce:9b: 98:05:e3:2f:36:33:a6:76:d1:9a:77:d7:a5:80:bc: 72:cd:37:1d:98:1b:7f:82:03:15:0a:d2:3c:25:ea: 25:53:33:dd:21:93:27:88:91:c5:bf:16:41:2a:34: 0e:ec:4e:ca:19:b4:d8:9a:51:a7:fd:e4:ac:74:9e: d6:e8:5c:cb:5a:76:79:0e:d3:d1:7a:47:84:15:5a: b2:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:74:DD:A2:A7:40:09:EF:7A:81:FF:DB:EF:59:FE:AC:71:8C:4B:E8 X509v3 Authority Key Identifier: keyid:18:E9:DC:5B:AC:AA:E6:8D:1C:9F:50:69:82:56:E0:ED:EF:9A:51:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3134392e302f32342d3234203d3e20313336383533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.149.0/24 Signature Algorithm: sha256WithRSAEncryption 68:ca:9f:36:1c:83:09:92:ed:a9:dc:f3:30:3e:ee:b5:6b:f5: 10:38:4e:80:52:9b:d7:c8:02:d2:eb:93:79:ae:3d:21:ba:9b: e9:5a:58:dd:f8:e7:b5:1f:ed:37:ad:85:4e:05:b2:75:5a:02: fb:40:09:66:ad:f5:80:d5:f0:68:fe:43:f2:1f:16:8a:f1:bc: 6a:00:5b:f0:e9:82:e8:86:f0:2a:14:16:7d:07:3c:48:dc:e1: 77:5a:a5:ad:04:f3:62:d5:2c:28:c2:6f:0f:03:72:c1:46:75: 5e:e9:d1:2c:d2:34:9e:a1:97:cd:4e:ff:2e:27:41:99:8f:f8: 85:e4:63:75:db:71:6e:f7:52:84:25:59:cc:11:4c:3c:d3:55: db:bb:3d:f2:ce:a1:6e:51:6a:5c:ad:95:15:a8:47:2b:36:bc: b0:5e:34:16:d8:d8:67:e8:a1:9c:3a:f9:10:76:da:0a:a3:3a: a5:76:38:6f:a7:6d:40:2f:f9:93:55:cd:7e:12:3a:d2:20:70: ca:3e:fc:c9:4b:9d:7b:53:9e:fa:1f:65:80:00:1e:b8:29:a3: a2:a6:4c:72:fc:7c:07:d7:73:fa:b1:fc:79:c2:8c:9b:3a:6b: de:17:cb:a9:b8:83:68:c4:cf:a4:8b:1f:75:b2:67:06:7e:1c: d8:fe:62:8e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbssByWCIEi+moKZIBBExaMgqa3AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMThFOURDNUJBQ0FBRTY4RDFDOUY1MDY5ODI1NkUwRURF RjlBNTE2OTAeFw0yNDA3MDEwMTAwMTJaFw0yNTA2MzAwMTA1MTJaMDMxMTAvBgNV BAMTKDM5NzREREEyQTc0MDA5RUY3QTgxRkZEQkVGNTlGRUFDNzE4QzRCRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcFCbY3cvIbm+snUd8TKSNUGsa 7vgZ67Yq1X0+5lysAVKnK7JjaNdt+htumDkra6hAbCKWqfN+t4l0HV3jBIsoWAo4 9W9y+v9Goq+1qGk2oaNuvsCY+ep+el4+C04ZrqQzfcJuGQiQm26gFYgOywvdPy0c dmgl7H6DeISDKCE7/j5REDvEGTFU7loM4TKiSHFnZNx8L4oCJQz+d6vbSdkScLfq /piTo4x2yut+gR29XEvOm5gF4y82M6Z20Zp316WAvHLNNx2YG3+CAxUK0jwl6iVT M90hkyeIkcW/FkEqNA7sTsoZtNiaUaf95Kx0ntboXMtadnkO09F6R4QVWrJ9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUOXTdoqdACe96gf/b71n+rHGMS+gwHwYDVR0j BBgwFoAUGOncW6yq5o0cn1Bpglbg7e+aUWkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YTlmODFjYi01YTU5LTQwZjMtODZhMC1jZGU1Yjk0Y2VmODYvMC8xOEU5REM1QkFD QUFFNjhEMUM5RjUwNjk4MjU2RTBFREVGOUE1MTY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMThFOURDNUJBQ0FBRTY4RDFDOUY1MDY5ODI1NkUwRURFRjlB NTE2OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JhOWY4MWNiLTVhNTktNDBmMy04 NmEwLWNkZTViOTRjZWY4Ni8wLzMxMzAzMzJlMzEzMDMyMmUzMTM0MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM1MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZpUwDQYJ KoZIhvcNAQELBQADggEBAGjKnzYcgwmS7anc8zA+7rVr9RA4ToBSm9fIAtLrk3mu PSG6m+laWN3457Uf7TethU4FsnVaAvtACWat9YDV8Gj+Q/IfForxvGoAW/DpguiG 8CoUFn0HPEjc4Xdapa0E82LVLCjCbw8DcsFGdV7p0SzSNJ6hl81O/y4nQZmP+IXk Y3XbcW73UoQlWcwRTDzTVdu7PfLOoW5RalytlRWoRys2vLBeNBbY2GfooZw6+RB2 2gqjOqV2OG+nbUAv+ZNVzX4SOtIgcMo+/MlLnXtTnvofZYAAHrgpo6KmTHL8fAfX c/qx/HnCjJs6a94Xy6m4g2jEz6SLH3WyZwZ+HNj+Yo4= -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:03 2024 by rpki-client on console-ams.rpki-client.org