$ rpki-client -vvf repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/3130332e3232352e3137312e302f32342d3234203d3e20313333333339.roa File: 3130332e3232352e3137312e302f32342d3234203d3e20313333333339.roa (raw, json) Hash identifier: +61Anl5ypO84ol56ha6mG72+cb4lrmZZj4Z8Yuj1ScA= Subject key identifier: 29:D0:B8:02:6F:72:3C:D4:5A:6B:2D:1E:DF:D0:10:D6:E8:87:83:9D Certificate issuer: /CN=019C4E26EEC252EA61FBB09FD856CDD057CEAD8C Certificate serial: 3BC363AA6B080905E33230A6A889829584FA3DD5 Authority key identifier: 01:9C:4E:26:EE:C2:52:EA:61:FB:B0:9F:D8:56:CD:D0:57:CE:AD:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/3130332e3232352e3137312e302f32342d3234203d3e20313333333339.roa Signing time: Wed 02 Oct 2024 22:20:57 +0000 ROA not before: Wed 02 Oct 2024 22:15:57 +0000 ROA not after: Wed 01 Oct 2025 22:20:57 +0000 asID: 133339 IP address blocks: 103.225.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.crl rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 00:43:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:c3:63:aa:6b:08:09:05:e3:32:30:a6:a8:89:82:95:84:fa:3d:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=019C4E26EEC252EA61FBB09FD856CDD057CEAD8C Validity Not Before: Oct 2 22:15:57 2024 GMT Not After : Oct 1 22:20:57 2025 GMT Subject: CN=29D0B8026F723CD45A6B2D1EDFD010D6E887839D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6b:0e:de:aa:20:27:77:74:89:7e:87:d5:ff: fc:cf:79:31:ca:b5:32:b4:e7:01:1c:65:c1:8b:ed: ad:85:b7:72:05:ac:b0:e5:ab:48:4d:85:42:14:02: 01:ca:59:a6:ae:7d:82:50:46:fb:7c:8f:02:51:61: b3:7a:9c:d4:00:2d:5a:43:ac:83:ce:15:7c:19:d9: 8e:f8:64:46:4a:a4:9d:70:17:d0:76:37:eb:38:60: e5:05:95:a2:59:57:29:16:62:20:13:bd:61:02:97: 74:98:ee:73:ec:2c:5c:58:84:85:55:c0:d6:96:2f: 6a:43:c2:5d:ac:48:67:83:ca:61:0d:a5:79:1b:e8: 86:16:be:24:dd:33:49:3e:05:c1:0e:2d:76:8b:7c: aa:47:b4:43:89:31:8d:6c:e7:45:66:1b:a8:ba:a9: 47:3d:ec:93:b8:9d:6f:66:f3:46:da:63:92:4a:57: 21:7e:4b:cb:1f:a6:cd:45:11:c3:52:1c:aa:7c:2f: bd:0f:cb:a5:88:32:ce:be:9a:a3:70:3b:af:56:b5: 44:91:c9:b7:dd:fc:16:e8:e9:c3:0b:7c:d1:8d:bb: f0:1c:83:cb:46:c2:4d:ed:4e:ed:06:cf:d1:1f:34: b0:01:5d:04:93:bc:47:73:75:7c:8e:cd:d0:18:76: 32:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:D0:B8:02:6F:72:3C:D4:5A:6B:2D:1E:DF:D0:10:D6:E8:87:83:9D X509v3 Authority Key Identifier: keyid:01:9C:4E:26:EE:C2:52:EA:61:FB:B0:9F:D8:56:CD:D0:57:CE:AD:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/3130332e3232352e3137312e302f32342d3234203d3e20313333333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.225.171.0/24 Signature Algorithm: sha256WithRSAEncryption 39:5c:18:0f:98:00:f8:8b:27:24:e2:72:8d:df:d8:4c:6e:2a: 7b:a0:aa:fb:6e:92:32:ff:54:33:d7:ac:b9:22:b3:c6:b6:29: 76:3b:af:53:b8:6d:a2:a0:b3:7c:05:56:1b:c7:fe:6e:c9:68: 60:03:40:87:a4:85:b0:04:f6:03:45:4d:8d:a1:17:c6:56:dc: e2:9b:f0:ef:2f:7c:58:6d:4b:3b:d4:44:33:7e:ee:1b:32:c5: 2b:0b:10:9a:73:3b:af:43:3b:9c:a0:f3:01:e3:62:42:2b:40: 36:63:67:32:01:1b:84:9a:1e:a3:90:76:0f:23:b2:aa:c5:2f: 8a:91:88:29:3b:f4:b7:4c:c4:61:dd:da:7d:e0:d4:b6:03:17: 14:76:9e:d6:16:00:7b:f6:9c:d0:92:db:b4:eb:4c:35:67:06: ee:25:db:e4:c2:c0:78:2d:95:34:57:ec:46:fb:0c:5d:7d:54: 3f:4b:08:e7:ef:18:3d:53:9d:08:68:fe:f7:76:c6:f4:a9:30: bf:0d:a8:bf:c9:18:f4:36:39:1c:5d:8d:2f:4a:71:24:ed:07: d3:75:ef:00:8d:62:37:fc:0c:46:a2:1a:04:85:72:cc:c6:a1: a2:23:a0:bd:b5:17:2c:73:7f:c8:98:5d:5d:10:5a:bc:92:76: 78:ec:18:00 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUO8NjqmsICQXjMjCmqImClYT6PdUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE5QzRFMjZFRUMyNTJFQTYxRkJCMDlGRDg1NkNERDA1 N0NFQUQ4QzAeFw0yNDEwMDIyMjE1NTdaFw0yNTEwMDEyMjIwNTdaMDMxMTAvBgNV BAMTKDI5RDBCODAyNkY3MjNDRDQ1QTZCMkQxRURGRDAxMEQ2RTg4NzgzOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7aw7eqiAnd3SJfofV//zPeTHK tTK05wEcZcGL7a2Ft3IFrLDlq0hNhUIUAgHKWaaufYJQRvt8jwJRYbN6nNQALVpD rIPOFXwZ2Y74ZEZKpJ1wF9B2N+s4YOUFlaJZVykWYiATvWECl3SY7nPsLFxYhIVV wNaWL2pDwl2sSGeDymENpXkb6IYWviTdM0k+BcEOLXaLfKpHtEOJMY1s50VmG6i6 qUc97JO4nW9m80baY5JKVyF+S8sfps1FEcNSHKp8L70Py6WIMs6+mqNwO69WtUSR ybfd/Bbo6cMLfNGNu/Acg8tGwk3tTu0Gz9EfNLABXQSTvEdzdXyOzdAYdjLhAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUKdC4Am9yPNRaay0e39AQ1uiHg50wHwYDVR0j BBgwFoAUAZxOJu7CUuph+7Cf2FbN0FfOrYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDVjNDcxNS0yODJlLTQ1N2YtYjg5ZS0wNDFiZjkxMTBhZjgvMC8wMTlDNEUyNkVF QzI1MkVBNjFGQkIwOUZEODU2Q0REMDU3Q0VBRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDE5QzRFMjZFRUMyNTJFQTYxRkJCMDlGRDg1NkNERDA1N0NF QUQ4Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkNWM0NzE1LTI4MmUtNDU3Zi1i ODllLTA0MWJmOTExMGFmOC8wLzMxMzAzMzJlMzIzMjM1MmUzMTM3MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzMzMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn4aswDQYJ KoZIhvcNAQELBQADggEBADlcGA+YAPiLJyTico3f2ExuKnugqvtukjL/VDPXrLki s8a2KXY7r1O4baKgs3wFVhvH/m7JaGADQIekhbAE9gNFTY2hF8ZW3OKb8O8vfFht SzvURDN+7hsyxSsLEJpzO69DO5yg8wHjYkIrQDZjZzIBG4SaHqOQdg8jsqrFL4qR iCk79LdMxGHd2n3g1LYDFxR2ntYWAHv2nNCS27TrTDVnBu4l2+TCwHgtlTRX7Eb7 DF19VD9LCOfvGD1TnQho/vd2xvSpML8NqL/JGPQ2ORxdjS9KcSTtB9N17wCNYjf8 DEaiGgSFcszGoaIjoL21Fyxzf8iYXV0QWrySdnjsGAA= -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:40 2024 by rpki-client on console-fra.rpki-client.org