$ rpki-client -vvf repo-rpki.idnic.net/repo/c359b6a3-b74b-4baa-993a-818fb7210722/0/3130332e3138392e3131342e302f32342d3234203d3e20313439373533.roa File: 3130332e3138392e3131342e302f32342d3234203d3e20313439373533.roa (raw, json) Hash identifier: 8IzznB/HSVtd1QyJ2lSSLXChBE5tyjfJJ7NhdzHxshA= Subject key identifier: B8:59:D6:8D:BD:9C:74:28:C8:77:5C:0E:D9:06:AC:A8:BD:E7:4C:F6 Certificate issuer: /CN=D34F7D48A07BB8A2DEEDC8C87819771181935231 Certificate serial: 52BA74B900F6C23F776015DB8EC84259B75D7386 Authority key identifier: D3:4F:7D:48:A0:7B:B8:A2:DE:ED:C8:C8:78:19:77:11:81:93:52:31 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D34F7D48A07BB8A2DEEDC8C87819771181935231.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c359b6a3-b74b-4baa-993a-818fb7210722/0/3130332e3138392e3131342e302f32342d3234203d3e20313439373533.roa Signing time: Thu 23 May 2024 04:02:16 +0000 ROA not before: Thu 23 May 2024 03:57:16 +0000 ROA not after: Thu 22 May 2025 04:02:16 +0000 asID: 149753 IP address blocks: 103.189.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c359b6a3-b74b-4baa-993a-818fb7210722/0/D34F7D48A07BB8A2DEEDC8C87819771181935231.crl rsync://repo-rpki.idnic.net/repo/c359b6a3-b74b-4baa-993a-818fb7210722/0/D34F7D48A07BB8A2DEEDC8C87819771181935231.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D34F7D48A07BB8A2DEEDC8C87819771181935231.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:ba:74:b9:00:f6:c2:3f:77:60:15:db:8e:c8:42:59:b7:5d:73:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D34F7D48A07BB8A2DEEDC8C87819771181935231 Validity Not Before: May 23 03:57:16 2024 GMT Not After : May 22 04:02:16 2025 GMT Subject: CN=B859D68DBD9C7428C8775C0ED906ACA8BDE74CF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:26:ab:3b:f2:92:a2:cf:e3:6b:b8:97:bc:56: 69:fb:68:92:20:9c:c1:c4:95:9a:6c:56:86:00:e9: bc:90:87:48:be:0d:14:6b:73:3a:94:87:f4:98:f8: 23:24:09:76:f7:08:28:14:6d:7b:e5:e9:4f:f0:e3: 49:28:8e:96:de:90:f0:2a:80:54:a7:56:d4:0f:ee: 41:05:24:8e:2e:e6:b4:24:96:58:91:7d:78:03:7d: 4b:2f:4d:16:25:9c:77:d2:b5:41:df:4a:e8:6f:1e: 2c:05:bf:4a:79:1a:05:8d:fd:3c:a0:d2:14:4a:c8: 50:ea:43:ba:a8:92:7f:91:ec:32:dd:49:54:8c:b0: ae:5e:c5:80:27:34:41:97:a0:27:9c:17:22:ce:94: e2:61:39:fb:30:a5:61:47:9d:ec:9f:97:4b:99:c4: 86:d7:af:97:b2:c4:37:29:62:35:28:60:5c:3c:9c: fb:db:cc:d4:fd:40:d0:e3:ba:8e:66:a7:1e:13:6f: 0b:3e:6e:44:37:bd:11:cc:65:75:df:e1:cc:97:07: 3e:c9:95:6b:9f:25:38:aa:d1:50:10:7c:7e:f9:3e: 53:53:1a:cf:31:a3:50:e2:b6:c9:14:54:50:50:39: 7b:20:2e:42:26:d0:1e:f9:80:49:67:c5:e9:50:d6: 29:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:59:D6:8D:BD:9C:74:28:C8:77:5C:0E:D9:06:AC:A8:BD:E7:4C:F6 X509v3 Authority Key Identifier: keyid:D3:4F:7D:48:A0:7B:B8:A2:DE:ED:C8:C8:78:19:77:11:81:93:52:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c359b6a3-b74b-4baa-993a-818fb7210722/0/D34F7D48A07BB8A2DEEDC8C87819771181935231.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D34F7D48A07BB8A2DEEDC8C87819771181935231.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c359b6a3-b74b-4baa-993a-818fb7210722/0/3130332e3138392e3131342e302f32342d3234203d3e20313439373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.114.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:a0:90:62:23:89:5f:64:5b:8b:39:c1:3b:d8:1d:33:09:71: fa:6a:ee:1a:8f:60:73:2b:38:88:e9:b1:38:a9:85:47:41:e3: 11:be:e6:15:71:56:93:44:c7:c7:15:56:46:7f:75:43:ee:39: e7:4e:27:63:23:67:42:5c:f0:db:89:b0:1a:ad:2f:71:8a:f2: 98:b5:de:3c:17:e8:e4:0a:9a:16:41:87:3b:d8:b7:54:6e:03: 0b:76:1d:2e:ab:81:ba:c6:6d:f4:4e:16:fa:04:16:c0:80:63: 47:e1:a1:b7:a7:d1:87:d5:3d:61:b2:5d:12:3a:50:5b:54:ff: 6a:bd:32:5e:2d:4a:27:df:45:17:4a:df:6f:97:8d:c9:57:e7: 4c:ab:37:76:0c:40:33:b7:8c:2b:46:b3:ad:47:d1:7e:bf:af: f3:d7:42:50:fe:70:83:d7:af:61:a8:be:d6:23:92:9f:63:1f: 26:a6:e0:9e:dd:75:32:f1:2f:f5:cc:54:54:c2:02:dc:8a:ec: 31:f8:a9:1e:0d:3a:e8:8e:a6:c9:28:6d:b1:b2:8b:42:34:01: 49:67:c0:a2:10:59:2e:f6:12:88:87:fc:07:e2:cf:01:3a:f1: b8:60:92:85:04:6e:d7:14:14:fc:d0:59:4f:02:ae:96:22:9b: 81:6a:1b:39 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUrp0uQD2wj93YBXbjshCWbddc4YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM0RjdENDhBMDdCQjhBMkRFRURDOEM4NzgxOTc3MTE4 MTkzNTIzMTAeFw0yNDA1MjMwMzU3MTZaFw0yNTA1MjIwNDAyMTZaMDMxMTAvBgNV BAMTKEI4NTlENjhEQkQ5Qzc0MjhDODc3NUMwRUQ5MDZBQ0E4QkRFNzRDRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7Jqs78pKiz+NruJe8Vmn7aJIg nMHElZpsVoYA6byQh0i+DRRrczqUh/SY+CMkCXb3CCgUbXvl6U/w40kojpbekPAq gFSnVtQP7kEFJI4u5rQklliRfXgDfUsvTRYlnHfStUHfSuhvHiwFv0p5GgWN/Tyg 0hRKyFDqQ7qokn+R7DLdSVSMsK5exYAnNEGXoCecFyLOlOJhOfswpWFHneyfl0uZ xIbXr5eyxDcpYjUoYFw8nPvbzNT9QNDjuo5mpx4Tbws+bkQ3vRHMZXXf4cyXBz7J lWufJTiq0VAQfH75PlNTGs8xo1DitskUVFBQOXsgLkIm0B75gElnxelQ1iltAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUuFnWjb2cdCjId1wO2QasqL3nTPYwHwYDVR0j BBgwFoAU0099SKB7uKLe7cjIeBl3EYGTUjEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzU5YjZhMy1iNzRiLTRiYWEtOTkzYS04MThmYjcyMTA3MjIvMC9EMzRGN0Q0OEEw N0JCOEEyREVFREM4Qzg3ODE5NzcxMTgxOTM1MjMxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDM0RjdENDhBMDdCQjhBMkRFRURDOEM4NzgxOTc3MTE4MTkz NTIzMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzNTliNmEzLWI3NGItNGJhYS05 OTNhLTgxOGZiNzIxMDcyMi8wLzMxMzAzMzJlMzEzODM5MmUzMTMxMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvXIwDQYJ KoZIhvcNAQELBQADggEBAB2gkGIjiV9kW4s5wTvYHTMJcfpq7hqPYHMrOIjpsTip hUdB4xG+5hVxVpNEx8cVVkZ/dUPuOedOJ2MjZ0Jc8NuJsBqtL3GK8pi13jwX6OQK mhZBhzvYt1RuAwt2HS6rgbrGbfROFvoEFsCAY0fhoben0YfVPWGyXRI6UFtU/2q9 Ml4tSiffRRdK32+XjclX50yrN3YMQDO3jCtGs61H0X6/r/PXQlD+cIPXr2GovtYj kp9jHyam4J7ddTLxL/XMVFTCAtyK7DH4qR4NOuiOpskobbGyi0I0AUlnwKIQWS72 EoiH/AfizwE68bhgkoUEbtcUFPzQWU8CrpYim4FqGzk= -----END CERTIFICATE-----Generated at Mon Nov 25 15:26:45 2024 by rpki-client on console-fra.rpki-client.org