$ rpki-client -vvf repo-rpki.idnic.net/repo/c64b20d8-591b-4152-9768-9c42b06c2fe2/0/3130332e3132392e342e302f32332d3234203d3e20313335343738.roa File: 3130332e3132392e342e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: ljlKs5397k+F60TYh1hcpCVmXZKAuQceJ01lL25GMnU= Subject key identifier: 1D:1A:7F:6C:1F:48:86:FB:E1:56:ED:E5:6F:AA:BC:E2:57:73:9A:31 Certificate issuer: /CN=556756B0E211DD262F0D5DC9EC5931EFA74CAC3C Certificate serial: 3C614DAC822D393AECF4B93CE0448598C4372AA9 Authority key identifier: 55:67:56:B0:E2:11:DD:26:2F:0D:5D:C9:EC:59:31:EF:A7:4C:AC:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/556756B0E211DD262F0D5DC9EC5931EFA74CAC3C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c64b20d8-591b-4152-9768-9c42b06c2fe2/0/3130332e3132392e342e302f32332d3234203d3e20313335343738.roa Signing time: Wed 03 Jan 2024 08:00:00 +0000 ROA not before: Wed 03 Jan 2024 07:55:00 +0000 ROA not after: Wed 01 Jan 2025 08:00:00 +0000 asID: 135478 IP address blocks: 103.129.4.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c64b20d8-591b-4152-9768-9c42b06c2fe2/0/556756B0E211DD262F0D5DC9EC5931EFA74CAC3C.crl rsync://repo-rpki.idnic.net/repo/c64b20d8-591b-4152-9768-9c42b06c2fe2/0/556756B0E211DD262F0D5DC9EC5931EFA74CAC3C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/556756B0E211DD262F0D5DC9EC5931EFA74CAC3C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 05:56:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:61:4d:ac:82:2d:39:3a:ec:f4:b9:3c:e0:44:85:98:c4:37:2a:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=556756B0E211DD262F0D5DC9EC5931EFA74CAC3C Validity Not Before: Jan 3 07:55:00 2024 GMT Not After : Jan 1 08:00:00 2025 GMT Subject: CN=1D1A7F6C1F4886FBE156EDE56FAABCE257739A31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8d:cb:ff:5b:b9:1f:6c:d9:2a:14:28:8e:f9: 2e:c4:c4:7a:b1:c7:6b:ae:84:06:f7:2d:7b:81:76: 17:a2:c6:9e:97:56:df:63:5c:85:c1:e7:40:fe:ac: 2e:22:5a:c7:27:bc:e4:28:d1:5f:a2:87:79:5c:cb: fc:86:d4:ff:ef:79:ad:22:ef:5f:a2:eb:10:86:99: df:10:73:00:34:b9:bb:43:3c:28:2f:8a:1f:52:bb: 1e:9f:ef:ac:78:e9:82:7a:cc:7a:f4:4a:31:7f:ee: e1:1d:7b:d2:dd:cb:8d:c6:d6:51:ff:a2:fb:51:c0: 62:e8:09:43:9a:6b:40:c4:6d:36:7a:75:fc:2e:a8: 56:0f:b8:14:e8:eb:fe:e1:8e:19:50:4f:fc:5b:6f: cd:a9:71:cb:9e:af:33:fd:61:e0:c3:bf:38:87:05: 44:26:64:21:c1:7a:e4:79:4d:1d:3a:9d:e2:82:e9: 76:50:86:b0:00:b1:5a:cd:c2:3f:af:ee:8a:2b:bf: 05:8e:89:d0:5f:1f:4b:c1:35:5c:50:3e:5c:81:3e: e1:52:63:63:d7:9d:57:5a:13:ab:32:f6:28:73:ee: 12:68:7e:94:09:7c:72:1e:a5:ea:45:aa:b8:17:c9: 1f:c2:fa:93:42:ed:0a:46:c5:f0:96:46:b2:08:de: e2:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:1A:7F:6C:1F:48:86:FB:E1:56:ED:E5:6F:AA:BC:E2:57:73:9A:31 X509v3 Authority Key Identifier: keyid:55:67:56:B0:E2:11:DD:26:2F:0D:5D:C9:EC:59:31:EF:A7:4C:AC:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c64b20d8-591b-4152-9768-9c42b06c2fe2/0/556756B0E211DD262F0D5DC9EC5931EFA74CAC3C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/556756B0E211DD262F0D5DC9EC5931EFA74CAC3C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c64b20d8-591b-4152-9768-9c42b06c2fe2/0/3130332e3132392e342e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.4.0/23 Signature Algorithm: sha256WithRSAEncryption c3:89:b1:31:dc:e0:d2:fd:68:5f:43:6c:f7:51:64:7f:81:03: 57:3f:e2:f6:60:d2:5b:fe:4d:00:6a:f5:ce:cd:bc:59:ec:7a: 10:b2:02:20:a3:51:45:ca:66:35:83:7d:51:66:28:8c:4f:15: 1d:ff:93:c0:e3:de:27:09:9b:70:a9:4e:88:c6:66:fd:1e:b3: 8e:2e:8e:64:de:6d:e9:81:92:58:9b:27:3e:54:05:d0:d4:09: df:31:b2:22:d8:17:85:85:a8:4d:8f:4b:00:ce:09:89:09:ad: d2:a3:06:22:13:b3:d0:86:7f:72:9f:13:37:c4:a3:74:6c:f6: 07:a8:43:16:d2:04:a7:da:7b:cf:81:f6:43:6c:4a:82:f5:e5: f7:59:bd:1a:cc:a4:cd:b8:38:4f:a6:55:22:e2:53:69:05:6e: db:6d:81:9e:59:26:60:86:c0:0b:86:d6:dc:d6:2b:50:d7:45: 29:1f:be:73:56:38:63:80:8b:4e:a7:62:36:57:69:77:5f:a7: 0e:03:ac:9a:64:68:ca:d3:c0:3a:27:67:92:f6:02:01:4c:cd: 44:3f:63:67:52:31:ca:60:30:66:3b:a8:a6:c5:6f:2b:3d:05: a5:72:73:28:15:53:63:6b:dd:df:cd:9b:ec:91:01:92:ac:05: ed:63:8b:a4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPGFNrIItOTrs9Lk84ESFmMQ3KqkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTU2NzU2QjBFMjExREQyNjJGMEQ1REM5RUM1OTMxRUZB NzRDQUMzQzAeFw0yNDAxMDMwNzU1MDBaFw0yNTAxMDEwODAwMDBaMDMxMTAvBgNV BAMTKDFEMUE3RjZDMUY0ODg2RkJFMTU2RURFNTZGQUFCQ0UyNTc3MzlBMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTjcv/W7kfbNkqFCiO+S7ExHqx x2uuhAb3LXuBdheixp6XVt9jXIXB50D+rC4iWscnvOQo0V+ih3lcy/yG1P/vea0i 71+i6xCGmd8QcwA0ubtDPCgvih9Sux6f76x46YJ6zHr0SjF/7uEde9Ldy43G1lH/ ovtRwGLoCUOaa0DEbTZ6dfwuqFYPuBTo6/7hjhlQT/xbb82pccuerzP9YeDDvziH BUQmZCHBeuR5TR06neKC6XZQhrAAsVrNwj+v7oorvwWOidBfH0vBNVxQPlyBPuFS Y2PXnVdaE6sy9ihz7hJofpQJfHIepepFqrgXyR/C+pNC7QpGxfCWRrII3uJlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUHRp/bB9IhvvhVu3lb6q84ldzmjEwHwYDVR0j BBgwFoAUVWdWsOIR3SYvDV3J7Fkx76dMrDwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NjRiMjBkOC01OTFiLTQxNTItOTc2OC05YzQyYjA2YzJmZTIvMC81NTY3NTZCMEUy MTFERDI2MkYwRDVEQzlFQzU5MzFFRkE3NENBQzNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTU2NzU2QjBFMjExREQyNjJGMEQ1REM5RUM1OTMxRUZBNzRD QUMzQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2NGIyMGQ4LTU5MWItNDE1Mi05 NzY4LTljNDJiMDZjMmZlMi8wLzMxMzAzMzJlMzEzMjM5MmUzNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWeBBDANBgkqhkiG 9w0BAQsFAAOCAQEAw4mxMdzg0v1oX0Ns91Fkf4EDVz/i9mDSW/5NAGr1zs28Wex6 ELICIKNRRcpmNYN9UWYojE8VHf+TwOPeJwmbcKlOiMZm/R6zji6OZN5t6YGSWJsn PlQF0NQJ3zGyItgXhYWoTY9LAM4JiQmt0qMGIhOz0IZ/cp8TN8SjdGz2B6hDFtIE p9p7z4H2Q2xKgvXl91m9Gsykzbg4T6ZVIuJTaQVu222BnlkmYIbAC4bW3NYrUNdF KR++c1Y4Y4CLTqdiNldpd1+nDgOsmmRoytPAOidnkvYCAUzNRD9jZ1IxymAwZjuo psVvKz0FpXJzKBVTY2vd382b7JEBkqwF7WOLpA== -----END CERTIFICATE-----Generated at Thu Nov 21 05:34:48 2024 by rpki-client on console-ams.rpki-client.org