$ rpki-client -vvf repo-rpki.idnic.net/repo/c79659a9-5505-494b-a03c-6ebacfadf931/0/3130332e3134372e38342e302f32332d3234203d3e20313339393535.roa File: 3130332e3134372e38342e302f32332d3234203d3e20313339393535.roa (raw, json) Hash identifier: 8pVdONx+0B7HzvlmWjfUUOE8jWcjWCCvoVvW/VBNAgQ= Subject key identifier: 09:EF:41:8E:E0:65:B3:C6:72:68:AD:04:42:FC:F7:15:F0:D6:7E:6C Certificate issuer: /CN=D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271 Certificate serial: 06B5AE98A77948EB4B87BE19C9584BAA36B83931 Authority key identifier: D5:67:7E:FA:13:70:87:11:CD:AF:B6:7D:9C:4C:8F:5F:FF:A9:A2:71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c79659a9-5505-494b-a03c-6ebacfadf931/0/3130332e3134372e38342e302f32332d3234203d3e20313339393535.roa Signing time: Sat 05 Oct 2024 04:02:26 +0000 ROA not before: Sat 05 Oct 2024 03:57:26 +0000 ROA not after: Sat 04 Oct 2025 04:02:26 +0000 asID: 139955 IP address blocks: 103.147.84.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c79659a9-5505-494b-a03c-6ebacfadf931/0/D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271.crl rsync://repo-rpki.idnic.net/repo/c79659a9-5505-494b-a03c-6ebacfadf931/0/D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:b5:ae:98:a7:79:48:eb:4b:87:be:19:c9:58:4b:aa:36:b8:39:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271 Validity Not Before: Oct 5 03:57:26 2024 GMT Not After : Oct 4 04:02:26 2025 GMT Subject: CN=09EF418EE065B3C67268AD0442FCF715F0D67E6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f3:33:d7:bd:56:ff:48:d7:f2:43:27:69:0c: 4a:ff:45:b4:3c:07:b5:0a:a0:b4:71:75:b2:73:99: 1d:24:88:a4:ba:ad:db:d7:53:b0:88:44:26:53:17: 9b:2e:73:50:64:12:8b:cf:b8:75:e7:fd:fa:85:f4: c9:8c:7a:4d:ee:f8:dc:5c:61:83:8e:cb:5e:76:49: b1:35:66:3f:06:0f:2c:5a:c7:a7:2f:ae:7f:aa:e4: 50:c7:22:4a:28:bd:9f:b7:d0:71:d7:3d:f1:f5:18: 89:d5:ed:2b:3d:b8:f3:58:83:56:9d:12:87:e1:b2: 23:01:db:17:11:f9:5d:61:3c:5e:64:f9:c7:41:c8: 2a:9f:57:c6:0d:09:e7:10:10:96:67:6f:54:a8:8e: cf:8d:91:5e:da:4f:37:11:19:7b:13:0f:e8:5c:82: 0a:2a:a4:a0:6f:60:11:79:c2:07:b5:f1:a8:75:e5: c7:99:12:cf:6e:f0:7b:f8:5a:f1:d0:55:e0:8b:af: 0c:08:43:8f:90:30:25:d9:c2:9f:97:40:6d:eb:fa: eb:f4:35:50:14:9b:7c:cf:13:38:6f:28:c6:b7:ed: 93:9c:fb:c6:a9:96:df:c1:f5:1e:51:ee:84:6a:17: 2c:05:e8:e0:7d:e4:76:1f:c8:01:f5:30:84:81:7c: 66:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:EF:41:8E:E0:65:B3:C6:72:68:AD:04:42:FC:F7:15:F0:D6:7E:6C X509v3 Authority Key Identifier: keyid:D5:67:7E:FA:13:70:87:11:CD:AF:B6:7D:9C:4C:8F:5F:FF:A9:A2:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c79659a9-5505-494b-a03c-6ebacfadf931/0/D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c79659a9-5505-494b-a03c-6ebacfadf931/0/3130332e3134372e38342e302f32332d3234203d3e20313339393535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.84.0/23 Signature Algorithm: sha256WithRSAEncryption 31:7c:3a:02:0b:0b:fa:4a:99:41:d1:47:4f:87:7c:e2:a5:b7: 81:9d:c9:17:3f:6b:d6:02:7f:dd:97:ea:c4:7b:b8:15:c5:fc: 03:e6:0c:b9:11:c6:d4:86:fd:fe:b3:22:1a:9b:ea:00:08:72: 0e:5f:f2:ee:33:22:77:3d:af:ce:e2:fe:6b:e4:34:9d:21:7b: 8f:25:6d:9c:0e:cf:18:86:fb:db:f4:e0:76:e8:4d:40:32:99: 8f:85:6e:91:52:e4:a3:ea:97:ca:2f:c0:82:f5:b7:60:8f:1e: d8:ae:b1:ad:e6:f4:02:9f:3b:03:b7:2b:c6:8c:2d:1e:97:7f: 78:a8:7f:b3:19:71:8f:fe:8c:69:a5:c9:39:35:ce:c3:bd:b7: f6:3c:cc:fe:05:a8:98:5c:fa:b6:74:b5:a5:d4:58:62:5f:cb: 56:0e:09:ec:38:f4:89:5e:89:b2:eb:4c:3e:73:cc:14:41:8b: 45:ff:f3:ed:f6:2a:67:a6:4e:fe:a0:30:6f:f5:ab:e1:ca:da: 78:37:9c:55:ce:ad:d1:69:1d:9d:26:72:99:cc:92:21:ac:47: 50:00:4b:8c:be:c5:4d:55:ea:97:b1:91:7b:87:5c:08:2b:21: 0a:f6:5f:68:76:75:d3:94:05:2f:42:d8:10:80:7b:52:2b:4f: 14:07:ff:a0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBrWumKd5SOtLh74ZyVhLqja4OTEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU2NzdFRkExMzcwODcxMUNEQUZCNjdEOUM0QzhGNUZG RkE5QTI3MTAeFw0yNDEwMDUwMzU3MjZaFw0yNTEwMDQwNDAyMjZaMDMxMTAvBgNV BAMTKDA5RUY0MThFRTA2NUIzQzY3MjY4QUQwNDQyRkNGNzE1RjBENjdFNkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH8zPXvVb/SNfyQydpDEr/RbQ8 B7UKoLRxdbJzmR0kiKS6rdvXU7CIRCZTF5suc1BkEovPuHXn/fqF9MmMek3u+Nxc YYOOy152SbE1Zj8GDyxax6cvrn+q5FDHIkoovZ+30HHXPfH1GInV7Ss9uPNYg1ad EofhsiMB2xcR+V1hPF5k+cdByCqfV8YNCecQEJZnb1Sojs+NkV7aTzcRGXsTD+hc ggoqpKBvYBF5wge18ah15ceZEs9u8Hv4WvHQVeCLrwwIQ4+QMCXZwp+XQG3r+uv0 NVAUm3zPEzhvKMa37ZOc+8aplt/B9R5R7oRqFywF6OB95HYfyAH1MISBfGY/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCe9BjuBls8ZyaK0EQvz3FfDWfmwwHwYDVR0j BBgwFoAU1Wd++hNwhxHNr7Z9nEyPX/+ponEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Nzk2NTlhOS01NTA1LTQ5NGItYTAzYy02ZWJhY2ZhZGY5MzEvMC9ENTY3N0VGQTEz NzA4NzExQ0RBRkI2N0Q5QzRDOEY1RkZGQTlBMjcxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU2NzdFRkExMzcwODcxMUNEQUZCNjdEOUM0QzhGNUZGRkE5 QTI3MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M3OTY1OWE5LTU1MDUtNDk0Yi1h MDNjLTZlYmFjZmFkZjkzMS8wLzMxMzAzMzJlMzEzNDM3MmUzODM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5NUMA0GCSqG SIb3DQEBCwUAA4IBAQAxfDoCCwv6SplB0UdPh3zipbeBnckXP2vWAn/dl+rEe7gV xfwD5gy5EcbUhv3+syIam+oACHIOX/LuMyJ3Pa/O4v5r5DSdIXuPJW2cDs8Yhvvb 9OB26E1AMpmPhW6RUuSj6pfKL8CC9bdgjx7YrrGt5vQCnzsDtyvGjC0el394qH+z GXGP/oxppck5Nc7Dvbf2PMz+BaiYXPq2dLWl1FhiX8tWDgnsOPSJXomy60w+c8wU QYtF//Pt9ipnpk7+oDBv9avhytp4N5xVzq3RaR2dJnKZzJIhrEdQAEuMvsVNVeqX sZF7h1wIKyEK9l9odnXTlAUvQtgQgHtSK08UB/+g -----END CERTIFICATE-----Generated at Sun Nov 24 20:57:50 2024 by rpki-client on console-fra.rpki-client.org