$ rpki-client -vvf repo-rpki.idnic.net/repo/ccbfb228-fd05-4afd-87bd-ed580b55036f/0/3130332e3136312e3139342e302f32342d3234203d3e20313431363232.roa File: 3130332e3136312e3139342e302f32342d3234203d3e20313431363232.roa (raw, json) Hash identifier: iBeyVTQeCqn7ocfBZE6ecZpJsEIUr4FU4M53+O1kdcw= Subject key identifier: 4A:06:F5:CF:FC:7A:64:CD:34:D0:F1:8A:7E:CB:DB:8C:0B:9B:25:39 Certificate issuer: /CN=052EE59C1D4149A77DF1555311C056DCDBC5FF4C Certificate serial: 625C64E861DC03B90BB99489B78E081D70A9C320 Authority key identifier: 05:2E:E5:9C:1D:41:49:A7:7D:F1:55:53:11:C0:56:DC:DB:C5:FF:4C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/052EE59C1D4149A77DF1555311C056DCDBC5FF4C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ccbfb228-fd05-4afd-87bd-ed580b55036f/0/3130332e3136312e3139342e302f32342d3234203d3e20313431363232.roa Signing time: Fri 12 Jul 2024 14:00:00 +0000 ROA not before: Fri 12 Jul 2024 13:55:00 +0000 ROA not after: Fri 11 Jul 2025 14:00:00 +0000 asID: 141622 IP address blocks: 103.161.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ccbfb228-fd05-4afd-87bd-ed580b55036f/0/052EE59C1D4149A77DF1555311C056DCDBC5FF4C.crl rsync://repo-rpki.idnic.net/repo/ccbfb228-fd05-4afd-87bd-ed580b55036f/0/052EE59C1D4149A77DF1555311C056DCDBC5FF4C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/052EE59C1D4149A77DF1555311C056DCDBC5FF4C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:5c:64:e8:61:dc:03:b9:0b:b9:94:89:b7:8e:08:1d:70:a9:c3:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=052EE59C1D4149A77DF1555311C056DCDBC5FF4C Validity Not Before: Jul 12 13:55:00 2024 GMT Not After : Jul 11 14:00:00 2025 GMT Subject: CN=4A06F5CFFC7A64CD34D0F18A7ECBDB8C0B9B2539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:4d:41:14:54:5d:8b:4c:92:9c:90:16:71:b6: 61:7f:ee:5e:8a:b1:99:66:10:5d:ed:63:4b:4e:47: 06:6f:08:88:a8:7b:79:12:2e:d6:56:88:4b:ad:76: aa:fb:8a:cc:a9:3a:22:34:2f:2b:36:b3:e2:68:c2: e5:81:a2:46:18:82:4d:58:a3:bb:fd:60:ef:22:5f: 12:84:b4:94:6f:79:a4:83:35:ef:f3:01:2c:0a:a2: 50:95:a7:18:92:cd:10:b3:0a:26:bd:f6:16:71:35: b7:78:da:20:31:dc:8d:24:95:ca:5d:7f:ac:8d:0e: fc:47:1c:a9:07:e1:3b:83:d7:34:f3:43:93:15:eb: 17:e4:b8:7f:93:c1:aa:62:64:f0:15:73:ba:5f:39: c1:0b:57:15:5e:be:21:4c:e4:9f:eb:1a:9f:f6:cf: 20:ff:20:c4:04:51:78:1a:38:10:b1:ea:6d:ab:d0: 5c:27:3c:f3:f6:1b:a0:bc:65:0d:e0:12:be:7b:88: 44:89:6a:f1:9e:27:a5:1a:57:98:cb:be:1b:55:52: 1d:02:46:f9:f4:b7:2d:44:b4:f7:1f:82:ff:a5:21: cc:f3:e8:88:df:8f:36:15:a9:67:ad:e6:3e:a7:ae: 6c:b2:82:4d:0a:b7:94:bf:cd:7d:37:b5:c0:37:e3: 4a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:06:F5:CF:FC:7A:64:CD:34:D0:F1:8A:7E:CB:DB:8C:0B:9B:25:39 X509v3 Authority Key Identifier: keyid:05:2E:E5:9C:1D:41:49:A7:7D:F1:55:53:11:C0:56:DC:DB:C5:FF:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ccbfb228-fd05-4afd-87bd-ed580b55036f/0/052EE59C1D4149A77DF1555311C056DCDBC5FF4C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/052EE59C1D4149A77DF1555311C056DCDBC5FF4C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccbfb228-fd05-4afd-87bd-ed580b55036f/0/3130332e3136312e3139342e302f32342d3234203d3e20313431363232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.194.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:c0:68:4e:69:c9:d1:c0:cc:ea:9f:0e:c0:b0:bb:24:bf:5f: 1b:a9:50:47:24:24:2e:8a:45:7c:2f:86:3a:f3:b3:ad:23:db: d4:61:7e:8d:10:19:66:7e:5e:17:3f:ef:5d:c5:e5:07:85:b0: 7d:c6:18:b7:78:a3:c5:44:72:7c:f5:e6:3c:c5:20:8f:2a:e3: a2:b8:42:d2:43:c7:28:9c:4c:9e:22:27:b1:34:23:00:97:b3: 12:1b:ca:3f:d7:63:5d:8a:ca:a0:33:b4:93:b7:7e:8b:eb:c9: 47:84:66:3c:cf:5a:49:d9:62:83:a9:e6:b9:a9:3a:d4:5e:97: ed:dd:e1:05:80:7c:91:d6:af:d2:65:49:80:ab:7e:dd:b1:5c: 67:9a:08:88:7d:d5:f4:d3:bd:a4:f5:22:26:fc:5e:95:3b:16: 31:e5:a2:ef:09:f4:4a:c0:aa:f7:06:be:eb:0f:97:8a:c6:c6: aa:c9:cf:10:3f:41:e3:8d:90:10:33:6d:37:62:79:13:99:f2: d2:9a:e8:fa:c8:8d:91:15:28:01:50:e9:97:11:3a:b4:3c:92: d9:c1:33:08:90:20:7f:22:5e:e3:24:4f:57:6e:23:91:d7:a0: a6:61:ee:d3:54:f4:4e:b1:70:cf:e5:92:25:8c:b9:7f:e1:7a: 32:15:10:80 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYlxk6GHcA7kLuZSJt44IHXCpwyAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDUyRUU1OUMxRDQxNDlBNzdERjE1NTUzMTFDMDU2RENE QkM1RkY0QzAeFw0yNDA3MTIxMzU1MDBaFw0yNTA3MTExNDAwMDBaMDMxMTAvBgNV BAMTKDRBMDZGNUNGRkM3QTY0Q0QzNEQwRjE4QTdFQ0JEQjhDMEI5QjI1MzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFTUEUVF2LTJKckBZxtmF/7l6K sZlmEF3tY0tORwZvCIioe3kSLtZWiEutdqr7isypOiI0Lys2s+JowuWBokYYgk1Y o7v9YO8iXxKEtJRveaSDNe/zASwKolCVpxiSzRCzCia99hZxNbd42iAx3I0klcpd f6yNDvxHHKkH4TuD1zTzQ5MV6xfkuH+TwapiZPAVc7pfOcELVxVeviFM5J/rGp/2 zyD/IMQEUXgaOBCx6m2r0FwnPPP2G6C8ZQ3gEr57iESJavGeJ6UaV5jLvhtVUh0C Rvn0ty1EtPcfgv+lIczz6IjfjzYVqWet5j6nrmyygk0Kt5S/zX03tcA340oBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUSgb1z/x6ZM000PGKfsvbjAubJTkwHwYDVR0j BBgwFoAUBS7lnB1BSad98VVTEcBW3NvF/0wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Y2JmYjIyOC1mZDA1LTRhZmQtODdiZC1lZDU4MGI1NTAzNmYvMC8wNTJFRTU5QzFE NDE0OUE3N0RGMTU1NTMxMUMwNTZEQ0RCQzVGRjRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDUyRUU1OUMxRDQxNDlBNzdERjE1NTUzMTFDMDU2RENEQkM1 RkY0Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjYmZiMjI4LWZkMDUtNGFmZC04 N2JkLWVkNTgwYjU1MDM2Zi8wLzMxMzAzMzJlMzEzNjMxMmUzMTM5MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjMyMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnocIwDQYJ KoZIhvcNAQELBQADggEBACrAaE5pydHAzOqfDsCwuyS/XxupUEckJC6KRXwvhjrz s60j29Rhfo0QGWZ+Xhc/713F5QeFsH3GGLd4o8VEcnz15jzFII8q46K4QtJDxyic TJ4iJ7E0IwCXsxIbyj/XY12KyqAztJO3fovryUeEZjzPWknZYoOp5rmpOtRel+3d 4QWAfJHWr9JlSYCrft2xXGeaCIh91fTTvaT1Iib8XpU7FjHlou8J9ErAqvcGvusP l4rGxqrJzxA/QeONkBAzbTdieROZ8tKa6PrIjZEVKAFQ6ZcROrQ8ktnBMwiQIH8i XuMkT1duI5HXoKZh7tNU9E6xcM/lkiWMuX/hejIVEIA= -----END CERTIFICATE-----Generated at Sun Nov 24 21:43:11 2024 by rpki-client on console-ams.rpki-client.org