$ rpki-client -vvf repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3130332e39382e3131372e302f32342d3234203d3e20313336383230.roa File: 3130332e39382e3131372e302f32342d3234203d3e20313336383230.roa (raw, json) Hash identifier: gC/dBQ2N9PvKMvFuI06G3U2I+dfO9VxJBQri33zTdRo= Subject key identifier: 48:62:CB:E8:AC:70:53:08:CF:FE:BC:DC:71:FC:0F:B8:C8:AE:C7:CC Certificate issuer: /CN=3E2173CCE67F75D29F1CAAA739E6CC6727D6E088 Certificate serial: 1E32AA9E904DF884E79F89E9C29C1F6AF2D4E0D2 Authority key identifier: 3E:21:73:CC:E6:7F:75:D2:9F:1C:AA:A7:39:E6:CC:67:27:D6:E0:88 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3130332e39382e3131372e302f32342d3234203d3e20313336383230.roa Signing time: Sat 15 Jun 2024 12:00:01 +0000 ROA not before: Sat 15 Jun 2024 11:55:01 +0000 ROA not after: Sat 14 Jun 2025 12:00:01 +0000 asID: 136820 IP address blocks: 103.98.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.crl rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:32:aa:9e:90:4d:f8:84:e7:9f:89:e9:c2:9c:1f:6a:f2:d4:e0:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E2173CCE67F75D29F1CAAA739E6CC6727D6E088 Validity Not Before: Jun 15 11:55:01 2024 GMT Not After : Jun 14 12:00:01 2025 GMT Subject: CN=4862CBE8AC705308CFFEBCDC71FC0FB8C8AEC7CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:0b:12:de:4a:48:00:40:a4:44:fc:77:df:0d: fd:be:8a:91:71:ff:f7:7a:84:5e:61:52:89:f8:64: d0:be:2a:5e:c2:35:17:42:f3:eb:74:94:27:57:8f: 3f:51:d8:03:bd:b1:02:c2:a6:dc:82:84:ce:8c:0a: f4:9b:ad:00:fd:61:68:46:0a:49:a7:2b:a2:17:d5: bb:a6:d3:f9:30:b0:04:65:0e:6b:24:10:dc:f0:6f: 74:b0:63:a5:b0:40:a4:85:ed:26:62:49:f5:72:58: 8e:18:84:d7:93:a1:fd:5d:0c:87:88:56:a8:f1:f2: 32:db:e0:67:a9:e9:15:cf:a9:b7:89:4c:5a:12:af: 26:bb:bd:06:6b:7c:f6:03:39:c6:2c:3d:93:8f:60: 3b:fc:e8:98:39:be:1a:a5:13:3e:e7:4d:67:9b:52: ef:13:8f:6d:45:41:35:7d:0c:c1:93:a9:4d:bc:63: 6b:e3:3b:a2:ef:fc:9a:99:7e:0a:ed:46:9f:2e:c2: 73:e9:a8:23:07:4f:13:8d:f4:c0:e2:8b:bd:77:52: b3:f3:f7:54:08:19:0a:20:c3:51:bc:0c:7c:84:8e: 5a:dc:61:3f:a7:73:dc:2f:0a:6c:18:99:97:2b:7c: bf:7d:d2:1f:ef:a2:ed:09:43:00:16:cf:c3:7b:e6: 47:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:62:CB:E8:AC:70:53:08:CF:FE:BC:DC:71:FC:0F:B8:C8:AE:C7:CC X509v3 Authority Key Identifier: keyid:3E:21:73:CC:E6:7F:75:D2:9F:1C:AA:A7:39:E6:CC:67:27:D6:E0:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3130332e39382e3131372e302f32342d3234203d3e20313336383230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.98.117.0/24 Signature Algorithm: sha256WithRSAEncryption 03:bb:7b:f2:f4:85:db:df:fa:09:24:81:7d:0e:4c:2a:c5:91: a4:63:55:5a:13:ea:6f:40:62:d7:51:f9:86:9e:33:b0:64:f4: 4c:78:87:b0:11:08:6a:4b:0f:41:1a:af:e1:e7:b9:7b:e5:17: cf:e8:f3:b7:08:fb:a8:bd:de:00:b2:89:04:76:e3:3b:30:c7: 67:4d:4d:6f:42:3f:45:1f:74:93:8f:11:68:fe:61:a4:30:a6: 3e:e3:03:07:0b:a4:16:8f:e0:6d:e3:6a:27:58:a4:bb:03:7a: 55:b5:ee:dd:e8:18:89:48:28:c9:61:d2:09:f0:de:d3:66:21: bc:25:76:5c:1a:4c:56:8f:bf:07:97:95:81:9f:04:83:0c:bc: d3:ee:2a:da:55:32:ab:d5:f7:ac:c9:74:31:50:a9:d4:d3:e6: 21:e7:12:8e:17:c8:c4:f3:b7:85:95:d8:e3:ed:bf:75:d2:0a: 59:6a:3f:97:64:fc:56:0f:ce:0e:80:37:ac:db:af:58:0d:ba: 66:e3:8a:04:23:3a:20:52:92:5d:21:3d:fe:a8:6c:24:30:ce: b6:17:2c:0d:21:e8:d3:07:9f:81:2c:c0:23:bd:4e:07:99:71: ea:1a:c0:0d:01:4b:1a:64:72:64:1e:64:40:a5:a1:1e:a5:2e: db:82:71:a0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHjKqnpBN+ITnn4npwpwfavLU4NIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0UyMTczQ0NFNjdGNzVEMjlGMUNBQUE3MzlFNkNDNjcy N0Q2RTA4ODAeFw0yNDA2MTUxMTU1MDFaFw0yNTA2MTQxMjAwMDFaMDMxMTAvBgNV BAMTKDQ4NjJDQkU4QUM3MDUzMDhDRkZFQkNEQzcxRkMwRkI4QzhBRUM3Q0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdCxLeSkgAQKRE/HffDf2+ipFx //d6hF5hUon4ZNC+Kl7CNRdC8+t0lCdXjz9R2AO9sQLCptyChM6MCvSbrQD9YWhG CkmnK6IX1bum0/kwsARlDmskENzwb3SwY6WwQKSF7SZiSfVyWI4YhNeTof1dDIeI Vqjx8jLb4Gep6RXPqbeJTFoSrya7vQZrfPYDOcYsPZOPYDv86Jg5vhqlEz7nTWeb Uu8Tj21FQTV9DMGTqU28Y2vjO6Lv/JqZfgrtRp8uwnPpqCMHTxON9MDii713UrPz 91QIGQogw1G8DHyEjlrcYT+nc9wvCmwYmZcrfL990h/vou0JQwAWz8N75keNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSGLL6KxwUwjP/rzccfwPuMiux8wwHwYDVR0j BBgwFoAUPiFzzOZ/ddKfHKqnOebMZyfW4IgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Y2Q1Mzk0OC1kZGYzLTQ0OWEtYmYyYi1jZjNmN2FlMTc2ZDMvMC8zRTIxNzNDQ0U2 N0Y3NUQyOUYxQ0FBQTczOUU2Q0M2NzI3RDZFMDg4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0UyMTczQ0NFNjdGNzVEMjlGMUNBQUE3MzlFNkNDNjcyN0Q2 RTA4OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjZDUzOTQ4LWRkZjMtNDQ5YS1i ZjJiLWNmM2Y3YWUxNzZkMy8wLzMxMzAzMzJlMzkzODJlMzEzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2J1MA0GCSqG SIb3DQEBCwUAA4IBAQADu3vy9IXb3/oJJIF9DkwqxZGkY1VaE+pvQGLXUfmGnjOw ZPRMeIewEQhqSw9BGq/h57l75RfP6PO3CPuovd4AsokEduM7MMdnTU1vQj9FH3ST jxFo/mGkMKY+4wMHC6QWj+Bt42onWKS7A3pVte7d6BiJSCjJYdIJ8N7TZiG8JXZc GkxWj78Hl5WBnwSDDLzT7iraVTKr1fesyXQxUKnU0+Yh5xKOF8jE87eFldjj7b91 0gpZaj+XZPxWD84OgDes269YDbpm44oEIzogUpJdIT3+qGwkMM62FywNIejTB5+B LMAjvU4HmXHqGsANAUsaZHJkHmRApaEepS7bgnGg -----END CERTIFICATE-----Generated at Mon Nov 25 23:52:55 2024 by rpki-client on console-ams.rpki-client.org