$ rpki-client -vvf repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36312e302f32342d3234203d3e20313338313334.roa File: 3130332e3133332e36312e302f32342d3234203d3e20313338313334.roa (raw, json) Hash identifier: f+KL9sRBKYThjcUf6Fn4ETIt2vwAYX6+xVDk6HrJGjI= Subject key identifier: 97:88:F9:53:C4:AF:29:75:4E:79:FE:67:11:AD:CF:F0:BC:D3:F6:05 Certificate issuer: /CN=C3F80A35C1C6877BBE49719B908D029FBFCDDBB0 Certificate serial: 078A5C9CD7E0A3BDBF8CC63D1E7635D6105DBFAC Authority key identifier: C3:F8:0A:35:C1:C6:87:7B:BE:49:71:9B:90:8D:02:9F:BF:CD:DB:B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36312e302f32342d3234203d3e20313338313334.roa Signing time: Tue 24 Sep 2024 11:12:47 +0000 ROA not before: Tue 24 Sep 2024 11:07:47 +0000 ROA not after: Tue 23 Sep 2025 11:12:47 +0000 asID: 138134 IP address blocks: 103.133.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.crl rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:8a:5c:9c:d7:e0:a3:bd:bf:8c:c6:3d:1e:76:35:d6:10:5d:bf:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F80A35C1C6877BBE49719B908D029FBFCDDBB0 Validity Not Before: Sep 24 11:07:47 2024 GMT Not After : Sep 23 11:12:47 2025 GMT Subject: CN=9788F953C4AF29754E79FE6711ADCFF0BCD3F605 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:79:92:98:14:af:26:95:5a:34:ba:01:51:bd: 97:2f:c8:ac:82:f4:30:ae:bb:d2:46:a0:54:05:fb: 6d:92:fe:95:68:45:13:0d:bc:03:e6:d1:89:39:20: 21:18:f8:6d:b6:52:10:59:8c:de:2f:f2:12:da:f1: 1e:65:17:8f:b4:7e:44:ad:db:bb:a6:e6:d7:15:3c: af:3b:d6:99:9d:b7:79:03:46:a4:dd:17:26:47:75: 45:de:96:ae:b9:35:f0:76:b6:2e:f6:94:24:74:94: e2:0d:55:92:cc:f3:17:eb:ed:10:6a:22:71:b2:0a: 32:71:fa:41:0e:19:49:aa:d2:62:7e:3d:18:a2:46: 2b:26:88:02:5f:0a:02:ba:55:59:53:3e:16:0f:e2: 04:17:ee:11:3a:d5:72:9d:54:ef:f6:1d:b8:c9:18: aa:2e:96:06:4c:37:17:43:19:01:4e:cc:db:9b:a2: 99:0c:7c:24:67:03:ee:39:59:0f:0f:89:29:10:72: ad:52:f4:60:68:3d:a7:db:f1:98:e2:a4:2e:9b:86: 3e:ed:7b:8a:72:fb:62:4d:ea:8d:85:6f:9e:ad:37: 21:60:39:4e:b4:bc:d0:98:d7:dd:d0:b6:8d:91:9b: 94:03:1b:c7:78:23:34:ce:f2:12:98:8d:61:11:6d: ce:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:88:F9:53:C4:AF:29:75:4E:79:FE:67:11:AD:CF:F0:BC:D3:F6:05 X509v3 Authority Key Identifier: keyid:C3:F8:0A:35:C1:C6:87:7B:BE:49:71:9B:90:8D:02:9F:BF:CD:DB:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36312e302f32342d3234203d3e20313338313334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.133.61.0/24 Signature Algorithm: sha256WithRSAEncryption c2:54:a2:bc:b8:c0:b8:39:77:11:d8:52:01:1b:01:5f:b2:d0: a6:74:45:88:d4:12:1b:51:81:b3:2e:47:b0:a0:e9:d3:e8:2b: 85:8b:d4:b0:f2:dd:ac:b2:84:ad:e9:d5:3c:fa:a3:11:46:a5: 17:8d:ce:7c:5d:f0:22:b4:a3:bc:5a:19:a0:78:54:3d:47:05: 71:22:7c:8e:82:05:b2:d4:6d:91:7b:2f:e1:9c:05:0b:1d:d5: 79:b4:41:ed:e4:0b:cf:83:05:2d:e3:8e:78:54:13:29:ea:83: b3:27:c4:b6:90:da:86:56:0e:6a:8b:93:b2:58:90:73:6c:9c: e0:19:74:5e:a9:0e:af:7d:18:d8:88:19:f9:91:b3:36:89:46: 6f:16:0e:5b:43:d6:7d:3c:0c:1b:81:88:10:e4:8a:da:e8:e6: e0:5d:8c:a5:94:3e:73:57:30:88:2f:fc:c0:eb:2e:ae:6c:1d: 3e:94:8e:e9:63:e8:e6:26:49:5d:fa:75:86:c2:da:bb:4f:35: 98:74:0e:8d:6c:47:f8:e1:7e:b2:60:0a:99:63:6c:0b:5c:31: 91:c9:5f:45:a3:2b:bd:92:9a:4c:04:af:aa:66:d7:ef:2a:1c: b5:64:bd:4d:6b:0d:35:0c:ac:86:95:c5:72:86:cb:e2:9f:6e: 95:69:2c:f2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUB4pcnNfgo72/jMY9HnY11hBdv6wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGODBBMzVDMUM2ODc3QkJFNDk3MTlCOTA4RDAyOUZC RkNEREJCMDAeFw0yNDA5MjQxMTA3NDdaFw0yNTA5MjMxMTEyNDdaMDMxMTAvBgNV BAMTKDk3ODhGOTUzQzRBRjI5NzU0RTc5RkU2NzExQURDRkYwQkNEM0Y2MDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaeZKYFK8mlVo0ugFRvZcvyKyC 9DCuu9JGoFQF+22S/pVoRRMNvAPm0Yk5ICEY+G22UhBZjN4v8hLa8R5lF4+0fkSt 27um5tcVPK871pmdt3kDRqTdFyZHdUXelq65NfB2ti72lCR0lOINVZLM8xfr7RBq InGyCjJx+kEOGUmq0mJ+PRiiRismiAJfCgK6VVlTPhYP4gQX7hE61XKdVO/2HbjJ GKoulgZMNxdDGQFOzNubopkMfCRnA+45WQ8PiSkQcq1S9GBoPafb8ZjipC6bhj7t e4py+2JN6o2Fb56tNyFgOU60vNCY193Qto2Rm5QDG8d4IzTO8hKYjWERbc75AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUl4j5U8SvKXVOef5nEa3P8LzT9gUwHwYDVR0j BBgwFoAUw/gKNcHGh3u+SXGbkI0Cn7/N27AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Y2Y2OGFiYS05NTE1LTRkMTItYWFjMi04Y2VlNWRiMmE0OGYvMC9DM0Y4MEEzNUMx QzY4NzdCQkU0OTcxOUI5MDhEMDI5RkJGQ0REQkIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGODBBMzVDMUM2ODc3QkJFNDk3MTlCOTA4RDAyOUZCRkNE REJCMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjZjY4YWJhLTk1MTUtNGQxMi1h YWMyLThjZWU1ZGIyYTQ4Zi8wLzMxMzAzMzJlMzEzMzMzMmUzNjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4U9MA0GCSqG SIb3DQEBCwUAA4IBAQDCVKK8uMC4OXcR2FIBGwFfstCmdEWI1BIbUYGzLkewoOnT 6CuFi9Sw8t2ssoSt6dU8+qMRRqUXjc58XfAitKO8WhmgeFQ9RwVxInyOggWy1G2R ey/hnAULHdV5tEHt5AvPgwUt4454VBMp6oOzJ8S2kNqGVg5qi5OyWJBzbJzgGXRe qQ6vfRjYiBn5kbM2iUZvFg5bQ9Z9PAwbgYgQ5Ira6ObgXYyllD5zVzCIL/zA6y6u bB0+lI7pY+jmJkld+nWGwtq7TzWYdA6NbEf44X6yYAqZY2wLXDGRyV9Foyu9kppM BK+qZtfvKhy1ZL1Naw01DKyGlcVyhsvin26VaSzy -----END CERTIFICATE-----Generated at Sun Nov 24 23:56:43 2024 by rpki-client on console-fra.rpki-client.org