$ rpki-client -vvf repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36322e302f32342d3234203d3e20313338313334.roa File: 3130332e3133332e36322e302f32342d3234203d3e20313338313334.roa (raw, json) Hash identifier: vI68Gh5Oh59Rb2lPrZHZHoQWOjb0zjzOJoq8Na+SUkQ= Subject key identifier: 8B:39:56:A4:8E:11:FC:8E:0B:58:76:E0:1E:8C:FB:D3:6A:A3:AC:1D Certificate issuer: /CN=C3F80A35C1C6877BBE49719B908D029FBFCDDBB0 Certificate serial: 28700EF1AD54BEA4D750AAD5BBD8D43B62C3136B Authority key identifier: C3:F8:0A:35:C1:C6:87:7B:BE:49:71:9B:90:8D:02:9F:BF:CD:DB:B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36322e302f32342d3234203d3e20313338313334.roa Signing time: Tue 24 Sep 2024 11:13:01 +0000 ROA not before: Tue 24 Sep 2024 11:08:01 +0000 ROA not after: Tue 23 Sep 2025 11:13:01 +0000 asID: 138134 IP address blocks: 103.133.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.crl rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:70:0e:f1:ad:54:be:a4:d7:50:aa:d5:bb:d8:d4:3b:62:c3:13:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F80A35C1C6877BBE49719B908D029FBFCDDBB0 Validity Not Before: Sep 24 11:08:01 2024 GMT Not After : Sep 23 11:13:01 2025 GMT Subject: CN=8B3956A48E11FC8E0B5876E01E8CFBD36AA3AC1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:5b:68:4c:2f:e5:30:dc:f2:90:d3:79:3d:a5: 49:1f:bd:26:4e:b0:9f:5b:2d:79:cb:8a:95:5c:d8: 6e:ce:87:63:2c:af:72:b1:40:03:04:4c:fc:89:d0: e1:0b:31:d2:b6:ac:6a:58:b7:86:ef:c6:ac:7f:e1: 45:4b:6f:42:5a:69:18:ef:75:f0:a7:e6:73:d1:bc: 20:07:27:a9:8f:53:78:7a:83:cb:b6:24:e6:29:a9: a0:f4:99:80:34:df:e8:98:65:07:cd:b2:51:30:cf: 09:af:18:96:ed:0d:1b:75:3b:31:cf:7b:a8:bc:03: 89:fa:62:67:91:69:75:ce:18:50:21:88:ae:c6:f2: 6b:40:db:c6:75:00:d8:a4:42:4b:3e:9c:76:62:2d: 77:b6:55:0b:73:7e:2c:e3:97:f3:63:fb:d0:43:31: 66:f4:4c:4b:97:07:2e:7c:2b:7c:86:13:51:fc:a0: 4a:cc:12:9a:38:8a:f0:11:72:a7:ab:3a:6d:99:72: 8d:80:ec:1c:fb:7b:3b:9d:6a:f5:e3:47:97:88:b2: 0c:e8:f8:37:fb:d3:b8:a6:f5:25:05:fd:13:10:77: ea:a1:51:32:66:df:da:e5:7b:f6:a2:b7:86:e5:71: b8:0f:9a:a3:a7:4e:b4:02:7b:82:ff:ab:66:ed:0e: 8d:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:39:56:A4:8E:11:FC:8E:0B:58:76:E0:1E:8C:FB:D3:6A:A3:AC:1D X509v3 Authority Key Identifier: keyid:C3:F8:0A:35:C1:C6:87:7B:BE:49:71:9B:90:8D:02:9F:BF:CD:DB:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36322e302f32342d3234203d3e20313338313334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.133.62.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:a6:29:5c:f0:e9:26:ed:9d:6e:4f:5a:b4:6a:08:7a:3e:b3: 2e:b1:7e:56:af:04:7b:48:9f:cf:a7:6c:1c:2c:ba:00:d5:62: e2:93:70:36:47:00:57:22:5b:2b:a2:6d:fc:39:85:a0:8d:b5: bf:7c:f3:89:06:79:83:18:f5:59:ca:d7:ee:55:80:da:2f:d0: c1:67:98:21:52:42:cd:38:45:aa:dd:a9:9a:96:cc:1a:57:4f: f8:a6:da:28:f2:29:4f:58:2b:a3:01:16:03:cb:33:62:12:39: ea:7e:3a:16:97:68:79:54:41:8c:7a:3c:2e:54:27:bb:3c:00: 86:6a:65:7a:5a:97:19:c2:a4:2b:67:0c:28:9d:1a:48:f9:6f: c4:40:5d:97:be:8d:a7:3b:66:f8:c1:7f:e1:a0:75:1a:52:4a: 88:48:d4:89:50:32:db:a2:1b:35:c9:3d:cb:3b:7d:1f:9d:04: fe:e7:49:73:04:3c:ac:e9:9c:d5:5e:7e:2c:71:20:52:4a:a3: 69:2c:e4:69:c7:a4:03:36:04:ee:65:8c:55:13:77:a4:e3:cd: f6:fa:fd:9e:a3:31:d5:b6:26:ce:e2:f5:d8:ae:e3:3b:42:21: e0:20:09:4f:a4:be:86:6b:e1:3e:85:28:c9:dd:dd:a6:62:a6: 17:18:af:95 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKHAO8a1UvqTXUKrVu9jUO2LDE2swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGODBBMzVDMUM2ODc3QkJFNDk3MTlCOTA4RDAyOUZC RkNEREJCMDAeFw0yNDA5MjQxMTA4MDFaFw0yNTA5MjMxMTEzMDFaMDMxMTAvBgNV BAMTKDhCMzk1NkE0OEUxMUZDOEUwQjU4NzZFMDFFOENGQkQzNkFBM0FDMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbW2hML+Uw3PKQ03k9pUkfvSZO sJ9bLXnLipVc2G7Oh2Msr3KxQAMETPyJ0OELMdK2rGpYt4bvxqx/4UVLb0JaaRjv dfCn5nPRvCAHJ6mPU3h6g8u2JOYpqaD0mYA03+iYZQfNslEwzwmvGJbtDRt1OzHP e6i8A4n6YmeRaXXOGFAhiK7G8mtA28Z1ANikQks+nHZiLXe2VQtzfizjl/Nj+9BD MWb0TEuXBy58K3yGE1H8oErMEpo4ivARcqerOm2Zco2A7Bz7ezudavXjR5eIsgzo +Df707im9SUF/RMQd+qhUTJm39rle/ait4blcbgPmqOnTrQCe4L/q2btDo2XAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUizlWpI4R/I4LWHbgHoz702qjrB0wHwYDVR0j BBgwFoAUw/gKNcHGh3u+SXGbkI0Cn7/N27AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Y2Y2OGFiYS05NTE1LTRkMTItYWFjMi04Y2VlNWRiMmE0OGYvMC9DM0Y4MEEzNUMx QzY4NzdCQkU0OTcxOUI5MDhEMDI5RkJGQ0REQkIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGODBBMzVDMUM2ODc3QkJFNDk3MTlCOTA4RDAyOUZCRkNE REJCMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjZjY4YWJhLTk1MTUtNGQxMi1h YWMyLThjZWU1ZGIyYTQ4Zi8wLzMxMzAzMzJlMzEzMzMzMmUzNjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4U+MA0GCSqG SIb3DQEBCwUAA4IBAQB/pilc8Okm7Z1uT1q0agh6PrMusX5WrwR7SJ/Pp2wcLLoA 1WLik3A2RwBXIlsrom38OYWgjbW/fPOJBnmDGPVZytfuVYDaL9DBZ5ghUkLNOEWq 3amalswaV0/4ptoo8ilPWCujARYDyzNiEjnqfjoWl2h5VEGMejwuVCe7PACGamV6 WpcZwqQrZwwonRpI+W/EQF2Xvo2nO2b4wX/hoHUaUkqISNSJUDLbohs1yT3LO30f nQT+50lzBDys6ZzVXn4scSBSSqNpLORpx6QDNgTuZYxVE3ek4832+v2eozHVtibO 4vXYruM7QiHgIAlPpL6Ga+E+hSjJ3d2mYqYXGK+V -----END CERTIFICATE-----Generated at Sun Nov 24 23:56:43 2024 by rpki-client on console-fra.rpki-client.org