$ rpki-client -vvf repo-rpki.idnic.net/repo/d4b4fb88-8f42-47f2-be80-09e43560dddf/0/3130332e3132362e38342e302f32322d3234203d3e20313338313039.roa File: 3130332e3132362e38342e302f32322d3234203d3e20313338313039.roa (raw, json) Hash identifier: ehfw0aKAksEecMg2JLKTIc6o88BDrMQuFW01BJC8zSk= Subject key identifier: CE:F8:AC:01:BA:0C:95:31:8F:3B:87:52:8E:95:4C:60:2B:3E:1D:0B Certificate issuer: /CN=F89969E8BABE05C45C6D6E25F625E9F1845CCC9C Certificate serial: 5B430CA8AED58D32FFA8C7657A3AA882414DC46A Authority key identifier: F8:99:69:E8:BA:BE:05:C4:5C:6D:6E:25:F6:25:E9:F1:84:5C:CC:9C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F89969E8BABE05C45C6D6E25F625E9F1845CCC9C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d4b4fb88-8f42-47f2-be80-09e43560dddf/0/3130332e3132362e38342e302f32322d3234203d3e20313338313039.roa Signing time: Mon 01 Jul 2024 01:03:11 +0000 ROA not before: Mon 01 Jul 2024 00:58:11 +0000 ROA not after: Mon 30 Jun 2025 01:03:11 +0000 asID: 138109 IP address blocks: 103.126.84.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d4b4fb88-8f42-47f2-be80-09e43560dddf/0/F89969E8BABE05C45C6D6E25F625E9F1845CCC9C.crl rsync://repo-rpki.idnic.net/repo/d4b4fb88-8f42-47f2-be80-09e43560dddf/0/F89969E8BABE05C45C6D6E25F625E9F1845CCC9C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F89969E8BABE05C45C6D6E25F625E9F1845CCC9C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:26:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:43:0c:a8:ae:d5:8d:32:ff:a8:c7:65:7a:3a:a8:82:41:4d:c4:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F89969E8BABE05C45C6D6E25F625E9F1845CCC9C Validity Not Before: Jul 1 00:58:11 2024 GMT Not After : Jun 30 01:03:11 2025 GMT Subject: CN=CEF8AC01BA0C95318F3B87528E954C602B3E1D0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:47:6f:15:74:e6:bb:48:1a:73:7b:11:f5:0b: 8d:6a:53:ed:bc:e0:f4:59:4c:d7:f2:6f:3c:cb:29: 9c:43:2d:49:4c:4f:7a:42:bb:3f:92:59:29:ff:f3: e6:6e:84:ef:31:26:b2:d9:db:8e:c5:88:10:1a:14: 9a:01:4e:d8:a8:c6:ca:25:7b:d5:2f:35:0a:59:e3: 0d:66:65:58:43:4f:2b:c1:df:95:71:38:19:8f:2d: 1d:6b:26:17:0d:74:fa:2f:23:85:49:0c:62:05:bf: f9:9e:8b:09:03:d0:4b:9d:cb:80:c6:a8:1e:9a:6b: 62:30:35:c0:e7:47:50:f1:4e:25:bf:d0:83:5a:59: 30:19:d1:8c:fd:d4:43:69:15:b6:8d:b9:6e:14:b2: f9:b2:79:89:f1:45:d7:5b:54:31:87:cd:15:ea:31: ec:42:34:cf:a4:6d:77:aa:97:70:ab:16:8d:84:99: 19:dd:2f:f4:d5:61:1c:cb:4b:64:51:88:94:44:a6: ff:eb:95:b6:8f:d1:47:b9:29:a7:e8:cf:53:b4:57: 57:af:b1:57:69:8b:b4:27:2c:b1:9a:4e:ad:7c:ed: 4e:04:90:e5:6a:d7:a6:d5:46:7f:ce:2b:91:ca:95: 9c:32:b3:11:8f:0a:35:69:37:78:67:ba:1c:60:8f: b2:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:F8:AC:01:BA:0C:95:31:8F:3B:87:52:8E:95:4C:60:2B:3E:1D:0B X509v3 Authority Key Identifier: keyid:F8:99:69:E8:BA:BE:05:C4:5C:6D:6E:25:F6:25:E9:F1:84:5C:CC:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d4b4fb88-8f42-47f2-be80-09e43560dddf/0/F89969E8BABE05C45C6D6E25F625E9F1845CCC9C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F89969E8BABE05C45C6D6E25F625E9F1845CCC9C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d4b4fb88-8f42-47f2-be80-09e43560dddf/0/3130332e3132362e38342e302f32322d3234203d3e20313338313039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.126.84.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:da:05:35:3c:87:3e:15:5d:63:e9:60:2e:44:2e:f4:54:04: d5:00:ec:98:b5:86:71:61:4c:64:29:6f:60:40:3e:a0:d4:b9: 62:b7:46:74:fe:36:b0:e7:2e:ba:f9:75:2b:f0:ae:b4:eb:83: 77:97:85:9a:b4:e0:de:87:bd:89:eb:6a:7d:75:e4:31:6b:21: b1:37:fa:9d:b6:a9:67:e6:40:45:e4:0d:03:50:98:86:7b:41: a9:67:11:58:cf:87:ac:52:9c:66:6d:c3:e8:9d:6c:3e:9d:08: 26:de:12:bc:54:10:c9:20:69:08:5e:ec:23:e0:ee:81:ad:66: bb:94:77:ba:79:84:45:5b:b4:46:dc:a4:4b:ea:6e:d3:6d:bb: 5c:44:73:6e:9c:2f:35:6f:42:0d:1e:9f:bc:bc:f1:e3:0d:f7: bf:2a:a9:0b:e3:d6:f6:9b:89:74:af:6c:bb:e7:4d:9c:c7:d9: 7b:ea:f8:c7:e6:35:3b:60:3c:50:e3:f4:96:a3:a3:49:cc:f9: 9a:71:20:13:27:35:9f:a6:62:e3:cd:d8:9c:e0:84:39:e3:78: 44:08:ec:af:17:a7:25:86:79:4f:6c:9e:19:8d:1a:47:93:11: 41:5a:bb:94:86:c1:36:9b:14:78:0d:4f:be:f6:b7:f9:5d:d7: 7a:1b:01:d0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUW0MMqK7VjTL/qMdlejqogkFNxGowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjg5OTY5RThCQUJFMDVDNDVDNkQ2RTI1RjYyNUU5RjE4 NDVDQ0M5QzAeFw0yNDA3MDEwMDU4MTFaFw0yNTA2MzAwMTAzMTFaMDMxMTAvBgNV BAMTKENFRjhBQzAxQkEwQzk1MzE4RjNCODc1MjhFOTU0QzYwMkIzRTFEMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiR28VdOa7SBpzexH1C41qU+28 4PRZTNfybzzLKZxDLUlMT3pCuz+SWSn/8+ZuhO8xJrLZ247FiBAaFJoBTtioxsol e9UvNQpZ4w1mZVhDTyvB35VxOBmPLR1rJhcNdPovI4VJDGIFv/meiwkD0Eudy4DG qB6aa2IwNcDnR1DxTiW/0INaWTAZ0Yz91ENpFbaNuW4UsvmyeYnxRddbVDGHzRXq MexCNM+kbXeql3CrFo2EmRndL/TVYRzLS2RRiJREpv/rlbaP0Ue5Kafoz1O0V1ev sVdpi7QnLLGaTq187U4EkOVq16bVRn/OK5HKlZwysxGPCjVpN3hnuhxgj7L5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzvisAboMlTGPO4dSjpVMYCs+HQswHwYDVR0j BBgwFoAU+Jlp6Lq+BcRcbW4l9iXp8YRczJwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NGI0ZmI4OC04ZjQyLTQ3ZjItYmU4MC0wOWU0MzU2MGRkZGYvMC9GODk5NjlFOEJB QkUwNUM0NUM2RDZFMjVGNjI1RTlGMTg0NUNDQzlDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjg5OTY5RThCQUJFMDVDNDVDNkQ2RTI1RjYyNUU5RjE4NDVD Q0M5Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q0YjRmYjg4LThmNDItNDdmMi1i ZTgwLTA5ZTQzNTYwZGRkZi8wLzMxMzAzMzJlMzEzMjM2MmUzODM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ35UMA0GCSqG SIb3DQEBCwUAA4IBAQB/2gU1PIc+FV1j6WAuRC70VATVAOyYtYZxYUxkKW9gQD6g 1Llit0Z0/jaw5y66+XUr8K6064N3l4WatODeh72J62p9deQxayGxN/qdtqln5kBF 5A0DUJiGe0GpZxFYz4esUpxmbcPonWw+nQgm3hK8VBDJIGkIXuwj4O6BrWa7lHe6 eYRFW7RG3KRL6m7TbbtcRHNunC81b0INHp+8vPHjDfe/KqkL49b2m4l0r2y7502c x9l76vjH5jU7YDxQ4/SWo6NJzPmacSATJzWfpmLjzdic4IQ543hECOyvF6clhnlP bJ4ZjRpHkxFBWruUhsE2mxR4DU++9rf5Xdd6GwHQ -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:33 2024 by rpki-client on console-fra.rpki-client.org