$ rpki-client -vvf repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/3130332e3138362e3136372e302f32342d3234203d3e20313439373033.roa File: 3130332e3138362e3136372e302f32342d3234203d3e20313439373033.roa (raw, json) Hash identifier: GQigmPKE8ESh8Qn0PZKP6byUyrdkk6fa08AXBtG++Oc= Subject key identifier: B9:3F:60:25:C6:8E:68:56:2D:90:B2:A3:97:03:36:8F:F5:C3:28:7C Certificate issuer: /CN=5DF7F909917C4DA09D7486E2B70323E7972B7675 Certificate serial: 64C63B0304AD3A432747BD866E5AF94EE3747D0D Authority key identifier: 5D:F7:F9:09:91:7C:4D:A0:9D:74:86:E2:B7:03:23:E7:97:2B:76:75 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/3130332e3138362e3136372e302f32342d3234203d3e20313439373033.roa Signing time: Thu 28 Mar 2024 14:02:02 +0000 ROA not before: Thu 28 Mar 2024 13:57:02 +0000 ROA not after: Thu 27 Mar 2025 14:02:02 +0000 asID: 149703 IP address blocks: 103.186.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.crl rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:c6:3b:03:04:ad:3a:43:27:47:bd:86:6e:5a:f9:4e:e3:74:7d:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DF7F909917C4DA09D7486E2B70323E7972B7675 Validity Not Before: Mar 28 13:57:02 2024 GMT Not After : Mar 27 14:02:02 2025 GMT Subject: CN=B93F6025C68E68562D90B2A39703368FF5C3287C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:49:3c:44:27:77:37:2f:4a:5b:ce:4d:3b:56: d6:07:c6:60:f0:25:b6:20:c7:be:89:4f:a9:cb:db: d2:73:8d:01:76:e0:4b:78:81:5e:5c:0a:1f:2e:b7: 70:30:c8:fc:8c:49:4d:4b:70:39:ab:8b:55:d7:46: 43:78:ee:66:30:61:e3:1d:a5:65:47:af:20:8d:e8: fa:38:b3:5a:25:85:97:d0:1d:8b:f3:5d:85:58:78: 7b:fe:9e:c8:4f:c2:82:87:49:23:54:cd:97:c0:96: 5e:b0:2e:63:2e:03:f4:ab:36:61:87:ad:9f:a0:1f: 66:b0:dd:d3:dd:57:d3:bd:86:81:88:76:88:83:7c: 06:b3:a4:d7:ae:87:13:c0:50:22:ab:e7:8a:93:d6: f0:37:fb:42:cc:55:b5:31:19:ae:b8:66:21:45:df: f6:bf:04:b4:36:33:9c:fb:0e:50:84:65:38:f3:38: a3:97:35:ac:34:9d:74:40:9e:32:09:d7:ef:82:e0: d3:74:0a:e7:a7:6d:d5:8c:55:78:f4:96:79:70:bc: eb:cd:28:42:9d:ac:1a:2f:c7:c1:b7:71:23:f3:73: ed:55:fb:81:47:14:56:30:75:f8:88:f3:ae:28:0c: 45:94:ab:38:85:90:09:a6:61:ac:e0:7a:0c:87:45: 7e:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:3F:60:25:C6:8E:68:56:2D:90:B2:A3:97:03:36:8F:F5:C3:28:7C X509v3 Authority Key Identifier: keyid:5D:F7:F9:09:91:7C:4D:A0:9D:74:86:E2:B7:03:23:E7:97:2B:76:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/3130332e3138362e3136372e302f32342d3234203d3e20313439373033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.167.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:dd:6c:4b:1e:67:15:00:c5:9a:5c:f1:25:2c:18:cc:c8:70: ba:9e:a2:80:4d:91:4e:ae:93:e2:af:e3:4c:3b:e6:fe:b5:53: cb:a3:16:93:12:04:35:f5:ec:56:75:9b:ee:32:25:99:a8:be: 0d:d2:b6:1e:06:14:a2:37:d1:61:6d:da:0a:27:65:f7:7e:f3: fd:11:50:f2:ee:01:ed:ec:0a:a2:e0:5f:ed:8e:14:2c:d2:ba: 7b:fb:d2:09:5b:7a:f4:31:e1:2a:0b:d7:2e:f4:47:e2:85:dc: 26:5c:40:2e:16:ae:43:16:84:26:5d:28:40:fc:65:78:2e:19: f6:a2:f4:34:bc:fa:be:09:fc:35:ee:70:59:f1:4b:ae:0c:6b: 64:d9:b7:39:3d:a0:77:17:e9:7c:ed:4f:e5:ba:2a:74:6c:44: 3a:e0:aa:54:16:ea:4d:90:28:91:66:ad:ae:a3:7d:8d:c1:97: 35:b8:3e:b7:41:ab:13:97:83:aa:2b:41:10:e3:11:35:54:26: c3:78:86:80:dd:72:55:b6:27:85:22:c4:54:a5:b2:7f:06:5d: b5:0c:51:c7:77:62:3a:6e:22:fa:5d:22:7b:fe:bc:fe:74:c3: 2a:3f:ef:50:2e:5a:31:7a:96:27:dc:3e:a7:24:35:6f:cd:92: 81:cd:39:b8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZMY7AwStOkMnR72Gblr5TuN0fQ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURGN0Y5MDk5MTdDNERBMDlENzQ4NkUyQjcwMzIzRTc5 NzJCNzY3NTAeFw0yNDAzMjgxMzU3MDJaFw0yNTAzMjcxNDAyMDJaMDMxMTAvBgNV BAMTKEI5M0Y2MDI1QzY4RTY4NTYyRDkwQjJBMzk3MDMzNjhGRjVDMzI4N0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDISTxEJ3c3L0pbzk07VtYHxmDw JbYgx76JT6nL29JzjQF24Et4gV5cCh8ut3AwyPyMSU1LcDmri1XXRkN47mYwYeMd pWVHryCN6Po4s1olhZfQHYvzXYVYeHv+nshPwoKHSSNUzZfAll6wLmMuA/SrNmGH rZ+gH2aw3dPdV9O9hoGIdoiDfAazpNeuhxPAUCKr54qT1vA3+0LMVbUxGa64ZiFF 3/a/BLQ2M5z7DlCEZTjzOKOXNaw0nXRAnjIJ1++C4NN0CuenbdWMVXj0lnlwvOvN KEKdrBovx8G3cSPzc+1V+4FHFFYwdfiI864oDEWUqziFkAmmYazgegyHRX6RAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUuT9gJcaOaFYtkLKjlwM2j/XDKHwwHwYDVR0j BBgwFoAUXff5CZF8TaCddIbitwMj55crdnUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k N2I2NGMzZS1iMTNkLTQyN2EtYjk4Mi00Mzk0MDczZTVjZjUvMC81REY3RjkwOTkx N0M0REEwOUQ3NDg2RTJCNzAzMjNFNzk3MkI3Njc1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNURGN0Y5MDk5MTdDNERBMDlENzQ4NkUyQjcwMzIzRTc5NzJC NzY3NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q3YjY0YzNlLWIxM2QtNDI3YS1i OTgyLTQzOTQwNzNlNWNmNS8wLzMxMzAzMzJlMzEzODM2MmUzMTM2MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzMwMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnuqcwDQYJ KoZIhvcNAQELBQADggEBAG7dbEseZxUAxZpc8SUsGMzIcLqeooBNkU6uk+Kv40w7 5v61U8ujFpMSBDX17FZ1m+4yJZmovg3Sth4GFKI30WFt2gonZfd+8/0RUPLuAe3s CqLgX+2OFCzSunv70glbevQx4SoL1y70R+KF3CZcQC4WrkMWhCZdKED8ZXguGfai 9DS8+r4J/DXucFnxS64Ma2TZtzk9oHcX6XztT+W6KnRsRDrgqlQW6k2QKJFmra6j fY3BlzW4PrdBqxOXg6orQRDjETVUJsN4hoDdclW2J4UixFSlsn8GXbUMUcd3Yjpu IvpdInv+vP50wyo/71AuWjF6lifcPqckNW/NkoHNObg= -----END CERTIFICATE-----Generated at Sun Nov 24 18:33:16 2024 by rpki-client on console-fra.rpki-client.org