$ rpki-client -vvf repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139382e302f32342d3234203d3e20313531353237.roa File: 3130332e35382e3139382e302f32342d3234203d3e20313531353237.roa (raw, json) Hash identifier: cWHJAdhMo3cUB7SJI/qLeHQjD7fvumO0S0ippQ4UQLg= Subject key identifier: 25:FB:B5:5F:A6:1B:39:82:E5:C8:54:3F:5A:7A:BB:8A:20:F5:8F:14 Certificate issuer: /CN=65E29AACDF8556B440C4D7180F51C447FFE5238F Certificate serial: 6E413F86DDAA496E5F2BF70BBC8B5A647F283618 Authority key identifier: 65:E2:9A:AC:DF:85:56:B4:40:C4:D7:18:0F:51:C4:47:FF:E5:23:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139382e302f32342d3234203d3e20313531353237.roa Signing time: Sat 28 Sep 2024 13:38:51 +0000 ROA not before: Sat 28 Sep 2024 13:33:51 +0000 ROA not after: Sat 27 Sep 2025 13:38:51 +0000 asID: 151527 IP address blocks: 103.58.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.crl rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:41:3f:86:dd:aa:49:6e:5f:2b:f7:0b:bc:8b:5a:64:7f:28:36:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65E29AACDF8556B440C4D7180F51C447FFE5238F Validity Not Before: Sep 28 13:33:51 2024 GMT Not After : Sep 27 13:38:51 2025 GMT Subject: CN=25FBB55FA61B3982E5C8543F5A7ABB8A20F58F14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:87:d7:5d:8a:c4:32:f2:e1:9b:73:d6:eb:ee: 82:9e:37:cd:d3:12:13:29:f5:36:5d:7d:73:e2:da: ee:e8:68:6f:62:f6:78:0c:fe:2d:5d:9c:87:da:73: 11:2e:b1:8f:fd:71:3c:be:a9:8b:0a:55:29:f1:f5: fb:df:5e:42:d0:d5:13:70:e1:32:df:b0:33:50:44: 22:06:d3:ea:96:37:0d:a8:82:78:bc:c7:20:70:bd: af:6a:ef:06:6a:cd:56:96:88:9e:58:cf:4f:f3:96: 71:6b:33:c5:cb:c1:04:14:9e:1e:d1:91:bf:2b:6a: 9e:e7:74:37:0c:0b:41:67:a2:59:32:62:77:0f:26: c8:2a:cf:01:f5:eb:88:d1:54:71:87:7c:f0:e0:df: 55:38:59:1f:b3:fc:33:b3:ec:d5:14:5b:e4:07:6a: ab:88:af:6a:ca:f9:52:c0:c7:cd:22:91:48:f5:13: 47:7e:ac:6e:d5:3f:76:11:c3:80:1a:c8:ff:19:ac: 70:4a:14:6a:b0:10:bd:f7:3e:f2:7b:f9:a9:00:6b: 1c:51:fe:9f:9a:04:39:a0:19:ee:14:ad:86:88:cd: 2b:46:42:22:94:a5:39:71:d5:b3:77:98:b0:15:8c: 67:9b:6e:8d:43:bf:33:85:1f:0f:8f:b9:a2:bb:62: a3:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:FB:B5:5F:A6:1B:39:82:E5:C8:54:3F:5A:7A:BB:8A:20:F5:8F:14 X509v3 Authority Key Identifier: keyid:65:E2:9A:AC:DF:85:56:B4:40:C4:D7:18:0F:51:C4:47:FF:E5:23:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139382e302f32342d3234203d3e20313531353237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.58.198.0/24 Signature Algorithm: sha256WithRSAEncryption a7:93:8f:a0:15:da:f2:a2:ea:0d:82:99:cb:5e:51:80:74:94: 0a:31:39:bb:1d:73:b4:8b:3f:e9:d7:b7:71:3b:25:7d:f3:40: 90:f6:9e:45:10:88:76:3c:20:5f:45:d0:74:12:37:71:ae:e6: c7:0d:c1:79:5b:0b:91:57:d8:8e:39:9f:a4:a7:f7:9f:7b:99: 21:c1:39:1a:20:e0:e2:bb:7e:cf:81:26:e9:9f:9a:e0:e3:10: 11:76:80:85:a8:2c:cc:f5:73:e0:19:e3:25:35:c3:4c:cb:5e: bd:9f:7a:12:67:bb:cc:30:be:4f:ed:ba:25:61:3f:8a:de:42: 4e:de:09:fc:47:5a:1d:36:ee:13:d0:b8:9d:9a:97:7b:0a:f1: e7:95:cf:e4:5d:2c:58:42:31:bf:f2:b7:95:11:c2:68:2b:56: 02:77:c0:e1:68:4d:94:7d:66:e1:d4:d7:49:20:af:87:57:8d: 5b:d7:5c:43:ae:d4:06:43:24:7f:22:a4:a5:1c:87:99:26:59: c5:16:02:54:4c:29:05:16:d5:71:5a:be:94:54:f4:bc:34:31: 6f:26:83:ac:f0:29:37:a0:56:3b:d3:36:47:78:ba:a4:70:4f: 29:b8:fa:39:bf:64:bc:fb:d1:38:53:e3:ec:6d:db:4f:f0:63: 54:16:34:f2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbkE/ht2qSW5fK/cLvItaZH8oNhgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjVFMjlBQUNERjg1NTZCNDQwQzRENzE4MEY1MUM0NDdG RkU1MjM4RjAeFw0yNDA5MjgxMzMzNTFaFw0yNTA5MjcxMzM4NTFaMDMxMTAvBgNV BAMTKDI1RkJCNTVGQTYxQjM5ODJFNUM4NTQzRjVBN0FCQjhBMjBGNThGMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFh9ddisQy8uGbc9br7oKeN83T EhMp9TZdfXPi2u7oaG9i9ngM/i1dnIfacxEusY/9cTy+qYsKVSnx9fvfXkLQ1RNw 4TLfsDNQRCIG0+qWNw2ogni8xyBwva9q7wZqzVaWiJ5Yz0/zlnFrM8XLwQQUnh7R kb8rap7ndDcMC0FnolkyYncPJsgqzwH164jRVHGHfPDg31U4WR+z/DOz7NUUW+QH aquIr2rK+VLAx80ikUj1E0d+rG7VP3YRw4AayP8ZrHBKFGqwEL33PvJ7+akAaxxR /p+aBDmgGe4UrYaIzStGQiKUpTlx1bN3mLAVjGebbo1DvzOFHw+PuaK7YqNfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJfu1X6YbOYLlyFQ/Wnq7iiD1jxQwHwYDVR0j BBgwFoAUZeKarN+FVrRAxNcYD1HER//lI48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGNlMjAwOC04NGI3LTRiZWYtOTRiOS1iYjNmZGIxN2IyMzgvMC82NUUyOUFBQ0RG ODU1NkI0NDBDNEQ3MTgwRjUxQzQ0N0ZGRTUyMzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjVFMjlBQUNERjg1NTZCNDQwQzRENzE4MEY1MUM0NDdGRkU1 MjM4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4Y2UyMDA4LTg0YjctNGJlZi05 NGI5LWJiM2ZkYjE3YjIzOC8wLzMxMzAzMzJlMzUzODJlMzEzOTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzrGMA0GCSqG SIb3DQEBCwUAA4IBAQCnk4+gFdryouoNgpnLXlGAdJQKMTm7HXO0iz/p17dxOyV9 80CQ9p5FEIh2PCBfRdB0EjdxrubHDcF5WwuRV9iOOZ+kp/efe5khwTkaIODiu37P gSbpn5rg4xARdoCFqCzM9XPgGeMlNcNMy169n3oSZ7vMML5P7bolYT+K3kJO3gn8 R1odNu4T0Lidmpd7CvHnlc/kXSxYQjG/8reVEcJoK1YCd8DhaE2UfWbh1NdJIK+H V41b11xDrtQGQyR/IqSlHIeZJlnFFgJUTCkFFtVxWr6UVPS8NDFvJoOs8Ck3oFY7 0zZHeLqkcE8puPo5v2S8+9E4U+PsbdtP8GNUFjTy -----END CERTIFICATE-----Generated at Wed Nov 20 18:59:48 2024 by rpki-client on console-ams.rpki-client.org