$ rpki-client -vvf repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/3130332e3135332e3133342e302f32332d3233203d3e20313430343634.roa File: 3130332e3135332e3133342e302f32332d3233203d3e20313430343634.roa (raw, json) Hash identifier: cPwdxx5hPy0Al9znnfs7+/9F2Ic938FTNbuxG5Z3xhY= Subject key identifier: 34:98:2F:8C:F9:43:A7:E2:FD:86:A5:9F:F3:B1:7C:23:64:26:06:24 Certificate issuer: /CN=B2D1CBD015A419010845E6F56D8385C8647B5390 Certificate serial: 0D9493C21EFDB69286E18AD9089D82EB58A7F3D6 Authority key identifier: B2:D1:CB:D0:15:A4:19:01:08:45:E6:F5:6D:83:85:C8:64:7B:53:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2D1CBD015A419010845E6F56D8385C8647B5390.cer Subject info access: rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/3130332e3135332e3133342e302f32332d3233203d3e20313430343634.roa Signing time: Tue 17 Sep 2024 11:01:03 +0000 ROA not before: Tue 17 Sep 2024 10:56:03 +0000 ROA not after: Tue 16 Sep 2025 11:01:03 +0000 asID: 140464 IP address blocks: 103.153.134.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/B2D1CBD015A419010845E6F56D8385C8647B5390.crl rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/B2D1CBD015A419010845E6F56D8385C8647B5390.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2D1CBD015A419010845E6F56D8385C8647B5390.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:94:93:c2:1e:fd:b6:92:86:e1:8a:d9:08:9d:82:eb:58:a7:f3:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2D1CBD015A419010845E6F56D8385C8647B5390 Validity Not Before: Sep 17 10:56:03 2024 GMT Not After : Sep 16 11:01:03 2025 GMT Subject: CN=34982F8CF943A7E2FD86A59FF3B17C2364260624 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:6c:98:75:1c:29:7f:fb:cf:53:be:3b:45:2c: 72:d3:51:c3:7a:31:cd:df:63:7b:dc:f7:07:e7:29: fe:b2:05:b0:60:7d:91:08:2b:8e:4a:58:c2:c2:58: 15:c8:32:ba:02:9e:99:bd:a4:44:dc:93:b1:1c:4f: 20:fb:4f:1d:07:8d:85:1b:31:e5:67:1d:74:0d:f1: fd:bf:84:71:9d:00:7b:7e:08:3a:ab:d1:72:2c:84: 69:ca:f5:09:d2:b9:eb:83:db:68:8c:20:ee:5d:ee: 61:7b:5e:a0:9d:19:5e:8c:b9:55:ac:54:02:f8:79: c5:dc:d9:46:cb:2a:34:c3:c0:cb:c6:e5:23:ef:69: ba:d9:4e:ee:86:23:b8:7c:e3:7b:a2:31:a1:44:4f: 2c:e8:3f:63:74:c1:c6:87:07:6e:1c:da:63:80:c3: a0:45:ed:a6:c2:b5:02:67:41:11:df:31:70:e4:f1: cc:e6:88:a4:c5:05:fc:2a:df:1b:20:ac:1e:a5:f5: ad:88:bf:0b:23:76:71:12:8e:1a:54:93:bc:c6:20: e9:65:dd:41:88:1b:9c:a7:04:ec:b6:18:91:58:7d: 20:f7:1f:34:8d:03:48:3f:ee:ab:2a:7d:67:64:1f: ce:1b:ac:bf:59:ba:01:5b:9b:22:3c:e9:20:15:f5: fd:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:98:2F:8C:F9:43:A7:E2:FD:86:A5:9F:F3:B1:7C:23:64:26:06:24 X509v3 Authority Key Identifier: keyid:B2:D1:CB:D0:15:A4:19:01:08:45:E6:F5:6D:83:85:C8:64:7B:53:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/B2D1CBD015A419010845E6F56D8385C8647B5390.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2D1CBD015A419010845E6F56D8385C8647B5390.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/db8be905-f296-45d1-a879-4a4de52cb2d6/0/3130332e3135332e3133342e302f32332d3233203d3e20313430343634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.134.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:80:81:c4:bf:d6:6f:78:ac:93:df:ef:43:0a:98:cf:64:9c: 12:03:8e:17:55:a2:4e:f0:d9:22:44:3d:83:24:bb:34:94:29: 0e:42:9b:63:5e:e4:4c:69:92:b4:11:d0:55:c4:52:1a:49:79: 53:8f:2d:ab:3b:b6:5e:12:97:a5:f1:9f:b3:91:ff:56:b5:86: 14:2d:dc:a9:0e:85:f3:98:24:86:c4:93:78:02:db:f1:9e:70: 39:53:b7:de:0b:c7:0f:62:35:98:ae:4f:b2:7d:1d:a6:31:86: 41:6f:7a:49:be:27:7b:6e:d9:cd:3d:6d:3a:6b:9b:28:00:05: 51:28:1a:a1:93:e4:26:d4:3b:2a:eb:f4:95:f8:aa:74:5d:cf: eb:31:a2:ec:f4:7a:56:44:bd:e9:8f:d9:3f:ab:89:4b:96:6a: 8c:5e:4c:6e:60:56:3f:f8:b2:dd:5d:3f:51:90:54:6a:23:1e: 5f:2f:10:10:cc:db:85:ad:8e:c3:b0:6a:b6:70:7e:2c:a7:b1: 9b:2a:dc:fc:59:72:4f:db:4f:4d:3c:5e:60:76:57:93:97:09: 7d:04:98:f8:c8:d4:0c:cf:3b:f9:b1:e9:d4:86:1d:05:fd:36: f2:a8:b2:d7:a8:84:87:3d:e5:6c:f1:8a:20:70:29:a6:4c:2c: b9:79:12:a8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDZSTwh79tpKG4YrZCJ2C61in89YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjJEMUNCRDAxNUE0MTkwMTA4NDVFNkY1NkQ4Mzg1Qzg2 NDdCNTM5MDAeFw0yNDA5MTcxMDU2MDNaFw0yNTA5MTYxMTAxMDNaMDMxMTAvBgNV BAMTKDM0OTgyRjhDRjk0M0E3RTJGRDg2QTU5RkYzQjE3QzIzNjQyNjA2MjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgbJh1HCl/+89TvjtFLHLTUcN6 Mc3fY3vc9wfnKf6yBbBgfZEIK45KWMLCWBXIMroCnpm9pETck7EcTyD7Tx0HjYUb MeVnHXQN8f2/hHGdAHt+CDqr0XIshGnK9QnSueuD22iMIO5d7mF7XqCdGV6MuVWs VAL4ecXc2UbLKjTDwMvG5SPvabrZTu6GI7h843uiMaFETyzoP2N0wcaHB24c2mOA w6BF7abCtQJnQRHfMXDk8czmiKTFBfwq3xsgrB6l9a2IvwsjdnESjhpUk7zGIOll 3UGIG5ynBOy2GJFYfSD3HzSNA0g/7qsqfWdkH84brL9ZugFbmyI86SAV9f1JAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUNJgvjPlDp+L9hqWf87F8I2QmBiQwHwYDVR0j BBgwFoAUstHL0BWkGQEIReb1bYOFyGR7U5AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YjhiZTkwNS1mMjk2LTQ1ZDEtYTg3OS00YTRkZTUyY2IyZDYvMC9CMkQxQ0JEMDE1 QTQxOTAxMDg0NUU2RjU2RDgzODVDODY0N0I1MzkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjJEMUNCRDAxNUE0MTkwMTA4NDVFNkY1NkQ4Mzg1Qzg2NDdC NTM5MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RiOGJlOTA1LWYyOTYtNDVkMS1h ODc5LTRhNGRlNTJjYjJkNi8wLzMxMzAzMzJlMzEzNTMzMmUzMTMzMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzNDM2MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnmYYwDQYJ KoZIhvcNAQELBQADggEBAC+AgcS/1m94rJPf70MKmM9knBIDjhdVok7w2SJEPYMk uzSUKQ5Cm2Ne5ExpkrQR0FXEUhpJeVOPLas7tl4Sl6Xxn7OR/1a1hhQt3KkOhfOY JIbEk3gC2/GecDlTt94Lxw9iNZiuT7J9HaYxhkFvekm+J3tu2c09bTprmygABVEo GqGT5CbUOyrr9JX4qnRdz+sxouz0elZEvemP2T+riUuWaoxeTG5gVj/4st1dP1GQ VGojHl8vEBDM24WtjsOwarZwfiynsZsq3PxZck/bT008XmB2V5OXCX0EmPjI1AzP O/mx6dSGHQX9NvKosteohIc95WzxiiBwKaZMLLl5Eqg= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:57 2024 by rpki-client on console-ams.rpki-client.org