$ rpki-client -vvf repo-rpki.idnic.net/repo/dd48bd04-f787-414a-a501-5138a6d6b3e1/0/3130332e3130372e3138372e302f32342d3234203d3e20313337333030.roa File: 3130332e3130372e3138372e302f32342d3234203d3e20313337333030.roa (raw, json) Hash identifier: WSTz5ogr3h2jPOJvkikKcIkFynOkdUVZnpcINI4dCbg= Subject key identifier: 9A:1D:6E:52:C1:AF:03:E3:59:4F:36:73:16:16:0F:78:AD:3F:54:16 Certificate issuer: /CN=71E51A9B65D8A123513A350F0D99F98D6C9B72E2 Certificate serial: 58AC9BA69F907C6BB4F47E5530BD03E0FD983547 Authority key identifier: 71:E5:1A:9B:65:D8:A1:23:51:3A:35:0F:0D:99:F9:8D:6C:9B:72:E2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71E51A9B65D8A123513A350F0D99F98D6C9B72E2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dd48bd04-f787-414a-a501-5138a6d6b3e1/0/3130332e3130372e3138372e302f32342d3234203d3e20313337333030.roa Signing time: Thu 14 Mar 2024 06:00:02 +0000 ROA not before: Thu 14 Mar 2024 05:55:02 +0000 ROA not after: Thu 13 Mar 2025 06:00:02 +0000 asID: 137300 IP address blocks: 103.107.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dd48bd04-f787-414a-a501-5138a6d6b3e1/0/71E51A9B65D8A123513A350F0D99F98D6C9B72E2.crl rsync://repo-rpki.idnic.net/repo/dd48bd04-f787-414a-a501-5138a6d6b3e1/0/71E51A9B65D8A123513A350F0D99F98D6C9B72E2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71E51A9B65D8A123513A350F0D99F98D6C9B72E2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:ac:9b:a6:9f:90:7c:6b:b4:f4:7e:55:30:bd:03:e0:fd:98:35:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71E51A9B65D8A123513A350F0D99F98D6C9B72E2 Validity Not Before: Mar 14 05:55:02 2024 GMT Not After : Mar 13 06:00:02 2025 GMT Subject: CN=9A1D6E52C1AF03E3594F367316160F78AD3F5416 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:38:63:35:0c:40:4d:66:47:9b:1c:9f:6d:e5: 5b:5a:0d:f3:e9:83:a4:9a:4a:c2:79:f3:fe:bb:8c: f3:1c:f6:c0:cb:63:ba:01:e2:4a:42:92:a4:60:f9: 00:7e:e4:20:a1:70:cd:fb:8f:fa:30:8b:33:96:53: 8f:af:a5:86:42:e6:86:67:24:04:0c:c6:80:c8:2d: 1b:07:4e:5a:bc:39:f4:97:bf:cb:33:27:8b:4c:46: eb:a9:cd:86:0c:b1:ca:5a:ae:a2:01:8d:a1:26:5a: 23:c6:a9:d7:75:e2:55:cf:7f:b0:0f:57:c3:93:68: 0a:b3:f5:40:74:0b:ab:8c:8a:c0:45:df:22:3c:55: 83:55:c6:f4:f4:b1:4e:7a:91:80:fd:09:da:88:cd: 90:fd:fe:72:2d:94:46:ea:5b:55:fa:90:a7:0c:0c: 4a:07:c8:4a:a2:8a:43:87:91:61:85:b2:5a:1c:b9: 60:6f:45:b8:a5:35:4e:98:b6:4c:82:d2:fb:b3:1b: 6a:5e:d4:b3:47:f0:94:35:ef:83:fc:af:5c:33:72: 66:d0:a3:e2:de:4e:40:e2:df:3c:c3:39:5c:28:ad: cb:33:76:2d:ad:80:27:48:77:56:6e:44:dc:52:6c: ad:04:7b:d3:1f:9f:94:3f:db:c3:2e:05:ad:0b:99: 8b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:1D:6E:52:C1:AF:03:E3:59:4F:36:73:16:16:0F:78:AD:3F:54:16 X509v3 Authority Key Identifier: keyid:71:E5:1A:9B:65:D8:A1:23:51:3A:35:0F:0D:99:F9:8D:6C:9B:72:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dd48bd04-f787-414a-a501-5138a6d6b3e1/0/71E51A9B65D8A123513A350F0D99F98D6C9B72E2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71E51A9B65D8A123513A350F0D99F98D6C9B72E2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dd48bd04-f787-414a-a501-5138a6d6b3e1/0/3130332e3130372e3138372e302f32342d3234203d3e20313337333030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.107.187.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:7d:80:ea:f6:c5:a8:44:b7:2e:a9:0d:b8:cc:e0:bc:67:32: 64:30:e2:3d:22:cf:d9:db:58:cf:67:fe:ec:a6:63:8f:3f:4b: 3a:88:14:5f:4f:55:93:e0:ae:41:4c:f2:00:d3:eb:00:e4:48: d7:1c:96:73:09:db:5b:fb:44:66:81:98:b7:53:0d:80:41:9f: 14:e8:9f:31:32:52:ea:a8:6b:d8:a6:02:93:54:da:bc:02:7b: 76:cf:bc:2a:8a:41:7d:d4:08:b1:de:d9:1c:06:7d:30:78:05: 4f:e8:cf:42:e4:35:df:e1:fb:1f:22:c1:23:3b:0f:40:c0:2c: 26:34:ba:c3:f0:ee:9f:7e:de:15:85:61:56:a8:4d:2c:6c:e9: a1:f5:9e:3a:76:7a:dc:78:76:cc:4e:c4:99:7d:fb:9a:69:ae: cc:27:9d:16:f9:9e:b8:73:7e:75:b0:8b:c0:6f:21:23:a3:f3: 0b:f4:87:69:2c:5a:2b:eb:51:1f:e0:e2:14:ed:ce:f6:19:7a: 32:95:0d:6d:4c:87:03:b6:b0:b6:78:77:9a:14:d7:5d:b0:85: 5d:87:81:10:da:8c:09:43:7e:5e:4f:8c:c3:3e:46:b4:1e:33: f8:23:3a:28:93:2a:8d:20:45:9c:b3:49:39:bc:ee:9d:58:f5: c0:66:ca:f8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWKybpp+QfGu09H5VML0D4P2YNUcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFFNTFBOUI2NUQ4QTEyMzUxM0EzNTBGMEQ5OUY5OEQ2 QzlCNzJFMjAeFw0yNDAzMTQwNTU1MDJaFw0yNTAzMTMwNjAwMDJaMDMxMTAvBgNV BAMTKDlBMUQ2RTUyQzFBRjAzRTM1OTRGMzY3MzE2MTYwRjc4QUQzRjU0MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbOGM1DEBNZkebHJ9t5VtaDfPp g6SaSsJ58/67jPMc9sDLY7oB4kpCkqRg+QB+5CChcM37j/owizOWU4+vpYZC5oZn JAQMxoDILRsHTlq8OfSXv8szJ4tMRuupzYYMscparqIBjaEmWiPGqdd14lXPf7AP V8OTaAqz9UB0C6uMisBF3yI8VYNVxvT0sU56kYD9CdqIzZD9/nItlEbqW1X6kKcM DEoHyEqiikOHkWGFslocuWBvRbilNU6YtkyC0vuzG2pe1LNH8JQ174P8r1wzcmbQ o+LeTkDi3zzDOVworcszdi2tgCdId1ZuRNxSbK0Ee9Mfn5Q/28MuBa0LmYu/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUmh1uUsGvA+NZTzZzFhYPeK0/VBYwHwYDVR0j BBgwFoAUceUam2XYoSNROjUPDZn5jWybcuIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZDQ4YmQwNC1mNzg3LTQxNGEtYTUwMS01MTM4YTZkNmIzZTEvMC83MUU1MUE5QjY1 RDhBMTIzNTEzQTM1MEYwRDk5Rjk4RDZDOUI3MkUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzFFNTFBOUI2NUQ4QTEyMzUxM0EzNTBGMEQ5OUY5OEQ2QzlC NzJFMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RkNDhiZDA0LWY3ODctNDE0YS1h NTAxLTUxMzhhNmQ2YjNlMS8wLzMxMzAzMzJlMzEzMDM3MmUzMTM4MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMwMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABna7swDQYJ KoZIhvcNAQELBQADggEBACp9gOr2xahEty6pDbjM4LxnMmQw4j0iz9nbWM9n/uym Y48/SzqIFF9PVZPgrkFM8gDT6wDkSNcclnMJ21v7RGaBmLdTDYBBnxTonzEyUuqo a9imApNU2rwCe3bPvCqKQX3UCLHe2RwGfTB4BU/oz0LkNd/h+x8iwSM7D0DALCY0 usPw7p9+3hWFYVaoTSxs6aH1njp2etx4dsxOxJl9+5pprswnnRb5nrhzfnWwi8Bv ISOj8wv0h2ksWivrUR/g4hTtzvYZejKVDW1MhwO2sLZ4d5oU112whV2HgRDajAlD fl5PjMM+RrQeM/gjOiiTKo0gRZyzSTm87p1Y9cBmyvg= -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org