$ rpki-client -vvf repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/3130332e3138312e3235302e302f32332d3233203d3e2039333431.roa File: 3130332e3138312e3235302e302f32332d3233203d3e2039333431.roa (raw, json) Hash identifier: mfwXsZmCbUkzYR6V2u+CCTtQ5qYSBubzVx9aBjBsHvU= Subject key identifier: D7:C3:D9:52:EC:74:F2:27:70:6E:2C:A4:7C:31:1F:3C:81:07:4A:4D Certificate issuer: /CN=2E2D926932C5C7E296931D881908A4BB1E98EB6D Certificate serial: 192AF090A168A58B18AA64BC37202A76B048FE56 Authority key identifier: 2E:2D:92:69:32:C5:C7:E2:96:93:1D:88:19:08:A4:BB:1E:98:EB:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E2D926932C5C7E296931D881908A4BB1E98EB6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/3130332e3138312e3235302e302f32332d3233203d3e2039333431.roa Signing time: Wed 10 Jan 2024 18:00:00 +0000 ROA not before: Wed 10 Jan 2024 17:55:00 +0000 ROA not after: Wed 08 Jan 2025 18:00:00 +0000 asID: 9341 IP address blocks: 103.181.250.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/2E2D926932C5C7E296931D881908A4BB1E98EB6D.crl rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/2E2D926932C5C7E296931D881908A4BB1E98EB6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E2D926932C5C7E296931D881908A4BB1E98EB6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:2a:f0:90:a1:68:a5:8b:18:aa:64:bc:37:20:2a:76:b0:48:fe:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2E2D926932C5C7E296931D881908A4BB1E98EB6D Validity Not Before: Jan 10 17:55:00 2024 GMT Not After : Jan 8 18:00:00 2025 GMT Subject: CN=D7C3D952EC74F227706E2CA47C311F3C81074A4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:12:af:24:44:74:38:96:0d:a3:78:27:99:16: 59:10:32:b0:d5:c7:5b:15:8a:5b:8c:a2:20:9e:30: 85:37:47:19:7e:d7:1a:e9:9b:0b:c5:9e:75:b2:ec: 96:3a:52:f1:f6:9a:ac:ca:37:2b:cb:e0:9d:f1:14: 8b:b1:08:26:30:9b:53:ed:da:ec:86:ec:cb:5f:c0: d8:98:49:79:d3:d5:5b:fe:a2:16:56:97:93:48:fc: 35:2d:3f:c2:9a:c3:a2:17:ac:c4:92:65:bf:7d:68: f7:b9:4e:f2:54:db:07:87:1c:f0:36:42:d0:43:9c: 76:31:a6:f9:e9:fd:b8:b5:f1:29:14:44:eb:96:0c: 92:89:af:88:38:83:2f:cd:80:3b:4f:8d:7b:77:05: 03:f3:b8:4c:1d:5e:2a:76:c7:c0:de:69:0f:c4:a3: 19:06:18:e9:1c:79:00:e8:24:74:ff:92:0f:26:cd: 40:ee:2d:ed:30:df:ca:e6:cf:d1:bb:73:29:7c:6c: db:43:b3:9d:46:58:4a:f5:ff:84:7c:0a:c3:b5:a7: 65:f2:3d:58:ee:fa:2f:2e:f8:f0:2b:82:fc:87:a3: 31:34:f8:f5:00:d1:07:cc:81:a2:80:ab:13:f6:76: 18:c1:aa:21:e2:7e:fa:b2:c7:a9:5a:83:53:b9:22: c3:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:C3:D9:52:EC:74:F2:27:70:6E:2C:A4:7C:31:1F:3C:81:07:4A:4D X509v3 Authority Key Identifier: keyid:2E:2D:92:69:32:C5:C7:E2:96:93:1D:88:19:08:A4:BB:1E:98:EB:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/2E2D926932C5C7E296931D881908A4BB1E98EB6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E2D926932C5C7E296931D881908A4BB1E98EB6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/3130332e3138312e3235302e302f32332d3233203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.181.250.0/23 Signature Algorithm: sha256WithRSAEncryption 9e:8d:16:d1:c6:be:0e:3c:f8:c4:2e:eb:4c:fd:95:93:23:f1: c6:54:a5:d0:d2:c4:02:cd:30:5c:1a:f0:e9:77:83:a6:c3:6c: 31:04:0c:1c:24:9c:80:5a:17:29:f5:81:d3:11:7c:a9:b4:f4: 22:5d:c1:d7:ec:0a:bc:b8:24:40:1c:ca:15:3a:92:38:9a:85: 1c:1e:a5:c6:ad:71:fd:e5:99:09:41:59:61:44:28:0d:01:de: e8:f3:cd:ac:17:02:b1:ff:37:1f:38:3d:82:45:58:e6:57:40: 6c:cf:87:5d:d6:1d:1d:d9:47:a4:87:a0:6d:1a:ee:a5:0b:06: 2e:ae:15:f7:62:b4:6e:96:11:0f:b0:a3:91:6e:42:86:0c:35: a2:5f:51:5b:a6:d9:ec:6e:41:04:53:da:10:c6:b5:75:52:5e: 9d:07:82:25:3f:73:78:fa:93:6b:af:79:d5:a7:f0:a6:e3:a6: 9c:2b:d7:aa:5d:2b:c4:5d:3b:2a:cb:d8:32:25:39:4d:7a:66: 13:68:c3:55:34:ad:62:4c:17:be:3d:12:3a:35:7a:7f:55:4c: d1:fc:12:7b:57:94:6d:d7:81:f1:e2:da:d1:ef:c1:4a:10:ce: 90:55:c2:14:81:42:6e:6b:72:1a:64:cd:be:2b:79:ae:13:80: 3f:f9:4d:d2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGSrwkKFopYsYqmS8NyAqdrBI/lYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkUyRDkyNjkzMkM1QzdFMjk2OTMxRDg4MTkwOEE0QkIx RTk4RUI2RDAeFw0yNDAxMTAxNzU1MDBaFw0yNTAxMDgxODAwMDBaMDMxMTAvBgNV BAMTKEQ3QzNEOTUyRUM3NEYyMjc3MDZFMkNBNDdDMzExRjNDODEwNzRBNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPEq8kRHQ4lg2jeCeZFlkQMrDV x1sViluMoiCeMIU3Rxl+1xrpmwvFnnWy7JY6UvH2mqzKNyvL4J3xFIuxCCYwm1Pt 2uyG7MtfwNiYSXnT1Vv+ohZWl5NI/DUtP8Kaw6IXrMSSZb99aPe5TvJU2weHHPA2 QtBDnHYxpvnp/bi18SkUROuWDJKJr4g4gy/NgDtPjXt3BQPzuEwdXip2x8DeaQ/E oxkGGOkceQDoJHT/kg8mzUDuLe0w38rmz9G7cyl8bNtDs51GWEr1/4R8CsO1p2Xy PVju+i8u+PArgvyHozE0+PUA0QfMgaKAqxP2dhjBqiHifvqyx6lag1O5IsMLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU18PZUux08idwbiykfDEfPIEHSk0wHwYDVR0j BBgwFoAULi2SaTLFx+KWkx2IGQikux6Y620wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmE1ODllZi05ZjNkLTQzYmMtYmEzMC1mYTMyNmI3MWY3ODcvMC8yRTJEOTI2OTMy QzVDN0UyOTY5MzFEODgxOTA4QTRCQjFFOThFQjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkUyRDkyNjkzMkM1QzdFMjk2OTMxRDg4MTkwOEE0QkIxRTk4 RUI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmYTU4OWVmLTlmM2QtNDNiYy1i YTMwLWZhMzI2YjcxZjc4Ny8wLzMxMzAzMzJlMzEzODMxMmUzMjM1MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWe1+jANBgkqhkiG 9w0BAQsFAAOCAQEAno0W0ca+Djz4xC7rTP2VkyPxxlSl0NLEAs0wXBrw6XeDpsNs MQQMHCScgFoXKfWB0xF8qbT0Il3B1+wKvLgkQBzKFTqSOJqFHB6lxq1x/eWZCUFZ YUQoDQHe6PPNrBcCsf83Hzg9gkVY5ldAbM+HXdYdHdlHpIegbRrupQsGLq4V92K0 bpYRD7CjkW5Chgw1ol9RW6bZ7G5BBFPaEMa1dVJenQeCJT9zePqTa6951afwpuOm nCvXql0rxF07KsvYMiU5TXpmE2jDVTStYkwXvj0SOjV6f1VM0fwSe1eUbdeB8eLa 0e/BShDOkFXCFIFCbmtyGmTNvit5rhOAP/lN0g== -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:55 2024 by rpki-client on console-fra.rpki-client.org