$ rpki-client -vvf repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/3130332e3138312e3235312e302f32342d3234203d3e2039333431.roa File: 3130332e3138312e3235312e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: wOppgCdZfAA1CxSz2E8uCn2hQ2fH4CDWVcBwpDFJZi8= Subject key identifier: 35:A7:B6:45:FC:F9:77:EE:11:AA:5F:17:9D:99:C3:F5:92:0B:9C:7B Certificate issuer: /CN=2E2D926932C5C7E296931D881908A4BB1E98EB6D Certificate serial: 2EAF29D761762674C83FD899DE5B48E1A33A7B66 Authority key identifier: 2E:2D:92:69:32:C5:C7:E2:96:93:1D:88:19:08:A4:BB:1E:98:EB:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E2D926932C5C7E296931D881908A4BB1E98EB6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/3130332e3138312e3235312e302f32342d3234203d3e2039333431.roa Signing time: Wed 10 Jan 2024 18:00:00 +0000 ROA not before: Wed 10 Jan 2024 17:55:00 +0000 ROA not after: Wed 08 Jan 2025 18:00:00 +0000 asID: 9341 IP address blocks: 103.181.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/2E2D926932C5C7E296931D881908A4BB1E98EB6D.crl rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/2E2D926932C5C7E296931D881908A4BB1E98EB6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E2D926932C5C7E296931D881908A4BB1E98EB6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:af:29:d7:61:76:26:74:c8:3f:d8:99:de:5b:48:e1:a3:3a:7b:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2E2D926932C5C7E296931D881908A4BB1E98EB6D Validity Not Before: Jan 10 17:55:00 2024 GMT Not After : Jan 8 18:00:00 2025 GMT Subject: CN=35A7B645FCF977EE11AA5F179D99C3F5920B9C7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:cb:51:40:70:09:5b:e2:63:f3:d5:06:cb:ea: e3:42:89:b9:7c:e6:a2:b5:d8:78:61:dd:97:fc:98: c1:7d:03:0f:77:aa:f5:f4:ba:ce:34:21:23:95:37: 52:d6:34:24:b3:70:30:56:61:30:4d:a5:0f:97:d9: 48:79:33:90:2b:a8:07:06:14:03:a3:9d:6e:be:2f: e9:30:8b:26:da:45:6c:aa:ed:47:45:32:65:8f:22: 07:5b:40:cb:7c:73:12:f8:fb:f0:a3:55:e6:e9:94: 72:11:dc:20:ba:4d:34:31:1d:a4:75:83:d9:13:51: 80:4d:10:0e:b4:42:99:5b:32:c3:60:99:74:b9:91: 15:22:bb:7a:9e:65:f4:7a:0a:ec:1d:0e:6e:ec:83: ed:f7:21:93:5d:f2:62:7d:9c:8b:31:74:50:14:48: 45:72:0a:ca:a3:4c:0a:2b:c7:d1:09:99:d2:ab:33: 15:96:4e:bf:cb:8c:44:e8:c1:06:74:03:34:6d:f0: d0:86:63:d9:26:34:b8:da:75:93:e8:8e:05:68:11: 03:bd:c4:aa:3b:ef:b1:a4:35:d9:29:c6:b6:f2:3d: 3a:98:27:fb:99:50:ae:3a:91:52:ae:26:ba:86:90: 7b:83:a6:36:5e:35:a6:06:88:f3:82:f9:82:c7:91: 59:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:A7:B6:45:FC:F9:77:EE:11:AA:5F:17:9D:99:C3:F5:92:0B:9C:7B X509v3 Authority Key Identifier: keyid:2E:2D:92:69:32:C5:C7:E2:96:93:1D:88:19:08:A4:BB:1E:98:EB:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/2E2D926932C5C7E296931D881908A4BB1E98EB6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E2D926932C5C7E296931D881908A4BB1E98EB6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/3130332e3138312e3235312e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.181.251.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:5e:43:c8:9c:5e:81:38:c1:32:75:32:c6:81:84:bc:14:09: de:3e:9f:75:ae:41:8a:5f:32:6b:e7:3d:c1:bc:b1:ad:42:60: 8c:b3:dc:69:f6:5a:a0:41:e8:7d:b4:12:77:04:fe:04:6f:b6: c8:62:fc:7e:1c:52:41:ce:02:b6:1c:b5:27:bd:f7:ee:b4:6a: be:34:88:74:3d:c4:06:77:b5:37:01:38:8e:cc:88:68:22:4c: 8d:3f:5a:cb:7f:af:4b:51:78:1b:e2:1c:9e:ac:4d:49:67:e1: b5:0a:f3:34:9d:b0:ff:23:4f:61:60:16:15:95:36:39:a3:95: aa:5d:4b:cf:35:e0:59:a7:6a:91:29:57:de:a3:89:fa:1f:42: a5:a8:14:49:32:05:77:70:74:0e:6c:fb:f9:6f:63:b2:83:4b: 15:6f:97:8f:4f:1d:93:3f:32:1b:57:40:84:9b:c0:8d:ab:01: b4:2e:e2:c7:c7:d8:ac:4a:17:39:7a:11:4e:cd:71:dc:db:5e: 28:d3:49:79:08:b7:e5:2b:ea:ec:2e:69:24:92:e2:18:8f:84: 92:cf:79:63:6b:c5:9d:f8:04:0c:ce:87:ba:60:42:83:9b:c4: 4a:2e:ad:29:d3:20:23:fd:d3:b9:1c:68:a5:e6:73:2b:be:c9: b7:6d:2d:aa -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULq8p12F2JnTIP9iZ3ltI4aM6e2YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkUyRDkyNjkzMkM1QzdFMjk2OTMxRDg4MTkwOEE0QkIx RTk4RUI2RDAeFw0yNDAxMTAxNzU1MDBaFw0yNTAxMDgxODAwMDBaMDMxMTAvBgNV BAMTKDM1QTdCNjQ1RkNGOTc3RUUxMUFBNUYxNzlEOTlDM0Y1OTIwQjlDN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRy1FAcAlb4mPz1QbL6uNCibl8 5qK12Hhh3Zf8mMF9Aw93qvX0us40ISOVN1LWNCSzcDBWYTBNpQ+X2Uh5M5ArqAcG FAOjnW6+L+kwiybaRWyq7UdFMmWPIgdbQMt8cxL4+/CjVebplHIR3CC6TTQxHaR1 g9kTUYBNEA60QplbMsNgmXS5kRUiu3qeZfR6CuwdDm7sg+33IZNd8mJ9nIsxdFAU SEVyCsqjTAorx9EJmdKrMxWWTr/LjETowQZ0AzRt8NCGY9kmNLjadZPojgVoEQO9 xKo777GkNdkpxrbyPTqYJ/uZUK46kVKuJrqGkHuDpjZeNaYGiPOC+YLHkVlTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNae2Rfz5d+4Rql8XnZnD9ZILnHswHwYDVR0j BBgwFoAULi2SaTLFx+KWkx2IGQikux6Y620wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmE1ODllZi05ZjNkLTQzYmMtYmEzMC1mYTMyNmI3MWY3ODcvMC8yRTJEOTI2OTMy QzVDN0UyOTY5MzFEODgxOTA4QTRCQjFFOThFQjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkUyRDkyNjkzMkM1QzdFMjk2OTMxRDg4MTkwOEE0QkIxRTk4 RUI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmYTU4OWVmLTlmM2QtNDNiYy1i YTMwLWZhMzI2YjcxZjc4Ny8wLzMxMzAzMzJlMzEzODMxMmUzMjM1MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGe1+zANBgkqhkiG 9w0BAQsFAAOCAQEAX15DyJxegTjBMnUyxoGEvBQJ3j6fda5Bil8ya+c9wbyxrUJg jLPcafZaoEHofbQSdwT+BG+2yGL8fhxSQc4Cthy1J7337rRqvjSIdD3EBne1NwE4 jsyIaCJMjT9ay3+vS1F4G+IcnqxNSWfhtQrzNJ2w/yNPYWAWFZU2OaOVql1LzzXg WadqkSlX3qOJ+h9CpagUSTIFd3B0Dmz7+W9jsoNLFW+Xj08dkz8yG1dAhJvAjasB tC7ix8fYrEoXOXoRTs1x3NteKNNJeQi35Svq7C5pJJLiGI+Eks95Y2vFnfgEDM6H umBCg5vESi6tKdMgI/3TuRxopeZzK77Jt20tqg== -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:55 2024 by rpki-client on console-fra.rpki-client.org