$ rpki-client -vvf repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31362e302f32342d3234203d3e20313338303837.roa File: 3130332e3132352e31362e302f32342d3234203d3e20313338303837.roa (raw, json) Hash identifier: BEhpwpF70mjChRFPsier4txZQgVORlmMjII5mo8kK/Y= Subject key identifier: C7:E1:94:6F:5B:97:89:5D:1B:6C:4C:6E:57:EC:32:D8:96:A1:70:D6 Certificate issuer: /CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB Certificate serial: 72C50561F6D4650078AAE58046AC8BA84100361A Authority key identifier: B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31362e302f32342d3234203d3e20313338303837.roa Signing time: Fri 15 Nov 2024 10:00:01 +0000 ROA not before: Fri 15 Nov 2024 09:55:01 +0000 ROA not after: Fri 14 Nov 2025 10:00:01 +0000 asID: 138087 IP address blocks: 103.125.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.crl rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:c5:05:61:f6:d4:65:00:78:aa:e5:80:46:ac:8b:a8:41:00:36:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB Validity Not Before: Nov 15 09:55:01 2024 GMT Not After : Nov 14 10:00:01 2025 GMT Subject: CN=C7E1946F5B97895D1B6C4C6E57EC32D896A170D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:5b:eb:a7:3b:c4:99:60:b9:d2:2a:42:c6:c7: 8d:3b:5c:a8:59:d9:6f:6f:4e:79:42:1e:9d:9a:b7: 06:38:05:2b:80:6c:53:09:f6:66:e1:41:c1:0d:40: 88:15:12:0e:ac:ae:e2:9c:29:50:9a:f8:0f:f3:6a: b2:7a:fd:02:8c:ed:5a:af:7c:04:89:41:b8:1a:47: 74:db:3a:d7:5e:86:f2:8d:67:05:88:74:80:30:78: b2:dc:5d:83:d8:08:d9:79:aa:1f:6d:e2:dd:52:6d: cd:ce:22:a4:a5:8f:95:86:81:25:cd:fa:33:d8:6a: 18:ed:02:87:1e:21:6f:a0:2f:e8:26:42:df:3e:3e: be:a6:a1:90:0b:ab:88:8b:c0:ad:54:1b:c3:09:10: 06:64:9e:13:01:b3:1b:f7:a7:27:c6:c5:03:0c:32: dc:84:0f:7f:98:55:6c:4e:32:f8:30:2c:f8:30:d2: 05:ee:66:07:23:cd:28:fa:f4:d3:47:e1:46:d8:d0: 0e:b6:d4:a0:f0:40:a9:bf:c7:6c:8e:8f:ba:3e:81: c2:f9:75:64:5b:1a:25:32:e0:12:31:31:75:93:73: af:58:6d:1b:49:c4:a1:53:0a:ae:b0:bf:97:4f:01: 57:2b:70:b2:1c:f3:07:ec:d3:cd:27:0b:13:a5:e7: ed:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:E1:94:6F:5B:97:89:5D:1B:6C:4C:6E:57:EC:32:D8:96:A1:70:D6 X509v3 Authority Key Identifier: keyid:B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31362e302f32342d3234203d3e20313338303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.16.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:e0:e8:61:f0:77:69:1f:ae:48:eb:1b:9f:d0:34:5c:d5:41: dd:0d:80:0c:52:f6:4f:c0:a6:8a:47:e2:e0:46:35:07:0e:b2: 0c:74:d5:bc:23:dd:ca:ce:fc:69:0c:73:fd:f3:6b:01:b7:d7: 4f:fd:00:24:4d:10:56:ba:ac:b7:5b:18:a1:a2:27:f4:a9:61: 97:1e:fc:96:d7:b8:25:71:bc:9b:04:8e:02:78:49:48:6d:68: 96:0d:4b:62:bc:83:db:08:13:2e:c4:f3:d4:e1:0b:92:6d:e5: 7b:71:8c:64:b1:ee:21:51:30:8e:bf:65:69:fd:32:14:75:3c: ce:7f:f7:35:60:8a:97:29:68:1e:08:ad:bc:90:6a:c3:89:4e: 54:5f:4f:d1:f6:41:41:f0:bc:76:a5:54:8a:54:d4:2a:47:6c: fc:8b:d9:49:e7:ae:85:d7:09:23:0d:54:cc:1f:6d:69:98:bb: 0e:bb:b7:0a:30:41:6b:6c:a2:ba:26:2c:95:a5:f1:67:4b:8d: 9f:b3:4d:c8:d6:4a:be:64:27:bb:2e:65:93:b3:b7:75:79:1a: 55:99:3d:17:a9:4c:3c:ab:9a:e9:09:84:3b:d1:b1:0c:70:5e: 2f:ba:4c:2a:cb:b7:28:56:a4:cc:50:c9:a0:95:0c:60:aa:e8: ce:87:f7:93 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcsUFYfbUZQB4quWARqyLqEEANhowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNBOTY4NkIxRTk1RENCNjg3NzJBREE1NUJCMTM4QUU0 RDBFMTREQjAeFw0yNDExMTUwOTU1MDFaFw0yNTExMTQxMDAwMDFaMDMxMTAvBgNV BAMTKEM3RTE5NDZGNUI5Nzg5NUQxQjZDNEM2RTU3RUMzMkQ4OTZBMTcwRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbW+unO8SZYLnSKkLGx407XKhZ 2W9vTnlCHp2atwY4BSuAbFMJ9mbhQcENQIgVEg6sruKcKVCa+A/zarJ6/QKM7Vqv fASJQbgaR3TbOtdehvKNZwWIdIAweLLcXYPYCNl5qh9t4t1Sbc3OIqSlj5WGgSXN +jPYahjtAoceIW+gL+gmQt8+Pr6moZALq4iLwK1UG8MJEAZknhMBsxv3pyfGxQMM MtyED3+YVWxOMvgwLPgw0gXuZgcjzSj69NNH4UbY0A621KDwQKm/x2yOj7o+gcL5 dWRbGiUy4BIxMXWTc69YbRtJxKFTCq6wv5dPAVcrcLIc8wfs080nCxOl5+0DAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUx+GUb1uXiV0bbExuV+wy2JahcNYwHwYDVR0j BBgwFoAUs6loax6V3LaHcq2lW7E4rk0OFNswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NThkNmRjYS02ZDdiLTQ4MTEtODYyYi0wZGM1ZDU3ZmEyZDkvMC9CM0E5Njg2QjFF OTVEQ0I2ODc3MkFEQTU1QkIxMzhBRTREMEUxNERCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjNBOTY4NkIxRTk1RENCNjg3NzJBREE1NUJCMTM4QUU0RDBF MTREQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1OGQ2ZGNhLTZkN2ItNDgxMS04 NjJiLTBkYzVkNTdmYTJkOS8wLzMxMzAzMzJlMzEzMjM1MmUzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ30QMA0GCSqG SIb3DQEBCwUAA4IBAQBs4Ohh8HdpH65I6xuf0DRc1UHdDYAMUvZPwKaKR+LgRjUH DrIMdNW8I93KzvxpDHP982sBt9dP/QAkTRBWuqy3Wxihoif0qWGXHvyW17glcbyb BI4CeElIbWiWDUtivIPbCBMuxPPU4QuSbeV7cYxkse4hUTCOv2Vp/TIUdTzOf/c1 YIqXKWgeCK28kGrDiU5UX0/R9kFB8Lx2pVSKVNQqR2z8i9lJ566F1wkjDVTMH21p mLsOu7cKMEFrbKK6JiyVpfFnS42fs03I1kq+ZCe7LmWTs7d1eRpVmT0XqUw8q5rp CYQ70bEMcF4vukwqy7coVqTMUMmglQxgqujOh/eT -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:58 2024 by rpki-client on console-fra.rpki-client.org