$ rpki-client -vvf repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3130332e31362e3139392e302f32342d3234203d3e20313331373735.roa File: 3130332e31362e3139392e302f32342d3234203d3e20313331373735.roa (raw, json) Hash identifier: m8yfZv2/HMJ1D1s0Pzr8Lrvzs+OL5Wu7t52MYw8KsAE= Subject key identifier: C5:F3:F9:50:D7:73:EA:89:82:A4:E6:F4:C7:97:57:3F:19:FC:59:A2 Certificate issuer: /CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Certificate serial: 2D7C0D33C86D8A7B4748F1FF67241816C9B2AF94 Authority key identifier: 49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3130332e31362e3139392e302f32342d3234203d3e20313331373735.roa Signing time: Mon 01 Jul 2024 01:03:47 +0000 ROA not before: Mon 01 Jul 2024 00:58:47 +0000 ROA not after: Mon 30 Jun 2025 01:03:47 +0000 asID: 131775 IP address blocks: 103.16.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 08:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:7c:0d:33:c8:6d:8a:7b:47:48:f1:ff:67:24:18:16:c9:b2:af:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Validity Not Before: Jul 1 00:58:47 2024 GMT Not After : Jun 30 01:03:47 2025 GMT Subject: CN=C5F3F950D773EA8982A4E6F4C797573F19FC59A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:8e:5d:a4:5b:5b:7a:4a:41:7f:2c:2e:60:e4: ea:22:cf:a3:21:0d:64:7f:f8:0e:d4:52:d3:6d:2d: ce:12:1b:a5:64:90:b8:a8:8f:26:bc:26:02:a0:e9: 82:32:be:ed:20:47:1c:db:53:30:a1:63:79:2e:da: 5f:9a:62:fe:bd:10:c9:c3:55:09:b9:e2:03:e7:39: 1b:b4:8f:c1:13:78:25:6d:58:8b:40:6a:39:73:2f: f2:3d:68:6a:13:dd:0e:ff:ab:a4:e6:65:a5:48:23: 69:94:61:3f:3d:98:08:13:aa:28:a2:46:6a:97:38: 63:4a:a7:ce:53:e8:8d:f7:31:91:5d:50:b2:a8:fa: 3e:41:25:bf:83:f7:e9:b5:23:62:0a:a9:ab:4a:05: bd:35:a9:97:39:43:38:ae:90:44:8b:67:5c:c5:75: 9a:13:2c:b6:28:a7:da:93:4c:5f:42:e6:03:34:9c: b0:74:98:94:8f:c0:69:99:56:96:b4:9a:a0:23:41: 69:8f:ee:cf:3a:b6:82:2e:b1:3a:3c:fd:ed:2f:d6: db:49:48:60:ef:73:36:4d:38:12:a4:50:82:dd:04: d7:2e:6d:0c:25:cd:2a:3d:68:84:69:fe:95:b3:15: 93:5e:d7:df:0d:83:21:24:e8:14:7f:fe:d4:de:d7: 7f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:F3:F9:50:D7:73:EA:89:82:A4:E6:F4:C7:97:57:3F:19:FC:59:A2 X509v3 Authority Key Identifier: keyid:49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3130332e31362e3139392e302f32342d3234203d3e20313331373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.16.199.0/24 Signature Algorithm: sha256WithRSAEncryption 13:fd:9d:09:2b:a0:1c:4f:c4:98:80:69:6f:5c:4b:c9:d4:4b: bc:06:89:77:d2:cf:de:8d:04:c2:fa:06:20:b5:0c:c5:60:74: e4:93:d2:82:0f:27:88:d7:ba:bf:12:08:14:f4:4d:41:bd:be: e8:02:57:75:92:a1:a2:b8:40:42:9a:06:bc:9b:ce:36:cd:69: 21:f8:fc:b8:17:9f:8f:b6:5a:a0:6f:8e:de:93:4a:85:fc:1a: 13:a4:52:01:94:c0:3a:b9:63:ba:5e:70:de:33:24:22:7d:bf: eb:78:54:ee:5a:8d:6a:b8:61:fc:1c:b6:6c:2d:29:6f:7d:ed: 62:a7:f9:8a:c0:f6:b5:8f:ea:41:5a:b2:c7:0b:e8:5b:25:92: 85:43:1b:c6:d3:cb:31:79:16:b0:c0:18:f2:f6:ed:39:8d:2d: 8a:9b:4c:65:ef:68:16:b0:0c:48:fc:5f:06:67:e5:aa:a2:bf: 97:77:e7:43:76:a1:20:ee:cf:e4:cf:80:51:1a:50:29:87:22: 12:49:2a:95:48:c9:2e:63:c3:a6:34:34:8c:d3:76:dd:14:26: db:75:ec:be:c0:af:67:fe:8e:1b:9c:fe:ce:35:0c:62:c7:0e: e0:39:c9:0f:85:0c:2f:59:05:03:4a:3f:c3:1f:1a:43:6b:b4: a6:b7:ff:b5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULXwNM8htintHSPH/ZyQYFsmyr5QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VE NzZCNTA1NDAeFw0yNDA3MDEwMDU4NDdaFw0yNTA2MzAwMTAzNDdaMDMxMTAvBgNV BAMTKEM1RjNGOTUwRDc3M0VBODk4MkE0RTZGNEM3OTc1NzNGMTlGQzU5QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCojl2kW1t6SkF/LC5g5Ooiz6Mh DWR/+A7UUtNtLc4SG6VkkLiojya8JgKg6YIyvu0gRxzbUzChY3ku2l+aYv69EMnD VQm54gPnORu0j8ETeCVtWItAajlzL/I9aGoT3Q7/q6TmZaVII2mUYT89mAgTqiii RmqXOGNKp85T6I33MZFdULKo+j5BJb+D9+m1I2IKqatKBb01qZc5QziukESLZ1zF dZoTLLYop9qTTF9C5gM0nLB0mJSPwGmZVpa0mqAjQWmP7s86toIusTo8/e0v1ttJ SGDvczZNOBKkUILdBNcubQwlzSo9aIRp/pWzFZNe198NgyEk6BR//tTe139DAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxfP5UNdz6omCpOb0x5dXPxn8WaIwHwYDVR0j BBgwFoAUSc3KMIwonWiMZJwjA77LPtdrUFQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZWI5OGNlZC1hZjE4LTRiZmYtYWQ3MS03M2QyYjBjOWQ4YTkvMC80OUNEQ0EzMDhD Mjg5RDY4OEM2NDlDMjMwM0JFQ0IzRUQ3NkI1MDU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDlDRENBMzA4QzI4OUQ2ODhDNjQ5QzIzMDNCRUNCM0VENzZC NTA1NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VlYjk4Y2VkLWFmMTgtNGJmZi1h ZDcxLTczZDJiMGM5ZDhhOS8wLzMxMzAzMzJlMzEzNjJlMzEzOTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxDHMA0GCSqG SIb3DQEBCwUAA4IBAQAT/Z0JK6AcT8SYgGlvXEvJ1Eu8Bol30s/ejQTC+gYgtQzF YHTkk9KCDyeI17q/EggU9E1Bvb7oAld1kqGiuEBCmga8m842zWkh+Py4F5+Ptlqg b47ek0qF/BoTpFIBlMA6uWO6XnDeMyQifb/reFTuWo1quGH8HLZsLSlvfe1ip/mK wPa1j+pBWrLHC+hbJZKFQxvG08sxeRawwBjy9u05jS2Km0xl72gWsAxI/F8GZ+Wq or+Xd+dDdqEg7s/kz4BRGlAphyISSSqVSMkuY8OmNDSM03bdFCbbdey+wK9n/o4b nP7ONQxixw7gOckPhQwvWQUDSj/DHxpDa7Smt/+1 -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:49 2024 by rpki-client on console-ams.rpki-client.org