$ rpki-client -vvf repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130352e302f32342d3234203d3e203633343937.roa File: 3130332e3133342e3130352e302f32342d3234203d3e203633343937.roa (raw, json) Hash identifier: PxZnjWPfJrMlHFV+vFpu4lzDV/NqacyuVyPH6Bygl6s= Subject key identifier: 99:F7:20:6C:D2:EB:24:32:AC:59:14:2F:23:E6:73:87:16:70:75:42 Certificate issuer: /CN=95E800EBFF64709892CB5741D9EDC75EE74E2A6D Certificate serial: 637BB61A8ED5670429773661F3C6653D296AAA14 Authority key identifier: 95:E8:00:EB:FF:64:70:98:92:CB:57:41:D9:ED:C7:5E:E7:4E:2A:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130352e302f32342d3234203d3e203633343937.roa Signing time: Mon 01 Jul 2024 01:05:38 +0000 ROA not before: Mon 01 Jul 2024 01:00:38 +0000 ROA not after: Mon 30 Jun 2025 01:05:38 +0000 asID: 63497 IP address blocks: 103.134.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.crl rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 17:02:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:7b:b6:1a:8e:d5:67:04:29:77:36:61:f3:c6:65:3d:29:6a:aa:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95E800EBFF64709892CB5741D9EDC75EE74E2A6D Validity Not Before: Jul 1 01:00:38 2024 GMT Not After : Jun 30 01:05:38 2025 GMT Subject: CN=99F7206CD2EB2432AC59142F23E6738716707542 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f4:9a:d3:eb:93:77:da:e1:91:d2:cd:85:a7: b5:4d:d9:fe:8d:5c:e8:e9:16:27:b1:b5:5b:d1:71: d7:8a:f8:41:4f:af:19:91:bd:47:7a:15:61:d5:86: ac:fe:65:62:22:75:d1:94:4a:f9:4b:f6:4c:b1:65: 61:9f:87:22:44:fd:bd:30:d8:75:0a:66:7c:19:7d: e4:ca:77:09:82:ed:06:9d:19:57:78:c2:af:0b:36: 89:78:01:1e:31:07:d1:b0:e6:54:10:64:a5:de:a9: b7:e8:79:61:08:40:8f:a8:23:7b:3c:84:60:77:14: e2:8d:f1:d3:85:83:53:7e:76:12:ae:1e:37:a6:7d: e3:44:cb:a4:b5:ac:61:9c:ee:87:78:77:72:b8:9d: 53:ee:76:39:39:c7:2e:da:7d:39:6f:e3:be:95:30: 4b:b9:09:9b:df:a5:c2:ac:aa:df:bb:c0:66:38:18: 7d:bd:7e:fc:4e:fe:fb:dd:ff:c7:eb:a2:d7:a6:df: f7:41:e4:03:5e:2f:62:86:cb:35:4b:c6:cb:0e:f6: 63:8a:77:e0:1f:ad:03:68:bf:53:c8:c5:ab:1c:7f: b2:ac:f7:c3:2d:a7:76:cd:a8:54:8d:72:8c:a0:76: 05:1c:e8:19:65:e5:e1:b7:e9:21:5c:84:19:e7:28: e9:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:F7:20:6C:D2:EB:24:32:AC:59:14:2F:23:E6:73:87:16:70:75:42 X509v3 Authority Key Identifier: keyid:95:E8:00:EB:FF:64:70:98:92:CB:57:41:D9:ED:C7:5E:E7:4E:2A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130352e302f32342d3234203d3e203633343937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.105.0/24 Signature Algorithm: sha256WithRSAEncryption 82:b0:23:6b:c8:56:e2:58:8b:fe:99:19:19:27:bd:ef:49:09: f0:36:4f:53:51:69:33:41:63:33:2d:db:27:4f:7a:4d:43:9c: c4:4e:82:c7:71:76:0e:7a:b2:2c:97:ab:00:68:10:5e:fd:25: 7e:b6:1c:c2:d2:88:2b:51:6d:a9:94:34:0a:62:b2:8a:b0:4c: bc:0f:da:94:50:fb:85:12:0b:27:ad:1c:28:90:a8:97:b0:f7: d1:b7:d1:22:32:14:dc:e0:52:6b:cb:5f:24:54:a6:09:64:c9: b0:32:a3:9a:cf:9d:63:aa:fc:bd:dd:df:b9:bc:83:b9:55:1b: 46:29:e6:89:17:08:fd:71:82:30:ec:77:31:cc:c5:73:cc:03: ca:d8:31:2b:89:c6:ca:2f:bc:df:78:b3:be:e5:8d:4a:c5:04: 54:77:60:45:2c:15:ac:26:0e:14:c9:db:40:7c:a8:f1:11:67: 66:05:79:41:b9:51:df:53:68:d4:2b:a1:53:cd:bd:fb:fc:bf: 89:20:42:5d:90:80:61:17:9e:10:3f:88:4e:eb:c5:06:f9:c0: 20:a5:3b:94:61:bf:32:76:a4:db:27:df:8c:86:ea:ee:08:13: cc:13:bf:6f:40:25:c9:c7:34:b9:21:75:26:38:b2:2f:82:40: 55:6a:86:72 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUY3u2Go7VZwQpdzZh88ZlPSlqqhQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVFODAwRUJGRjY0NzA5ODkyQ0I1NzQxRDlFREM3NUVF NzRFMkE2RDAeFw0yNDA3MDEwMTAwMzhaFw0yNTA2MzAwMTA1MzhaMDMxMTAvBgNV BAMTKDk5RjcyMDZDRDJFQjI0MzJBQzU5MTQyRjIzRTY3Mzg3MTY3MDc1NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl9JrT65N32uGR0s2Fp7VN2f6N XOjpFiextVvRcdeK+EFPrxmRvUd6FWHVhqz+ZWIiddGUSvlL9kyxZWGfhyJE/b0w 2HUKZnwZfeTKdwmC7QadGVd4wq8LNol4AR4xB9Gw5lQQZKXeqbfoeWEIQI+oI3s8 hGB3FOKN8dOFg1N+dhKuHjemfeNEy6S1rGGc7od4d3K4nVPudjk5xy7afTlv476V MEu5CZvfpcKsqt+7wGY4GH29fvxO/vvd/8frotem3/dB5ANeL2KGyzVLxssO9mOK d+AfrQNov1PIxascf7Ks98Mtp3bNqFSNcoygdgUc6Bll5eG36SFchBnnKOlVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmfcgbNLrJDKsWRQvI+ZzhxZwdUIwHwYDVR0j BBgwFoAUlegA6/9kcJiSy1dB2e3HXudOKm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NmI1YWUxZS1iZTY2LTRhMzAtYTk0OC03ZDQ3OGMyMmVhMmIvMC85NUU4MDBFQkZG NjQ3MDk4OTJDQjU3NDFEOUVEQzc1RUU3NEUyQTZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVFODAwRUJGRjY0NzA5ODkyQ0I1NzQxRDlFREM3NUVFNzRF MkE2RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y2YjVhZTFlLWJlNjYtNGEzMC1h OTQ4LTdkNDc4YzIyZWEyYi8wLzMxMzAzMzJlMzEzMzM0MmUzMTMwMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzQzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4ZpMA0GCSqG SIb3DQEBCwUAA4IBAQCCsCNryFbiWIv+mRkZJ73vSQnwNk9TUWkzQWMzLdsnT3pN Q5zEToLHcXYOerIsl6sAaBBe/SV+thzC0ogrUW2plDQKYrKKsEy8D9qUUPuFEgsn rRwokKiXsPfRt9EiMhTc4FJry18kVKYJZMmwMqOaz51jqvy93d+5vIO5VRtGKeaJ Fwj9cYIw7HcxzMVzzAPK2DEricbKL7zfeLO+5Y1KxQRUd2BFLBWsJg4UydtAfKjx EWdmBXlBuVHfU2jUK6FTzb37/L+JIEJdkIBhF54QP4hO68UG+cAgpTuUYb8ydqTb J9+MhuruCBPME79vQCXJxzS5IXUmOLIvgkBVaoZy -----END CERTIFICATE-----Generated at Fri Nov 22 09:39:13 2024 by rpki-client on console-ams.rpki-client.org