$ rpki-client -vvf repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/3130332e3137372e31342e302f32332d3233203d3e20313437313338.roa File: 3130332e3137372e31342e302f32332d3233203d3e20313437313338.roa (raw, json) Hash identifier: DIoFMMODPeJKRR848HFTKK/fdrOxDAYVWa0s7laDgyc= Subject key identifier: 7A:8C:D9:29:A6:02:55:F9:16:C0:A8:36:03:77:E1:DA:24:0D:76:A3 Certificate issuer: /CN=FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4 Certificate serial: 18F8970A4583A091E6F055EC65E12467D44684CF Authority key identifier: FF:77:50:7E:6D:1F:0E:0B:6E:B0:11:2E:9C:FB:D1:AF:1C:1F:6D:D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/3130332e3137372e31342e302f32332d3233203d3e20313437313338.roa Signing time: Sun 19 May 2024 18:00:01 +0000 ROA not before: Sun 19 May 2024 17:55:01 +0000 ROA not after: Sun 18 May 2025 18:00:01 +0000 asID: 147138 IP address blocks: 103.177.14.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.crl rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:36:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:f8:97:0a:45:83:a0:91:e6:f0:55:ec:65:e1:24:67:d4:46:84:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4 Validity Not Before: May 19 17:55:01 2024 GMT Not After : May 18 18:00:01 2025 GMT Subject: CN=7A8CD929A60255F916C0A8360377E1DA240D76A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:db:c5:eb:79:af:64:07:8c:9d:75:2d:71:ea: 1b:ae:0d:d5:96:d7:b6:f3:cb:6d:6a:78:17:67:1b: d0:5b:e5:57:53:e5:f3:e6:a4:5e:39:8b:12:ec:e8: da:b4:03:6e:12:b5:da:0a:68:9b:16:3c:80:fa:e3: 00:e9:73:6e:82:49:d2:f1:0d:82:e6:71:6b:3a:cd: 49:61:71:58:16:8f:64:20:53:c9:16:e8:53:ae:35: b9:22:d1:e1:d1:f5:44:9e:73:e6:97:e7:a1:8b:cb: c1:c7:04:aa:17:93:5b:84:18:18:ed:d9:07:ce:21: 5c:b1:ac:71:f9:c9:02:98:27:d7:fa:47:18:31:ea: 2c:15:3c:d4:b6:d9:67:c6:fc:9b:ae:e5:c9:b0:dc: 16:8a:cd:b1:06:ad:23:9f:57:95:2d:7b:d0:7b:a0: 57:4c:1b:6d:cd:bb:1c:b1:eb:1f:29:f0:76:ba:4d: 15:e7:6e:0e:86:d0:e3:a1:c8:53:7e:40:44:c8:03: a8:9c:aa:c4:19:3b:7c:c0:e1:9b:b6:db:2f:44:0a: d8:b2:fa:c2:43:89:3f:56:4a:56:cd:c2:df:5c:22: 62:1d:2c:ca:ff:e1:dd:46:ef:ce:4e:b9:08:f2:1c: c8:b3:08:96:75:21:39:61:b6:fd:dd:aa:89:e3:08: 9b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:8C:D9:29:A6:02:55:F9:16:C0:A8:36:03:77:E1:DA:24:0D:76:A3 X509v3 Authority Key Identifier: keyid:FF:77:50:7E:6D:1F:0E:0B:6E:B0:11:2E:9C:FB:D1:AF:1C:1F:6D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/3130332e3137372e31342e302f32332d3233203d3e20313437313338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.14.0/23 Signature Algorithm: sha256WithRSAEncryption b7:3a:4b:5d:c9:b1:f4:f3:9c:77:5b:2d:29:d9:d6:f1:bc:e3: c4:df:53:1b:38:fc:e6:e6:77:cf:82:ea:6d:77:3a:76:75:ab: 5f:67:41:4a:cd:3f:34:19:2b:d1:f3:f1:31:57:b2:e3:f4:4e: 3e:26:3d:b6:d3:b2:3c:7c:d7:07:eb:c9:29:72:d0:e8:67:05: 1c:a1:38:1b:66:9a:81:38:1e:10:07:c2:3f:48:c9:43:64:2c: 0f:b8:7b:7a:d0:1a:6b:07:48:ce:bb:1b:6e:e5:12:78:07:76: a3:3c:69:e6:57:bd:c4:c5:70:f3:c1:e8:4d:5d:b6:f8:24:38: 1f:4a:f0:5e:11:3b:25:e2:02:90:b3:62:4e:28:0a:e9:21:8e: ff:9c:1c:53:ad:39:65:f9:3e:02:0d:da:7f:ed:05:f7:ff:32: 65:0e:b0:b0:61:93:1b:33:4c:23:ed:37:34:bb:7a:e6:c5:6a: 25:e6:ee:18:30:e4:d0:54:b6:ed:69:f5:91:7a:c7:45:f0:22: e1:bb:fb:68:20:55:d4:3d:28:f9:4e:9c:1a:2b:b3:45:b6:15: ff:d0:64:55:73:08:d3:5a:10:8c:02:58:1f:0e:b9:60:71:87: 4e:d0:bd:33:0d:12:aa:9c:9b:16:5f:d9:3c:6c:48:2f:44:6e: f2:1a:6a:8d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGPiXCkWDoJHm8FXsZeEkZ9RGhM8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkY3NzUwN0U2RDFGMEUwQjZFQjAxMTJFOUNGQkQxQUYx QzFGNkRENDAeFw0yNDA1MTkxNzU1MDFaFw0yNTA1MTgxODAwMDFaMDMxMTAvBgNV BAMTKDdBOENEOTI5QTYwMjU1RjkxNkMwQTgzNjAzNzdFMURBMjQwRDc2QTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC028Xrea9kB4yddS1x6huuDdWW 17bzy21qeBdnG9Bb5VdT5fPmpF45ixLs6Nq0A24StdoKaJsWPID64wDpc26CSdLx DYLmcWs6zUlhcVgWj2QgU8kW6FOuNbki0eHR9USec+aX56GLy8HHBKoXk1uEGBjt 2QfOIVyxrHH5yQKYJ9f6Rxgx6iwVPNS22WfG/Juu5cmw3BaKzbEGrSOfV5Ute9B7 oFdMG23Nuxyx6x8p8Ha6TRXnbg6G0OOhyFN+QETIA6icqsQZO3zA4Zu22y9ECtiy +sJDiT9WSlbNwt9cImIdLMr/4d1G785OuQjyHMizCJZ1ITlhtv3dqonjCJvXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUeozZKaYCVfkWwKg2A3fh2iQNdqMwHwYDVR0j BBgwFoAU/3dQfm0fDgtusBEunPvRrxwfbdQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmUwNDAzOC1hMWI2LTQzMmMtODU0Yi1jYzZlOGNmMzJlMDYvMC9GRjc3NTA3RTZE MUYwRTBCNkVCMDExMkU5Q0ZCRDFBRjFDMUY2REQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkY3NzUwN0U2RDFGMEUwQjZFQjAxMTJFOUNGQkQxQUYxQzFG NkRENC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZiZTA0MDM4LWExYjYtNDMyYy04 NTRiLWNjNmU4Y2YzMmUwNi8wLzMxMzAzMzJlMzEzNzM3MmUzMTM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDM3MzEzMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7EOMA0GCSqG SIb3DQEBCwUAA4IBAQC3OktdybH085x3Wy0p2dbxvOPE31MbOPzm5nfPguptdzp2 datfZ0FKzT80GSvR8/ExV7Lj9E4+Jj2207I8fNcH68kpctDoZwUcoTgbZpqBOB4Q B8I/SMlDZCwPuHt60BprB0jOuxtu5RJ4B3ajPGnmV73ExXDzwehNXbb4JDgfSvBe ETsl4gKQs2JOKArpIY7/nBxTrTll+T4CDdp/7QX3/zJlDrCwYZMbM0wj7Tc0u3rm xWol5u4YMOTQVLbtafWResdF8CLhu/toIFXUPSj5TpwaK7NFthX/0GRVcwjTWhCM AlgfDrlgcYdO0L0zDRKqnJsWX9k8bEgvRG7yGmqN -----END CERTIFICATE-----Generated at Mon Nov 25 09:00:39 2024 by rpki-client on console-fra.rpki-client.org