$ rpki-client -vvf repo-rpki.idnic.net/repo/0299e6f0-f23c-41ff-b67c-41af051339d1/0/3130332e3133352e312e302f32342d3234203d3e203338333230.roa File: 3130332e3133352e312e302f32342d3234203d3e203338333230.roa (raw, json) Hash identifier: j+xMG0Mja1vgbHDmB6Mk1vqe3c5PuIR+QXfVG/S4zas= Subject key identifier: 30:D2:82:09:CB:F4:A7:5C:7D:64:64:04:53:14:11:4F:A4:45:56:D5 Certificate issuer: /CN=3C3C868A5674B425FAE567426BCB238E23AE20AC Certificate serial: 6C93191792E3ECE53B409D33BE701CBD886CD160 Authority key identifier: 3C:3C:86:8A:56:74:B4:25:FA:E5:67:42:6B:CB:23:8E:23:AE:20:AC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C3C868A5674B425FAE567426BCB238E23AE20AC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0299e6f0-f23c-41ff-b67c-41af051339d1/0/3130332e3133352e312e302f32342d3234203d3e203338333230.roa Signing time: Mon 05 Aug 2024 03:01:46 +0000 ROA not before: Mon 05 Aug 2024 02:56:46 +0000 ROA not after: Mon 04 Aug 2025 03:01:46 +0000 asID: 38320 IP address blocks: 103.135.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0299e6f0-f23c-41ff-b67c-41af051339d1/0/3C3C868A5674B425FAE567426BCB238E23AE20AC.crl rsync://repo-rpki.idnic.net/repo/0299e6f0-f23c-41ff-b67c-41af051339d1/0/3C3C868A5674B425FAE567426BCB238E23AE20AC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C3C868A5674B425FAE567426BCB238E23AE20AC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:93:19:17:92:e3:ec:e5:3b:40:9d:33:be:70:1c:bd:88:6c:d1:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3C3C868A5674B425FAE567426BCB238E23AE20AC Validity Not Before: Aug 5 02:56:46 2024 GMT Not After : Aug 4 03:01:46 2025 GMT Subject: CN=30D28209CBF4A75C7D6464045314114FA44556D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:29:d3:c4:c0:d3:47:ec:bb:8d:4d:e8:9d:de: e5:0e:6b:d4:c6:73:34:e8:4c:59:26:69:47:93:e5: 7f:66:be:54:bd:8a:b5:0c:de:65:6b:84:e3:3b:84: ef:eb:b1:32:0f:0e:15:08:39:01:6d:98:47:d4:f8: 51:af:fb:6e:6e:e9:3d:e1:a1:80:45:89:aa:69:32: 73:9f:9c:ce:8f:66:b8:0e:15:48:50:09:8e:ad:67: f0:05:98:1f:f8:aa:a2:0b:78:5f:22:30:82:ab:36: d7:13:12:2a:8f:de:71:f7:73:21:e7:74:62:45:a8: e8:de:c4:23:f4:64:38:2f:75:e1:3f:d5:41:53:ab: 3a:f2:1c:55:98:c0:39:e3:25:27:2f:76:34:e5:9f: b3:61:14:df:26:55:09:ea:13:2e:c6:8f:c9:18:be: 76:97:2f:e0:6f:40:44:c3:ff:81:14:d7:a3:72:fa: 56:07:95:7c:94:6a:6a:05:6d:8e:65:48:b4:86:1d: e4:b5:1c:61:a5:c2:f9:59:40:59:37:d2:dc:78:dd: 5e:26:a0:49:9a:6a:92:fd:bc:59:ad:39:00:e6:5f: de:78:ce:0f:7b:0a:0a:57:be:b5:6b:58:a1:71:95: cd:ed:98:84:53:76:fb:d6:50:52:e0:22:56:2b:ae: e4:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:D2:82:09:CB:F4:A7:5C:7D:64:64:04:53:14:11:4F:A4:45:56:D5 X509v3 Authority Key Identifier: keyid:3C:3C:86:8A:56:74:B4:25:FA:E5:67:42:6B:CB:23:8E:23:AE:20:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0299e6f0-f23c-41ff-b67c-41af051339d1/0/3C3C868A5674B425FAE567426BCB238E23AE20AC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C3C868A5674B425FAE567426BCB238E23AE20AC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0299e6f0-f23c-41ff-b67c-41af051339d1/0/3130332e3133352e312e302f32342d3234203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.135.1.0/24 Signature Algorithm: sha256WithRSAEncryption 06:fd:1e:c3:94:03:e2:bf:36:b6:3c:68:8f:5f:33:b2:a1:f2: e3:a6:15:4d:ef:00:27:5c:38:3d:8f:46:58:f2:5d:f5:16:62: 0e:d9:4a:45:1c:e7:a4:2f:9c:20:d8:d6:07:21:70:2e:98:3f: 3a:88:47:32:b7:9e:d1:63:47:c2:8f:67:a0:f8:d2:5b:37:0c: 3a:5c:c9:ab:41:75:57:bd:fa:95:2a:67:d4:4a:41:7e:b5:06: 0d:a9:b6:0e:e3:1e:3d:4e:05:0c:b7:ac:f9:bf:2b:6b:ad:f0: c3:57:21:71:d4:5b:5d:77:25:03:73:eb:b9:55:52:30:eb:a2: 97:19:42:3d:2c:dd:b0:27:31:57:c0:31:26:7c:07:91:11:6f: 1a:67:51:a8:31:62:cc:9e:24:61:33:4c:af:7c:20:27:4e:2f: 6b:05:05:25:6b:45:97:81:9a:21:0c:c5:29:8a:b7:5e:8c:58: c4:0a:d9:f3:cb:8a:42:07:1b:dc:f7:04:da:04:6c:cf:a9:ef: 4c:e1:ca:1c:fe:95:57:5f:8f:98:18:59:bd:17:75:c0:23:b2: 90:9f:a9:e3:8d:b7:57:fd:08:29:0a:ef:da:2d:e3:95:45:61: 36:22:c6:1f:4f:ca:a6:26:d3:d7:ac:0e:a3:97:49:8f:97:e6: f3:87:c3:30 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUbJMZF5Lj7OU7QJ0zvnAcvYhs0WAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0MzQzg2OEE1Njc0QjQyNUZBRTU2NzQyNkJDQjIzOEUy M0FFMjBBQzAeFw0yNDA4MDUwMjU2NDZaFw0yNTA4MDQwMzAxNDZaMDMxMTAvBgNV BAMTKDMwRDI4MjA5Q0JGNEE3NUM3RDY0NjQwNDUzMTQxMTRGQTQ0NTU2RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4KdPEwNNH7LuNTeid3uUOa9TG czToTFkmaUeT5X9mvlS9irUM3mVrhOM7hO/rsTIPDhUIOQFtmEfU+FGv+25u6T3h oYBFiappMnOfnM6PZrgOFUhQCY6tZ/AFmB/4qqILeF8iMIKrNtcTEiqP3nH3cyHn dGJFqOjexCP0ZDgvdeE/1UFTqzryHFWYwDnjJScvdjTln7NhFN8mVQnqEy7Gj8kY vnaXL+BvQETD/4EU16Ny+lYHlXyUamoFbY5lSLSGHeS1HGGlwvlZQFk30tx43V4m oEmaapL9vFmtOQDmX954zg97CgpXvrVrWKFxlc3tmIRTdvvWUFLgIlYrruQ7AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUMNKCCcv0p1x9ZGQEUxQRT6RFVtUwHwYDVR0j BBgwFoAUPDyGilZ0tCX65WdCa8sjjiOuIKwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w Mjk5ZTZmMC1mMjNjLTQxZmYtYjY3Yy00MWFmMDUxMzM5ZDEvMC8zQzNDODY4QTU2 NzRCNDI1RkFFNTY3NDI2QkNCMjM4RTIzQUUyMEFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0MzQzg2OEE1Njc0QjQyNUZBRTU2NzQyNkJDQjIzOEUyM0FF MjBBQy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyOTllNmYwLWYyM2MtNDFmZi1i NjdjLTQxYWYwNTEzMzlkMS8wLzMxMzAzMzJlMzEzMzM1MmUzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzMzMyMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnhwEwDQYJKoZIhvcN AQELBQADggEBAAb9HsOUA+K/NrY8aI9fM7Kh8uOmFU3vACdcOD2PRljyXfUWYg7Z SkUc56QvnCDY1gchcC6YPzqIRzK3ntFjR8KPZ6D40ls3DDpcyatBdVe9+pUqZ9RK QX61Bg2ptg7jHj1OBQy3rPm/K2ut8MNXIXHUW113JQNz67lVUjDropcZQj0s3bAn MVfAMSZ8B5ERbxpnUagxYsyeJGEzTK98ICdOL2sFBSVrRZeBmiEMxSmKt16MWMQK 2fPLikIHG9z3BNoEbM+p70zhyhz+lVdfj5gYWb0XdcAjspCfqeONt1f9CCkK79ot 45VFYTYixh9PyqYm09esDqOXSY+X5vOHwzA= -----END CERTIFICATE-----Generated at Thu Nov 21 22:33:05 2024 by rpki-client on console-fra.rpki-client.org