$ rpki-client -vvf repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/3130332e3133332e35362e302f32342d3234203d3e20313338313331.roa File: 3130332e3133332e35362e302f32342d3234203d3e20313338313331.roa (raw, json) Hash identifier: CFNE4eXin0n035WwqU9kU9qTyrDU0xKmoGDt4r8ZqYE= Subject key identifier: DA:FE:9B:E8:B9:17:21:B5:39:26:97:05:1E:4C:D9:10:6B:40:12:E4 Certificate issuer: /CN=28612772543E43335B080C32808B7FDC277E71E4 Certificate serial: DDC2462A4CD6E758A67AA4C678C74D2347F6AB Authority key identifier: 28:61:27:72:54:3E:43:33:5B:08:0C:32:80:8B:7F:DC:27:7E:71:E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28612772543E43335B080C32808B7FDC277E71E4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/3130332e3133332e35362e302f32342d3234203d3e20313338313331.roa Signing time: Thu 12 Oct 2023 02:49:02 +0000 ROA not before: Thu 12 Oct 2023 02:44:02 +0000 ROA not after: Thu 10 Oct 2024 02:49:02 +0000 asID: 138131 IP address blocks: 103.133.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/28612772543E43335B080C32808B7FDC277E71E4.crl rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/28612772543E43335B080C32808B7FDC277E71E4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28612772543E43335B080C32808B7FDC277E71E4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 10:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: dd:c2:46:2a:4c:d6:e7:58:a6:7a:a4:c6:78:c7:4d:23:47:f6:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28612772543E43335B080C32808B7FDC277E71E4 Validity Not Before: Oct 12 02:44:02 2023 GMT Not After : Oct 10 02:49:02 2024 GMT Subject: CN=DAFE9BE8B91721B5392697051E4CD9106B4012E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4d:f8:4d:46:bc:8f:d7:9c:4f:a2:90:c4:d7: 06:b5:3c:86:4a:bb:68:69:2d:a0:8e:78:41:0e:b0: df:25:69:80:01:75:1d:91:07:28:ea:74:7c:fd:5c: 1e:bf:9d:42:77:28:30:dd:98:7c:a4:8f:cd:54:65: 6e:42:d1:f6:6c:52:ba:2f:ae:07:db:f9:0b:01:3e: 25:41:e2:e8:b7:f4:c1:b2:d0:0b:e5:24:ee:01:65: ae:bc:60:33:78:64:f9:28:82:2c:e1:88:13:68:6e: 25:88:a2:1e:1a:88:c4:26:3c:f9:d4:26:16:b3:56: 38:8c:30:56:78:6d:b6:fb:11:58:ff:e8:06:69:55: a8:1d:a7:0d:50:60:51:63:af:f5:2f:fc:d1:cb:0c: 25:3a:d9:88:be:e5:79:eb:0d:6b:f8:0a:7e:8d:6a: 12:b8:ca:d1:db:62:bb:96:7e:e9:01:a3:73:04:0f: 82:77:26:e4:1f:3f:ed:2b:f9:3e:eb:50:75:8d:1f: 37:41:a4:03:95:22:6d:a4:1a:29:a5:cb:49:28:76: 94:a3:65:41:0c:f7:24:cb:3d:28:7b:46:2c:07:19: 4c:53:a7:3a:08:75:9f:8b:0a:1f:12:ab:c1:94:fe: 8c:99:6f:94:fd:7b:0c:4f:72:9d:7e:77:8c:e9:c2: a4:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:FE:9B:E8:B9:17:21:B5:39:26:97:05:1E:4C:D9:10:6B:40:12:E4 X509v3 Authority Key Identifier: keyid:28:61:27:72:54:3E:43:33:5B:08:0C:32:80:8B:7F:DC:27:7E:71:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/28612772543E43335B080C32808B7FDC277E71E4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28612772543E43335B080C32808B7FDC277E71E4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/3130332e3133332e35362e302f32342d3234203d3e20313338313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.133.56.0/24 Signature Algorithm: sha256WithRSAEncryption a6:da:b8:03:6d:82:98:12:81:59:6d:18:04:9f:41:4b:3e:0b: da:79:15:8f:d1:bd:0f:ef:72:1f:eb:33:45:ec:cd:d1:81:09: 01:e8:57:66:a6:e7:2c:92:d1:20:40:3c:c7:39:64:80:5e:d1: a7:b6:fd:0d:00:d3:a9:7a:3e:6c:eb:f5:f1:9f:7b:84:fc:ad: 35:01:61:f1:db:11:de:ca:c4:33:d4:b3:be:a3:0e:15:98:bf: 64:85:f2:e1:28:3a:84:54:3d:46:31:28:65:40:00:36:bb:61: 79:5f:17:5c:f9:49:98:11:7a:f6:47:ee:a0:51:3a:68:71:42: 95:2d:f3:2b:f4:71:5f:9d:f1:b8:62:92:d3:35:49:21:bd:fd: d7:06:de:1f:5d:b9:c7:58:30:a1:fa:f6:2d:30:99:85:e8:e9: 1d:25:68:aa:6a:51:ac:5d:0a:0e:42:5e:4e:80:1d:c9:7a:2e: b9:84:64:fb:d5:e9:9d:12:1d:3a:ff:55:d1:1d:0d:6d:cc:d5: e5:f8:1d:9d:87:02:bd:d8:10:0b:d4:4d:b7:7c:65:8d:34:16: 70:9c:3f:2a:3d:c2:d6:82:f8:25:94:fb:00:37:b4:ac:17:e7: 93:e5:30:c9:ce:88:87:d1:26:43:89:95:ab:e4:02:e2:dd:46: 13:38:94:17 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAN3CRipM1udYpnqkxnjHTSNH9qswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg2MTI3NzI1NDNFNDMzMzVCMDgwQzMyODA4QjdGREMy NzdFNzFFNDAeFw0yMzEwMTIwMjQ0MDJaFw0yNDEwMTAwMjQ5MDJaMDMxMTAvBgNV BAMTKERBRkU5QkU4QjkxNzIxQjUzOTI2OTcwNTFFNENEOTEwNkI0MDEyRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9TfhNRryP15xPopDE1wa1PIZK u2hpLaCOeEEOsN8laYABdR2RByjqdHz9XB6/nUJ3KDDdmHykj81UZW5C0fZsUrov rgfb+QsBPiVB4ui39MGy0AvlJO4BZa68YDN4ZPkogizhiBNobiWIoh4aiMQmPPnU JhazVjiMMFZ4bbb7EVj/6AZpVagdpw1QYFFjr/Uv/NHLDCU62Yi+5XnrDWv4Cn6N ahK4ytHbYruWfukBo3MED4J3JuQfP+0r+T7rUHWNHzdBpAOVIm2kGimly0kodpSj ZUEM9yTLPSh7RiwHGUxTpzoIdZ+LCh8Sq8GU/oyZb5T9ewxPcp1+d4zpwqT7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2v6b6LkXIbU5JpcFHkzZEGtAEuQwHwYDVR0j BBgwFoAUKGEnclQ+QzNbCAwygIt/3Cd+ceQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjEzMGI3NS00NTkzLTQxNDEtYTA2Zi01N2EyMmEwMjNkZDAvMC8yODYxMjc3MjU0 M0U0MzMzNUIwODBDMzI4MDhCN0ZEQzI3N0U3MUU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg2MTI3NzI1NDNFNDMzMzVCMDgwQzMyODA4QjdGREMyNzdF NzFFNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiMTMwYjc1LTQ1OTMtNDE0MS1h MDZmLTU3YTIyYTAyM2RkMC8wLzMxMzAzMzJlMzEzMzMzMmUzNTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4U4MA0GCSqG SIb3DQEBCwUAA4IBAQCm2rgDbYKYEoFZbRgEn0FLPgvaeRWP0b0P73If6zNF7M3R gQkB6FdmpucsktEgQDzHOWSAXtGntv0NANOpej5s6/Xxn3uE/K01AWHx2xHeysQz 1LO+ow4VmL9khfLhKDqEVD1GMShlQAA2u2F5Xxdc+UmYEXr2R+6gUTpocUKVLfMr 9HFfnfG4YpLTNUkhvf3XBt4fXbnHWDCh+vYtMJmF6OkdJWiqalGsXQoOQl5OgB3J ei65hGT71emdEh06/1XRHQ1tzNXl+B2dhwK92BAL1E23fGWNNBZwnD8qPcLWgvgl lPsAN7SsF+eT5TDJzoiH0SZDiZWr5ALi3UYTOJQX -----END CERTIFICATE-----Generated at Mon May 6 15:04:04 2024 by rpki-client on console-ams.rpki-client.org