$ rpki-client -vvf repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/3130332e3132362e3230322e302f32332d3233203d3e20313338313133.roa File: 3130332e3132362e3230322e302f32332d3233203d3e20313338313133.roa (raw, json) Hash identifier: qBwD0j9D6HJINKNFlu+kuEBY/vArkgezOjBuJFqmG7Q= Subject key identifier: C8:49:80:F2:01:4A:5D:AE:97:AB:51:F7:9A:F1:3B:1A:1E:A8:1E:47 Certificate issuer: /CN=8CFA88063D5C0A51C1D737A5170338865A245358 Certificate serial: 2E58421F4CDDBE0CE6BE21CA889CAA8102724D1D Authority key identifier: 8C:FA:88:06:3D:5C:0A:51:C1:D7:37:A5:17:03:38:86:5A:24:53:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFA88063D5C0A51C1D737A5170338865A245358.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/3130332e3132362e3230322e302f32332d3233203d3e20313338313133.roa Signing time: Mon 01 Jul 2024 01:02:47 +0000 ROA not before: Mon 01 Jul 2024 00:57:47 +0000 ROA not after: Mon 30 Jun 2025 01:02:47 +0000 asID: 138113 IP address blocks: 103.126.202.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.crl rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFA88063D5C0A51C1D737A5170338865A245358.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 21:52:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:58:42:1f:4c:dd:be:0c:e6:be:21:ca:88:9c:aa:81:02:72:4d:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8CFA88063D5C0A51C1D737A5170338865A245358 Validity Not Before: Jul 1 00:57:47 2024 GMT Not After : Jun 30 01:02:47 2025 GMT Subject: CN=C84980F2014A5DAE97AB51F79AF13B1A1EA81E47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:15:49:b9:fb:e7:88:ec:66:6b:b8:04:d8:3b: 9a:7d:80:2a:b1:11:ae:cb:60:43:de:49:37:fc:2c: f9:8c:2f:a2:5e:8a:21:b3:95:51:47:a6:8d:e5:5f: 4b:ea:cd:4b:6d:e2:f3:ff:b3:9b:5c:6a:1d:ff:85: 22:db:0d:13:0e:2d:df:22:91:11:0d:53:f9:40:79: 85:91:23:e4:b8:9e:a3:de:11:51:bb:51:50:70:87: a4:f0:9e:ba:0c:d5:4d:02:40:28:3a:6c:fe:06:20: 7b:e3:cb:40:70:e7:4d:66:7c:74:d3:43:6c:c2:37: f9:8d:f0:b8:04:69:62:76:fb:92:e5:ea:37:3a:f8: 80:32:ad:aa:0e:46:be:80:8c:c5:f7:a0:e2:a8:46: e1:39:c9:1c:49:e1:c5:80:33:49:e2:bd:4f:20:ed: 1e:5a:7f:20:86:0b:4e:74:99:ea:4c:37:e3:48:fe: bf:a3:45:39:e6:7f:8d:cf:fa:e6:c1:30:54:9f:cf: cc:c4:7f:cf:4b:81:07:9a:d2:e0:50:af:b8:58:83: 87:99:d8:f4:3e:24:1b:d3:bd:a8:76:e8:00:b5:e9: cf:75:cb:3e:1d:88:82:9d:e9:51:bd:c5:d4:93:85: c4:e0:ec:92:16:e6:50:46:13:b3:8d:e2:3d:f2:15: 1b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:49:80:F2:01:4A:5D:AE:97:AB:51:F7:9A:F1:3B:1A:1E:A8:1E:47 X509v3 Authority Key Identifier: keyid:8C:FA:88:06:3D:5C:0A:51:C1:D7:37:A5:17:03:38:86:5A:24:53:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFA88063D5C0A51C1D737A5170338865A245358.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/3130332e3132362e3230322e302f32332d3233203d3e20313338313133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.126.202.0/23 Signature Algorithm: sha256WithRSAEncryption a0:f3:00:53:24:d8:10:cd:70:35:d9:53:05:0e:75:a4:a8:37: f1:b1:a7:82:72:eb:7f:94:63:3a:f5:e0:00:ea:86:79:e0:d8: 4f:f2:3a:57:2e:cf:1c:92:d4:10:3f:f8:29:a7:56:c2:c1:00: bb:64:c2:7c:e4:9e:aa:a8:da:23:08:55:f2:2c:78:eb:ed:e2: 6a:9b:2e:8b:39:03:c6:19:4f:50:17:17:23:de:cf:69:34:52: 80:ac:c3:36:cf:bf:85:78:bd:70:94:d4:46:3f:33:52:41:47: 95:74:f3:32:1c:13:11:71:68:a6:2c:b8:93:32:06:e0:51:1c: e8:21:d5:ae:23:03:ec:0a:35:98:3a:ed:f1:d0:47:96:f2:8b: af:c9:3c:cd:dc:9c:1f:99:2e:df:6d:16:2c:bf:63:f0:7a:79: b6:ae:0d:e9:c3:7a:d4:03:2d:24:26:7a:8e:92:04:f9:26:a1: 19:37:9d:ca:07:e0:ec:ca:ff:80:c1:e2:ef:a7:0b:a7:11:6e: 13:81:ea:4c:cc:67:5e:42:0d:41:f5:36:6c:3d:c2:a3:0f:33: 4b:c2:24:7e:80:4c:71:fe:c6:d0:13:2e:dd:b4:47:2c:b8:10: 12:e4:08:01:54:a8:eb:b7:1e:43:ce:92:0e:ee:4d:6e:1a:25: af:59:f9:a3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULlhCH0zdvgzmviHKiJyqgQJyTR0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOENGQTg4MDYzRDVDMEE1MUMxRDczN0E1MTcwMzM4ODY1 QTI0NTM1ODAeFw0yNDA3MDEwMDU3NDdaFw0yNTA2MzAwMTAyNDdaMDMxMTAvBgNV BAMTKEM4NDk4MEYyMDE0QTVEQUU5N0FCNTFGNzlBRjEzQjFBMUVBODFFNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNFUm5++eI7GZruATYO5p9gCqx Ea7LYEPeSTf8LPmML6JeiiGzlVFHpo3lX0vqzUtt4vP/s5tcah3/hSLbDRMOLd8i kRENU/lAeYWRI+S4nqPeEVG7UVBwh6TwnroM1U0CQCg6bP4GIHvjy0Bw501mfHTT Q2zCN/mN8LgEaWJ2+5Ll6jc6+IAyraoORr6AjMX3oOKoRuE5yRxJ4cWAM0nivU8g 7R5afyCGC050mepMN+NI/r+jRTnmf43P+ubBMFSfz8zEf89LgQea0uBQr7hYg4eZ 2PQ+JBvTvah26AC16c91yz4diIKd6VG9xdSThcTg7JIW5lBGE7ON4j3yFRtjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUyEmA8gFKXa6Xq1H3mvE7Gh6oHkcwHwYDVR0j BBgwFoAUjPqIBj1cClHB1zelFwM4hlokU1gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YTJlNWI2OS1hZGJkLTRlMmQtODQ3ZC0zNzQ4MTU1ODFkODYvMC84Q0ZBODgwNjNE NUMwQTUxQzFENzM3QTUxNzAzMzg4NjVBMjQ1MzU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOENGQTg4MDYzRDVDMEE1MUMxRDczN0E1MTcwMzM4ODY1QTI0 NTM1OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhhMmU1YjY5LWFkYmQtNGUyZC04 NDdkLTM3NDgxNTU4MWQ4Ni8wLzMxMzAzMzJlMzEzMjM2MmUzMjMwMzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzgzMTMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnfsowDQYJ KoZIhvcNAQELBQADggEBAKDzAFMk2BDNcDXZUwUOdaSoN/Gxp4Jy63+UYzr14ADq hnng2E/yOlcuzxyS1BA/+CmnVsLBALtkwnzknqqo2iMIVfIseOvt4mqbLos5A8YZ T1AXFyPez2k0UoCswzbPv4V4vXCU1EY/M1JBR5V08zIcExFxaKYsuJMyBuBRHOgh 1a4jA+wKNZg67fHQR5byi6/JPM3cnB+ZLt9tFiy/Y/B6ebauDenDetQDLSQmeo6S BPkmoRk3ncoH4OzK/4DB4u+nC6cRbhOB6kzMZ15CDUH1Nmw9wqMPM0vCJH6ATHH+ xtATLt20Ryy4EBLkCAFUqOu3HkPOkg7uTW4aJa9Z+aM= -----END CERTIFICATE-----Generated at Mon Nov 25 18:43:02 2024 by rpki-client on console-ams.rpki-client.org