$ rpki-client -vvf repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3134382e302f32332d3234203d3e203338353036.roa File: 3131302e37362e3134382e302f32332d3234203d3e203338353036.roa (raw, json) Hash identifier: 5SOKZtz0qAVv6oTfyC5+29aFlE6C0OoeMkcic0T/KnA= Subject key identifier: 8B:B3:0B:40:B3:1F:5F:E4:80:9D:A7:F4:F4:8D:8D:47:A2:A8:2E:88 Certificate issuer: /CN=0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2 Certificate serial: 2C5DD0F4957480371A7A5C3DCC1A7230E9F25B1F Authority key identifier: 0F:D0:44:D6:13:48:C8:8D:DC:FF:C4:F3:C3:3B:FB:C4:51:BC:17:A2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3134382e302f32332d3234203d3e203338353036.roa Signing time: Thu 14 Mar 2024 09:00:00 +0000 ROA not before: Thu 14 Mar 2024 08:55:00 +0000 ROA not after: Thu 13 Mar 2025 09:00:00 +0000 asID: 38506 IP address blocks: 110.76.148.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.crl rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 05:17:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:5d:d0:f4:95:74:80:37:1a:7a:5c:3d:cc:1a:72:30:e9:f2:5b:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2 Validity Not Before: Mar 14 08:55:00 2024 GMT Not After : Mar 13 09:00:00 2025 GMT Subject: CN=8BB30B40B31F5FE4809DA7F4F48D8D47A2A82E88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:69:81:1a:b6:71:37:43:7e:f3:e7:7c:5c:0d: 22:33:18:e7:e5:c3:1b:b6:97:a2:af:2f:86:8c:61: 9f:4f:b4:c4:2b:3b:5e:af:bd:00:ac:87:5a:32:58: 9e:14:56:90:7b:32:26:17:1d:a5:29:93:d6:13:30: 79:38:43:25:e0:e3:ab:39:98:3d:4d:8c:df:85:78: 94:1a:d0:5d:fd:ea:91:9b:e4:e7:22:27:25:46:be: eb:3c:73:af:7c:39:f4:a2:e5:00:b6:13:76:92:08: cf:ee:dd:d4:65:88:40:6b:be:1f:12:f2:12:8d:f6: d5:fd:78:b8:85:63:e8:dc:c5:d3:8c:f6:2e:aa:2d: 0a:1b:67:5f:21:30:d0:78:70:9c:9e:d3:9e:3f:9d: 29:6d:fa:81:c1:0e:76:3f:74:61:94:89:a3:f9:a3: 1a:56:14:92:72:7b:fa:15:8f:58:f7:19:09:3a:c1: b2:1f:23:36:6d:c4:f9:37:1b:12:e6:1e:0c:fb:3d: 68:48:0a:da:7c:9c:1b:5e:f8:61:4c:66:72:8f:90: a9:3e:c0:f1:8d:75:e8:90:81:b2:ae:96:f4:a6:22: bf:d1:68:04:4d:e7:0b:ce:a6:2c:ae:f9:43:ce:2d: 9c:8c:b8:57:e3:15:2b:c1:2b:41:5b:b4:2f:0a:32: 32:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:B3:0B:40:B3:1F:5F:E4:80:9D:A7:F4:F4:8D:8D:47:A2:A8:2E:88 X509v3 Authority Key Identifier: keyid:0F:D0:44:D6:13:48:C8:8D:DC:FF:C4:F3:C3:3B:FB:C4:51:BC:17:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131302e37362e3134382e302f32332d3234203d3e203338353036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.76.148.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:b5:63:ae:0a:c3:fb:67:58:95:91:c7:85:04:66:32:a7:48: 91:bc:d0:d3:8b:4f:c0:19:b0:39:82:83:98:a3:6e:db:00:e0: c5:86:7f:05:a9:44:95:3c:b8:8f:6e:d6:ba:b3:4f:79:d5:b7: 69:ee:30:8c:4f:0e:e2:ef:55:3e:92:a4:ad:a9:e8:7a:9c:15: 3d:e1:3f:3f:41:65:f4:fa:9b:00:08:20:81:ae:0b:60:5c:cc: 79:d5:0e:6c:62:7a:88:ff:b5:8b:56:aa:34:6d:89:dc:32:b3: 96:d4:17:53:69:30:8a:61:df:5f:2a:6c:8b:e5:6c:6a:ea:f4: 66:92:7a:c9:e5:cc:d2:8b:1d:63:61:80:57:77:c6:d2:57:dd: 15:ec:82:b2:86:8b:95:22:34:ec:ee:ad:a5:73:2f:e1:02:6f: 0a:be:29:0d:f1:90:4f:c3:06:ea:5e:af:be:70:99:30:c0:2f: af:66:77:c1:a4:a8:41:ee:5d:58:d2:da:ca:c4:a6:83:0e:92: a6:da:69:80:41:d4:ff:aa:08:7d:c4:cf:04:6f:7b:fb:8a:39: 0a:79:91:6f:3c:fd:e3:61:39:84:e4:7f:ac:9e:86:a7:42:b9: 8d:ac:85:e4:31:ce:51:1e:ef:41:56:b0:1e:cb:3c:0d:3c:0c: df:1c:8c:f3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULF3Q9JV0gDcaelw9zBpyMOnyWx8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZEMDQ0RDYxMzQ4Qzg4RERDRkZDNEYzQzMzQkZCQzQ1 MUJDMTdBMjAeFw0yNDAzMTQwODU1MDBaFw0yNTAzMTMwOTAwMDBaMDMxMTAvBgNV BAMTKDhCQjMwQjQwQjMxRjVGRTQ4MDlEQTdGNEY0OEQ4RDQ3QTJBODJFODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnaYEatnE3Q37z53xcDSIzGOfl wxu2l6KvL4aMYZ9PtMQrO16vvQCsh1oyWJ4UVpB7MiYXHaUpk9YTMHk4QyXg46s5 mD1NjN+FeJQa0F396pGb5OciJyVGvus8c698OfSi5QC2E3aSCM/u3dRliEBrvh8S 8hKN9tX9eLiFY+jcxdOM9i6qLQobZ18hMNB4cJye054/nSlt+oHBDnY/dGGUiaP5 oxpWFJJye/oVj1j3GQk6wbIfIzZtxPk3GxLmHgz7PWhICtp8nBte+GFMZnKPkKk+ wPGNdeiQgbKulvSmIr/RaARN5wvOpiyu+UPOLZyMuFfjFSvBK0FbtC8KMjJtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUi7MLQLMfX+SAnaf09I2NR6KoLogwHwYDVR0j BBgwFoAUD9BE1hNIyI3c/8Tzwzv7xFG8F6IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjU0OGJhZC03ZmVkLTQxZmQtYjQyZS03ODAzNzJjNDUyNTUvMC8wRkQwNDRENjEz NDhDODhERENGRkM0RjNDMzNCRkJDNDUxQkMxN0EyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZEMDQ0RDYxMzQ4Qzg4RERDRkZDNEYzQzMzQkZCQzQ1MUJD MTdBMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiNTQ4YmFkLTdmZWQtNDFmZC1i NDJlLTc4MDM3MmM0NTI1NS8wLzMxMzEzMDJlMzczNjJlMzEzNDM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzMzODM1MzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAW5MlDANBgkqhkiG 9w0BAQsFAAOCAQEAK7VjrgrD+2dYlZHHhQRmMqdIkbzQ04tPwBmwOYKDmKNu2wDg xYZ/BalElTy4j27WurNPedW3ae4wjE8O4u9VPpKkranoepwVPeE/P0Fl9PqbAAgg ga4LYFzMedUObGJ6iP+1i1aqNG2J3DKzltQXU2kwimHfXypsi+Vsaur0ZpJ6yeXM 0osdY2GAV3fG0lfdFeyCsoaLlSI07O6tpXMv4QJvCr4pDfGQT8MG6l6vvnCZMMAv r2Z3waSoQe5dWNLaysSmgw6SptppgEHU/6oIfcTPBG97+4o5CnmRbzz942E5hOR/ rJ6Gp0K5jayF5DHOUR7vQVawHss8DTwM3xyM8w== -----END CERTIFICATE-----Generated at Sat Nov 23 07:29:53 2024 by rpki-client on console-fra.rpki-client.org