$ rpki-client -vvf repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/3130332e3133332e3134342e302f32342d3234203d3e20313338313339.roa File: 3130332e3133332e3134342e302f32342d3234203d3e20313338313339.roa (raw, json) Hash identifier: trJzf/3V2TXLETMLeMmW5kc6tHPncrif1YJPzBJGU4g= Subject key identifier: E3:1C:99:54:EB:EA:06:98:17:42:F0:F7:36:79:B9:56:AA:0D:A6:16 Certificate issuer: /CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF Certificate serial: 0E9DF66DBE1F68BC0B11449AF48E98064D4E44BC Authority key identifier: 8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/3130332e3133332e3134342e302f32342d3234203d3e20313338313339.roa Signing time: Fri 19 Jul 2024 06:29:24 +0000 ROA not before: Fri 19 Jul 2024 06:24:24 +0000 ROA not after: Fri 18 Jul 2025 06:29:24 +0000 asID: 138139 IP address blocks: 103.133.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 10:22:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:9d:f6:6d:be:1f:68:bc:0b:11:44:9a:f4:8e:98:06:4d:4e:44:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF Validity Not Before: Jul 19 06:24:24 2024 GMT Not After : Jul 18 06:29:24 2025 GMT Subject: CN=E31C9954EBEA06981742F0F73679B956AA0DA616 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:60:e9:2a:ca:98:b3:e9:2c:ed:6c:e3:98:17: 18:e3:98:b4:8d:ed:d1:e5:5a:43:73:ec:4c:86:65: 5c:5a:cf:b5:76:f0:e0:f5:a3:11:51:33:c6:cf:d2: a0:53:e6:da:19:e3:12:fd:31:1e:ee:7e:b1:c7:20: 2a:99:c4:c6:00:77:4b:64:c1:08:bd:ab:07:c6:00: 58:d4:21:a7:f9:d7:90:72:50:9a:85:6d:82:13:cf: da:bb:ca:0a:1a:0e:48:28:be:d5:23:f7:1f:ff:e8: ff:6e:cf:6a:21:7b:6a:51:e3:f6:33:ba:77:58:72: d1:19:c9:1b:da:25:8e:a7:03:79:21:d5:a6:5e:82: f3:54:f3:70:d2:82:0d:38:8e:23:06:05:2a:33:cf: a1:01:d2:8e:62:5c:33:44:3a:6f:5c:00:1b:48:1e: 74:2a:5c:dc:d6:af:a8:a6:ec:e4:6a:a4:8a:1d:2a: 3a:0a:da:32:5e:59:63:50:b5:fc:88:b6:32:70:c7: df:9c:1c:25:58:aa:68:b7:58:8e:bb:ab:30:52:3e: a6:34:ff:2a:19:3b:75:88:74:62:ee:c1:a7:51:ad: c4:79:c9:cd:8c:92:de:4e:66:61:92:0b:cc:a3:5a: 24:a9:4d:d3:7c:6f:bb:f5:cc:55:85:77:2f:db:f3: 09:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:1C:99:54:EB:EA:06:98:17:42:F0:F7:36:79:B9:56:AA:0D:A6:16 X509v3 Authority Key Identifier: keyid:8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/3130332e3133332e3134342e302f32342d3234203d3e20313338313339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.133.144.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:83:e7:17:1c:e4:f6:1d:c2:11:7d:4f:e2:eb:bd:b6:7c:e8: 65:8b:7d:b8:66:10:5a:97:89:80:f3:25:5b:6f:46:7e:66:dc: d1:08:b4:13:28:a1:08:72:c3:e6:40:78:c7:93:f9:e7:6d:d2: 44:aa:8b:cb:50:2b:65:d9:7a:54:ff:5c:ed:f5:15:2c:81:c0: db:fc:e1:b6:d8:fa:3e:d3:79:77:48:2a:d1:69:72:e0:a7:23: bd:3f:9c:95:eb:3c:d5:e5:0d:e7:80:69:f0:4e:f5:0e:bf:7b: 1a:16:b3:a4:42:e1:06:a0:52:35:37:06:fd:79:56:09:87:76: 7d:59:44:45:3c:c5:56:47:48:0e:ba:4a:8a:9d:17:83:86:69: 98:64:dd:30:a2:ec:d0:4b:fc:7b:f7:cd:17:d9:23:0c:5b:87: f8:cd:a9:42:44:e2:78:af:ff:34:5d:ba:6a:90:b9:fa:10:9a: d1:23:45:4d:94:4d:f9:d5:2e:64:cd:a4:ec:60:1e:78:69:07: 5e:aa:c9:60:ba:4d:79:d2:5b:54:7d:54:c9:48:b5:e7:2b:9b: 00:c8:02:3c:4c:51:ee:e9:cb:9b:d0:95:aa:ec:3a:d3:b2:4a: 99:eb:d4:6f:b4:4d:43:8a:ca:41:12:d9:86:03:04:73:95:a0: 70:88:ff:58 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDp32bb4faLwLEUSa9I6YBk1ORLwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJEMDQ0 MzUzRjZGRjAeFw0yNDA3MTkwNjI0MjRaFw0yNTA3MTgwNjI5MjRaMDMxMTAvBgNV BAMTKEUzMUM5OTU0RUJFQTA2OTgxNzQyRjBGNzM2NzlCOTU2QUEwREE2MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5YOkqypiz6SztbOOYFxjjmLSN 7dHlWkNz7EyGZVxaz7V28OD1oxFRM8bP0qBT5toZ4xL9MR7ufrHHICqZxMYAd0tk wQi9qwfGAFjUIaf515ByUJqFbYITz9q7ygoaDkgovtUj9x//6P9uz2ohe2pR4/Yz undYctEZyRvaJY6nA3kh1aZegvNU83DSgg04jiMGBSozz6EB0o5iXDNEOm9cABtI HnQqXNzWr6im7ORqpIodKjoK2jJeWWNQtfyItjJwx9+cHCVYqmi3WI67qzBSPqY0 /yoZO3WIdGLuwadRrcR5yc2Mkt5OZmGSC8yjWiSpTdN8b7v1zFWFdy/b8wmJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU4xyZVOvqBpgXQvD3Nnm5VqoNphYwHwYDVR0j BBgwFoAUi6K14H+tVyjH3vv0/BC9BENT9v8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Yzc2Yzg1Zi05YTRmLTRhZmMtOTY5Yi04ZGEyNTM2YzVjMjQvMC84QkEyQjVFMDdG QUQ1NzI4QzdERUZCRjRGQzEwQkQwNDQzNTNGNkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJEMDQ0MzUz RjZGRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjNzZjODVmLTlhNGYtNGFmYy05 NjliLThkYTI1MzZjNWMyNC8wLzMxMzAzMzJlMzEzMzMzMmUzMTM0MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnhZAwDQYJ KoZIhvcNAQELBQADggEBAJ+D5xcc5PYdwhF9T+LrvbZ86GWLfbhmEFqXiYDzJVtv Rn5m3NEItBMooQhyw+ZAeMeT+edt0kSqi8tQK2XZelT/XO31FSyBwNv84bbY+j7T eXdIKtFpcuCnI70/nJXrPNXlDeeAafBO9Q6/exoWs6RC4QagUjU3Bv15VgmHdn1Z REU8xVZHSA66SoqdF4OGaZhk3TCi7NBL/Hv3zRfZIwxbh/jNqUJE4niv/zRdumqQ ufoQmtEjRU2UTfnVLmTNpOxgHnhpB16qyWC6TXnSW1R9VMlItecrmwDIAjxMUe7p y5vQlarsOtOySpnr1G+0TUOKykES2YYDBHOVoHCI/1g= -----END CERTIFICATE-----Generated at Mon Nov 25 09:01:50 2024 by rpki-client on console-ams.rpki-client.org