$ rpki-client -vvf repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/3130332e3133332e3134352e302f32342d3234203d3e20313338313339.roa File: 3130332e3133332e3134352e302f32342d3234203d3e20313338313339.roa (raw, json) Hash identifier: ckcEAiUerTw8OlV2oYpTy5H+CAG653DGO/K4XWLlOAI= Subject key identifier: 33:D1:35:B4:5D:BD:B1:AF:62:D0:48:02:4F:8B:47:33:37:5F:C8:5C Certificate issuer: /CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF Certificate serial: 7CEEDBE8D4AA12724530BD22DC535578EC7CB723 Authority key identifier: 8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/3130332e3133332e3134352e302f32342d3234203d3e20313338313339.roa Signing time: Fri 26 Jul 2024 02:58:21 +0000 ROA not before: Fri 26 Jul 2024 02:53:21 +0000 ROA not after: Fri 25 Jul 2025 02:58:21 +0000 asID: 138139 IP address blocks: 103.133.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 10:22:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:ee:db:e8:d4:aa:12:72:45:30:bd:22:dc:53:55:78:ec:7c:b7:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF Validity Not Before: Jul 26 02:53:21 2024 GMT Not After : Jul 25 02:58:21 2025 GMT Subject: CN=33D135B45DBDB1AF62D048024F8B4733375FC85C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:44:55:e7:f1:a9:db:56:ea:d3:2c:e3:6c:0c: f7:ec:9b:76:b4:5d:ab:e1:cb:6a:c2:5c:80:1a:cd: c4:34:51:0d:ef:a4:de:ca:bc:dd:18:f1:51:c0:89: b2:91:61:c2:3f:57:26:bc:fe:32:3b:01:87:fe:a2: 77:66:5c:28:3f:9f:49:d2:fa:c5:33:aa:af:a2:5a: 7a:bb:73:58:d5:87:76:8e:2e:7b:f6:6b:0c:bc:8d: f0:8c:b8:ed:77:05:86:7f:93:e9:61:e6:8a:08:09: ab:ca:41:04:03:b1:e5:73:b5:d9:fe:5b:4c:1d:1e: 1d:d1:b7:a8:75:e6:f0:a2:d5:bf:85:e9:9f:0e:35: a6:76:72:a3:04:cc:0a:d9:bd:3f:90:35:e2:b3:0d: 5f:73:70:91:a7:3d:fd:b4:81:9d:3d:dd:cc:fe:42: dd:0f:83:49:87:5a:30:26:25:0c:47:10:67:1a:8b: 66:bc:ad:98:e3:50:c4:70:8a:19:e5:f9:67:21:77: b7:79:cd:74:4b:b9:61:dd:9b:78:42:26:79:9f:f8: db:39:5b:18:97:da:ad:93:0d:a7:15:bb:80:1d:77: ee:83:b1:ca:51:2d:2f:b6:56:af:e9:c6:a4:8d:82: 92:f8:5d:83:72:89:2b:2f:7a:f9:a1:fe:02:09:15: ea:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:D1:35:B4:5D:BD:B1:AF:62:D0:48:02:4F:8B:47:33:37:5F:C8:5C X509v3 Authority Key Identifier: keyid:8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/3130332e3133332e3134352e302f32342d3234203d3e20313338313339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.133.145.0/24 Signature Algorithm: sha256WithRSAEncryption 94:d6:d0:6e:13:8f:55:25:4c:3a:09:33:10:f8:b6:f8:f5:8d: 39:47:7f:41:78:f5:ca:04:9a:2b:20:07:bf:4f:79:35:16:35: 2a:1b:9a:f8:8b:62:22:68:db:49:f0:c2:e8:dd:ce:44:17:a5: db:db:e6:9b:56:bb:b5:02:79:61:2c:fb:d8:bf:24:22:a8:13: 30:9f:9e:e9:94:9f:ba:46:b4:c7:c2:85:9e:a8:59:3a:0a:ab: 4c:e8:e4:8b:d2:67:ff:9f:d6:80:cc:30:9c:69:ca:51:87:77: 07:ce:5c:91:64:7f:f0:ac:c7:cf:d2:4f:f5:c5:c3:b4:34:02: 3f:9f:ca:84:4a:f8:de:1b:cf:24:d1:b1:3f:6f:0f:c5:f6:48: e5:21:3d:52:ce:62:08:1b:b9:04:fb:70:f1:81:e3:03:5a:ff: 26:d1:14:f7:74:9b:50:e6:42:cd:80:a9:76:7d:29:fe:15:92: 4e:d0:b0:19:eb:02:51:74:17:9e:a3:81:b7:af:f4:a4:b9:d8: 57:ed:6b:2b:38:52:89:ab:42:5a:f7:34:da:1a:f3:00:b2:27: f6:12:18:78:97:cc:29:a4:63:e3:d8:ce:ea:1c:a8:f6:93:38: be:47:21:1b:2f:1c:92:d4:8a:bd:31:72:f4:0b:28:a1:08:9e: dd:cf:e7:8d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfO7b6NSqEnJFML0i3FNVeOx8tyMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJEMDQ0 MzUzRjZGRjAeFw0yNDA3MjYwMjUzMjFaFw0yNTA3MjUwMjU4MjFaMDMxMTAvBgNV BAMTKDMzRDEzNUI0NURCREIxQUY2MkQwNDgwMjRGOEI0NzMzMzc1RkM4NUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4RFXn8anbVurTLONsDPfsm3a0 Xavhy2rCXIAazcQ0UQ3vpN7KvN0Y8VHAibKRYcI/Vya8/jI7AYf+ondmXCg/n0nS +sUzqq+iWnq7c1jVh3aOLnv2awy8jfCMuO13BYZ/k+lh5ooICavKQQQDseVztdn+ W0wdHh3Rt6h15vCi1b+F6Z8ONaZ2cqMEzArZvT+QNeKzDV9zcJGnPf20gZ093cz+ Qt0Pg0mHWjAmJQxHEGcai2a8rZjjUMRwihnl+Wchd7d5zXRLuWHdm3hCJnmf+Ns5 WxiX2q2TDacVu4Add+6DscpRLS+2Vq/pxqSNgpL4XYNyiSsvevmh/gIJFeqJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUM9E1tF29sa9i0EgCT4tHMzdfyFwwHwYDVR0j BBgwFoAUi6K14H+tVyjH3vv0/BC9BENT9v8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Yzc2Yzg1Zi05YTRmLTRhZmMtOTY5Yi04ZGEyNTM2YzVjMjQvMC84QkEyQjVFMDdG QUQ1NzI4QzdERUZCRjRGQzEwQkQwNDQzNTNGNkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJEMDQ0MzUz RjZGRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjNzZjODVmLTlhNGYtNGFmYy05 NjliLThkYTI1MzZjNWMyNC8wLzMxMzAzMzJlMzEzMzMzMmUzMTM0MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnhZEwDQYJ KoZIhvcNAQELBQADggEBAJTW0G4Tj1UlTDoJMxD4tvj1jTlHf0F49coEmisgB79P eTUWNSobmviLYiJo20nwwujdzkQXpdvb5ptWu7UCeWEs+9i/JCKoEzCfnumUn7pG tMfChZ6oWToKq0zo5IvSZ/+f1oDMMJxpylGHdwfOXJFkf/Csx8/ST/XFw7Q0Aj+f yoRK+N4bzyTRsT9vD8X2SOUhPVLOYggbuQT7cPGB4wNa/ybRFPd0m1DmQs2AqXZ9 Kf4Vkk7QsBnrAlF0F56jgbev9KS52Fftays4UomrQlr3NNoa8wCyJ/YSGHiXzCmk Y+PYzuocqPaTOL5HIRsvHJLUir0xcvQLKKEInt3P540= -----END CERTIFICATE-----Generated at Mon Nov 25 09:00:38 2024 by rpki-client on console-fra.rpki-client.org