$ rpki-client -vvf repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/3130332e3133332e3134372e302f32342d3234203d3e20313338313339.roa File: 3130332e3133332e3134372e302f32342d3234203d3e20313338313339.roa (raw, json) Hash identifier: zATAdHlerThlnoLqIXcIigUWHlTNDbxHnh+h5ej5+QQ= Subject key identifier: A8:C5:33:3C:C1:17:13:E5:AE:6C:1C:21:F6:D6:71:4C:F1:28:0C:C7 Certificate issuer: /CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF Certificate serial: 3F9D655E7A1CC9DD9A1A616EE8B40E77D498DA3E Authority key identifier: 8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/3130332e3133332e3134372e302f32342d3234203d3e20313338313339.roa Signing time: Thu 25 Jul 2024 07:33:56 +0000 ROA not before: Thu 25 Jul 2024 07:28:56 +0000 ROA not after: Thu 24 Jul 2025 07:33:56 +0000 asID: 138139 IP address blocks: 103.133.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 10:22:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:9d:65:5e:7a:1c:c9:dd:9a:1a:61:6e:e8:b4:0e:77:d4:98:da:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF Validity Not Before: Jul 25 07:28:56 2024 GMT Not After : Jul 24 07:33:56 2025 GMT Subject: CN=A8C5333CC11713E5AE6C1C21F6D6714CF1280CC7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:81:9a:3b:df:8e:8c:7d:b5:33:fc:33:06:2e: 8f:fe:ae:f8:99:ed:0f:7e:81:03:ce:7f:ea:ca:56: 9a:81:96:db:25:4e:0c:32:92:b6:dd:c1:52:6f:aa: 3f:ca:60:65:5f:77:91:62:eb:9f:aa:f0:4b:56:c4: a3:26:74:e6:6d:fd:c4:53:62:ef:6b:fa:66:4b:d2: ef:df:80:0f:15:61:8c:21:a5:84:6f:8a:96:ed:d2: 89:f8:a8:b4:50:d1:56:d6:9c:52:9a:22:f2:de:c1: 02:c4:3e:43:11:bf:e2:c6:55:78:53:32:72:7d:5b: 69:c6:c9:9d:49:e5:2f:bc:a8:e7:11:5d:8a:53:f6: e0:bd:31:2c:1d:10:d1:05:8e:9f:86:1b:4f:95:a2: ac:d5:b0:79:f6:95:6f:6c:e2:6a:ab:47:a9:7e:5d: a9:36:f2:96:24:d8:97:ef:4f:7f:9f:a8:64:bd:64: 1f:07:0d:f8:1b:03:24:1b:02:1a:e9:b9:4f:28:7e: d4:96:08:51:df:c7:81:7e:8c:2e:8d:06:c7:e9:ea: 6c:42:82:ef:95:06:d6:c2:87:77:69:ce:a8:de:f4: 84:d3:d7:29:db:7d:c7:3d:03:ef:ce:fb:53:da:ab: 8d:88:32:a4:e3:0b:cb:5a:88:c1:1d:5a:4c:33:62: e4:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:C5:33:3C:C1:17:13:E5:AE:6C:1C:21:F6:D6:71:4C:F1:28:0C:C7 X509v3 Authority Key Identifier: keyid:8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/3130332e3133332e3134372e302f32342d3234203d3e20313338313339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.133.147.0/24 Signature Algorithm: sha256WithRSAEncryption 02:35:ee:a7:95:95:32:46:9d:87:6c:68:de:66:27:8a:a5:3e: 39:97:80:42:2d:f8:91:c2:dc:00:2b:8e:e7:93:ea:10:9b:3c: 51:b3:76:12:7d:f1:cd:40:3f:07:2f:c8:74:a7:2c:a9:64:dd: 7f:0e:00:16:24:d3:aa:06:08:44:c2:27:99:22:0c:d5:cb:64: 12:dd:f1:e4:fa:75:e8:fb:53:d5:ed:a9:0e:12:30:a6:96:69: 75:e5:33:86:b4:29:e0:98:87:30:16:a4:dd:86:37:05:79:43: 6c:f0:ee:7f:a3:c9:c1:00:4c:cb:8d:75:8c:eb:82:d9:0d:e8: c8:67:c5:f0:a6:c2:0e:16:22:a3:47:73:71:d6:8f:2b:7e:26: b1:20:f9:63:f3:c1:84:80:8c:1e:56:9c:c5:47:75:29:c3:f8: 87:0b:83:53:03:2b:ae:c3:0d:91:61:f6:d1:42:64:58:e6:17: e0:3c:59:08:81:d5:9a:40:cd:ea:bb:cc:98:24:e3:f6:22:36: d7:4f:69:a0:8f:c4:72:29:1a:79:4a:01:5c:17:4e:1a:ca:fa: 18:aa:fe:f9:9e:c7:a3:28:63:8f:8d:87:d7:9c:a3:a2:a3:9c: a4:0e:1f:cb:91:3e:5b:51:f9:e3:5e:d1:2d:f5:47:eb:12:6c: db:55:db:90 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUP51lXnocyd2aGmFu6LQOd9SY2j4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJEMDQ0 MzUzRjZGRjAeFw0yNDA3MjUwNzI4NTZaFw0yNTA3MjQwNzMzNTZaMDMxMTAvBgNV BAMTKEE4QzUzMzNDQzExNzEzRTVBRTZDMUMyMUY2RDY3MTRDRjEyODBDQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCngZo7346MfbUz/DMGLo/+rviZ 7Q9+gQPOf+rKVpqBltslTgwykrbdwVJvqj/KYGVfd5Fi65+q8EtWxKMmdOZt/cRT Yu9r+mZL0u/fgA8VYYwhpYRvipbt0on4qLRQ0VbWnFKaIvLewQLEPkMRv+LGVXhT MnJ9W2nGyZ1J5S+8qOcRXYpT9uC9MSwdENEFjp+GG0+VoqzVsHn2lW9s4mqrR6l+ Xak28pYk2JfvT3+fqGS9ZB8HDfgbAyQbAhrpuU8oftSWCFHfx4F+jC6NBsfp6mxC gu+VBtbCh3dpzqje9ITT1ynbfcc9A+/O+1Paq42IMqTjC8taiMEdWkwzYuR9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUqMUzPMEXE+WubBwh9tZxTPEoDMcwHwYDVR0j BBgwFoAUi6K14H+tVyjH3vv0/BC9BENT9v8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Yzc2Yzg1Zi05YTRmLTRhZmMtOTY5Yi04ZGEyNTM2YzVjMjQvMC84QkEyQjVFMDdG QUQ1NzI4QzdERUZCRjRGQzEwQkQwNDQzNTNGNkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJEMDQ0MzUz RjZGRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjNzZjODVmLTlhNGYtNGFmYy05 NjliLThkYTI1MzZjNWMyNC8wLzMxMzAzMzJlMzEzMzMzMmUzMTM0MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnhZMwDQYJ KoZIhvcNAQELBQADggEBAAI17qeVlTJGnYdsaN5mJ4qlPjmXgEIt+JHC3AArjueT 6hCbPFGzdhJ98c1APwcvyHSnLKlk3X8OABYk06oGCETCJ5kiDNXLZBLd8eT6dej7 U9XtqQ4SMKaWaXXlM4a0KeCYhzAWpN2GNwV5Q2zw7n+jycEATMuNdYzrgtkN6Mhn xfCmwg4WIqNHc3HWjyt+JrEg+WPzwYSAjB5WnMVHdSnD+IcLg1MDK67DDZFh9tFC ZFjmF+A8WQiB1ZpAzeq7zJgk4/YiNtdPaaCPxHIpGnlKAVwXThrK+hiq/vmex6Mo Y4+Nh9eco6KjnKQOH8uRPltR+eNe0S31R+sSbNtV25A= -----END CERTIFICATE-----Generated at Mon Nov 25 09:00:38 2024 by rpki-client on console-fra.rpki-client.org