$ rpki-client -vvf repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/3130332e38362e3130302e302f32332d3233203d3e20313336303739.roa File: 3130332e38362e3130302e302f32332d3233203d3e20313336303739.roa (raw, json) Hash identifier: DL9+8H198UE7h/7Pgpl3P21VNpfarZQNWBdjxHH7R4U= Subject key identifier: A0:B1:AE:06:52:95:48:6D:8E:CE:0E:B4:C9:96:D9:B5:A2:F7:C7:A0 Certificate issuer: /CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Certificate serial: 756F2079EC5A6FDCAE8B435312B9448940244A75 Authority key identifier: F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/3130332e38362e3130302e302f32332d3233203d3e20313336303739.roa Signing time: Tue 13 Aug 2024 01:28:01 +0000 ROA not before: Tue 13 Aug 2024 01:23:01 +0000 ROA not after: Tue 12 Aug 2025 01:28:01 +0000 asID: 136079 IP address blocks: 103.86.100.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:6f:20:79:ec:5a:6f:dc:ae:8b:43:53:12:b9:44:89:40:24:4a:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Validity Not Before: Aug 13 01:23:01 2024 GMT Not After : Aug 12 01:28:01 2025 GMT Subject: CN=A0B1AE065295486D8ECE0EB4C996D9B5A2F7C7A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:dd:5d:5b:51:02:6c:95:e9:3a:03:a4:50:de: c4:87:13:a4:af:95:7a:00:6c:ab:ba:07:d2:60:80: 7d:98:39:ae:2a:28:61:a3:9b:f5:ee:24:87:b1:7f: 3f:ae:da:d1:87:ce:26:f2:a5:fb:8d:b3:dc:ac:b0: 23:21:83:be:11:58:a0:87:1e:d1:6d:7c:54:3f:4b: 70:6f:a4:af:36:99:fe:03:9d:45:76:d6:44:e4:37: ef:ae:ac:bf:8b:b5:19:ef:f5:fc:93:b7:76:7b:62: bb:81:c3:b8:34:c2:33:32:81:94:05:4f:70:6d:64: 82:0b:d8:ba:fa:f2:17:da:69:18:13:7e:49:26:b2: 7c:70:0f:3a:10:57:35:fa:df:f1:ab:f3:30:ad:58: ee:f3:5a:ca:e2:c5:56:c3:26:89:af:09:b8:16:9d: 5a:4c:8c:2f:a7:bc:36:46:9a:07:98:5f:43:98:ee: e4:11:b2:89:33:bb:1e:f5:e9:2e:0a:fe:64:c0:17: 44:41:dd:f2:86:1c:73:a8:c9:b9:23:34:5c:c8:f6: b1:e1:a6:a1:60:86:c1:4c:6c:03:de:e1:45:db:93: fc:14:ef:2d:27:71:47:d3:e5:28:ef:f4:36:e8:32: f4:23:99:f2:2d:f7:6f:3d:09:c7:54:52:65:3a:07: 82:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:B1:AE:06:52:95:48:6D:8E:CE:0E:B4:C9:96:D9:B5:A2:F7:C7:A0 X509v3 Authority Key Identifier: keyid:F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/3130332e38362e3130302e302f32332d3233203d3e20313336303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.86.100.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:7a:35:46:09:88:12:5b:a0:73:39:34:6d:ec:2e:8a:d3:bc: 6e:b7:5d:f2:b1:d5:83:67:15:11:ad:28:d6:0b:6e:00:12:46: 20:f2:10:07:c5:18:9e:7c:9b:16:07:06:7d:07:b3:58:ad:11: ab:ba:b8:0b:56:38:e0:8a:9c:d3:fc:b4:fd:a3:3f:c0:b2:0a: 3f:6e:3d:c7:ff:88:14:a8:12:f9:24:bf:a5:55:5e:c2:7f:c1: cb:6f:d6:f2:c1:1d:a7:a6:cb:de:39:c0:94:30:0c:50:32:79: 80:a7:9c:a8:00:38:52:86:a8:8f:f7:0c:16:93:8c:e6:02:50: ca:5b:33:b7:89:59:e6:d1:ea:fc:49:88:c4:50:ac:6b:59:c4: 49:80:91:e6:d3:6e:d8:e0:29:b3:08:9c:fb:60:40:ae:e0:10: f8:40:84:5d:0d:af:a6:2b:dc:3c:6d:29:23:00:65:e2:38:83: bd:50:36:dc:6e:32:fa:be:63:55:f4:ec:d3:6a:0b:37:de:ca: e9:10:56:1a:24:7d:fd:1b:d3:2a:72:bc:2a:20:e8:8b:ad:57: ec:ca:fa:0a:d5:b5:c6:2a:7b:00:f0:6c:8e:c8:80:cb:e7:52: 7b:6c:f8:ee:dd:d4:4a:7a:cf:f0:87:cf:cf:52:95:6c:a8:bb: bf:f8:6d:4a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdW8geexab9yui0NTErlEiUAkSnUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJB NzJCNTgzNzAeFw0yNDA4MTMwMTIzMDFaFw0yNTA4MTIwMTI4MDFaMDMxMTAvBgNV BAMTKEEwQjFBRTA2NTI5NTQ4NkQ4RUNFMEVCNEM5OTZEOUI1QTJGN0M3QTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN3V1bUQJslek6A6RQ3sSHE6Sv lXoAbKu6B9JggH2YOa4qKGGjm/XuJIexfz+u2tGHzibypfuNs9yssCMhg74RWKCH HtFtfFQ/S3BvpK82mf4DnUV21kTkN++urL+LtRnv9fyTt3Z7YruBw7g0wjMygZQF T3BtZIIL2Lr68hfaaRgTfkkmsnxwDzoQVzX63/Gr8zCtWO7zWsrixVbDJomvCbgW nVpMjC+nvDZGmgeYX0OY7uQRsokzux716S4K/mTAF0RB3fKGHHOoybkjNFzI9rHh pqFghsFMbAPe4UXbk/wU7y0ncUfT5Sjv9DboMvQjmfIt9289CcdUUmU6B4LhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUoLGuBlKVSG2Ozg60yZbZtaL3x6AwHwYDVR0j BBgwFoAU86uo88LdiSXdR79+ohNzAqcrWDcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZTY5M2I4OS00NTk3LTQwYjUtOTJiMC1iMjk5ZmE3NjlhZmEvMC9GM0FCQThGM0My REQ4OTI1REQ0N0JGN0VBMjEzNzMwMkE3MkI1ODM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJBNzJC NTgzNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhlNjkzYjg5LTQ1OTctNDBiNS05 MmIwLWIyOTlmYTc2OWFmYS8wLzMxMzAzMzJlMzgzNjJlMzEzMDMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM2MzAzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ1ZkMA0GCSqG SIb3DQEBCwUAA4IBAQA+ejVGCYgSW6BzOTRt7C6K07xut13ysdWDZxURrSjWC24A EkYg8hAHxRiefJsWBwZ9B7NYrRGrurgLVjjgipzT/LT9oz/Asgo/bj3H/4gUqBL5 JL+lVV7Cf8HLb9bywR2npsveOcCUMAxQMnmAp5yoADhShqiP9wwWk4zmAlDKWzO3 iVnm0er8SYjEUKxrWcRJgJHm027Y4CmzCJz7YECu4BD4QIRdDa+mK9w8bSkjAGXi OIO9UDbcbjL6vmNV9OzTags33srpEFYaJH39G9MqcrwqIOiLrVfsyvoK1bXGKnsA 8GyOyIDL51J7bPju3dRKes/wh8/PUpVsqLu/+G1K -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:04 2024 by rpki-client on console-fra.rpki-client.org