$ rpki-client -vvf repo-rpki.idnic.net/repo/8f6bf37c-d8ad-4e03-a06a-4408157cf57e/0/3130332e3133332e33362e302f32342d3234203d3e20313338313333.roa File: 3130332e3133332e33362e302f32342d3234203d3e20313338313333.roa (raw, json) Hash identifier: bVHywHWYUUDcUzaHk0mve4L7zaKPpK+j/bF1K1wLTD0= Subject key identifier: 83:C0:94:7B:FA:CF:7E:5F:25:46:9A:B0:D2:3F:0C:9F:2C:26:B9:57 Certificate issuer: /CN=08632F1EBF41728D3E177234FCD8C0B9A988898B Certificate serial: 4A4EFFE91D323A68FC26AC3A18061EBF0604654A Authority key identifier: 08:63:2F:1E:BF:41:72:8D:3E:17:72:34:FC:D8:C0:B9:A9:88:89:8B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08632F1EBF41728D3E177234FCD8C0B9A988898B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8f6bf37c-d8ad-4e03-a06a-4408157cf57e/0/3130332e3133332e33362e302f32342d3234203d3e20313338313333.roa Signing time: Thu 11 Apr 2024 05:00:00 +0000 ROA not before: Thu 11 Apr 2024 04:55:00 +0000 ROA not after: Thu 10 Apr 2025 05:00:00 +0000 asID: 138133 IP address blocks: 103.133.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8f6bf37c-d8ad-4e03-a06a-4408157cf57e/0/08632F1EBF41728D3E177234FCD8C0B9A988898B.crl rsync://repo-rpki.idnic.net/repo/8f6bf37c-d8ad-4e03-a06a-4408157cf57e/0/08632F1EBF41728D3E177234FCD8C0B9A988898B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08632F1EBF41728D3E177234FCD8C0B9A988898B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:36:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:4e:ff:e9:1d:32:3a:68:fc:26:ac:3a:18:06:1e:bf:06:04:65:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08632F1EBF41728D3E177234FCD8C0B9A988898B Validity Not Before: Apr 11 04:55:00 2024 GMT Not After : Apr 10 05:00:00 2025 GMT Subject: CN=83C0947BFACF7E5F25469AB0D23F0C9F2C26B957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f7:ae:0a:5a:bb:29:32:d9:bf:95:3e:b3:11: 9c:0e:4a:c6:da:2a:29:a9:ca:ff:15:86:d1:06:66: 09:50:c5:3d:c0:67:7d:6a:b2:53:b7:9b:36:8d:89: 5c:96:57:c2:4a:da:96:05:1f:e1:95:37:55:ea:91: f6:34:e3:4f:bd:7e:dd:b2:06:53:74:e9:e9:0e:7d: 67:72:14:ea:1d:5e:14:ad:52:db:36:5e:63:54:c0: cd:07:18:b8:ff:1d:b5:ee:46:4b:c0:a9:0a:ff:33: 06:c2:9c:13:4f:7d:4b:38:f9:bb:90:29:a0:de:b0: cc:af:1c:e1:f2:a3:16:ab:1a:04:a2:bd:a3:69:17: 02:2c:cb:ed:e7:ae:69:ba:20:94:07:cf:51:23:4b: 26:99:ce:67:06:bc:59:61:c9:ec:0d:13:a6:c1:da: b3:74:d4:eb:10:aa:a4:47:41:8f:85:1e:8c:00:b3: 46:1a:64:ab:cf:ac:13:c8:5c:cd:90:a1:ff:2c:ea: 18:f5:b0:54:80:92:ff:8a:82:ba:60:ff:21:3b:92: ae:9f:d9:ac:f4:87:a2:7d:ce:10:59:04:73:e4:e2: b9:d6:20:58:05:54:85:ea:eb:18:50:e2:d5:87:db: a1:41:39:f9:f6:4f:b8:30:8d:bc:59:92:81:0d:52: 4e:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:C0:94:7B:FA:CF:7E:5F:25:46:9A:B0:D2:3F:0C:9F:2C:26:B9:57 X509v3 Authority Key Identifier: keyid:08:63:2F:1E:BF:41:72:8D:3E:17:72:34:FC:D8:C0:B9:A9:88:89:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8f6bf37c-d8ad-4e03-a06a-4408157cf57e/0/08632F1EBF41728D3E177234FCD8C0B9A988898B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08632F1EBF41728D3E177234FCD8C0B9A988898B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8f6bf37c-d8ad-4e03-a06a-4408157cf57e/0/3130332e3133332e33362e302f32342d3234203d3e20313338313333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.133.36.0/24 Signature Algorithm: sha256WithRSAEncryption c0:a1:af:1c:6c:48:b5:cd:85:60:55:98:ad:49:7d:fa:01:ac: d1:bc:3f:27:37:dc:ac:b5:3d:e4:21:b1:e9:91:97:15:a0:7e: 5f:cb:bc:09:c0:b8:ab:a3:5e:1d:55:57:17:70:6f:ff:8c:fc: dd:30:d9:a4:ba:cf:bd:7f:09:c7:b0:f3:f8:78:c9:1d:20:ab: e6:8e:38:39:b4:74:af:29:aa:98:28:c9:0b:68:55:f0:34:a9: 79:aa:00:10:bf:6d:eb:c3:ab:42:31:72:b8:0f:8f:07:d9:a6: b4:05:64:e6:c1:91:74:5b:9b:9c:7d:96:27:1d:64:e2:03:38: 21:1a:31:8b:52:b1:10:69:84:87:07:10:7c:49:fb:33:54:4f: 1e:ed:93:17:f6:96:a5:de:f3:97:05:95:13:c8:4d:de:a6:33: 54:72:f5:c6:5a:5e:32:8b:73:cf:41:9d:ff:b0:2d:a2:bb:45: ba:e6:0f:fa:0c:a1:f8:ef:12:79:4d:1d:b6:2f:33:43:dc:e5: d7:d9:c9:51:24:f2:d1:14:74:53:99:08:4a:1f:68:ba:a8:0e: 1f:e0:90:93:a2:0e:9b:1b:72:ab:c7:69:cf:e8:af:e3:f3:c3: f2:63:81:de:e7:f8:e9:98:01:e0:47:ba:3f:e1:ec:d9:de:8f: db:a0:73:b5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSk7/6R0yOmj8Jqw6GAYevwYEZUowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg2MzJGMUVCRjQxNzI4RDNFMTc3MjM0RkNEOEMwQjlB OTg4ODk4QjAeFw0yNDA0MTEwNDU1MDBaFw0yNTA0MTAwNTAwMDBaMDMxMTAvBgNV BAMTKDgzQzA5NDdCRkFDRjdFNUYyNTQ2OUFCMEQyM0YwQzlGMkMyNkI5NTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw964KWrspMtm/lT6zEZwOSsba Kimpyv8VhtEGZglQxT3AZ31qslO3mzaNiVyWV8JK2pYFH+GVN1XqkfY040+9ft2y BlN06ekOfWdyFOodXhStUts2XmNUwM0HGLj/HbXuRkvAqQr/MwbCnBNPfUs4+buQ KaDesMyvHOHyoxarGgSivaNpFwIsy+3nrmm6IJQHz1EjSyaZzmcGvFlhyewNE6bB 2rN01OsQqqRHQY+FHowAs0YaZKvPrBPIXM2Qof8s6hj1sFSAkv+Kgrpg/yE7kq6f 2az0h6J9zhBZBHPk4rnWIFgFVIXq6xhQ4tWH26FBOfn2T7gwjbxZkoENUk6zAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUg8CUe/rPfl8lRpqw0j8MnywmuVcwHwYDVR0j BBgwFoAUCGMvHr9Bco0+F3I0/NjAuamIiYswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZjZiZjM3Yy1kOGFkLTRlMDMtYTA2YS00NDA4MTU3Y2Y1N2UvMC8wODYzMkYxRUJG NDE3MjhEM0UxNzcyMzRGQ0Q4QzBCOUE5ODg4OThCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDg2MzJGMUVCRjQxNzI4RDNFMTc3MjM0RkNEOEMwQjlBOTg4 ODk4Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhmNmJmMzdjLWQ4YWQtNGUwMy1h MDZhLTQ0MDgxNTdjZjU3ZS8wLzMxMzAzMzJlMzEzMzMzMmUzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4UkMA0GCSqG SIb3DQEBCwUAA4IBAQDAoa8cbEi1zYVgVZitSX36AazRvD8nN9ystT3kIbHpkZcV oH5fy7wJwLiro14dVVcXcG//jPzdMNmkus+9fwnHsPP4eMkdIKvmjjg5tHSvKaqY KMkLaFXwNKl5qgAQv23rw6tCMXK4D48H2aa0BWTmwZF0W5ucfZYnHWTiAzghGjGL UrEQaYSHBxB8SfszVE8e7ZMX9pal3vOXBZUTyE3epjNUcvXGWl4yi3PPQZ3/sC2i u0W65g/6DKH47xJ5TR22LzND3OXX2clRJPLRFHRTmQhKH2i6qA4f4JCTog6bG3Kr x2nP6K/j88PyY4He5/jpmAHgR7o/4ezZ3o/boHO1 -----END CERTIFICATE-----Generated at Mon Nov 25 07:13:31 2024 by rpki-client on console-fra.rpki-client.org