$ rpki-client -vvf repo-rpki.idnic.net/repo/fca54781-9678-475c-ac1b-cd4bfcf5d0ea/0/3130332e3137352e38322e302f32332d3234203d3e20313338303634.roa File: 3130332e3137352e38322e302f32332d3234203d3e20313338303634.roa (raw, json) Hash identifier: P8Omv4YMdnsvaEIej+qb+BBba9eBf1ssCLAulJkcHdw= Subject key identifier: 23:A4:8C:DC:AF:6E:65:6D:2D:C3:AD:2A:48:C2:3A:65:95:46:7E:12 Certificate issuer: /CN=3AD7DA61EBA58003D3EF29F79AAFBCAD86CED614 Certificate serial: 49AFD85E41D139C9FE6864C395DEC7B60E12DB60 Authority key identifier: 3A:D7:DA:61:EB:A5:80:03:D3:EF:29:F7:9A:AF:BC:AD:86:CE:D6:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3AD7DA61EBA58003D3EF29F79AAFBCAD86CED614.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fca54781-9678-475c-ac1b-cd4bfcf5d0ea/0/3130332e3137352e38322e302f32332d3234203d3e20313338303634.roa Signing time: Sun 25 Aug 2024 09:00:00 +0000 ROA not before: Sun 25 Aug 2024 08:55:00 +0000 ROA not after: Sun 24 Aug 2025 09:00:00 +0000 asID: 138064 IP address blocks: 103.175.82.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fca54781-9678-475c-ac1b-cd4bfcf5d0ea/0/3AD7DA61EBA58003D3EF29F79AAFBCAD86CED614.crl rsync://repo-rpki.idnic.net/repo/fca54781-9678-475c-ac1b-cd4bfcf5d0ea/0/3AD7DA61EBA58003D3EF29F79AAFBCAD86CED614.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3AD7DA61EBA58003D3EF29F79AAFBCAD86CED614.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:af:d8:5e:41:d1:39:c9:fe:68:64:c3:95:de:c7:b6:0e:12:db:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3AD7DA61EBA58003D3EF29F79AAFBCAD86CED614 Validity Not Before: Aug 25 08:55:00 2024 GMT Not After : Aug 24 09:00:00 2025 GMT Subject: CN=23A48CDCAF6E656D2DC3AD2A48C23A6595467E12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c8:f7:bb:8d:02:a1:3f:c1:86:52:eb:3b:f2: 9f:49:f3:9f:56:86:a5:7a:09:23:32:8f:e5:41:bc: 5e:41:69:78:20:b8:a5:e6:5f:50:d5:a8:2f:ea:06: e9:e5:1f:e5:c0:d9:2e:a2:d3:da:c2:fc:61:2c:9d: 9e:c0:42:7f:88:dc:db:e6:33:c9:ae:19:59:a8:3e: 2d:9a:88:9c:98:4c:9f:44:46:5b:db:de:07:e0:c9: df:df:2b:a9:2c:6b:63:78:dd:68:42:a3:03:d6:c4: 2f:fb:f8:a6:f6:6e:35:38:cb:2d:02:a2:64:93:37: 17:f0:06:9d:b0:af:bb:eb:70:89:37:72:c8:90:45: f1:81:80:de:f1:ba:d6:f3:da:94:a8:80:0e:8f:12: 82:a2:db:9a:03:ba:c2:51:63:a5:26:34:07:92:e4: fc:cd:c1:2c:be:81:4f:fa:53:83:f8:9a:23:05:73: 37:cb:4d:81:48:c9:75:c8:df:99:ca:65:b6:b6:64: 41:f6:8c:ae:8b:69:43:f1:e8:bb:1f:b4:a1:df:9a: d4:bf:34:85:ac:0b:06:28:ec:97:bd:e6:58:28:af: 28:05:6c:ab:8a:a5:31:e4:9f:5c:a4:fc:f5:60:eb: b3:08:e4:2c:ac:24:41:3d:d7:27:e7:c4:33:5c:aa: 53:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:A4:8C:DC:AF:6E:65:6D:2D:C3:AD:2A:48:C2:3A:65:95:46:7E:12 X509v3 Authority Key Identifier: keyid:3A:D7:DA:61:EB:A5:80:03:D3:EF:29:F7:9A:AF:BC:AD:86:CE:D6:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fca54781-9678-475c-ac1b-cd4bfcf5d0ea/0/3AD7DA61EBA58003D3EF29F79AAFBCAD86CED614.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3AD7DA61EBA58003D3EF29F79AAFBCAD86CED614.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fca54781-9678-475c-ac1b-cd4bfcf5d0ea/0/3130332e3137352e38322e302f32332d3234203d3e20313338303634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.82.0/23 Signature Algorithm: sha256WithRSAEncryption c8:dd:88:bb:61:a5:5a:47:d6:ef:5e:67:6f:b5:8d:3c:37:d1: b0:01:66:15:42:a0:88:fb:32:5d:25:08:3e:d6:6c:4a:ad:f3: f8:2c:02:c0:66:8e:dd:d0:c7:44:79:c2:42:d6:7d:d8:fa:b8: 27:e8:c8:59:86:5b:6c:c3:5c:e5:95:a0:00:51:d1:4a:c4:d8: 72:5d:37:73:42:b3:f5:99:b7:18:55:4a:e7:20:33:c4:6f:cb: 8c:de:37:c0:42:b5:ce:d9:d4:81:ad:5b:91:13:b6:51:c5:28: 46:0b:03:dc:7b:26:14:d5:9f:a3:b0:ea:90:37:3e:d5:21:fc: c3:13:cb:63:61:a5:d6:32:c2:99:57:d2:32:7f:07:e0:1e:0c: 30:b0:44:0c:53:3a:08:20:6b:38:d5:e4:35:9d:19:83:e0:a0: f4:77:17:80:30:0d:2b:7a:bd:55:1b:15:83:b0:5a:2a:4a:c3: 65:cf:0d:43:de:ec:8b:4f:88:7d:75:43:ee:32:2d:17:c1:ac: 71:40:6a:43:b5:ed:0b:2a:2b:1a:1a:02:8e:bd:03:a6:b1:e8: 67:57:80:65:d1:af:0d:7e:48:80:c0:06:24:26:4d:93:88:a9: 16:51:28:9f:b9:fa:e1:04:ba:45:71:43:10:83:29:1e:51:88: 7b:2d:34:48 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSa/YXkHROcn+aGTDld7Htg4S22AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0FEN0RBNjFFQkE1ODAwM0QzRUYyOUY3OUFBRkJDQUQ4 NkNFRDYxNDAeFw0yNDA4MjUwODU1MDBaFw0yNTA4MjQwOTAwMDBaMDMxMTAvBgNV BAMTKDIzQTQ4Q0RDQUY2RTY1NkQyREMzQUQyQTQ4QzIzQTY1OTU0NjdFMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9yPe7jQKhP8GGUus78p9J859W hqV6CSMyj+VBvF5BaXgguKXmX1DVqC/qBunlH+XA2S6i09rC/GEsnZ7AQn+I3Nvm M8muGVmoPi2aiJyYTJ9ERlvb3gfgyd/fK6ksa2N43WhCowPWxC/7+Kb2bjU4yy0C omSTNxfwBp2wr7vrcIk3csiQRfGBgN7xutbz2pSogA6PEoKi25oDusJRY6UmNAeS 5PzNwSy+gU/6U4P4miMFczfLTYFIyXXI35nKZba2ZEH2jK6LaUPx6LsftKHfmtS/ NIWsCwYo7Je95lgorygFbKuKpTHkn1yk/PVg67MI5CysJEE91yfnxDNcqlMHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUI6SM3K9uZW0tw60qSMI6ZZVGfhIwHwYDVR0j BBgwFoAUOtfaYeulgAPT7yn3mq+8rYbO1hQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m Y2E1NDc4MS05Njc4LTQ3NWMtYWMxYi1jZDRiZmNmNWQwZWEvMC8zQUQ3REE2MUVC QTU4MDAzRDNFRjI5Rjc5QUFGQkNBRDg2Q0VENjE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0FEN0RBNjFFQkE1ODAwM0QzRUYyOUY3OUFBRkJDQUQ4NkNF RDYxNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZjYTU0NzgxLTk2NzgtNDc1Yy1h YzFiLWNkNGJmY2Y1ZDBlYS8wLzMxMzAzMzJlMzEzNzM1MmUzODMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ69SMA0GCSqG SIb3DQEBCwUAA4IBAQDI3Yi7YaVaR9bvXmdvtY08N9GwAWYVQqCI+zJdJQg+1mxK rfP4LALAZo7d0MdEecJC1n3Y+rgn6MhZhltsw1zllaAAUdFKxNhyXTdzQrP1mbcY VUrnIDPEb8uM3jfAQrXO2dSBrVuRE7ZRxShGCwPceyYU1Z+jsOqQNz7VIfzDE8tj YaXWMsKZV9IyfwfgHgwwsEQMUzoIIGs41eQ1nRmD4KD0dxeAMA0rer1VGxWDsFoq SsNlzw1D3uyLT4h9dUPuMi0XwaxxQGpDte0LKisaGgKOvQOmsehnV4Bl0a8NfkiA wAYkJk2TiKkWUSifufrhBLpFcUMQgykeUYh7LTRI -----END CERTIFICATE-----Generated at Thu Nov 21 22:33:07 2024 by rpki-client on console-fra.rpki-client.org