$ rpki-client -vvf repo-rpki.idnic.net/repo/3c6f8c0a-e03f-4140-ba16-833ac2241afb/0/3130332e3134312e3137302e302f32342d3234203d3e20313530353139.roa File: 3130332e3134312e3137302e302f32342d3234203d3e20313530353139.roa (raw, json) Hash identifier: fbcGL1NLXeGrNrcBk/cYo3ucVVcH9bT5MeT1X/6RPlA= Subject key identifier: C1:FD:C4:2C:17:1B:02:29:83:74:A2:FB:F3:52:40:BB:0D:AD:34:58 Certificate issuer: /CN=2A2780233BF2E06D533EC6B05F500206FBB06D6D Certificate serial: 27EE8ACE47A60AE2DC59BDB21A4D03C7F82663EA Authority key identifier: 2A:27:80:23:3B:F2:E0:6D:53:3E:C6:B0:5F:50:02:06:FB:B0:6D:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2A2780233BF2E06D533EC6B05F500206FBB06D6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c6f8c0a-e03f-4140-ba16-833ac2241afb/0/3130332e3134312e3137302e302f32342d3234203d3e20313530353139.roa Signing time: Mon 02 Dec 2024 06:00:01 +0000 ROA not before: Mon 02 Dec 2024 05:55:01 +0000 ROA not after: Mon 01 Dec 2025 06:00:01 +0000 asID: 150519 IP address blocks: 103.141.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c6f8c0a-e03f-4140-ba16-833ac2241afb/0/2A2780233BF2E06D533EC6B05F500206FBB06D6D.crl rsync://repo-rpki.idnic.net/repo/3c6f8c0a-e03f-4140-ba16-833ac2241afb/0/2A2780233BF2E06D533EC6B05F500206FBB06D6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2A2780233BF2E06D533EC6B05F500206FBB06D6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 04:11:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:ee:8a:ce:47:a6:0a:e2:dc:59:bd:b2:1a:4d:03:c7:f8:26:63:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2780233BF2E06D533EC6B05F500206FBB06D6D Validity Not Before: Dec 2 05:55:01 2024 GMT Not After : Dec 1 06:00:01 2025 GMT Subject: CN=C1FDC42C171B02298374A2FBF35240BB0DAD3458 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a5:00:6e:44:91:e2:37:17:14:99:a8:54:d5: 67:23:d3:ad:b6:00:ac:44:e4:10:59:1a:35:fb:1c: 98:88:14:46:d3:46:5d:09:ec:6b:0c:48:e2:8a:56: e0:32:73:c7:f3:dd:51:cf:a7:55:b2:66:fa:d3:73: 3f:6f:21:ce:2a:d2:7f:c0:8a:43:43:f8:e1:ed:0f: 46:63:ce:b5:42:4f:06:dd:88:2c:eb:4d:90:76:e0: 0f:5e:48:fb:1e:b4:48:92:24:50:d9:c5:e0:4b:41: 2a:3e:c3:97:db:25:24:64:16:7d:be:62:a9:18:a1: e8:e3:89:ce:05:9a:06:6a:64:83:d8:62:67:61:97: 9c:99:cf:45:fc:0d:23:9c:4f:12:51:c3:94:fc:5a: 32:42:00:6a:b7:d8:4f:48:28:8d:3a:2c:0a:cc:63: e5:1f:6f:54:91:11:41:37:e4:ac:13:63:0c:20:a8: f5:38:c9:b3:c6:59:27:06:38:05:50:19:7d:9f:1d: 7a:9b:97:d0:a8:14:2f:54:f8:b3:36:6a:6c:68:b8: d9:92:c1:5d:78:41:1d:ac:1f:ce:e5:96:f9:f2:65: e1:54:46:6a:36:bc:81:b3:f4:84:12:98:f1:0b:da: af:35:dd:13:1b:bc:e1:41:16:4f:b1:ff:70:e4:9c: b3:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:FD:C4:2C:17:1B:02:29:83:74:A2:FB:F3:52:40:BB:0D:AD:34:58 X509v3 Authority Key Identifier: keyid:2A:27:80:23:3B:F2:E0:6D:53:3E:C6:B0:5F:50:02:06:FB:B0:6D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c6f8c0a-e03f-4140-ba16-833ac2241afb/0/2A2780233BF2E06D533EC6B05F500206FBB06D6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2A2780233BF2E06D533EC6B05F500206FBB06D6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c6f8c0a-e03f-4140-ba16-833ac2241afb/0/3130332e3134312e3137302e302f32342d3234203d3e20313530353139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.141.170.0/24 Signature Algorithm: sha256WithRSAEncryption 37:6c:57:fb:9e:5c:d4:cf:f3:9f:46:47:d2:7c:e3:18:8d:9a: 37:3e:26:bf:0e:3a:fc:ac:24:8e:9a:54:35:21:90:45:f5:90: c6:7e:4b:a4:47:a7:65:6e:bb:0e:1e:6a:d4:66:2d:ae:16:f2: d3:52:20:72:71:72:3f:5d:30:b1:7f:07:ca:e4:b5:3f:2c:f7: c2:76:dd:76:c2:f0:c1:4c:d4:99:ba:a7:03:17:71:85:e2:2c: 9a:95:8d:3a:50:b9:14:31:a1:fc:72:cf:01:c6:07:e4:d6:75: 33:86:29:1d:5f:16:6d:06:97:2e:36:07:e1:db:61:0a:23:0b: d4:9e:23:c4:bf:93:dc:60:99:4c:d4:44:b4:d9:26:7e:bc:cb: c8:8a:b2:32:74:b5:e1:ef:81:76:f2:89:96:de:d6:fc:e6:b8: 39:bf:ad:00:ae:1e:6d:c8:2f:5c:db:b7:5e:85:61:96:3d:e7: 7f:e5:4b:54:d9:f1:2b:1e:bc:f1:83:22:2d:ab:3a:e3:93:a3: e3:30:f0:4f:fe:3e:0d:97:8a:0b:00:3d:14:55:0a:2c:61:9b: 07:5b:f0:72:30:55:c0:93:5e:b8:56:38:cb:0e:c4:c4:32:0a: 57:5a:bf:da:a1:6c:8b:81:ca:3b:be:86:41:f3:ce:6c:1e:7b: d5:3f:97:c0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJ+6KzkemCuLcWb2yGk0Dx/gmY+owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyNzgwMjMzQkYyRTA2RDUzM0VDNkIwNUY1MDAyMDZG QkIwNkQ2RDAeFw0yNDEyMDIwNTU1MDFaFw0yNTEyMDEwNjAwMDFaMDMxMTAvBgNV BAMTKEMxRkRDNDJDMTcxQjAyMjk4Mzc0QTJGQkYzNTI0MEJCMERBRDM0NTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwpQBuRJHiNxcUmahU1Wcj0622 AKxE5BBZGjX7HJiIFEbTRl0J7GsMSOKKVuAyc8fz3VHPp1WyZvrTcz9vIc4q0n/A ikND+OHtD0ZjzrVCTwbdiCzrTZB24A9eSPsetEiSJFDZxeBLQSo+w5fbJSRkFn2+ YqkYoejjic4FmgZqZIPYYmdhl5yZz0X8DSOcTxJRw5T8WjJCAGq32E9IKI06LArM Y+Ufb1SREUE35KwTYwwgqPU4ybPGWScGOAVQGX2fHXqbl9CoFC9U+LM2amxouNmS wV14QR2sH87llvnyZeFURmo2vIGz9IQSmPEL2q813RMbvOFBFk+x/3DknLOdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUwf3ELBcbAimDdKL781JAuw2tNFgwHwYDVR0j BBgwFoAUKieAIzvy4G1TPsawX1ACBvuwbW0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzZmOGMwYS1lMDNmLTQxNDAtYmExNi04MzNhYzIyNDFhZmIvMC8yQTI3ODAyMzNC RjJFMDZENTMzRUM2QjA1RjUwMDIwNkZCQjA2RDZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkEyNzgwMjMzQkYyRTA2RDUzM0VDNkIwNUY1MDAyMDZGQkIw NkQ2RC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjNmY4YzBhLWUwM2YtNDE0MC1i YTE2LTgzM2FjMjI0MWFmYi8wLzMxMzAzMzJlMzEzNDMxMmUzMTM3MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzNTMxMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnjaowDQYJ KoZIhvcNAQELBQADggEBADdsV/ueXNTP859GR9J84xiNmjc+Jr8OOvysJI6aVDUh kEX1kMZ+S6RHp2Vuuw4eatRmLa4W8tNSIHJxcj9dMLF/B8rktT8s98J23XbC8MFM 1Jm6pwMXcYXiLJqVjTpQuRQxofxyzwHGB+TWdTOGKR1fFm0Gly42B+HbYQojC9Se I8S/k9xgmUzURLTZJn68y8iKsjJ0teHvgXbyiZbe1vzmuDm/rQCuHm3IL1zbt16F YZY953/lS1TZ8SsevPGDIi2rOuOTo+Mw8E/+Pg2XigsAPRRVCixhmwdb8HIwVcCT XrhWOMsOxMQyCldav9qhbIuByju+hkHzzmwee9U/l8A= -----END CERTIFICATE-----Generated at Sun Apr 6 08:52:16 2025 by rpki-client