$ rpki-client -vvf repo-rpki.idnic.net/repo/b883e3be-57e2-4125-a0c5-9a9ea501bf05/0/3130332e3131392e3233312e302f32342d3234203d3e203634333135.roa File: 3130332e3131392e3233312e302f32342d3234203d3e203634333135.roa (raw, json) Hash identifier: Yz5xkZY0xzo/trvfbAdTc4aF9ack7BIeyFzB+WOAYgQ= Subject key identifier: CC:0B:90:D9:D7:91:62:EE:29:1B:2D:5C:8F:2F:13:97:E5:24:7B:DB Certificate issuer: /CN=90508FF980097E19CEF65ED72A856616A6F690AB Certificate serial: 3CD00A02674043E7396B2532E6EA002940B8350D Authority key identifier: 90:50:8F:F9:80:09:7E:19:CE:F6:5E:D7:2A:85:66:16:A6:F6:90:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90508FF980097E19CEF65ED72A856616A6F690AB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b883e3be-57e2-4125-a0c5-9a9ea501bf05/0/3130332e3131392e3233312e302f32342d3234203d3e203634333135.roa Signing time: Sat 22 Feb 2025 04:00:02 +0000 ROA not before: Sat 22 Feb 2025 03:55:02 +0000 ROA not after: Sat 21 Feb 2026 04:00:02 +0000 asID: 64315 IP address blocks: 103.119.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b883e3be-57e2-4125-a0c5-9a9ea501bf05/0/90508FF980097E19CEF65ED72A856616A6F690AB.crl rsync://repo-rpki.idnic.net/repo/b883e3be-57e2-4125-a0c5-9a9ea501bf05/0/90508FF980097E19CEF65ED72A856616A6F690AB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90508FF980097E19CEF65ED72A856616A6F690AB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 16:40:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:d0:0a:02:67:40:43:e7:39:6b:25:32:e6:ea:00:29:40:b8:35:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90508FF980097E19CEF65ED72A856616A6F690AB Validity Not Before: Feb 22 03:55:02 2025 GMT Not After : Feb 21 04:00:02 2026 GMT Subject: CN=CC0B90D9D79162EE291B2D5C8F2F1397E5247BDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a2:9c:c7:7c:a6:18:c8:b9:b7:95:d9:32:cc: c8:cf:ba:af:c0:fa:07:89:2a:2d:19:b9:f0:71:9f: 7f:b9:ba:a3:99:65:03:57:9e:b9:a1:d4:a2:dc:7d: 03:de:11:62:43:55:b4:da:61:73:10:af:49:27:a6: 70:7c:7e:83:14:22:50:8c:dd:cc:29:b1:4a:44:2f: 90:8c:dc:0a:96:97:dc:2e:dd:e5:31:44:5d:96:84: d9:22:9a:85:3f:f3:d2:cb:89:1d:49:9f:a1:8b:63: c1:b8:d9:1a:aa:11:22:24:c3:1b:08:2f:30:2b:1f: 42:0b:e8:f1:c0:bd:9b:9e:a0:51:1b:6a:9a:16:fb: 0b:26:1b:25:ea:35:14:00:40:72:55:02:0f:5f:a3: 8d:00:e4:b4:04:69:51:fd:ce:11:a5:58:22:93:29: af:9f:94:23:ac:d3:87:04:36:14:bf:da:16:be:f4: 7a:14:70:8f:43:c1:b3:43:1a:72:04:1e:7a:3f:d7: bc:85:20:0c:75:04:7f:78:14:cd:93:6c:49:ac:57: 8d:64:ec:cd:62:72:48:9c:ca:57:fa:6c:8d:02:95: a5:75:ed:1b:1d:31:30:ad:70:3f:9f:37:50:0d:9c: 9e:45:d9:ca:34:e5:d9:6d:e3:0f:c6:8d:52:78:34: 42:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:0B:90:D9:D7:91:62:EE:29:1B:2D:5C:8F:2F:13:97:E5:24:7B:DB X509v3 Authority Key Identifier: keyid:90:50:8F:F9:80:09:7E:19:CE:F6:5E:D7:2A:85:66:16:A6:F6:90:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b883e3be-57e2-4125-a0c5-9a9ea501bf05/0/90508FF980097E19CEF65ED72A856616A6F690AB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90508FF980097E19CEF65ED72A856616A6F690AB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b883e3be-57e2-4125-a0c5-9a9ea501bf05/0/3130332e3131392e3233312e302f32342d3234203d3e203634333135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.231.0/24 Signature Algorithm: sha256WithRSAEncryption 20:a1:d5:55:90:28:37:c8:6a:68:32:31:7a:e1:25:78:8b:be: 3d:ba:7a:b5:08:7b:b7:bb:eb:de:19:4e:55:1b:11:8b:d5:ae: 16:ef:24:60:19:4f:8c:fb:6d:da:bf:74:0d:3f:3e:72:ee:ee: c6:97:d7:30:ad:e8:58:4e:0c:2c:5c:2b:b0:77:ad:97:0a:4b: 74:cd:1c:d1:49:08:af:6a:2d:37:34:20:8a:87:78:d3:6e:02: cf:78:19:2c:d2:c6:e7:ea:f3:f2:e2:e6:c5:a8:0d:4d:73:32: 0d:c1:4a:a4:11:51:a5:2e:b5:5c:12:27:50:78:3d:c5:6b:32: 3b:1e:9c:10:6a:4e:7f:ff:72:97:80:b7:8e:9b:85:bd:a1:a4: 72:51:97:a8:23:71:42:c6:4a:b4:a4:d7:78:38:ec:13:04:1b: 33:12:40:f5:a0:85:c5:28:d2:c7:6e:cf:e3:01:d7:d4:8d:d8: 88:c8:ef:e3:28:a8:65:e0:90:1e:62:06:49:ef:5f:b8:1c:c2: 27:4e:99:fa:95:13:eb:f5:96:5e:b9:03:cc:81:fb:6c:70:95: a5:1a:25:3e:aa:bd:00:c8:2c:7e:73:18:12:2b:18:b5:84:86: e7:01:84:90:b1:62:a0:f1:5c:82:52:ca:e3:19:cd:a4:d8:78: 8d:0a:90:f2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPNAKAmdAQ+c5ayUy5uoAKUC4NQ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA1MDhGRjk4MDA5N0UxOUNFRjY1RUQ3MkE4NTY2MTZB NkY2OTBBQjAeFw0yNTAyMjIwMzU1MDJaFw0yNjAyMjEwNDAwMDJaMDMxMTAvBgNV BAMTKENDMEI5MEQ5RDc5MTYyRUUyOTFCMkQ1QzhGMkYxMzk3RTUyNDdCREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6opzHfKYYyLm3ldkyzMjPuq/A +geJKi0ZufBxn3+5uqOZZQNXnrmh1KLcfQPeEWJDVbTaYXMQr0knpnB8foMUIlCM 3cwpsUpEL5CM3AqWl9wu3eUxRF2WhNkimoU/89LLiR1Jn6GLY8G42RqqESIkwxsI LzArH0IL6PHAvZueoFEbapoW+wsmGyXqNRQAQHJVAg9fo40A5LQEaVH9zhGlWCKT Ka+flCOs04cENhS/2ha+9HoUcI9DwbNDGnIEHno/17yFIAx1BH94FM2TbEmsV41k 7M1ickicylf6bI0ClaV17RsdMTCtcD+fN1ANnJ5F2co05dlt4w/GjVJ4NEIlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzAuQ2deRYu4pGy1cjy8Tl+Uke9swHwYDVR0j BBgwFoAUkFCP+YAJfhnO9l7XKoVmFqb2kKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ODgzZTNiZS01N2UyLTQxMjUtYTBjNS05YTllYTUwMWJmMDUvMC85MDUwOEZGOTgw MDk3RTE5Q0VGNjVFRDcyQTg1NjYxNkE2RjY5MEFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTA1MDhGRjk4MDA5N0UxOUNFRjY1RUQ3MkE4NTY2MTZBNkY2 OTBBQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4ODNlM2JlLTU3ZTItNDEyNS1h MGM1LTlhOWVhNTAxYmYwNS8wLzMxMzAzMzJlMzEzMTM5MmUzMjMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjM0MzMzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3fnMA0GCSqG SIb3DQEBCwUAA4IBAQAgodVVkCg3yGpoMjF64SV4i749unq1CHu3u+veGU5VGxGL 1a4W7yRgGU+M+23av3QNPz5y7u7Gl9cwrehYTgwsXCuwd62XCkt0zRzRSQivai03 NCCKh3jTbgLPeBks0sbn6vPy4ubFqA1NczINwUqkEVGlLrVcEidQeD3FazI7HpwQ ak5//3KXgLeOm4W9oaRyUZeoI3FCxkq0pNd4OOwTBBszEkD1oIXFKNLHbs/jAdfU jdiIyO/jKKhl4JAeYgZJ71+4HMInTpn6lRPr9ZZeuQPMgftscJWlGiU+qr0AyCx+ cxgSKxi1hIbnAYSQsWKg8VyCUsrjGc2k2HiNCpDy -----END CERTIFICATE-----Generated at Sun Apr 6 04:54:55 2025 by rpki-client