$ rpki-client -vvf repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/3130332e3138312e3235312e302f32342d3234203d3e2039333431.roa File: 3130332e3138312e3235312e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: HM/zqihNRtDQE+DnhG8b5XIeNqQOzvMA43WJGWaoV58= Subject key identifier: F9:19:68:52:D8:A1:CE:44:73:92:A2:D3:46:F6:5E:1A:D9:6D:C4:32 Certificate issuer: /CN=2E2D926932C5C7E296931D881908A4BB1E98EB6D Certificate serial: 43863C2709807C92258ADD011409F3CE87932810 Authority key identifier: 2E:2D:92:69:32:C5:C7:E2:96:93:1D:88:19:08:A4:BB:1E:98:EB:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E2D926932C5C7E296931D881908A4BB1E98EB6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/3130332e3138312e3235312e302f32342d3234203d3e2039333431.roa Signing time: Wed 11 Dec 2024 19:00:00 +0000 ROA not before: Wed 11 Dec 2024 18:55:00 +0000 ROA not after: Wed 10 Dec 2025 19:00:00 +0000 asID: 9341 IP address blocks: 103.181.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/2E2D926932C5C7E296931D881908A4BB1E98EB6D.crl rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/2E2D926932C5C7E296931D881908A4BB1E98EB6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E2D926932C5C7E296931D881908A4BB1E98EB6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 21:48:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:86:3c:27:09:80:7c:92:25:8a:dd:01:14:09:f3:ce:87:93:28:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2E2D926932C5C7E296931D881908A4BB1E98EB6D Validity Not Before: Dec 11 18:55:00 2024 GMT Not After : Dec 10 19:00:00 2025 GMT Subject: CN=F9196852D8A1CE447392A2D346F65E1AD96DC432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:06:de:93:95:ea:b7:50:14:b0:b5:cb:e9:e9: 73:bf:6a:6a:69:d7:5f:fb:81:da:f3:65:7d:f3:c7: 09:d1:46:62:13:52:de:0d:76:c6:99:ee:d4:ef:43: 40:40:c7:f2:f8:a5:2b:b2:da:6b:c5:a5:84:c5:7e: e2:02:13:fc:7f:36:c3:91:14:b7:e8:c3:a3:08:d7: d7:d4:c9:ff:7d:3e:5f:29:1e:8f:68:ae:63:f2:b1: e7:a1:c5:f5:44:b9:1a:61:25:a9:7d:c3:d5:6d:4d: 94:6f:b3:29:04:12:e1:a2:8a:b3:35:9e:40:93:00: 77:fc:27:16:43:36:b1:9b:e0:73:c4:34:a7:dd:3d: 78:c7:4e:40:22:e4:34:05:88:34:1b:15:5f:41:b1: fc:7f:88:99:9a:53:7b:0e:47:f2:88:4f:3d:f2:46: d1:67:31:62:ea:eb:5d:c6:d7:d3:0c:9f:6b:63:06: b6:45:c9:c5:61:31:e7:ec:bd:21:05:2e:ca:35:f2: 88:de:3c:05:7d:bb:08:e2:a9:64:b6:12:d1:e6:2b: 11:7e:0a:0d:3c:26:39:14:91:8a:3f:66:1a:f5:e1: 49:19:89:f5:cf:43:42:a7:68:37:e9:65:2d:11:9e: c7:42:79:99:9d:96:bb:f5:f7:5c:d4:31:a9:e7:f8: 62:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:19:68:52:D8:A1:CE:44:73:92:A2:D3:46:F6:5E:1A:D9:6D:C4:32 X509v3 Authority Key Identifier: keyid:2E:2D:92:69:32:C5:C7:E2:96:93:1D:88:19:08:A4:BB:1E:98:EB:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/2E2D926932C5C7E296931D881908A4BB1E98EB6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E2D926932C5C7E296931D881908A4BB1E98EB6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/3130332e3138312e3235312e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.181.251.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:11:3c:44:21:5d:cf:3e:76:ee:72:ce:3e:f4:d7:8d:e0:4a: 8d:32:66:a9:7c:26:c4:a1:c6:fa:26:0f:67:c5:da:08:a9:82: 54:a3:57:cd:6b:49:6b:46:d4:42:9a:a6:41:18:87:05:7c:4f: d3:ea:61:46:03:a3:59:25:c9:2b:5d:c9:66:2d:6f:7c:88:55: 7b:90:2e:2c:2c:f4:c8:77:83:eb:de:f3:26:d5:b0:5b:61:03: 31:be:56:4b:94:71:8e:a2:70:24:ce:33:da:92:82:39:b8:b0: 5b:5d:33:18:1b:31:a2:70:b7:1c:9b:1d:1e:ea:02:b4:15:b0: 26:f1:b6:4d:48:d4:a9:93:3e:3b:02:c5:52:a5:30:0d:6e:f6: 16:82:30:72:6c:44:3f:34:c1:af:94:d8:2b:9d:45:8b:c7:bc: c2:aa:39:2c:d8:2c:b7:6e:bb:98:2e:db:a0:65:9a:1c:2c:01: 08:46:56:4e:ea:17:d5:54:61:fe:ea:c2:20:c6:33:ed:66:01: d9:7e:06:4a:5b:db:3f:41:83:19:80:16:23:4f:cc:72:af:fc: 93:ae:7d:fb:4c:b3:d6:fb:65:83:d0:69:bf:66:d6:7a:ae:9a: 05:ef:0b:28:80:4b:72:cf:41:a6:22:16:64:1b:3b:79:0e:69: 28:1f:cb:3a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQ4Y8JwmAfJIlit0BFAnzzoeTKBAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkUyRDkyNjkzMkM1QzdFMjk2OTMxRDg4MTkwOEE0QkIx RTk4RUI2RDAeFw0yNDEyMTExODU1MDBaFw0yNTEyMTAxOTAwMDBaMDMxMTAvBgNV BAMTKEY5MTk2ODUyRDhBMUNFNDQ3MzkyQTJEMzQ2RjY1RTFBRDk2REM0MzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrBt6Tleq3UBSwtcvp6XO/ampp 11/7gdrzZX3zxwnRRmITUt4NdsaZ7tTvQ0BAx/L4pSuy2mvFpYTFfuICE/x/NsOR FLfow6MI19fUyf99Pl8pHo9ormPyseehxfVEuRphJal9w9VtTZRvsykEEuGiirM1 nkCTAHf8JxZDNrGb4HPENKfdPXjHTkAi5DQFiDQbFV9Bsfx/iJmaU3sOR/KITz3y RtFnMWLq613G19MMn2tjBrZFycVhMefsvSEFLso18ojePAV9uwjiqWS2EtHmKxF+ Cg08JjkUkYo/Zhr14UkZifXPQ0KnaDfpZS0RnsdCeZmdlrv191zUMann+GJNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+RloUtihzkRzkqLTRvZeGtltxDIwHwYDVR0j BBgwFoAULi2SaTLFx+KWkx2IGQikux6Y620wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmE1ODllZi05ZjNkLTQzYmMtYmEzMC1mYTMyNmI3MWY3ODcvMC8yRTJEOTI2OTMy QzVDN0UyOTY5MzFEODgxOTA4QTRCQjFFOThFQjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkUyRDkyNjkzMkM1QzdFMjk2OTMxRDg4MTkwOEE0QkIxRTk4 RUI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmYTU4OWVmLTlmM2QtNDNiYy1i YTMwLWZhMzI2YjcxZjc4Ny8wLzMxMzAzMzJlMzEzODMxMmUzMjM1MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGe1+zANBgkqhkiG 9w0BAQsFAAOCAQEALhE8RCFdzz527nLOPvTXjeBKjTJmqXwmxKHG+iYPZ8XaCKmC VKNXzWtJa0bUQpqmQRiHBXxP0+phRgOjWSXJK13JZi1vfIhVe5AuLCz0yHeD697z JtWwW2EDMb5WS5RxjqJwJM4z2pKCObiwW10zGBsxonC3HJsdHuoCtBWwJvG2TUjU qZM+OwLFUqUwDW72FoIwcmxEPzTBr5TYK51Fi8e8wqo5LNgst267mC7boGWaHCwB CEZWTuoX1VRh/urCIMYz7WYB2X4GSlvbP0GDGYAWI0/Mcq/8k659+0yz1vtlg9Bp v2bWeq6aBe8LKIBLcs9BpiIWZBs7eQ5pKB/LOg== -----END CERTIFICATE-----Generated at Sat Apr 5 21:41:38 2025 by rpki-client