$ rpki-client -vvf repo-rpki.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/3130332e37392e3133302e302f32332d3233203d3e20313430343433.roa File: 3130332e37392e3133302e302f32332d3233203d3e20313430343433.roa (raw, json) Hash identifier: d3pf7thJ8fugsU7O9WrulNgpEreMy597Tt+vrA611To= Subject key identifier: 51:99:E4:E4:42:A6:12:BB:92:B4:0A:FB:D7:C6:29:A9:D6:D3:AD:46 Certificate issuer: /CN=BD6194D3C25B637B15DAEB654B288A451054ABE0 Certificate serial: 4EB085BA35B14B435AB3FF909EB5BCA47B5215F4 Authority key identifier: BD:61:94:D3:C2:5B:63:7B:15:DA:EB:65:4B:28:8A:45:10:54:AB:E0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD6194D3C25B637B15DAEB654B288A451054ABE0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/3130332e37392e3133302e302f32332d3233203d3e20313430343433.roa Signing time: Thu 12 Dec 2024 04:02:37 +0000 ROA not before: Thu 12 Dec 2024 03:57:37 +0000 ROA not after: Thu 11 Dec 2025 04:02:37 +0000 asID: 140443 IP address blocks: 103.79.130.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/BD6194D3C25B637B15DAEB654B288A451054ABE0.crl rsync://repo-rpki.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/BD6194D3C25B637B15DAEB654B288A451054ABE0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD6194D3C25B637B15DAEB654B288A451054ABE0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:32:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:b0:85:ba:35:b1:4b:43:5a:b3:ff:90:9e:b5:bc:a4:7b:52:15:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD6194D3C25B637B15DAEB654B288A451054ABE0 Validity Not Before: Dec 12 03:57:37 2024 GMT Not After : Dec 11 04:02:37 2025 GMT Subject: CN=5199E4E442A612BB92B40AFBD7C629A9D6D3AD46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:82:99:ec:3f:8b:45:ab:c4:62:a8:f5:cc:a4: e7:a4:61:9f:8e:d9:ab:0b:e4:6e:86:e4:2f:db:2d: 8a:c1:58:a3:4d:fb:82:87:6f:ee:c0:4b:24:94:c2: 3b:89:7d:81:97:5d:e3:57:55:51:2a:70:51:ab:3b: b9:df:01:2b:7f:95:25:e8:5f:69:04:35:7f:ad:43: 7c:0a:c9:77:c8:b7:1a:68:be:61:9e:8b:6e:6d:cf: bf:a1:ca:13:01:1e:99:ba:dd:fa:68:b8:55:f9:2b: 31:74:04:c1:71:b5:ad:ce:1b:9b:c3:8c:92:f5:a9: 2f:fd:f3:20:74:29:59:9f:27:e2:ce:ff:40:1b:65: 99:95:f5:ad:bc:7e:ba:ba:5b:de:93:1b:0d:a3:ac: 32:32:f8:06:e4:52:04:d3:8b:e0:db:8c:de:40:8c: bd:21:20:53:77:7f:c4:bd:2a:70:ad:ee:1c:07:aa: d5:36:e1:8c:9c:53:9b:ad:00:0f:4d:b7:6e:03:fa: dd:82:a3:cb:a9:cd:6d:9f:c5:0d:9f:46:56:43:1b: 0b:a1:4f:6d:74:39:eb:ae:3b:c0:0a:71:ac:e2:fd: 5b:cd:c6:fe:89:76:27:4b:4c:08:a1:b4:3c:22:9c: 3d:d8:a6:9c:4e:5c:01:91:3f:9c:4e:c4:32:9e:68: 63:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:99:E4:E4:42:A6:12:BB:92:B4:0A:FB:D7:C6:29:A9:D6:D3:AD:46 X509v3 Authority Key Identifier: keyid:BD:61:94:D3:C2:5B:63:7B:15:DA:EB:65:4B:28:8A:45:10:54:AB:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/BD6194D3C25B637B15DAEB654B288A451054ABE0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD6194D3C25B637B15DAEB654B288A451054ABE0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/3130332e37392e3133302e302f32332d3233203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.79.130.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:0e:b6:c9:e5:84:76:8f:67:0d:c0:ad:93:fd:95:67:ab:7b: 08:f8:c2:2b:41:af:bd:db:5a:d5:bc:62:1c:66:f1:91:7b:4f: 2f:8c:c8:2b:c8:93:13:48:e5:91:9b:f9:0a:3d:6a:33:11:3b: 10:34:fe:eb:a9:b9:59:2d:ca:1d:f9:60:d0:9a:ac:84:82:e2: e5:86:9c:90:b0:35:24:e3:5d:9e:0f:7e:bf:5e:ea:4d:37:5b: 93:cf:f8:3b:17:34:8e:ab:1d:e8:50:79:93:45:82:02:c4:c8: 34:69:a2:d4:d2:f0:2f:fd:2c:36:d4:63:38:44:e8:8d:e6:07: 7b:2e:15:2e:f6:9d:50:40:fa:df:09:17:8f:38:21:00:c9:af: 79:c2:42:8b:88:84:7a:5d:c1:07:a4:84:cb:31:4d:20:74:05: e6:e0:29:6c:b5:6b:3c:66:2c:30:74:23:8a:5e:07:57:c2:b1: 33:1c:08:5e:85:48:3c:88:c8:be:4d:95:ed:f4:45:c2:4a:04: be:d7:36:ce:68:22:16:88:02:93:54:c5:2b:ef:1f:ae:61:e8: 05:43:45:00:37:4a:f4:97:f5:e1:2f:a4:08:03:00:7b:60:a7: 89:90:09:fe:6f:71:08:ad:98:e0:67:bc:44:d9:39:e3:5c:9c: 75:42:41:b3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTrCFujWxS0Nas/+QnrW8pHtSFfQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ2MTk0RDNDMjVCNjM3QjE1REFFQjY1NEIyODhBNDUx MDU0QUJFMDAeFw0yNDEyMTIwMzU3MzdaFw0yNTEyMTEwNDAyMzdaMDMxMTAvBgNV BAMTKDUxOTlFNEU0NDJBNjEyQkI5MkI0MEFGQkQ3QzYyOUE5RDZEM0FENDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjgpnsP4tFq8RiqPXMpOekYZ+O 2asL5G6G5C/bLYrBWKNN+4KHb+7ASySUwjuJfYGXXeNXVVEqcFGrO7nfASt/lSXo X2kENX+tQ3wKyXfItxpovmGei25tz7+hyhMBHpm63fpouFX5KzF0BMFxta3OG5vD jJL1qS/98yB0KVmfJ+LO/0AbZZmV9a28frq6W96TGw2jrDIy+AbkUgTTi+DbjN5A jL0hIFN3f8S9KnCt7hwHqtU24YycU5utAA9Nt24D+t2Co8upzW2fxQ2fRlZDGwuh T210OeuuO8AKcazi/VvNxv6JdidLTAihtDwinD3YppxOXAGRP5xOxDKeaGP9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUZnk5EKmEruStAr718YpqdbTrUYwHwYDVR0j BBgwFoAUvWGU08JbY3sV2utlSyiKRRBUq+AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YWUyNDkwNy1hNmYyLTRhNTUtYWE2Zi0xOGM3ZGIxNDNmZTgvMC9CRDYxOTREM0My NUI2MzdCMTVEQUVCNjU0QjI4OEE0NTEwNTRBQkUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ2MTk0RDNDMjVCNjM3QjE1REFFQjY1NEIyODhBNDUxMDU0 QUJFMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZhZTI0OTA3LWE2ZjItNGE1NS1h YTZmLTE4YzdkYjE0M2ZlOC8wLzMxMzAzMzJlMzczOTJlMzEzMzMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzQzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ0+CMA0GCSqG SIb3DQEBCwUAA4IBAQB8DrbJ5YR2j2cNwK2T/ZVnq3sI+MIrQa+921rVvGIcZvGR e08vjMgryJMTSOWRm/kKPWozETsQNP7rqblZLcod+WDQmqyEguLlhpyQsDUk412e D36/XupNN1uTz/g7FzSOqx3oUHmTRYICxMg0aaLU0vAv/Sw21GM4ROiN5gd7LhUu 9p1QQPrfCRePOCEAya95wkKLiIR6XcEHpITLMU0gdAXm4ClstWs8ZiwwdCOKXgdX wrEzHAhehUg8iMi+TZXt9EXCSgS+1zbOaCIWiAKTVMUr7x+uYegFQ0UAN0r0l/Xh L6QIAwB7YKeJkAn+b3EIrZjgZ7xE2TnjXJx1QkGz -----END CERTIFICATE-----Generated at Sun Apr 6 04:37:22 2025 by rpki-client