$ rpki-client -vvf repo-rpki.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/3130332e37392e3133312e302f32342d3234203d3e20313430343433.roa File: 3130332e37392e3133312e302f32342d3234203d3e20313430343433.roa (raw, json) Hash identifier: bpz1+BOXiUcyq5IVmttNhJmR1RGbiO84vW3Bh1lhDoo= Subject key identifier: 21:5F:29:4A:99:96:87:E6:68:72:BE:BE:37:23:AC:5D:B2:B0:B2:70 Certificate issuer: /CN=BD6194D3C25B637B15DAEB654B288A451054ABE0 Certificate serial: 5F2809FCA0E44F6963564C99E4652F66B72B20A5 Authority key identifier: BD:61:94:D3:C2:5B:63:7B:15:DA:EB:65:4B:28:8A:45:10:54:AB:E0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD6194D3C25B637B15DAEB654B288A451054ABE0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/3130332e37392e3133312e302f32342d3234203d3e20313430343433.roa Signing time: Thu 12 Dec 2024 04:02:37 +0000 ROA not before: Thu 12 Dec 2024 03:57:37 +0000 ROA not after: Thu 11 Dec 2025 04:02:37 +0000 asID: 140443 IP address blocks: 103.79.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/BD6194D3C25B637B15DAEB654B288A451054ABE0.crl rsync://repo-rpki.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/BD6194D3C25B637B15DAEB654B288A451054ABE0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD6194D3C25B637B15DAEB654B288A451054ABE0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:32:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:28:09:fc:a0:e4:4f:69:63:56:4c:99:e4:65:2f:66:b7:2b:20:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD6194D3C25B637B15DAEB654B288A451054ABE0 Validity Not Before: Dec 12 03:57:37 2024 GMT Not After : Dec 11 04:02:37 2025 GMT Subject: CN=215F294A999687E66872BEBE3723AC5DB2B0B270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:e7:f9:77:ee:c7:03:8f:1a:f7:d2:61:7b:b0: ed:35:3d:4b:60:9a:42:e6:9e:57:27:3c:89:c0:63: e6:e2:7c:80:39:84:c3:84:89:2c:db:61:62:25:00: 3f:27:ae:4f:a5:04:a2:3c:dd:58:10:11:ed:e1:6f: b6:b7:93:1c:4a:c9:18:86:66:9a:c1:9d:cb:bb:e5: 10:53:c8:33:6b:55:53:44:72:85:0e:31:de:80:b2: 5f:d1:b7:93:d1:9a:87:97:7a:01:f7:58:e9:58:9a: 84:aa:66:60:2b:8c:e3:d1:29:42:14:be:8d:9f:9d: d2:82:8f:5b:33:da:0a:e9:41:af:2a:d5:b1:00:aa: 9b:29:bd:c1:9d:a4:cd:c9:76:7a:5d:c4:7e:0a:2c: c9:7c:8b:d8:0e:05:3a:ff:ed:eb:5e:2b:2f:f4:3d: b3:21:b0:6a:d1:64:bc:41:66:ed:b8:cf:4a:61:28: 1e:8c:53:ac:d5:09:c8:ab:3d:e1:9d:f2:6f:ed:f3: 8c:73:d8:38:7e:51:d7:5d:ba:58:00:26:3f:ff:c1: 29:77:96:16:c8:3d:9d:6b:01:e1:ea:97:ae:07:26: 10:7b:23:52:77:15:ea:15:e0:0a:ea:0d:7c:b3:a1: c5:b6:7a:c6:e9:c1:f8:38:b2:29:b5:cc:52:d4:17: 43:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:5F:29:4A:99:96:87:E6:68:72:BE:BE:37:23:AC:5D:B2:B0:B2:70 X509v3 Authority Key Identifier: keyid:BD:61:94:D3:C2:5B:63:7B:15:DA:EB:65:4B:28:8A:45:10:54:AB:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/BD6194D3C25B637B15DAEB654B288A451054ABE0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD6194D3C25B637B15DAEB654B288A451054ABE0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/3130332e37392e3133312e302f32342d3234203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.79.131.0/24 Signature Algorithm: sha256WithRSAEncryption 51:c8:71:e0:52:c6:6f:39:68:14:a1:ed:47:80:3a:e7:04:3d: 51:8c:93:92:b7:c6:c3:a1:c5:78:02:b1:8e:a5:48:3d:ae:88: b3:f7:14:06:f9:f0:a6:67:be:a8:d1:bf:6b:ff:3d:42:4c:2c: 5e:88:21:e5:5d:1a:f5:ba:1a:a6:28:ed:c1:3d:0f:24:c1:1b: 24:78:01:4b:50:b7:1d:b0:37:f7:34:46:05:b5:87:31:59:75: 01:a4:73:2d:c8:80:9b:7f:df:24:63:af:37:fc:91:d9:df:c8: c0:37:7e:9d:86:ff:a9:54:67:2b:40:6d:5f:26:ad:af:c3:8c: b5:23:96:b7:94:95:6d:e0:51:55:72:46:bb:af:a5:82:dd:9e: 9b:c3:92:38:38:7e:e9:4a:15:24:f0:0b:2f:5f:e8:61:be:8f: 5a:aa:1c:ce:97:9b:93:fd:ef:55:bf:e6:2f:8f:78:6a:a9:b7: 43:45:2f:8b:02:dd:66:c1:e4:ef:6d:5a:d8:83:76:46:20:89: 70:0e:ca:13:3f:77:5f:52:98:c8:75:53:af:57:34:f6:c8:39: a3:f5:92:18:eb:38:07:16:6e:62:83:08:f8:5b:72:82:bd:2e: ca:89:20:a6:89:9d:39:3e:3e:f0:8a:7a:61:06:d5:71:85:fd: 60:9f:d1:14 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXygJ/KDkT2ljVkyZ5GUvZrcrIKUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ2MTk0RDNDMjVCNjM3QjE1REFFQjY1NEIyODhBNDUx MDU0QUJFMDAeFw0yNDEyMTIwMzU3MzdaFw0yNTEyMTEwNDAyMzdaMDMxMTAvBgNV BAMTKDIxNUYyOTRBOTk5Njg3RTY2ODcyQkVCRTM3MjNBQzVEQjJCMEIyNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCX5/l37scDjxr30mF7sO01PUtg mkLmnlcnPInAY+bifIA5hMOEiSzbYWIlAD8nrk+lBKI83VgQEe3hb7a3kxxKyRiG ZprBncu75RBTyDNrVVNEcoUOMd6Asl/Rt5PRmoeXegH3WOlYmoSqZmArjOPRKUIU vo2fndKCj1sz2grpQa8q1bEAqpspvcGdpM3JdnpdxH4KLMl8i9gOBTr/7eteKy/0 PbMhsGrRZLxBZu24z0phKB6MU6zVCcirPeGd8m/t84xz2Dh+UdddulgAJj//wSl3 lhbIPZ1rAeHql64HJhB7I1J3FeoV4ArqDXyzocW2esbpwfg4sim1zFLUF0P5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIV8pSpmWh+Zocr6+NyOsXbKwsnAwHwYDVR0j BBgwFoAUvWGU08JbY3sV2utlSyiKRRBUq+AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YWUyNDkwNy1hNmYyLTRhNTUtYWE2Zi0xOGM3ZGIxNDNmZTgvMC9CRDYxOTREM0My NUI2MzdCMTVEQUVCNjU0QjI4OEE0NTEwNTRBQkUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ2MTk0RDNDMjVCNjM3QjE1REFFQjY1NEIyODhBNDUxMDU0 QUJFMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZhZTI0OTA3LWE2ZjItNGE1NS1h YTZmLTE4YzdkYjE0M2ZlOC8wLzMxMzAzMzJlMzczOTJlMzEzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0+DMA0GCSqG SIb3DQEBCwUAA4IBAQBRyHHgUsZvOWgUoe1HgDrnBD1RjJOSt8bDocV4ArGOpUg9 roiz9xQG+fCmZ76o0b9r/z1CTCxeiCHlXRr1uhqmKO3BPQ8kwRskeAFLULcdsDf3 NEYFtYcxWXUBpHMtyICbf98kY683/JHZ38jAN36dhv+pVGcrQG1fJq2vw4y1I5a3 lJVt4FFVcka7r6WC3Z6bw5I4OH7pShUk8AsvX+hhvo9aqhzOl5uT/e9Vv+Yvj3hq qbdDRS+LAt1mweTvbVrYg3ZGIIlwDsoTP3dfUpjIdVOvVzT2yDmj9ZIY6zgHFm5i gwj4W3KCvS7KiSCmiZ05Pj7winphBtVxhf1gn9EU -----END CERTIFICATE-----Generated at Sun Apr 6 04:37:24 2025 by rpki-client