$ rpki-client -vvf repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3132382e302f32342d3234203d3e203137373237.roa File: 3130332e3130352e3132382e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: M4514PXfJTPhQt4OlK6IndpXXY1NhEUELHDBA5WVyuc= Subject key identifier: 8A:74:5B:0C:35:1C:BD:6F:1F:1C:36:41:FD:B7:0F:B5:33:43:66:C2 Certificate issuer: /CN=FED855DD505D24B6FE25BD8656297329F7EF4785 Certificate serial: 6003ACE6A6D80A779CFABB97E8BE45EB68854812 Authority key identifier: FE:D8:55:DD:50:5D:24:B6:FE:25:BD:86:56:29:73:29:F7:EF:47:85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3132382e302f32342d3234203d3e203137373237.roa Signing time: Wed 09 Oct 2024 05:00:02 +0000 ROA not before: Wed 09 Oct 2024 04:55:02 +0000 ROA not after: Wed 08 Oct 2025 05:00:02 +0000 asID: 17727 IP address blocks: 103.105.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.crl rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 13:53:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:03:ac:e6:a6:d8:0a:77:9c:fa:bb:97:e8:be:45:eb:68:85:48:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FED855DD505D24B6FE25BD8656297329F7EF4785 Validity Not Before: Oct 9 04:55:02 2024 GMT Not After : Oct 8 05:00:02 2025 GMT Subject: CN=8A745B0C351CBD6F1F1C3641FDB70FB5334366C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:2c:30:34:ad:dd:2e:eb:8d:35:55:cc:79:bd: 32:43:13:3d:6f:46:94:8c:5a:37:e9:bb:ed:7f:3c: ed:86:3e:04:a7:18:66:d3:69:62:dd:0e:0c:ef:29: a1:72:46:1d:67:e6:85:89:4e:88:e5:49:21:47:82: 5a:2d:4c:df:14:6d:c7:81:c8:74:28:1d:93:39:66: 9f:ff:da:b5:f5:68:3a:f0:c2:73:ac:ea:e0:f1:d8: 39:9a:fe:e5:38:93:2f:7f:68:94:04:18:b6:50:80: 2c:e8:14:6d:10:ac:6c:39:4b:7c:dd:0c:55:86:20: ac:e8:0c:3f:9b:86:fd:1b:49:c0:7d:a7:96:89:5f: 80:25:ae:0d:c1:b7:4b:9b:6f:9a:6e:b3:b1:33:8b: 3e:7b:bf:68:4b:0c:20:bb:8c:31:52:2c:ee:53:dc: 6a:96:58:bd:ba:5b:48:a1:f2:04:71:1d:78:de:28: c0:db:5a:de:94:ea:80:ac:29:5b:e5:f9:34:9c:74: 09:55:fa:21:7a:26:8e:08:10:4a:9a:61:22:48:f1: b4:0b:d2:38:a8:0f:c2:a9:51:91:eb:91:ad:34:6b: 02:7f:aa:7a:17:0a:76:e4:9f:7a:c4:bb:36:a3:e8: b1:ee:bf:0e:a8:ba:f7:f8:8a:c8:3b:66:db:51:78: c3:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:74:5B:0C:35:1C:BD:6F:1F:1C:36:41:FD:B7:0F:B5:33:43:66:C2 X509v3 Authority Key Identifier: keyid:FE:D8:55:DD:50:5D:24:B6:FE:25:BD:86:56:29:73:29:F7:EF:47:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3132382e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.105.128.0/24 Signature Algorithm: sha256WithRSAEncryption 91:91:5b:0a:e1:a7:50:3f:8e:f0:a7:6e:ab:89:1f:13:18:c3: 7d:be:a6:4f:63:bf:22:aa:05:71:f9:0c:b0:54:c2:88:58:06: 56:4f:d7:40:d3:0c:09:a5:33:1c:ef:24:29:6e:08:30:e4:ae: 24:c1:63:d2:e7:6c:ec:8b:9d:80:99:c9:b5:b9:e0:f9:fa:91: 3c:cc:46:32:c0:ab:fe:a2:e9:ef:36:63:0a:82:76:a4:5d:59: 99:f4:8d:cb:0f:cd:ab:a5:3a:ec:39:80:c0:f1:07:cc:14:f7: c4:9c:30:60:d7:85:5c:dc:bb:a3:c3:bf:67:e7:9c:7b:0c:f5: bc:e6:1e:97:41:87:58:b9:cc:99:db:37:36:72:85:c0:10:8a: 1e:03:5e:ad:ce:ba:da:9f:1a:54:93:df:ee:8d:fc:fd:c0:c8: 5c:dc:a7:a6:6c:23:8a:12:2e:b0:22:6e:a2:19:fb:05:90:f8: 28:0d:aa:a5:0a:c6:a1:fd:78:4a:f2:12:29:44:a2:94:f7:a0: 12:ed:1a:04:3c:b4:d5:23:f2:6a:15:13:dd:33:0b:10:27:56: 73:68:09:28:1d:4a:fa:aa:38:35:b6:36:e3:bb:a0:d6:a1:e0: fa:04:b5:0b:cc:de:78:06:e0:10:1f:22:9a:5f:a2:aa:34:5f: 18:55:e9:ae -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYAOs5qbYCnec+ruX6L5F62iFSBIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkVEODU1REQ1MDVEMjRCNkZFMjVCRDg2NTYyOTczMjlG N0VGNDc4NTAeFw0yNDEwMDkwNDU1MDJaFw0yNTEwMDgwNTAwMDJaMDMxMTAvBgNV BAMTKDhBNzQ1QjBDMzUxQ0JENkYxRjFDMzY0MUZEQjcwRkI1MzM0MzY2QzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjLDA0rd0u6401Vcx5vTJDEz1v RpSMWjfpu+1/PO2GPgSnGGbTaWLdDgzvKaFyRh1n5oWJTojlSSFHglotTN8UbceB yHQoHZM5Zp//2rX1aDrwwnOs6uDx2Dma/uU4ky9/aJQEGLZQgCzoFG0QrGw5S3zd DFWGIKzoDD+bhv0bScB9p5aJX4Alrg3Bt0ubb5pus7Eziz57v2hLDCC7jDFSLO5T 3GqWWL26W0ih8gRxHXjeKMDbWt6U6oCsKVvl+TScdAlV+iF6Jo4IEEqaYSJI8bQL 0jioD8KpUZHrka00awJ/qnoXCnbkn3rEuzaj6LHuvw6ouvf4isg7ZttReMOxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUinRbDDUcvW8fHDZB/bcPtTNDZsIwHwYDVR0j BBgwFoAU/thV3VBdJLb+Jb2GVilzKffvR4UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDYxZDdhNy1hMTFlLTQwMGItOTE3MC1jNzk3ZWQ4OGQ3MDIvMC9GRUQ4NTVERDUw NUQyNEI2RkUyNUJEODY1NjI5NzMyOUY3RUY0Nzg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkVEODU1REQ1MDVEMjRCNkZFMjVCRDg2NTYyOTczMjlGN0VG NDc4NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0NjFkN2E3LWExMWUtNDAwYi05 MTcwLWM3OTdlZDg4ZDcwMi8wLzMxMzAzMzJlMzEzMDM1MmUzMTMyMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzczMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2mAMA0GCSqG SIb3DQEBCwUAA4IBAQCRkVsK4adQP47wp26riR8TGMN9vqZPY78iqgVx+QywVMKI WAZWT9dA0wwJpTMc7yQpbggw5K4kwWPS52zsi52Amcm1ueD5+pE8zEYywKv+ounv NmMKgnakXVmZ9I3LD82rpTrsOYDA8QfMFPfEnDBg14Vc3Lujw79n55x7DPW85h6X QYdYucyZ2zc2coXAEIoeA16tzrranxpUk9/ujfz9wMhc3KembCOKEi6wIm6iGfsF kPgoDaqlCsah/XhK8hIpRKKU96AS7RoEPLTVI/JqFRPdMwsQJ1ZzaAkoHUr6qjg1 tjbju6DWoeD6BLULzN54BuAQHyKaX6KqNF8YVemu -----END CERTIFICATE-----Generated at Tue Mar 11 05:00:39 2025 by rpki-client