$ rpki-client -vvf repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3133302e302f32342d3234203d3e203137373237.roa File: 3130332e3130352e3133302e302f32342d3234203d3e203137373237.roa (raw, json) Hash identifier: XaJkhpMWFfQiHoigSzAOeB9OLJw8Q/0siNpjbvDEMi4= Subject key identifier: 76:F6:B5:E8:4A:36:23:04:CC:DB:2D:A7:64:26:C8:5B:96:3D:45:CB Certificate issuer: /CN=FED855DD505D24B6FE25BD8656297329F7EF4785 Certificate serial: 6A236D3385974B50729DD962DAE74E0673232FB1 Authority key identifier: FE:D8:55:DD:50:5D:24:B6:FE:25:BD:86:56:29:73:29:F7:EF:47:85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3133302e302f32342d3234203d3e203137373237.roa Signing time: Wed 09 Oct 2024 05:00:02 +0000 ROA not before: Wed 09 Oct 2024 04:55:02 +0000 ROA not after: Wed 08 Oct 2025 05:00:02 +0000 asID: 17727 IP address blocks: 103.105.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.crl rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 13:53:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:23:6d:33:85:97:4b:50:72:9d:d9:62:da:e7:4e:06:73:23:2f:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FED855DD505D24B6FE25BD8656297329F7EF4785 Validity Not Before: Oct 9 04:55:02 2024 GMT Not After : Oct 8 05:00:02 2025 GMT Subject: CN=76F6B5E84A362304CCDB2DA76426C85B963D45CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:35:fe:73:7e:94:99:c0:af:01:3b:e5:b4:28: 60:2b:c6:57:b2:21:18:8c:a1:a9:5d:84:45:af:f4: fa:58:04:89:8b:20:6b:16:de:0f:c0:c0:81:c5:9f: 4f:9d:4d:24:11:87:ea:33:cb:27:13:3c:ef:d0:b1: 35:15:2a:26:25:91:34:f9:d1:fe:25:f5:c3:6c:9a: 74:9a:6e:65:1d:11:29:38:e3:e6:44:35:24:f3:80: 3c:9a:1f:af:37:b0:73:8d:8f:52:dc:11:2b:0f:71: dd:d3:78:dd:7c:96:73:1f:6b:e0:69:52:8b:cc:83: 2f:09:46:e9:cb:83:83:72:8e:2e:95:86:aa:cb:c8: 7d:78:bf:2b:a8:21:ff:33:3e:14:77:80:1b:78:ec: c0:16:64:6a:ed:32:83:6b:12:4d:0b:cb:74:7e:55: 7e:93:23:5a:48:dc:68:4e:e5:f1:d9:6a:dd:38:f4: 75:02:df:90:e2:8a:bb:91:4b:08:af:f0:6e:c7:f5: d1:32:d9:80:6c:93:44:be:52:ea:a1:6a:c1:e4:fd: 23:b9:10:69:c8:94:0a:38:cc:21:0c:22:d6:15:25: 0d:e7:b5:4d:e9:60:56:59:cc:8b:0b:8b:be:c2:f9: 18:68:8c:d4:30:e2:2e:24:27:24:14:ed:7d:3f:ef: b1:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:F6:B5:E8:4A:36:23:04:CC:DB:2D:A7:64:26:C8:5B:96:3D:45:CB X509v3 Authority Key Identifier: keyid:FE:D8:55:DD:50:5D:24:B6:FE:25:BD:86:56:29:73:29:F7:EF:47:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/FED855DD505D24B6FE25BD8656297329F7EF4785.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED855DD505D24B6FE25BD8656297329F7EF4785.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0461d7a7-a11e-400b-9170-c797ed88d702/0/3130332e3130352e3133302e302f32342d3234203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.105.130.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:76:e9:bb:75:f1:5e:90:21:1b:45:29:04:4f:6f:f1:ee:74: 0b:10:0a:6f:1e:19:83:31:b8:81:f8:bc:82:c6:32:15:06:13: 08:23:24:ef:65:6a:72:58:c6:e2:9e:7b:7b:ed:cc:5b:4e:b1: fc:de:11:e1:33:0a:75:2e:25:e9:61:b1:7e:68:f3:d2:6c:07: 32:29:b2:57:4d:71:4e:6c:76:c1:6d:05:8d:9b:0c:ed:57:ef: e2:bd:5a:6a:d9:ed:ed:dc:c9:13:ae:54:c2:ec:d4:2f:02:c3: 91:1e:0b:30:66:f2:62:2e:ed:94:96:3b:eb:c2:5c:ce:43:4e: 65:95:ef:fd:d1:cc:b0:59:ca:64:02:44:d4:03:72:d0:cb:e0: 0d:0f:2a:20:ee:b6:2b:36:d5:6a:ce:1e:14:eb:40:f0:64:83: 29:66:02:1a:02:24:86:c0:2d:29:ae:6f:49:c1:97:e9:e5:0d: 30:d0:1c:fd:73:77:e5:66:20:1b:37:e6:4e:e7:68:60:ed:25: 5d:2c:ed:af:4a:42:80:c1:a8:96:1f:e7:6d:03:25:de:12:18: 74:86:65:8a:5c:db:c3:d8:69:ee:cb:6a:e6:11:48:ce:3a:a0: 5d:2c:f6:10:2f:de:6a:5e:7f:92:ed:4f:6f:0e:9a:cc:76:6f: 34:91:36:5f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaiNtM4WXS1Byndli2udOBnMjL7EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkVEODU1REQ1MDVEMjRCNkZFMjVCRDg2NTYyOTczMjlG N0VGNDc4NTAeFw0yNDEwMDkwNDU1MDJaFw0yNTEwMDgwNTAwMDJaMDMxMTAvBgNV BAMTKDc2RjZCNUU4NEEzNjIzMDRDQ0RCMkRBNzY0MjZDODVCOTYzRDQ1Q0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvNf5zfpSZwK8BO+W0KGArxley IRiMoaldhEWv9PpYBImLIGsW3g/AwIHFn0+dTSQRh+ozyycTPO/QsTUVKiYlkTT5 0f4l9cNsmnSabmUdESk44+ZENSTzgDyaH683sHONj1LcESsPcd3TeN18lnMfa+Bp UovMgy8JRunLg4Nyji6VhqrLyH14vyuoIf8zPhR3gBt47MAWZGrtMoNrEk0Ly3R+ VX6TI1pI3GhO5fHZat049HUC35DiiruRSwiv8G7H9dEy2YBsk0S+UuqhasHk/SO5 EGnIlAo4zCEMItYVJQ3ntU3pYFZZzIsLi77C+RhojNQw4i4kJyQU7X0/77EDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdva16Eo2IwTM2y2nZCbIW5Y9RcswHwYDVR0j BBgwFoAU/thV3VBdJLb+Jb2GVilzKffvR4UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDYxZDdhNy1hMTFlLTQwMGItOTE3MC1jNzk3ZWQ4OGQ3MDIvMC9GRUQ4NTVERDUw NUQyNEI2RkUyNUJEODY1NjI5NzMyOUY3RUY0Nzg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkVEODU1REQ1MDVEMjRCNkZFMjVCRDg2NTYyOTczMjlGN0VG NDc4NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0NjFkN2E3LWExMWUtNDAwYi05 MTcwLWM3OTdlZDg4ZDcwMi8wLzMxMzAzMzJlMzEzMDM1MmUzMTMzMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzczMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2mCMA0GCSqG SIb3DQEBCwUAA4IBAQB6dum7dfFekCEbRSkET2/x7nQLEApvHhmDMbiB+LyCxjIV BhMIIyTvZWpyWMbinnt77cxbTrH83hHhMwp1LiXpYbF+aPPSbAcyKbJXTXFObHbB bQWNmwztV+/ivVpq2e3t3MkTrlTC7NQvAsORHgswZvJiLu2UljvrwlzOQ05lle/9 0cywWcpkAkTUA3LQy+ANDyog7rYrNtVqzh4U60DwZIMpZgIaAiSGwC0prm9JwZfp 5Q0w0Bz9c3flZiAbN+ZO52hg7SVdLO2vSkKAwaiWH+dtAyXeEhh0hmWKXNvD2Gnu y2rmEUjOOqBdLPYQL95qXn+S7U9vDprMdm80kTZf -----END CERTIFICATE-----Generated at Tue Mar 11 05:03:08 2025 by rpki-client