$ rpki-client -vvf repo-rpki.idnic.net/repo/057d4d81-3be8-4230-8959-2dc2af9d085e/0/3130332e3134352e3132352e302f32342d3234203d3e20313339343437.roa File: 3130332e3134352e3132352e302f32342d3234203d3e20313339343437.roa (raw, json) Hash identifier: uwA6745MnQnajMYJz6J0NuLOjbhcQPVKOLoIzt8PD8E= Subject key identifier: 5C:0D:20:BE:9C:0E:E8:15:54:D0:2B:3F:8B:FE:C1:A4:78:F5:6D:9D Certificate issuer: /CN=282881E6B43D206FAFBD1879ED5678ECBA70A822 Certificate serial: 628450B1ABDB5424F56949D63C26C6889AFE5DC8 Authority key identifier: 28:28:81:E6:B4:3D:20:6F:AF:BD:18:79:ED:56:78:EC:BA:70:A8:22 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/282881E6B43D206FAFBD1879ED5678ECBA70A822.cer Subject info access: rsync://repo-rpki.idnic.net/repo/057d4d81-3be8-4230-8959-2dc2af9d085e/0/3130332e3134352e3132352e302f32342d3234203d3e20313339343437.roa Signing time: Thu 09 May 2024 04:00:40 +0000 ROA not before: Thu 09 May 2024 03:55:40 +0000 ROA not after: Thu 08 May 2025 04:00:40 +0000 asID: 139447 IP address blocks: 103.145.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/057d4d81-3be8-4230-8959-2dc2af9d085e/0/282881E6B43D206FAFBD1879ED5678ECBA70A822.crl rsync://repo-rpki.idnic.net/repo/057d4d81-3be8-4230-8959-2dc2af9d085e/0/282881E6B43D206FAFBD1879ED5678ECBA70A822.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/282881E6B43D206FAFBD1879ED5678ECBA70A822.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Feb 2025 12:32:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:84:50:b1:ab:db:54:24:f5:69:49:d6:3c:26:c6:88:9a:fe:5d:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=282881E6B43D206FAFBD1879ED5678ECBA70A822 Validity Not Before: May 9 03:55:40 2024 GMT Not After : May 8 04:00:40 2025 GMT Subject: CN=5C0D20BE9C0EE81554D02B3F8BFEC1A478F56D9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f5:67:5c:d0:14:86:92:73:4b:b3:f4:ed:60: 51:1d:4f:36:40:1a:ac:cf:3b:97:94:1d:d4:07:cf: ce:79:5a:39:76:6a:46:7e:18:7f:a3:66:89:0b:56: f5:3a:99:32:d7:c6:4b:e1:6c:60:72:2f:7e:2e:7d: 0e:80:91:31:05:aa:2a:fe:f5:3a:4d:93:d6:f1:75: 49:08:54:d3:a8:47:3e:9c:1e:9d:56:5f:51:6c:a6: 8b:a4:f6:16:4f:87:43:92:8c:16:24:b1:be:a0:b4: 1d:67:c9:25:b8:fe:32:ad:b2:26:be:90:56:b0:bf: f4:8b:3c:82:60:18:2c:d7:fa:a1:2a:cb:7b:28:82: 14:2f:be:2f:b3:bd:fe:a5:2a:f0:b7:2c:99:79:8f: e1:8e:95:1b:87:63:f6:ef:8a:d8:86:e2:a8:69:54: a8:1f:31:40:f9:cc:80:0d:84:b2:a8:d1:6f:c6:5b: 4e:47:0d:50:b0:7d:8f:5e:3b:a2:f8:29:de:e4:0e: c1:f5:54:b7:20:89:c3:2f:b0:b4:a2:2d:4f:ae:40: e1:73:49:2f:c3:35:b9:d8:ca:4c:20:be:a6:4a:c6: 58:32:80:36:b8:7f:87:1c:79:20:ef:5f:c1:06:37: b5:cc:d8:23:79:88:a6:10:97:6e:14:8f:17:8f:76: a6:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:0D:20:BE:9C:0E:E8:15:54:D0:2B:3F:8B:FE:C1:A4:78:F5:6D:9D X509v3 Authority Key Identifier: keyid:28:28:81:E6:B4:3D:20:6F:AF:BD:18:79:ED:56:78:EC:BA:70:A8:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/057d4d81-3be8-4230-8959-2dc2af9d085e/0/282881E6B43D206FAFBD1879ED5678ECBA70A822.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/282881E6B43D206FAFBD1879ED5678ECBA70A822.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/057d4d81-3be8-4230-8959-2dc2af9d085e/0/3130332e3134352e3132352e302f32342d3234203d3e20313339343437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.125.0/24 Signature Algorithm: sha256WithRSAEncryption 61:4a:48:b7:39:c8:27:0c:76:fc:21:e5:54:34:8b:08:78:64: 14:ad:e8:03:30:46:3d:66:3b:9c:a5:68:57:68:ee:80:68:1f: f1:2c:5b:23:e5:68:d4:e1:0e:42:6d:69:c1:cd:3f:b1:93:f6: 24:c5:ff:75:cc:e0:9c:1e:2b:3b:97:64:f1:65:9a:bc:05:6b: 28:76:cd:02:fc:d2:fd:32:5d:2f:07:6c:6a:87:ce:c8:87:68: 41:fe:64:87:de:79:54:61:a3:b1:b6:04:99:ac:a4:29:f1:74: 8f:5d:62:83:0b:78:6f:ac:6c:4c:72:22:76:40:f9:6c:c8:1a: 1b:8d:48:ea:4c:53:d2:d6:96:4f:36:17:7a:77:fb:d3:29:03: 26:bc:03:8f:35:fb:2c:23:d6:2b:3c:8e:0e:34:96:5d:a5:16: 24:da:ae:51:5e:f8:7e:c8:06:7e:9f:60:91:0f:c6:9c:83:2e: fa:17:d9:03:ad:62:ad:d3:58:ed:8f:13:80:9e:70:8e:2f:c8: d8:2e:48:96:8d:8a:eb:47:8c:57:6f:a9:7d:d4:14:fe:d9:15: 02:69:ca:52:dc:e2:43:ed:c5:77:47:0b:72:ad:46:34:c1:15: 69:f4:bc:51:34:43:c0:30:e8:25:a8:36:15:7f:86:77:ca:76: 37:df:e8:75 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYoRQsavbVCT1aUnWPCbGiJr+XcgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgyODgxRTZCNDNEMjA2RkFGQkQxODc5RUQ1Njc4RUNC QTcwQTgyMjAeFw0yNDA1MDkwMzU1NDBaFw0yNTA1MDgwNDAwNDBaMDMxMTAvBgNV BAMTKDVDMEQyMEJFOUMwRUU4MTU1NEQwMkIzRjhCRkVDMUE0NzhGNTZEOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd9Wdc0BSGknNLs/TtYFEdTzZA GqzPO5eUHdQHz855Wjl2akZ+GH+jZokLVvU6mTLXxkvhbGByL34ufQ6AkTEFqir+ 9TpNk9bxdUkIVNOoRz6cHp1WX1Fspouk9hZPh0OSjBYksb6gtB1nySW4/jKtsia+ kFawv/SLPIJgGCzX+qEqy3soghQvvi+zvf6lKvC3LJl5j+GOlRuHY/bvitiG4qhp VKgfMUD5zIANhLKo0W/GW05HDVCwfY9eO6L4Kd7kDsH1VLcgicMvsLSiLU+uQOFz SS/DNbnYykwgvqZKxlgygDa4f4cceSDvX8EGN7XM2CN5iKYQl24UjxePdqbrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUXA0gvpwO6BVU0Cs/i/7BpHj1bZ0wHwYDVR0j BBgwFoAUKCiB5rQ9IG+vvRh57VZ47LpwqCIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTdkNGQ4MS0zYmU4LTQyMzAtODk1OS0yZGMyYWY5ZDA4NWUvMC8yODI4ODFFNkI0 M0QyMDZGQUZCRDE4NzlFRDU2NzhFQ0JBNzBBODIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgyODgxRTZCNDNEMjA2RkFGQkQxODc5RUQ1Njc4RUNCQTcw QTgyMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1N2Q0ZDgxLTNiZTgtNDIzMC04 OTU5LTJkYzJhZjlkMDg1ZS8wLzMxMzAzMzJlMzEzNDM1MmUzMTMyMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDM0Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkX0wDQYJ KoZIhvcNAQELBQADggEBAGFKSLc5yCcMdvwh5VQ0iwh4ZBSt6AMwRj1mO5ylaFdo 7oBoH/EsWyPlaNThDkJtacHNP7GT9iTF/3XM4JweKzuXZPFlmrwFayh2zQL80v0y XS8HbGqHzsiHaEH+ZIfeeVRho7G2BJmspCnxdI9dYoMLeG+sbExyInZA+WzIGhuN SOpMU9LWlk82F3p3+9MpAya8A481+ywj1is8jg40ll2lFiTarlFe+H7IBn6fYJEP xpyDLvoX2QOtYq3TWO2PE4CecI4vyNguSJaNiutHjFdvqX3UFP7ZFQJpylLc4kPt xXdHC3KtRjTBFWn0vFE0Q8Aw6CWoNhV/hnfKdjff6HU= -----END CERTIFICATE-----Generated at Fri Feb 21 11:24:49 2025 by rpki-client