$ rpki-client -vvf repo-rpki.idnic.net/repo/05efcbf0-66ec-48d3-b221-0f09686d5818/0/3130332e3137332e3133382e302f32332d3233203d3e20313437303738.roa File: 3130332e3137332e3133382e302f32332d3233203d3e20313437303738.roa (raw, json) Hash identifier: gpAMB3PFSY1kzkTxd7ynwvze1zWn3ViLJlVVmsFJv0w= Subject key identifier: 66:C9:FC:81:7B:55:85:23:9C:4F:6F:6A:7A:F0:28:31:07:E9:A1:7F Certificate issuer: /CN=23F26F571E3865A06A13936555D8DAA27B433933 Certificate serial: 4FD532166499B6891F38E2FC2FE09379409647F5 Authority key identifier: 23:F2:6F:57:1E:38:65:A0:6A:13:93:65:55:D8:DA:A2:7B:43:39:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/23F26F571E3865A06A13936555D8DAA27B433933.cer Subject info access: rsync://repo-rpki.idnic.net/repo/05efcbf0-66ec-48d3-b221-0f09686d5818/0/3130332e3137332e3133382e302f32332d3233203d3e20313437303738.roa Signing time: Fri 19 Jul 2024 18:00:00 +0000 ROA not before: Fri 19 Jul 2024 17:55:00 +0000 ROA not after: Fri 18 Jul 2025 18:00:00 +0000 asID: 147078 IP address blocks: 103.173.138.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/05efcbf0-66ec-48d3-b221-0f09686d5818/0/23F26F571E3865A06A13936555D8DAA27B433933.crl rsync://repo-rpki.idnic.net/repo/05efcbf0-66ec-48d3-b221-0f09686d5818/0/23F26F571E3865A06A13936555D8DAA27B433933.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/23F26F571E3865A06A13936555D8DAA27B433933.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Feb 2025 11:45:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:d5:32:16:64:99:b6:89:1f:38:e2:fc:2f:e0:93:79:40:96:47:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23F26F571E3865A06A13936555D8DAA27B433933 Validity Not Before: Jul 19 17:55:00 2024 GMT Not After : Jul 18 18:00:00 2025 GMT Subject: CN=66C9FC817B5585239C4F6F6A7AF0283107E9A17F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:41:36:fe:cf:5a:b0:06:28:5a:0c:0b:24:e5: 1e:fb:10:e3:38:f3:bd:d5:ae:38:4b:8c:73:c0:df: 1f:fc:57:eb:52:1c:87:b1:1c:f3:58:03:7c:fd:0c: 82:a3:ae:c0:c9:19:79:30:21:fa:21:db:8b:c3:fb: 50:79:0e:14:f3:ea:e7:ef:d6:28:cb:ab:d6:3d:77: 03:c0:18:22:34:e5:8b:c1:ca:c1:c3:74:cf:14:a4: 48:f8:86:08:a9:65:a9:49:18:90:b8:57:a3:7c:a2: b9:65:0d:c4:ba:0b:ff:27:97:0c:61:44:fe:02:25: dc:37:6c:2f:53:03:04:a7:db:1f:31:97:55:e8:20: 16:2d:fa:e9:ed:39:de:47:ed:cf:fe:39:98:77:ba: dc:0b:d0:c9:e2:98:9e:a0:d4:be:12:f9:60:49:8b: c3:65:7e:76:c1:87:76:67:fd:9e:6d:63:99:9d:2b: 05:15:37:00:1b:d1:a5:32:a5:5f:4e:61:89:b9:09: 22:3a:bd:8f:36:ea:29:7d:41:a5:64:85:14:35:7f: 55:4c:70:13:57:41:9e:90:f8:de:bb:6b:9f:c6:8b: f9:4d:33:07:47:b8:59:c6:41:a1:a2:de:ef:42:c1: 66:25:e1:5c:da:9d:77:94:9b:c2:7b:47:dc:6b:70: bd:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:C9:FC:81:7B:55:85:23:9C:4F:6F:6A:7A:F0:28:31:07:E9:A1:7F X509v3 Authority Key Identifier: keyid:23:F2:6F:57:1E:38:65:A0:6A:13:93:65:55:D8:DA:A2:7B:43:39:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/05efcbf0-66ec-48d3-b221-0f09686d5818/0/23F26F571E3865A06A13936555D8DAA27B433933.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/23F26F571E3865A06A13936555D8DAA27B433933.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/05efcbf0-66ec-48d3-b221-0f09686d5818/0/3130332e3137332e3133382e302f32332d3233203d3e20313437303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.173.138.0/23 Signature Algorithm: sha256WithRSAEncryption 93:2c:c3:37:87:7a:62:80:34:46:bb:9f:05:1e:6c:2b:0d:12: 39:6f:f2:6b:ee:f9:b7:6a:1e:39:b9:88:77:77:a7:97:56:c8: fc:d5:e7:72:85:6e:1d:62:cd:30:2b:ad:a9:f3:37:e9:d1:ab: b6:e1:e4:66:a1:fa:ee:6b:ec:81:bf:da:50:b8:ed:a6:e3:d6: 0e:0b:4d:9d:f9:d5:3a:9e:91:8a:e5:d0:48:3b:25:5d:bb:49: 47:1f:8b:9a:1f:85:45:e2:cb:d7:39:70:f9:09:af:8d:68:8f: 16:82:d4:3b:fe:67:ca:8d:f9:00:7d:d0:f4:41:fb:f3:ba:c7: e0:c3:e9:bf:cc:af:ea:37:71:fa:c4:fb:d2:d4:75:e9:99:47: 4c:92:55:e0:4f:0b:aa:3b:01:60:4e:13:1c:55:8f:ad:e1:5e: 5c:3a:9e:7d:ba:a0:31:b3:7d:cb:86:01:3a:f9:9b:1a:e0:24: f3:c4:11:f9:63:cc:c7:fb:3d:40:e2:fc:f6:8c:8c:57:b7:16: 2f:ff:28:29:24:e6:f8:01:98:f9:46:89:82:1e:11:a2:98:a4: c7:18:7a:8b:56:18:80:43:de:1c:17:4e:9d:19:90:f9:33:62: a5:2e:43:78:dc:d0:10:20:60:44:57:be:ae:49:6b:5f:1f:6c: f2:c4:95:71 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUT9UyFmSZtokfOOL8L+CTeUCWR/UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjNGMjZGNTcxRTM4NjVBMDZBMTM5MzY1NTVEOERBQTI3 QjQzMzkzMzAeFw0yNDA3MTkxNzU1MDBaFw0yNTA3MTgxODAwMDBaMDMxMTAvBgNV BAMTKDY2QzlGQzgxN0I1NTg1MjM5QzRGNkY2QTdBRjAyODMxMDdFOUExN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6QTb+z1qwBihaDAsk5R77EOM4 873VrjhLjHPA3x/8V+tSHIexHPNYA3z9DIKjrsDJGXkwIfoh24vD+1B5DhTz6ufv 1ijLq9Y9dwPAGCI05YvBysHDdM8UpEj4hgipZalJGJC4V6N8orllDcS6C/8nlwxh RP4CJdw3bC9TAwSn2x8xl1XoIBYt+untOd5H7c/+OZh3utwL0MnimJ6g1L4S+WBJ i8NlfnbBh3Zn/Z5tY5mdKwUVNwAb0aUypV9OYYm5CSI6vY826il9QaVkhRQ1f1VM cBNXQZ6Q+N67a5/Gi/lNMwdHuFnGQaGi3u9CwWYl4VzanXeUm8J7R9xrcL3xAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUZsn8gXtVhSOcT29qevAoMQfpoX8wHwYDVR0j BBgwFoAUI/JvVx44ZaBqE5NlVdjaontDOTMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NWVmY2JmMC02NmVjLTQ4ZDMtYjIyMS0wZjA5Njg2ZDU4MTgvMC8yM0YyNkY1NzFF Mzg2NUEwNkExMzkzNjU1NUQ4REFBMjdCNDMzOTMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjNGMjZGNTcxRTM4NjVBMDZBMTM5MzY1NTVEOERBQTI3QjQz MzkzMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1ZWZjYmYwLTY2ZWMtNDhkMy1i MjIxLTBmMDk2ODZkNTgxOC8wLzMxMzAzMzJlMzEzNzMzMmUzMTMzMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzczMDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnrYowDQYJ KoZIhvcNAQELBQADggEBAJMswzeHemKANEa7nwUebCsNEjlv8mvu+bdqHjm5iHd3 p5dWyPzV53KFbh1izTArranzN+nRq7bh5Gah+u5r7IG/2lC47abj1g4LTZ351Tqe kYrl0Eg7JV27SUcfi5ofhUXiy9c5cPkJr41ojxaC1Dv+Z8qN+QB90PRB+/O6x+DD 6b/Mr+o3cfrE+9LUdemZR0ySVeBPC6o7AWBOExxVj63hXlw6nn26oDGzfcuGATr5 mxrgJPPEEfljzMf7PUDi/PaMjFe3Fi//KCkk5vgBmPlGiYIeEaKYpMcYeotWGIBD 3hwXTp0ZkPkzYqUuQ3jc0BAgYERXvq5Ja18fbPLElXE= -----END CERTIFICATE-----Generated at Fri Feb 21 13:27:44 2025 by rpki-client