$ rpki-client -vvf repo-rpki.idnic.net/repo/0bb8e612-7bb3-48de-969d-71b45f46a161/1/3130332e3132302e34302e302f32342d3234203d3e20313530343934.roa File: 3130332e3132302e34302e302f32342d3234203d3e20313530343934.roa (raw, json) Hash identifier: XOWtO2pwbbk94VoX/nt0F9I39CXFH3hsrN66bhkHCdI= Subject key identifier: F4:A4:D3:7C:38:66:AC:73:53:E5:26:AD:B1:68:5B:7F:94:3C:A6:17 Certificate issuer: /CN=279F9ED4B08F2103C13392D95636C445577A6339 Certificate serial: 54E2D43D98A2323D1F4DE8BCF227C9DA7FFBD513 Authority key identifier: 27:9F:9E:D4:B0:8F:21:03:C1:33:92:D9:56:36:C4:45:57:7A:63:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/279F9ED4B08F2103C13392D95636C445577A6339.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0bb8e612-7bb3-48de-969d-71b45f46a161/1/3130332e3132302e34302e302f32342d3234203d3e20313530343934.roa Signing time: Tue 07 Jan 2025 08:01:15 +0000 ROA not before: Tue 07 Jan 2025 07:56:15 +0000 ROA not after: Tue 06 Jan 2026 08:01:15 +0000 asID: 150494 IP address blocks: 103.120.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0bb8e612-7bb3-48de-969d-71b45f46a161/1/279F9ED4B08F2103C13392D95636C445577A6339.crl rsync://repo-rpki.idnic.net/repo/0bb8e612-7bb3-48de-969d-71b45f46a161/1/279F9ED4B08F2103C13392D95636C445577A6339.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/279F9ED4B08F2103C13392D95636C445577A6339.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 11:56:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:e2:d4:3d:98:a2:32:3d:1f:4d:e8:bc:f2:27:c9:da:7f:fb:d5:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=279F9ED4B08F2103C13392D95636C445577A6339 Validity Not Before: Jan 7 07:56:15 2025 GMT Not After : Jan 6 08:01:15 2026 GMT Subject: CN=F4A4D37C3866AC7353E526ADB1685B7F943CA617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d8:80:4f:0c:36:0d:34:db:26:a5:f9:e2:7d: dd:c2:d4:7e:67:60:02:12:12:23:ee:1e:b0:fa:bd: 16:8d:cd:71:54:1a:7d:7b:c5:4e:bf:1c:52:9a:41: d1:36:a1:8b:43:9b:b6:51:39:6e:1b:ec:95:a9:55: 2b:30:49:96:64:5c:16:81:49:a1:c6:5b:df:aa:d5: 34:1f:98:ce:f3:db:21:e7:5b:48:c4:33:31:0a:f8: 5c:72:b1:79:94:42:47:ff:95:41:1e:c2:44:43:9e: 96:8b:f4:a9:fb:0b:7a:17:47:4b:3a:58:96:43:4d: 1d:e0:b2:73:27:59:82:f2:9b:d1:24:81:0f:66:c0: 24:fb:c1:c9:f1:9d:79:09:7f:3e:58:1a:0b:7f:c2: 10:61:d6:dd:69:4b:e3:96:54:07:b6:95:4d:8f:7a: 7d:eb:34:b4:2b:37:3d:89:eb:99:f9:51:5a:8e:38: 8b:4a:c2:b8:2b:08:e3:e1:20:54:31:51:f3:67:be: ed:43:8a:2c:91:92:73:b0:37:31:3d:19:2c:6e:da: e6:60:a9:a2:2b:87:9e:69:72:b5:6c:65:3e:67:6a: c9:34:9d:45:82:3b:3d:a3:a2:25:11:19:f6:a8:53: d8:d3:32:67:d6:ab:c5:31:71:ea:89:9c:99:76:90: b3:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:A4:D3:7C:38:66:AC:73:53:E5:26:AD:B1:68:5B:7F:94:3C:A6:17 X509v3 Authority Key Identifier: keyid:27:9F:9E:D4:B0:8F:21:03:C1:33:92:D9:56:36:C4:45:57:7A:63:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0bb8e612-7bb3-48de-969d-71b45f46a161/1/279F9ED4B08F2103C13392D95636C445577A6339.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/279F9ED4B08F2103C13392D95636C445577A6339.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0bb8e612-7bb3-48de-969d-71b45f46a161/1/3130332e3132302e34302e302f32342d3234203d3e20313530343934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.40.0/24 Signature Algorithm: sha256WithRSAEncryption 02:9e:c5:bd:c5:20:9b:e8:72:c5:63:40:ce:9e:18:f3:0b:c9: 2d:a9:ef:6c:31:f2:ed:4f:60:11:cf:64:2e:3c:8a:cb:2d:6c: dd:86:00:cf:91:9d:5c:12:ea:4e:1a:c6:b1:45:70:9e:11:18: 4f:19:9c:24:47:48:ab:f1:54:a9:7c:79:1c:31:aa:29:49:5f: 1b:49:55:19:82:7c:9f:a2:0b:5d:2b:0c:f6:ab:d3:8f:3c:1e: e1:ad:44:ba:b9:be:fa:9e:d3:7c:ab:ae:25:98:71:c7:a3:f5: d1:7b:fd:bf:61:ca:2e:bf:f4:4d:0d:7e:91:7b:ae:36:58:16: 0c:33:95:16:74:ab:34:f0:ff:e9:3a:56:18:a2:76:ae:19:28: 3c:8d:6b:c4:c7:ce:a0:30:6f:c4:ee:d6:06:57:8c:12:0c:5e: af:cd:ae:6c:de:52:b1:e7:fd:1d:0e:38:77:7b:48:f7:c1:b9: 11:3a:36:57:4b:e3:64:75:ee:67:7a:73:ff:dd:87:25:c4:db: c6:84:4a:d6:e5:af:10:c2:de:83:67:ec:1f:18:06:ff:87:81: c5:db:9c:06:9b:88:0d:5f:62:05:6e:02:8b:a4:6b:a0:42:eb: 49:2b:74:71:1d:22:10:08:55:98:af:2d:65:b1:e3:4f:17:40: 0f:66:a6:52 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVOLUPZiiMj0fTei88ifJ2n/71RMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjc5RjlFRDRCMDhGMjEwM0MxMzM5MkQ5NTYzNkM0NDU1 NzdBNjMzOTAeFw0yNTAxMDcwNzU2MTVaFw0yNjAxMDYwODAxMTVaMDMxMTAvBgNV BAMTKEY0QTREMzdDMzg2NkFDNzM1M0U1MjZBREIxNjg1QjdGOTQzQ0E2MTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB2IBPDDYNNNsmpfnifd3C1H5n YAISEiPuHrD6vRaNzXFUGn17xU6/HFKaQdE2oYtDm7ZROW4b7JWpVSswSZZkXBaB SaHGW9+q1TQfmM7z2yHnW0jEMzEK+FxysXmUQkf/lUEewkRDnpaL9Kn7C3oXR0s6 WJZDTR3gsnMnWYLym9EkgQ9mwCT7wcnxnXkJfz5YGgt/whBh1t1pS+OWVAe2lU2P en3rNLQrNz2J65n5UVqOOItKwrgrCOPhIFQxUfNnvu1DiiyRknOwNzE9GSxu2uZg qaIrh55pcrVsZT5nask0nUWCOz2joiURGfaoU9jTMmfWq8UxceqJnJl2kLNZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9KTTfDhmrHNT5SatsWhbf5Q8phcwHwYDVR0j BBgwFoAUJ5+e1LCPIQPBM5LZVjbERVd6YzkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YmI4ZTYxMi03YmIzLTQ4ZGUtOTY5ZC03MWI0NWY0NmExNjEvMS8yNzlGOUVENEIw OEYyMTAzQzEzMzkyRDk1NjM2QzQ0NTU3N0E2MzM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjc5RjlFRDRCMDhGMjEwM0MxMzM5MkQ5NTYzNkM0NDU1NzdB NjMzOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBiYjhlNjEyLTdiYjMtNDhkZS05 NjlkLTcxYjQ1ZjQ2YTE2MS8xLzMxMzAzMzJlMzEzMjMwMmUzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzQzOTM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3goMA0GCSqG SIb3DQEBCwUAA4IBAQACnsW9xSCb6HLFY0DOnhjzC8ktqe9sMfLtT2ARz2QuPIrL LWzdhgDPkZ1cEupOGsaxRXCeERhPGZwkR0ir8VSpfHkcMaopSV8bSVUZgnyfogtd Kwz2q9OPPB7hrUS6ub76ntN8q64lmHHHo/XRe/2/Ycouv/RNDX6Re642WBYMM5UW dKs08P/pOlYYonauGSg8jWvEx86gMG/E7tYGV4wSDF6vza5s3lKx5/0dDjh3e0j3 wbkROjZXS+Nkde5nenP/3YclxNvGhErW5a8Qwt6DZ+wfGAb/h4HF25wGm4gNX2IF bgKLpGugQutJK3RxHSIQCFWYry1lseNPF0APZqZS -----END CERTIFICATE-----Generated at Wed Apr 9 19:45:57 2025 by rpki-client