$ rpki-client -vvf repo-rpki.idnic.net/repo/0cd24e82-f306-4400-b00a-d59b41e286bb/0/3130332e3132302e3231382e302f32342d3234203d3e20313338303832.roa File: 3130332e3132302e3231382e302f32342d3234203d3e20313338303832.roa (raw, json) Hash identifier: A8O4HhKJBUpQAVtG9F/HuVJZcjl2PJnz2blEINGnJlw= Subject key identifier: A0:AA:EA:BB:52:A2:6D:BF:0F:DF:1B:86:CE:62:DB:C4:D9:8E:DF:EA Certificate issuer: /CN=EA01C91511C5E347C7C11EA4649B0F041A5D0520 Certificate serial: 1DB2BAA2AA2EF94C33FDAFEBA1AA261B5DF5828B Authority key identifier: EA:01:C9:15:11:C5:E3:47:C7:C1:1E:A4:64:9B:0F:04:1A:5D:05:20 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EA01C91511C5E347C7C11EA4649B0F041A5D0520.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0cd24e82-f306-4400-b00a-d59b41e286bb/0/3130332e3132302e3231382e302f32342d3234203d3e20313338303832.roa Signing time: Tue 26 Nov 2024 06:00:00 +0000 ROA not before: Tue 26 Nov 2024 05:55:00 +0000 ROA not after: Tue 25 Nov 2025 06:00:00 +0000 asID: 138082 IP address blocks: 103.120.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0cd24e82-f306-4400-b00a-d59b41e286bb/0/EA01C91511C5E347C7C11EA4649B0F041A5D0520.crl rsync://repo-rpki.idnic.net/repo/0cd24e82-f306-4400-b00a-d59b41e286bb/0/EA01C91511C5E347C7C11EA4649B0F041A5D0520.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EA01C91511C5E347C7C11EA4649B0F041A5D0520.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 20:30:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:b2:ba:a2:aa:2e:f9:4c:33:fd:af:eb:a1:aa:26:1b:5d:f5:82:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EA01C91511C5E347C7C11EA4649B0F041A5D0520 Validity Not Before: Nov 26 05:55:00 2024 GMT Not After : Nov 25 06:00:00 2025 GMT Subject: CN=A0AAEABB52A26DBF0FDF1B86CE62DBC4D98EDFEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1d:ca:ef:c5:09:59:ff:d0:e1:a4:79:ef:3c: b3:35:9e:11:40:31:bf:1a:6c:82:d0:3c:c1:0d:5c: 35:ff:84:d8:8d:15:0f:63:6e:46:9e:64:b0:47:46: 68:a8:bc:3e:ed:d9:a5:0d:26:d9:28:02:33:fb:ea: e9:93:b1:b7:5c:f2:65:e5:d7:87:52:f9:eb:33:5d: bf:dc:d3:52:8b:23:e4:4d:4e:5e:4f:8b:78:d7:1d: f2:e6:92:7a:c7:1f:06:e9:fc:bc:9f:d1:81:8b:4f: eb:90:b9:4f:b1:46:56:4c:21:bb:95:2c:d6:76:1f: eb:d3:c1:a5:66:b3:d4:fc:cb:68:d0:72:12:2d:a7: 10:fd:3f:ac:3b:6f:fd:db:97:41:71:fa:38:85:6d: bd:72:0b:04:5a:3b:58:98:08:70:e7:29:18:64:38: a5:88:f6:d2:a6:21:c7:d6:53:a7:c4:29:bd:bb:f8: d5:07:8f:09:f6:eb:af:90:98:dd:31:8f:85:73:4f: fe:89:a7:e3:ca:d7:11:7c:b1:b4:37:04:25:86:17: 40:98:1e:3c:7f:5d:e3:8f:b5:58:63:da:79:dd:23: 4f:57:06:02:6f:d6:c7:17:c2:d8:53:c3:80:cc:86: 41:bd:8f:e4:ac:86:d1:47:6b:fe:e1:6d:fd:5c:92: fb:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:AA:EA:BB:52:A2:6D:BF:0F:DF:1B:86:CE:62:DB:C4:D9:8E:DF:EA X509v3 Authority Key Identifier: keyid:EA:01:C9:15:11:C5:E3:47:C7:C1:1E:A4:64:9B:0F:04:1A:5D:05:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0cd24e82-f306-4400-b00a-d59b41e286bb/0/EA01C91511C5E347C7C11EA4649B0F041A5D0520.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EA01C91511C5E347C7C11EA4649B0F041A5D0520.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0cd24e82-f306-4400-b00a-d59b41e286bb/0/3130332e3132302e3231382e302f32342d3234203d3e20313338303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.218.0/24 Signature Algorithm: sha256WithRSAEncryption 65:f2:82:45:c7:6a:09:8b:4b:79:dc:06:7e:05:db:ea:45:69: af:02:22:a1:8c:a9:67:69:0e:e4:d8:af:88:93:0c:ae:c1:ca: a4:6e:16:72:8a:6a:34:88:1f:a8:cb:32:4a:63:f2:29:ec:9b: b9:19:e1:73:b7:a5:8d:2c:28:e2:88:61:f7:3c:6d:af:1f:d9: 7a:83:ed:94:03:14:87:89:bc:fb:44:4f:cc:ce:0b:85:76:81: eb:9c:bc:03:52:3d:e1:a3:73:6d:76:f4:90:81:b3:ae:79:5a: 7d:ca:d5:21:17:34:41:0e:3d:ba:7b:b2:c0:a4:e1:ce:69:bc: 56:41:05:11:62:73:09:ba:0b:a9:4f:66:38:1c:4a:bb:96:9c: 5c:e2:e2:99:56:3a:ae:91:3d:44:1a:24:25:0d:16:9f:78:1f: 6e:0b:01:3c:cf:d1:a0:79:bb:9e:a2:b4:5f:75:da:d4:31:63: 71:13:8f:a7:01:f5:84:b3:59:28:62:2f:a0:02:2f:4a:62:72: 4c:d4:63:34:d5:6b:cb:3d:a4:44:f1:39:f1:8c:2f:da:e4:d6: eb:db:c6:76:12:30:ab:f2:95:bc:0e:64:23:f0:d0:2b:b1:aa: 13:a5:e6:66:72:6f:95:b2:95:95:4e:e9:93:e9:92:e5:4c:a4: b1:20:31:ce -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHbK6oqou+Uwz/a/roaomG131goswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUEwMUM5MTUxMUM1RTM0N0M3QzExRUE0NjQ5QjBGMDQx QTVEMDUyMDAeFw0yNDExMjYwNTU1MDBaFw0yNTExMjUwNjAwMDBaMDMxMTAvBgNV BAMTKEEwQUFFQUJCNTJBMjZEQkYwRkRGMUI4NkNFNjJEQkM0RDk4RURGRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+HcrvxQlZ/9DhpHnvPLM1nhFA Mb8abILQPMENXDX/hNiNFQ9jbkaeZLBHRmiovD7t2aUNJtkoAjP76umTsbdc8mXl 14dS+eszXb/c01KLI+RNTl5Pi3jXHfLmknrHHwbp/Lyf0YGLT+uQuU+xRlZMIbuV LNZ2H+vTwaVms9T8y2jQchItpxD9P6w7b/3bl0Fx+jiFbb1yCwRaO1iYCHDnKRhk OKWI9tKmIcfWU6fEKb27+NUHjwn266+QmN0xj4VzT/6Jp+PK1xF8sbQ3BCWGF0CY Hjx/XeOPtVhj2nndI09XBgJv1scXwthTw4DMhkG9j+SshtFHa/7hbf1ckvvtAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUoKrqu1Kibb8P3xuGzmLbxNmO3+owHwYDVR0j BBgwFoAU6gHJFRHF40fHwR6kZJsPBBpdBSAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w Y2QyNGU4Mi1mMzA2LTQ0MDAtYjAwYS1kNTliNDFlMjg2YmIvMC9FQTAxQzkxNTEx QzVFMzQ3QzdDMTFFQTQ2NDlCMEYwNDFBNUQwNTIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUEwMUM5MTUxMUM1RTM0N0M3QzExRUE0NjQ5QjBGMDQxQTVE MDUyMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjZDI0ZTgyLWYzMDYtNDQwMC1i MDBhLWQ1OWI0MWUyODZiYi8wLzMxMzAzMzJlMzEzMjMwMmUzMjMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM4MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABneNowDQYJ KoZIhvcNAQELBQADggEBAGXygkXHagmLS3ncBn4F2+pFaa8CIqGMqWdpDuTYr4iT DK7ByqRuFnKKajSIH6jLMkpj8insm7kZ4XO3pY0sKOKIYfc8ba8f2XqD7ZQDFIeJ vPtET8zOC4V2geucvANSPeGjc2129JCBs655Wn3K1SEXNEEOPbp7ssCk4c5pvFZB BRFicwm6C6lPZjgcSruWnFzi4plWOq6RPUQaJCUNFp94H24LATzP0aB5u56itF91 2tQxY3ETj6cB9YSzWShiL6ACL0pickzUYzTVa8s9pETxOfGML9rk1uvbxnYSMKvy lbwOZCPw0CuxqhOl5mZyb5WylZVO6ZPpkuVMpLEgMc4= -----END CERTIFICATE-----Generated at Sun Apr 6 13:43:39 2025 by rpki-client