$ rpki-client -vvf repo-rpki.idnic.net/repo/15521099-3ba1-4f91-b5bb-712c3bba6337/0/3130332e3139302e3130382e302f32332d3234203d3e20313439393033.roa File: 3130332e3139302e3130382e302f32332d3234203d3e20313439393033.roa (raw, json) Hash identifier: ovrs8jnUkNf+XIsuUoS9OXOAOBVBgJNl9ABSwFMQZq0= Subject key identifier: B4:C1:29:97:02:06:23:C6:03:76:CA:B5:09:4D:82:5E:C9:2A:89:1E Certificate issuer: /CN=1D80B161A8871962133619E73EBB98762953ABF1 Certificate serial: 546E2C317403CFBA366AE8FB47C02E8F678F3D99 Authority key identifier: 1D:80:B1:61:A8:87:19:62:13:36:19:E7:3E:BB:98:76:29:53:AB:F1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D80B161A8871962133619E73EBB98762953ABF1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/15521099-3ba1-4f91-b5bb-712c3bba6337/0/3130332e3139302e3130382e302f32332d3234203d3e20313439393033.roa Signing time: Fri 20 Dec 2024 13:00:01 +0000 ROA not before: Fri 20 Dec 2024 12:55:01 +0000 ROA not after: Fri 19 Dec 2025 13:00:01 +0000 asID: 149903 IP address blocks: 103.190.108.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/15521099-3ba1-4f91-b5bb-712c3bba6337/0/1D80B161A8871962133619E73EBB98762953ABF1.crl rsync://repo-rpki.idnic.net/repo/15521099-3ba1-4f91-b5bb-712c3bba6337/0/1D80B161A8871962133619E73EBB98762953ABF1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D80B161A8871962133619E73EBB98762953ABF1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 14:44:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:6e:2c:31:74:03:cf:ba:36:6a:e8:fb:47:c0:2e:8f:67:8f:3d:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D80B161A8871962133619E73EBB98762953ABF1 Validity Not Before: Dec 20 12:55:01 2024 GMT Not After : Dec 19 13:00:01 2025 GMT Subject: CN=B4C12997020623C60376CAB5094D825EC92A891E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:41:55:94:31:c8:97:1e:73:e6:40:33:e6:95: 43:fa:3b:9d:19:9e:95:9c:ea:51:b6:03:0f:b8:02: b7:62:30:36:af:bb:a3:0a:1f:f2:01:fb:0b:d7:da: 00:20:2b:ea:e6:1b:ab:90:33:b4:99:de:ff:f4:82: a2:d9:0c:6c:a5:00:10:c7:c8:b7:4b:65:4b:88:0e: 4b:e7:3f:fc:24:ff:e2:bf:3f:fb:23:1a:59:3c:ca: 71:b3:f4:bc:a6:1d:f8:b9:bb:97:6f:90:4b:99:de: ef:aa:35:26:0a:8f:22:ef:1d:3e:32:02:8d:84:4c: f9:28:01:e9:8e:0d:d2:65:b1:08:84:1c:fb:11:25: 89:e1:c4:be:09:aa:80:df:0c:6e:51:1d:87:60:e3: 8f:3f:72:f1:ba:5d:27:19:91:97:26:4f:ec:e8:ae: 42:a3:62:32:ab:37:7d:07:c7:47:69:ff:94:0e:4b: 2e:d3:99:09:15:51:ff:79:62:d6:02:79:aa:04:64: 81:5b:04:fc:c4:b6:b6:13:ca:f3:dc:75:05:0d:12: 87:07:5a:3c:ae:80:e2:22:ac:dc:e6:05:be:b6:f4: 53:3f:1f:96:52:38:e0:60:8b:2e:10:72:09:af:49: bd:d7:4b:9e:49:3c:e7:28:31:a0:02:f9:ca:a9:d1: bf:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:C1:29:97:02:06:23:C6:03:76:CA:B5:09:4D:82:5E:C9:2A:89:1E X509v3 Authority Key Identifier: keyid:1D:80:B1:61:A8:87:19:62:13:36:19:E7:3E:BB:98:76:29:53:AB:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/15521099-3ba1-4f91-b5bb-712c3bba6337/0/1D80B161A8871962133619E73EBB98762953ABF1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D80B161A8871962133619E73EBB98762953ABF1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/15521099-3ba1-4f91-b5bb-712c3bba6337/0/3130332e3139302e3130382e302f32332d3234203d3e20313439393033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.108.0/23 Signature Algorithm: sha256WithRSAEncryption b4:bf:7e:b7:0a:9e:14:9c:02:60:9e:c0:d4:65:01:7e:ef:bc: 88:27:01:12:9f:c8:9d:f6:46:1f:cb:53:3e:2d:0e:51:22:58: 89:3c:13:b7:1d:41:12:5f:26:a9:77:b6:09:60:aa:9b:a5:ed: d9:f3:e4:2b:8c:fd:8d:64:d8:c8:70:9f:7a:a6:21:cf:08:fa: 90:a6:1f:b5:28:e4:63:b6:41:65:a1:3e:ba:09:0f:51:4d:73: 5c:05:fa:76:29:5b:e8:31:ba:0f:81:12:89:1e:be:05:9c:1d: bd:ea:66:fc:b7:e6:f7:52:a0:56:58:8c:6f:e2:61:11:75:5c: c8:02:7d:fc:ff:fc:1a:81:a9:39:2f:07:b2:1f:f2:65:12:62: 14:94:b2:f6:fd:7b:4a:ef:c5:e9:4f:b0:2d:c3:31:d2:a9:c9: 78:c9:e0:1d:7d:63:65:2a:39:91:74:2f:9e:e8:ec:17:3b:62: 93:2a:6d:47:0d:79:58:18:65:5d:67:e2:d1:da:8f:12:f5:04: c9:eb:3d:7b:22:e7:5b:75:eb:53:cc:92:ad:42:66:f3:cb:2f: 71:69:50:90:a9:2c:79:cc:61:d8:2d:83:bf:86:02:5d:19:b2: 80:f8:e3:23:6f:ca:e6:8e:7c:ab:99:fd:73:1e:ec:b1:27:83: b3:48:45:dd -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVG4sMXQDz7o2auj7R8Auj2ePPZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ4MEIxNjFBODg3MTk2MjEzMzYxOUU3M0VCQjk4NzYy OTUzQUJGMTAeFw0yNDEyMjAxMjU1MDFaFw0yNTEyMTkxMzAwMDFaMDMxMTAvBgNV BAMTKEI0QzEyOTk3MDIwNjIzQzYwMzc2Q0FCNTA5NEQ4MjVFQzkyQTg5MUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaQVWUMciXHnPmQDPmlUP6O50Z npWc6lG2Aw+4ArdiMDavu6MKH/IB+wvX2gAgK+rmG6uQM7SZ3v/0gqLZDGylABDH yLdLZUuIDkvnP/wk/+K/P/sjGlk8ynGz9LymHfi5u5dvkEuZ3u+qNSYKjyLvHT4y Ao2ETPkoAemODdJlsQiEHPsRJYnhxL4JqoDfDG5RHYdg448/cvG6XScZkZcmT+zo rkKjYjKrN30Hx0dp/5QOSy7TmQkVUf95YtYCeaoEZIFbBPzEtrYTyvPcdQUNEocH WjyugOIirNzmBb629FM/H5ZSOOBgiy4QcgmvSb3XS55JPOcoMaAC+cqp0b/DAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUtMEplwIGI8YDdsq1CU2CXskqiR4wHwYDVR0j BBgwFoAUHYCxYaiHGWITNhnnPruYdilTq/EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NTUyMTA5OS0zYmExLTRmOTEtYjViYi03MTJjM2JiYTYzMzcvMC8xRDgwQjE2MUE4 ODcxOTYyMTMzNjE5RTczRUJCOTg3NjI5NTNBQkYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUQ4MEIxNjFBODg3MTk2MjEzMzYxOUU3M0VCQjk4NzYyOTUz QUJGMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE1NTIxMDk5LTNiYTEtNGY5MS1i NWJiLTcxMmMzYmJhNjMzNy8wLzMxMzAzMzJlMzEzOTMwMmUzMTMwMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzkzOTMwMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnvmwwDQYJ KoZIhvcNAQELBQADggEBALS/frcKnhScAmCewNRlAX7vvIgnARKfyJ32Rh/LUz4t DlEiWIk8E7cdQRJfJql3tglgqpul7dnz5CuM/Y1k2Mhwn3qmIc8I+pCmH7Uo5GO2 QWWhProJD1FNc1wF+nYpW+gxug+BEokevgWcHb3qZvy35vdSoFZYjG/iYRF1XMgC ffz//BqBqTkvB7If8mUSYhSUsvb9e0rvxelPsC3DMdKpyXjJ4B19Y2UqOZF0L57o 7Bc7YpMqbUcNeVgYZV1n4tHajxL1BMnrPXsi51t161PMkq1CZvPLL3FpUJCpLHnM Ydgtg7+GAl0ZsoD44yNvyuaOfKuZ/XMe7LEng7NIRd0= -----END CERTIFICATE-----Generated at Sun Apr 6 23:35:30 2025 by rpki-client