$ rpki-client -vvf repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/3130332e3133392e32362e302f32332d3234203d3e20313338383630.roa File: 3130332e3133392e32362e302f32332d3234203d3e20313338383630.roa (raw, json) Hash identifier: 48+L1G8c0vPJ3Xwh9g6Jvkl9utn16OoluFEE7IOJhNo= Subject key identifier: 45:8B:C0:55:D6:18:6E:75:33:37:07:EA:B6:70:7E:18:EE:34:3A:E3 Certificate issuer: /CN=658C0D8617C2D05CE720427E1DF72FDE12C9CB9F Certificate serial: 3EF382F49F74CC9EBFB7EA53DF617D1C0B7C860D Authority key identifier: 65:8C:0D:86:17:C2:D0:5C:E7:20:42:7E:1D:F7:2F:DE:12:C9:CB:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/3130332e3133392e32362e302f32332d3234203d3e20313338383630.roa Signing time: Thu 11 Jul 2024 14:00:00 +0000 ROA not before: Thu 11 Jul 2024 13:55:00 +0000 ROA not after: Thu 10 Jul 2025 14:00:00 +0000 asID: 138860 IP address blocks: 103.139.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.crl rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Mar 2025 05:31:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:f3:82:f4:9f:74:cc:9e:bf:b7:ea:53:df:61:7d:1c:0b:7c:86:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=658C0D8617C2D05CE720427E1DF72FDE12C9CB9F Validity Not Before: Jul 11 13:55:00 2024 GMT Not After : Jul 10 14:00:00 2025 GMT Subject: CN=458BC055D6186E75333707EAB6707E18EE343AE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:fd:25:cd:4d:ff:81:f7:7e:84:f7:ca:64:db: 49:94:5d:c5:cc:31:91:2c:48:96:08:87:7c:af:a1: 4b:55:ed:e5:2f:1b:9e:03:e0:75:db:45:b3:06:5d: 9d:81:a4:82:4e:13:69:e8:fe:b2:f5:59:7a:6e:01: 44:a9:1e:57:96:ba:18:2c:61:e3:01:aa:d5:e9:cc: 94:03:7a:28:a0:19:61:bd:61:8b:67:a1:62:fd:59: 87:7e:66:ec:24:38:e9:61:71:8f:54:7b:7d:8c:94: 48:6c:3b:58:e4:36:9d:d4:99:9f:45:84:41:dd:0f: cd:10:f3:b6:5a:7e:d5:0b:c2:d6:86:a3:7a:b3:65: 6f:d5:d3:ce:32:1f:fd:ad:d0:c0:26:ce:50:88:9e: ef:93:98:fe:68:82:b9:af:2a:77:b5:5c:bf:75:78: f4:ed:1f:00:4f:8d:99:53:1e:1c:0d:94:f2:90:7b: 62:4c:9f:8d:75:b2:2a:75:64:95:b5:ba:43:fc:3d: 85:d6:e8:fa:59:ea:20:60:5b:96:b9:9e:34:bd:49: 2a:bd:14:47:63:77:00:1c:c0:01:22:58:21:2b:0b: 82:b1:35:12:37:7a:6f:74:e2:2d:e2:e5:8c:41:0f: 8e:5b:46:91:ec:ef:bc:56:2d:d9:bf:f5:2b:e8:2c: e3:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:8B:C0:55:D6:18:6E:75:33:37:07:EA:B6:70:7E:18:EE:34:3A:E3 X509v3 Authority Key Identifier: keyid:65:8C:0D:86:17:C2:D0:5C:E7:20:42:7E:1D:F7:2F:DE:12:C9:CB:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/3130332e3133392e32362e302f32332d3234203d3e20313338383630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.26.0/23 Signature Algorithm: sha256WithRSAEncryption 50:ca:7a:a9:f2:90:6c:47:95:b9:2d:a4:2b:fd:55:d0:cd:76: cc:4a:41:30:29:e4:ab:1c:82:b7:d6:4c:83:9d:6a:d4:ef:2d: 85:13:2d:40:cf:2f:9e:ff:50:a5:60:48:13:b2:d0:86:a6:09: b3:e1:d3:0a:f5:98:49:12:a9:23:f6:ee:80:5a:fe:cd:b9:2c: 5a:54:44:6c:8d:3b:90:78:e3:dc:48:91:c1:74:fa:71:03:a1: 89:0f:87:c2:2d:c0:ee:18:be:5f:55:1b:24:7a:0e:94:a1:9e: 3c:e6:9e:b4:81:a0:c9:a1:84:ea:a1:bd:f2:54:b6:75:30:20: 7b:ef:35:2b:45:c6:c5:f8:8b:f9:95:38:39:26:da:1b:da:39: bf:bb:43:f8:76:74:e4:d2:7c:28:ab:9a:09:2e:ff:de:19:e4: 0b:9e:66:d9:d3:1d:9c:ce:0f:88:96:5f:65:92:d4:8f:05:ff: 2e:4d:f6:a5:9c:d1:16:bb:1e:96:80:ed:bb:01:a9:f9:c9:00: b0:9d:15:03:8a:d2:ff:40:29:48:cd:cf:96:db:e4:a2:6f:c4: ad:3b:87:33:a4:c0:94:3a:4e:4c:a9:3a:44:0c:a9:bc:57:e5: 50:d9:a0:fd:e6:ab:ef:69:4e:07:e5:22:4d:45:39:6b:ec:df: e4:b6:93:d0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPvOC9J90zJ6/t+pT32F9HAt8hg0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjU4QzBEODYxN0MyRDA1Q0U3MjA0MjdFMURGNzJGREUx MkM5Q0I5RjAeFw0yNDA3MTExMzU1MDBaFw0yNTA3MTAxNDAwMDBaMDMxMTAvBgNV BAMTKDQ1OEJDMDU1RDYxODZFNzUzMzM3MDdFQUI2NzA3RTE4RUUzNDNBRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCc/SXNTf+B936E98pk20mUXcXM MZEsSJYIh3yvoUtV7eUvG54D4HXbRbMGXZ2BpIJOE2no/rL1WXpuAUSpHleWuhgs YeMBqtXpzJQDeiigGWG9YYtnoWL9WYd+ZuwkOOlhcY9Ue32MlEhsO1jkNp3UmZ9F hEHdD80Q87ZaftULwtaGo3qzZW/V084yH/2t0MAmzlCInu+TmP5ogrmvKne1XL91 ePTtHwBPjZlTHhwNlPKQe2JMn411sip1ZJW1ukP8PYXW6PpZ6iBgW5a5njS9SSq9 FEdjdwAcwAEiWCErC4KxNRI3em904i3i5YxBD45bRpHs77xWLdm/9SvoLOOLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURYvAVdYYbnUzNwfqtnB+GO40OuMwHwYDVR0j BBgwFoAUZYwNhhfC0FznIEJ+Hfcv3hLJy58wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NjVkODhmMS1iOWMwLTQ4NWUtOTE2ZS01OWI3ZTM2OThkYTEvMC82NThDMEQ4NjE3 QzJEMDVDRTcyMDQyN0UxREY3MkZERTEyQzlDQjlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjU4QzBEODYxN0MyRDA1Q0U3MjA0MjdFMURGNzJGREUxMkM5 Q0I5Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2NWQ4OGYxLWI5YzAtNDg1ZS05 MTZlLTU5YjdlMzY5OGRhMS8wLzMxMzAzMzJlMzEzMzM5MmUzMjM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4saMA0GCSqG SIb3DQEBCwUAA4IBAQBQynqp8pBsR5W5LaQr/VXQzXbMSkEwKeSrHIK31kyDnWrU 7y2FEy1Azy+e/1ClYEgTstCGpgmz4dMK9ZhJEqkj9u6AWv7NuSxaVERsjTuQeOPc SJHBdPpxA6GJD4fCLcDuGL5fVRskeg6UoZ485p60gaDJoYTqob3yVLZ1MCB77zUr RcbF+Iv5lTg5Jtob2jm/u0P4dnTk0nwoq5oJLv/eGeQLnmbZ0x2czg+Ill9lktSP Bf8uTfalnNEWux6WgO27Aan5yQCwnRUDitL/QClIzc+W2+Sib8StO4czpMCUOk5M qTpEDKm8V+VQ2aD95qvvaU4H5SJNRTlr7N/ktpPQ -----END CERTIFICATE-----Generated at Tue Mar 11 05:02:01 2025 by rpki-client