$ rpki-client -vvf repo-rpki.idnic.net/repo/174dc5e1-1d55-49d2-93d4-5d98ead779ed/0/3130332e3139362e38352e302f32342d3234203d3e20313530393331.roa File: 3130332e3139362e38352e302f32342d3234203d3e20313530393331.roa (raw, json) Hash identifier: jUBG0ihe87NPF0UeSwPcw2ps7geEn49dS5EBW0b09+k= Subject key identifier: D1:F3:FC:F6:FE:C8:16:E6:F5:95:5C:D6:22:1C:F4:C4:E1:A9:FE:B9 Certificate issuer: /CN=00CBB314A3396508984527DC9E3F91DA2A407863 Certificate serial: 643A022F6749631565B15F4AEC43D3C60AB95C20 Authority key identifier: 00:CB:B3:14:A3:39:65:08:98:45:27:DC:9E:3F:91:DA:2A:40:78:63 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00CBB314A3396508984527DC9E3F91DA2A407863.cer Subject info access: rsync://repo-rpki.idnic.net/repo/174dc5e1-1d55-49d2-93d4-5d98ead779ed/0/3130332e3139362e38352e302f32342d3234203d3e20313530393331.roa Signing time: Sat 11 May 2024 09:00:01 +0000 ROA not before: Sat 11 May 2024 08:55:01 +0000 ROA not after: Sat 10 May 2025 09:00:01 +0000 asID: 150931 IP address blocks: 103.196.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/174dc5e1-1d55-49d2-93d4-5d98ead779ed/0/00CBB314A3396508984527DC9E3F91DA2A407863.crl rsync://repo-rpki.idnic.net/repo/174dc5e1-1d55-49d2-93d4-5d98ead779ed/0/00CBB314A3396508984527DC9E3F91DA2A407863.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00CBB314A3396508984527DC9E3F91DA2A407863.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Mar 2025 22:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:3a:02:2f:67:49:63:15:65:b1:5f:4a:ec:43:d3:c6:0a:b9:5c:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00CBB314A3396508984527DC9E3F91DA2A407863 Validity Not Before: May 11 08:55:01 2024 GMT Not After : May 10 09:00:01 2025 GMT Subject: CN=D1F3FCF6FEC816E6F5955CD6221CF4C4E1A9FEB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4f:8a:65:c3:ba:09:c7:e0:16:f7:f7:6f:0c: 11:63:87:f7:15:64:eb:9a:8a:bc:a3:93:9d:30:46: 6c:17:62:06:00:36:12:a1:19:3e:11:9c:56:cc:f6: 33:5b:18:6a:96:4e:07:58:c9:7d:c8:15:b7:16:ec: e7:96:0e:a4:4d:05:18:99:e0:5f:fa:72:21:c6:d0: 4c:4f:13:c8:c8:cf:ab:78:e0:77:07:20:a9:cf:9e: 44:2f:c4:a9:ff:c4:40:b2:b4:6f:d1:fa:6a:e0:1e: fa:c4:af:db:ef:84:a4:3a:33:9c:5c:97:18:b3:26: b3:5f:63:c4:75:ef:48:db:45:4b:be:f4:88:ac:31: 93:fb:ef:91:4b:13:6c:e7:ce:69:91:75:d2:4a:51: 8f:14:32:cd:21:e0:f0:a6:b8:59:1b:67:6b:be:dd: 76:b4:92:16:32:a1:21:49:48:e5:ba:19:63:23:0a: 34:bb:23:e8:9a:46:2e:55:79:3e:ae:22:04:d7:05: af:5b:72:c6:02:0f:11:de:26:e2:88:88:95:74:0d: 1f:d0:d2:90:0d:97:24:5e:e8:2e:7d:36:44:49:21: ad:14:35:e3:d5:cd:6b:2f:70:b1:6b:42:7e:11:ca: 10:77:3f:6b:7d:f9:d1:3f:38:7e:2c:0a:b0:51:93: 93:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:F3:FC:F6:FE:C8:16:E6:F5:95:5C:D6:22:1C:F4:C4:E1:A9:FE:B9 X509v3 Authority Key Identifier: keyid:00:CB:B3:14:A3:39:65:08:98:45:27:DC:9E:3F:91:DA:2A:40:78:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/174dc5e1-1d55-49d2-93d4-5d98ead779ed/0/00CBB314A3396508984527DC9E3F91DA2A407863.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00CBB314A3396508984527DC9E3F91DA2A407863.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/174dc5e1-1d55-49d2-93d4-5d98ead779ed/0/3130332e3139362e38352e302f32342d3234203d3e20313530393331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.196.85.0/24 Signature Algorithm: sha256WithRSAEncryption 65:09:e4:6f:3d:27:4f:66:91:21:de:e0:9b:be:4b:7e:27:17: 18:64:cb:02:3b:2e:f8:4c:a7:40:cc:a6:3b:45:84:03:63:08: c0:43:c8:2a:0e:eb:71:5e:44:a3:39:18:3b:74:48:24:a5:da: 8f:1d:b6:94:5e:21:c7:74:d7:19:ef:8d:fa:3d:0d:87:4c:89: 80:3b:2d:a5:21:2f:18:d3:f0:a2:9b:0b:a9:11:bb:43:f1:71: ba:d2:55:fe:b9:3d:37:70:94:69:85:39:34:d3:5b:5e:ff:f6: 92:7c:74:3a:1f:7c:d1:c8:9b:ff:02:d5:eb:85:92:25:0f:f1: 0d:40:b5:ef:b5:82:4c:37:bf:90:cb:2b:52:45:02:5f:5e:6f: 95:c4:0a:bb:bd:b7:a4:ca:33:08:7c:b6:43:ad:4f:6a:f8:9c: 8b:29:b8:a8:40:c5:f9:47:37:6c:1c:3e:8e:50:72:8a:4f:e1: 84:fc:21:52:b8:3c:d9:5c:bd:72:85:b5:7d:e2:27:ea:f4:b6: b3:a5:de:c6:3f:f2:3f:f7:3f:c9:ac:85:b3:25:41:f7:82:ab: d8:d5:87:c6:f5:ff:1a:af:ac:b9:43:f3:ae:29:7c:9e:5a:eb: a1:cd:89:22:21:fd:9d:01:1d:32:4a:06:61:db:78:c9:5d:bb: f2:fc:f9:f0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZDoCL2dJYxVlsV9K7EPTxgq5XCAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBDQkIzMTRBMzM5NjUwODk4NDUyN0RDOUUzRjkxREEy QTQwNzg2MzAeFw0yNDA1MTEwODU1MDFaFw0yNTA1MTAwOTAwMDFaMDMxMTAvBgNV BAMTKEQxRjNGQ0Y2RkVDODE2RTZGNTk1NUNENjIyMUNGNEM0RTFBOUZFQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGT4plw7oJx+AW9/dvDBFjh/cV ZOuairyjk50wRmwXYgYANhKhGT4RnFbM9jNbGGqWTgdYyX3IFbcW7OeWDqRNBRiZ 4F/6ciHG0ExPE8jIz6t44HcHIKnPnkQvxKn/xECytG/R+mrgHvrEr9vvhKQ6M5xc lxizJrNfY8R170jbRUu+9IisMZP775FLE2znzmmRddJKUY8UMs0h4PCmuFkbZ2u+ 3Xa0khYyoSFJSOW6GWMjCjS7I+iaRi5VeT6uIgTXBa9bcsYCDxHeJuKIiJV0DR/Q 0pANlyRe6C59NkRJIa0UNePVzWsvcLFrQn4RyhB3P2t9+dE/OH4sCrBRk5NBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0fP89v7IFub1lVzWIhz0xOGp/rkwHwYDVR0j BBgwFoAUAMuzFKM5ZQiYRSfcnj+R2ipAeGMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NzRkYzVlMS0xZDU1LTQ5ZDItOTNkNC01ZDk4ZWFkNzc5ZWQvMC8wMENCQjMxNEEz Mzk2NTA4OTg0NTI3REM5RTNGOTFEQTJBNDA3ODYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBDQkIzMTRBMzM5NjUwODk4NDUyN0RDOUUzRjkxREEyQTQw Nzg2My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3NGRjNWUxLTFkNTUtNDlkMi05 M2Q0LTVkOThlYWQ3NzllZC8wLzMxMzAzMzJlMzEzOTM2MmUzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8RVMA0GCSqG SIb3DQEBCwUAA4IBAQBlCeRvPSdPZpEh3uCbvkt+JxcYZMsCOy74TKdAzKY7RYQD YwjAQ8gqDutxXkSjORg7dEgkpdqPHbaUXiHHdNcZ7436PQ2HTImAOy2lIS8Y0/Ci mwupEbtD8XG60lX+uT03cJRphTk001te//aSfHQ6H3zRyJv/AtXrhZIlD/ENQLXv tYJMN7+QyytSRQJfXm+VxAq7vbekyjMIfLZDrU9q+JyLKbioQMX5RzdsHD6OUHKK T+GE/CFSuDzZXL1yhbV94ifq9Lazpd7GP/I/9z/JrIWzJUH3gqvY1YfG9f8ar6y5 Q/OuKXyeWuuhzYkiIf2dAR0ySgZh23jJXbvy/Pnw -----END CERTIFICATE-----Generated at Tue Mar 11 05:05:47 2025 by rpki-client