$ rpki-client -vvf repo-rpki.idnic.net/repo/1815545c-c996-460f-92dd-6294aec92c52/0/3130332e36382e3233322e302f32342d3234203d3e20313530353431.roa File: 3130332e36382e3233322e302f32342d3234203d3e20313530353431.roa (raw, json) Hash identifier: Wqex7ELQOaBiRryAU3Sv7VgatxwXxqLf7gFgzNpMvN8= Subject key identifier: 73:E0:F7:B6:E5:93:75:CD:4E:92:DC:89:C0:4D:16:F2:10:41:6A:64 Certificate issuer: /CN=021C6F972C8EBDDC3336FE4951F22CE86EDADE6C Certificate serial: 011B28128BFFED26E2A558FDB8E6FFCE960D668B Authority key identifier: 02:1C:6F:97:2C:8E:BD:DC:33:36:FE:49:51:F2:2C:E8:6E:DA:DE:6C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/021C6F972C8EBDDC3336FE4951F22CE86EDADE6C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1815545c-c996-460f-92dd-6294aec92c52/0/3130332e36382e3233322e302f32342d3234203d3e20313530353431.roa Signing time: Tue 04 Feb 2025 05:00:00 +0000 ROA not before: Tue 04 Feb 2025 04:55:00 +0000 ROA not after: Tue 03 Feb 2026 05:00:00 +0000 asID: 150541 IP address blocks: 103.68.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1815545c-c996-460f-92dd-6294aec92c52/0/021C6F972C8EBDDC3336FE4951F22CE86EDADE6C.crl rsync://repo-rpki.idnic.net/repo/1815545c-c996-460f-92dd-6294aec92c52/0/021C6F972C8EBDDC3336FE4951F22CE86EDADE6C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/021C6F972C8EBDDC3336FE4951F22CE86EDADE6C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 04:34:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:1b:28:12:8b:ff:ed:26:e2:a5:58:fd:b8:e6:ff:ce:96:0d:66:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=021C6F972C8EBDDC3336FE4951F22CE86EDADE6C Validity Not Before: Feb 4 04:55:00 2025 GMT Not After : Feb 3 05:00:00 2026 GMT Subject: CN=73E0F7B6E59375CD4E92DC89C04D16F210416A64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f8:61:1d:91:67:3e:46:ef:2e:00:27:5e:ab: d3:51:01:bd:35:92:4a:60:b5:b1:3f:50:4c:b3:d5: 59:f3:25:c2:29:91:46:df:37:e0:6a:b9:43:38:da: a5:0f:c0:6b:85:d4:69:dd:3e:39:9e:a7:89:e9:62: 6e:d5:78:ea:12:3a:c7:11:f0:dc:1f:b5:35:33:f6: c3:5f:76:da:a3:d6:98:dc:46:3b:4f:e9:39:d6:af: 23:e4:d9:57:6b:c0:44:19:8e:f1:2b:fe:61:86:a5: 37:4f:51:16:de:a6:e1:d7:5d:24:43:f7:19:54:65: 28:3e:d1:4e:28:50:cd:1a:58:a7:bf:ff:ee:fd:28: 86:36:88:52:2d:73:67:67:3d:b0:58:00:04:38:cc: 30:06:c7:f3:85:27:c5:08:1a:3e:80:14:58:11:29: be:b1:29:0a:06:65:be:dd:f6:0e:4f:80:55:a9:46: e5:59:7e:30:1e:b7:61:7a:24:9d:cd:81:cd:a4:f9: 16:86:c1:5a:ca:26:20:7b:d6:4f:59:87:61:36:d3: 2d:11:2a:e6:10:57:78:d0:e1:23:82:8e:d7:f4:34: ce:61:e3:8f:51:44:df:ad:68:18:2c:cc:3f:0e:22: d3:22:6a:cd:ac:08:79:a8:a0:16:5f:64:de:9d:74: 16:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:E0:F7:B6:E5:93:75:CD:4E:92:DC:89:C0:4D:16:F2:10:41:6A:64 X509v3 Authority Key Identifier: keyid:02:1C:6F:97:2C:8E:BD:DC:33:36:FE:49:51:F2:2C:E8:6E:DA:DE:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1815545c-c996-460f-92dd-6294aec92c52/0/021C6F972C8EBDDC3336FE4951F22CE86EDADE6C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/021C6F972C8EBDDC3336FE4951F22CE86EDADE6C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1815545c-c996-460f-92dd-6294aec92c52/0/3130332e36382e3233322e302f32342d3234203d3e20313530353431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.68.232.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:c9:16:3d:93:ff:df:a4:fb:17:a4:14:f9:3f:2f:fa:05:18: b5:ab:fd:fe:8c:8b:07:f5:1d:7e:1c:cd:46:45:50:be:f8:85: 2b:09:96:62:f6:6c:d2:7a:21:99:76:9e:1b:42:66:13:ac:7f: e3:6b:21:67:93:37:e5:67:6d:ae:fd:55:b5:e2:8b:d6:c5:18: d1:67:4f:f5:a4:60:47:d6:c2:94:c3:ef:8e:17:15:a5:4b:37: 9d:4e:41:4f:e6:6c:23:38:4e:80:05:df:82:75:25:3d:79:88: e8:37:d2:74:14:97:d3:32:4d:30:06:6d:f7:ef:15:2b:de:7d: ff:0d:95:ed:54:8c:0d:82:2c:6f:40:ec:30:ee:dd:49:d6:6d: ef:48:1a:45:0b:4e:eb:a8:da:c6:3d:cc:1d:fc:f5:a2:a0:81: 73:4a:0a:c8:41:ab:a9:a4:59:4e:d7:77:42:42:27:5d:f4:57: e7:8b:3f:c7:8c:ff:71:52:6b:5c:91:ae:f3:8f:9f:86:73:89: 2c:f2:18:c7:fa:f9:3d:e2:be:0f:96:68:8d:85:0f:bf:48:96: 48:6c:5e:00:de:12:a4:3c:cb:a3:c2:8e:74:aa:80:da:63:05: b7:5e:b4:16:9d:e3:03:42:5a:0d:c7:ce:72:66:42:f7:dc:ab: 36:e8:10:38 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUARsoEov/7SbipVj9uOb/zpYNZoswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIxQzZGOTcyQzhFQkREQzMzMzZGRTQ5NTFGMjJDRTg2 RURBREU2QzAeFw0yNTAyMDQwNDU1MDBaFw0yNjAyMDMwNTAwMDBaMDMxMTAvBgNV BAMTKDczRTBGN0I2RTU5Mzc1Q0Q0RTkyREM4OUMwNEQxNkYyMTA0MTZBNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl+GEdkWc+Ru8uACdeq9NRAb01 kkpgtbE/UEyz1VnzJcIpkUbfN+BquUM42qUPwGuF1GndPjmep4npYm7VeOoSOscR 8NwftTUz9sNfdtqj1pjcRjtP6TnWryPk2VdrwEQZjvEr/mGGpTdPURbepuHXXSRD 9xlUZSg+0U4oUM0aWKe//+79KIY2iFItc2dnPbBYAAQ4zDAGx/OFJ8UIGj6AFFgR Kb6xKQoGZb7d9g5PgFWpRuVZfjAet2F6JJ3Ngc2k+RaGwVrKJiB71k9Zh2E20y0R KuYQV3jQ4SOCjtf0NM5h449RRN+taBgszD8OItMias2sCHmooBZfZN6ddBZHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUc+D3tuWTdc1OktyJwE0W8hBBamQwHwYDVR0j BBgwFoAUAhxvlyyOvdwzNv5JUfIs6G7a3mwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODE1NTQ1Yy1jOTk2LTQ2MGYtOTJkZC02Mjk0YWVjOTJjNTIvMC8wMjFDNkY5NzJD OEVCRERDMzMzNkZFNDk1MUYyMkNFODZFREFERTZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIxQzZGOTcyQzhFQkREQzMzMzZGRTQ5NTFGMjJDRTg2RURB REU2Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4MTU1NDVjLWM5OTYtNDYwZi05 MmRkLTYyOTRhZWM5MmM1Mi8wLzMxMzAzMzJlMzYzODJlMzIzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzUzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0ToMA0GCSqG SIb3DQEBCwUAA4IBAQAfyRY9k//fpPsXpBT5Py/6BRi1q/3+jIsH9R1+HM1GRVC+ +IUrCZZi9mzSeiGZdp4bQmYTrH/jayFnkzflZ22u/VW14ovWxRjRZ0/1pGBH1sKU w++OFxWlSzedTkFP5mwjOE6ABd+CdSU9eYjoN9J0FJfTMk0wBm337xUr3n3/DZXt VIwNgixvQOww7t1J1m3vSBpFC07rqNrGPcwd/PWioIFzSgrIQauppFlO13dCQidd 9Ffniz/HjP9xUmtcka7zj5+Gc4ks8hjH+vk94r4PlmiNhQ+/SJZIbF4A3hKkPMuj wo50qoDaYwW3XrQWneMDQloNx85yZkL33Ks26BA4 -----END CERTIFICATE-----Generated at Fri Feb 21 11:08:54 2025 by rpki-client