$ rpki-client -vvf repo-rpki.idnic.net/repo/1815545c-c996-460f-92dd-6294aec92c52/0/3130332e36382e3233332e302f32342d3234203d3e20313530353431.roa File: 3130332e36382e3233332e302f32342d3234203d3e20313530353431.roa (raw, json) Hash identifier: 0h4LPXefYCVhFSmqMvXpparocUGjqxewlYwtoFO4NOQ= Subject key identifier: 57:1E:33:78:AA:90:99:02:FB:66:45:E7:63:F0:03:F1:3A:2C:48:96 Certificate issuer: /CN=021C6F972C8EBDDC3336FE4951F22CE86EDADE6C Certificate serial: 0BB04014F7FCEE143F0BECE55022C7A111384E80 Authority key identifier: 02:1C:6F:97:2C:8E:BD:DC:33:36:FE:49:51:F2:2C:E8:6E:DA:DE:6C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/021C6F972C8EBDDC3336FE4951F22CE86EDADE6C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1815545c-c996-460f-92dd-6294aec92c52/0/3130332e36382e3233332e302f32342d3234203d3e20313530353431.roa Signing time: Tue 04 Feb 2025 05:00:00 +0000 ROA not before: Tue 04 Feb 2025 04:55:00 +0000 ROA not after: Tue 03 Feb 2026 05:00:00 +0000 asID: 150541 IP address blocks: 103.68.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1815545c-c996-460f-92dd-6294aec92c52/0/021C6F972C8EBDDC3336FE4951F22CE86EDADE6C.crl rsync://repo-rpki.idnic.net/repo/1815545c-c996-460f-92dd-6294aec92c52/0/021C6F972C8EBDDC3336FE4951F22CE86EDADE6C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/021C6F972C8EBDDC3336FE4951F22CE86EDADE6C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 04:34:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:b0:40:14:f7:fc:ee:14:3f:0b:ec:e5:50:22:c7:a1:11:38:4e:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=021C6F972C8EBDDC3336FE4951F22CE86EDADE6C Validity Not Before: Feb 4 04:55:00 2025 GMT Not After : Feb 3 05:00:00 2026 GMT Subject: CN=571E3378AA909902FB6645E763F003F13A2C4896 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:48:bf:43:34:6c:e3:d0:37:49:49:11:89:35: 7b:95:1c:9b:05:05:e1:be:89:cf:44:f9:d5:fb:5e: 00:62:6e:88:51:11:04:35:f5:1c:4a:7c:ef:f4:af: 47:0a:8c:f4:02:09:1c:1e:59:50:c7:51:a3:38:d4: c4:d6:e9:52:eb:ca:ef:ff:29:28:a4:a5:d5:7c:fc: 1c:cd:08:4b:46:85:80:a0:96:13:f8:af:a0:7d:e6: f1:5b:32:36:0d:26:a4:c5:64:20:b4:5b:8a:4f:b4: 77:98:bf:46:b8:ef:58:3f:4d:54:61:d2:ef:48:1d: 22:42:dc:1d:f8:d4:11:35:19:a1:d7:27:ef:e1:2a: 8e:33:d6:30:68:8d:92:c3:e7:23:4d:05:07:84:ad: 08:2e:8f:b9:01:64:45:40:71:85:0d:9a:c4:59:53: f8:15:99:01:a6:d9:71:b2:21:85:d9:c2:7a:0f:83: 63:a2:c8:13:44:5e:9c:f7:27:f4:2f:d4:a2:2e:02: c1:d3:02:12:72:29:a6:25:71:c5:4d:20:76:0f:23: 4d:32:be:1a:20:64:63:5f:a7:9f:8e:f1:3c:06:50: 8e:e3:66:2d:40:e6:3b:94:c4:d2:cc:23:01:ef:83: aa:ca:c7:dd:f8:c5:54:8d:c5:0d:2c:ab:87:30:79: fe:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:1E:33:78:AA:90:99:02:FB:66:45:E7:63:F0:03:F1:3A:2C:48:96 X509v3 Authority Key Identifier: keyid:02:1C:6F:97:2C:8E:BD:DC:33:36:FE:49:51:F2:2C:E8:6E:DA:DE:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1815545c-c996-460f-92dd-6294aec92c52/0/021C6F972C8EBDDC3336FE4951F22CE86EDADE6C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/021C6F972C8EBDDC3336FE4951F22CE86EDADE6C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1815545c-c996-460f-92dd-6294aec92c52/0/3130332e36382e3233332e302f32342d3234203d3e20313530353431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.68.233.0/24 Signature Algorithm: sha256WithRSAEncryption cb:46:f3:c2:f8:9c:d9:7b:d2:22:76:57:5c:91:8b:1d:78:f7: 20:4c:88:50:a4:44:a7:a5:ae:05:f7:60:4f:f3:c4:b1:52:c1: 80:84:c0:d7:a2:0d:a9:0a:7d:25:52:79:9b:02:4b:e5:e3:85: f9:cf:98:81:c9:d4:ee:bd:f5:49:58:74:0c:60:1e:11:f7:a6: 28:55:0f:e3:ba:bb:f8:fc:a8:d4:24:5b:21:34:a9:b5:88:67: 9b:b2:9c:eb:95:d3:1c:6d:28:0d:35:0f:41:28:2c:47:94:f7: c6:3a:61:a6:51:f9:b4:1a:6b:2b:11:09:a4:bd:1e:d6:a0:7a: 52:ab:aa:52:1e:23:2f:39:8d:b9:dc:ad:13:ea:09:c7:92:51: 69:1a:17:57:1c:59:6d:c4:77:c9:55:a1:5c:47:9a:3b:64:f8: b1:79:10:8c:d4:51:e8:b5:12:80:c3:f9:eb:86:28:67:d1:cd: 66:1e:fd:38:4c:a3:41:a2:16:a1:32:92:a0:76:0d:9f:06:bb: 4d:a6:76:06:cb:b8:25:d6:9b:bc:59:6b:1d:54:b4:d4:54:d5: 21:a1:53:c2:c0:f7:a5:5f:99:0b:a1:cf:8a:6b:9b:86:56:ef: fa:0f:03:bb:7c:b5:63:51:78:2d:e0:90:32:99:d0:5c:f9:9d: 8a:b2:49:31 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUC7BAFPf87hQ/C+zlUCLHoRE4ToAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIxQzZGOTcyQzhFQkREQzMzMzZGRTQ5NTFGMjJDRTg2 RURBREU2QzAeFw0yNTAyMDQwNDU1MDBaFw0yNjAyMDMwNTAwMDBaMDMxMTAvBgNV BAMTKDU3MUUzMzc4QUE5MDk5MDJGQjY2NDVFNzYzRjAwM0YxM0EyQzQ4OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUSL9DNGzj0DdJSRGJNXuVHJsF BeG+ic9E+dX7XgBibohREQQ19RxKfO/0r0cKjPQCCRweWVDHUaM41MTW6VLryu// KSikpdV8/BzNCEtGhYCglhP4r6B95vFbMjYNJqTFZCC0W4pPtHeYv0a471g/TVRh 0u9IHSJC3B341BE1GaHXJ+/hKo4z1jBojZLD5yNNBQeErQguj7kBZEVAcYUNmsRZ U/gVmQGm2XGyIYXZwnoPg2OiyBNEXpz3J/Qv1KIuAsHTAhJyKaYlccVNIHYPI00y vhogZGNfp5+O8TwGUI7jZi1A5juUxNLMIwHvg6rKx934xVSNxQ0sq4cwef7nAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVx4zeKqQmQL7ZkXnY/AD8TosSJYwHwYDVR0j BBgwFoAUAhxvlyyOvdwzNv5JUfIs6G7a3mwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODE1NTQ1Yy1jOTk2LTQ2MGYtOTJkZC02Mjk0YWVjOTJjNTIvMC8wMjFDNkY5NzJD OEVCRERDMzMzNkZFNDk1MUYyMkNFODZFREFERTZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIxQzZGOTcyQzhFQkREQzMzMzZGRTQ5NTFGMjJDRTg2RURB REU2Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4MTU1NDVjLWM5OTYtNDYwZi05 MmRkLTYyOTRhZWM5MmM1Mi8wLzMxMzAzMzJlMzYzODJlMzIzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzUzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0TpMA0GCSqG SIb3DQEBCwUAA4IBAQDLRvPC+JzZe9IidldckYsdePcgTIhQpESnpa4F92BP88Sx UsGAhMDXog2pCn0lUnmbAkvl44X5z5iBydTuvfVJWHQMYB4R96YoVQ/jurv4/KjU JFshNKm1iGebspzrldMcbSgNNQ9BKCxHlPfGOmGmUfm0GmsrEQmkvR7WoHpSq6pS HiMvOY253K0T6gnHklFpGhdXHFltxHfJVaFcR5o7ZPixeRCM1FHotRKAw/nrhihn 0c1mHv04TKNBohahMpKgdg2fBrtNpnYGy7gl1pu8WWsdVLTUVNUhoVPCwPelX5kL oc+Ka5uGVu/6DwO7fLVjUXgt4JAymdBc+Z2Kskkx -----END CERTIFICATE-----Generated at Fri Feb 21 11:14:57 2025 by rpki-client