$ rpki-client -vvf repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3130332e32322e3234382e302f32322d3234203d3e20313331313131.roa File: 3130332e32322e3234382e302f32322d3234203d3e20313331313131.roa (raw, json) Hash identifier: kWqKP/lyIhDws2h8Me6LYP31KQBLG0udbqPtWea7AOc= Subject key identifier: 4F:02:01:77:55:49:3A:A9:14:2D:2D:D4:E8:42:EA:6A:8B:F0:D8:7D Certificate issuer: /CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F Certificate serial: 7CFDCBFF50DF1434F8E5114DAFF276D1FBBB97F9 Authority key identifier: C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3130332e32322e3234382e302f32322d3234203d3e20313331313131.roa Signing time: Sun 08 Dec 2024 09:00:02 +0000 ROA not before: Sun 08 Dec 2024 08:55:02 +0000 ROA not after: Sun 07 Dec 2025 09:00:02 +0000 asID: 131111 IP address blocks: 103.22.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 21:34:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:fd:cb:ff:50:df:14:34:f8:e5:11:4d:af:f2:76:d1:fb:bb:97:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F Validity Not Before: Dec 8 08:55:02 2024 GMT Not After : Dec 7 09:00:02 2025 GMT Subject: CN=4F02017755493AA9142D2DD4E842EA6A8BF0D87D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:73:fc:f4:a5:8d:4b:57:aa:37:57:9e:8e:0d: 36:fd:42:fd:00:07:a8:63:a9:e2:57:f9:57:3a:7e: 86:e9:70:28:82:07:88:10:cb:79:11:3f:24:a5:a9: e4:1e:ed:75:b8:45:2b:42:1c:42:a1:70:d1:88:d3: b3:37:e2:0a:06:8d:2c:44:34:43:37:23:4d:f5:e4: a0:e7:3c:fa:44:e5:dc:7e:fd:e7:e1:8c:f0:b8:9d: 68:56:14:19:01:e0:20:69:21:a2:5e:ac:53:ad:ee: 4e:f9:20:83:3f:dc:13:a6:0d:5b:5d:fe:8d:be:ba: 9a:07:9c:ac:91:87:8a:44:f6:67:c9:96:b5:da:fd: 78:eb:b3:a1:20:89:00:92:72:57:1e:de:69:e2:52: 85:23:66:d5:a4:b3:f9:65:a3:f5:6e:92:c8:a7:a5: 62:45:3d:85:cd:d7:59:51:28:9d:3c:e1:04:04:8c: 9d:65:9d:2c:14:ff:6f:e6:46:c1:74:e4:8d:de:b4: 5e:e5:28:7f:51:78:1c:a2:cd:00:fb:91:30:ca:f3: e9:28:d4:0f:86:c0:73:55:37:dd:35:ee:94:eb:f3: f4:7c:3c:d7:0e:a7:04:6e:a8:37:47:c5:4a:88:07: 4f:96:7b:da:cd:f1:1a:cf:6d:bd:6f:98:3f:6f:01: bd:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:02:01:77:55:49:3A:A9:14:2D:2D:D4:E8:42:EA:6A:8B:F0:D8:7D X509v3 Authority Key Identifier: keyid:C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/3130332e32322e3234382e302f32322d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.22.248.0/22 Signature Algorithm: sha256WithRSAEncryption 2b:39:55:0c:51:5b:d2:3e:e9:2a:99:8e:b1:de:30:e9:9a:2a: 1a:52:83:e0:fe:56:a8:4b:98:df:75:06:74:41:1d:d2:3e:3b: 97:e7:52:1c:65:0d:28:5e:d5:79:15:33:06:88:06:06:c5:ba: 50:45:b2:f3:4e:ed:98:b6:d0:00:74:50:81:b6:47:fe:76:20: d1:2a:ed:a7:e2:7d:85:46:82:03:fc:37:a9:ca:f2:8b:f3:d6: 09:e4:c6:8b:77:a3:a2:bf:86:48:07:03:b5:eb:d7:d8:bd:f9: b4:ce:fa:39:73:7c:f6:aa:a1:b3:99:9c:0c:99:4d:5a:43:4c: 1b:66:d9:bd:ca:b9:a2:ab:95:3c:b4:91:96:ef:4a:33:13:c7: 5d:b2:13:e9:22:77:62:ad:5d:4c:da:6e:1d:9b:88:23:66:bc: 0b:84:55:13:eb:e9:81:37:3c:22:a2:8a:2c:cb:21:90:dd:58: 5d:00:af:4a:c3:8a:47:11:90:b9:07:8f:7b:9d:0c:ca:d0:13: 4f:6d:6e:9c:3d:b2:40:2e:07:b1:1e:62:bb:e6:d0:c2:55:cf: 2c:d8:da:2e:5b:a5:16:58:06:c9:68:05:52:ea:06:37:e1:b8: 4a:e8:8f:40:ab:71:6b:35:86:81:bc:57:c7:8d:e9:b7:37:b4: c4:b4:eb:0a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfP3L/1DfFDT45RFNr/J20fu7l/kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFBRjhDOTk5RTlEMDZEQURFQkMzODdENzhCMzA1QUI4 NzE2REMyRjAeFw0yNDEyMDgwODU1MDJaFw0yNTEyMDcwOTAwMDJaMDMxMTAvBgNV BAMTKDRGMDIwMTc3NTU0OTNBQTkxNDJEMkRENEU4NDJFQTZBOEJGMEQ4N0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpc/z0pY1LV6o3V56ODTb9Qv0A B6hjqeJX+Vc6fobpcCiCB4gQy3kRPySlqeQe7XW4RStCHEKhcNGI07M34goGjSxE NEM3I0315KDnPPpE5dx+/efhjPC4nWhWFBkB4CBpIaJerFOt7k75IIM/3BOmDVtd /o2+upoHnKyRh4pE9mfJlrXa/Xjrs6EgiQCSclce3mniUoUjZtWks/llo/Vuksin pWJFPYXN11lRKJ084QQEjJ1lnSwU/2/mRsF05I3etF7lKH9ReByizQD7kTDK8+ko 1A+GwHNVN9017pTr8/R8PNcOpwRuqDdHxUqIB0+We9rN8RrPbb1vmD9vAb31AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTwIBd1VJOqkULS3U6ELqaovw2H0wHwYDVR0j BBgwFoAUwa+MmZ6dBtrevDh9eLMFq4cW3C8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OTIwNWU3Yy1hODgxLTQ4NzMtOTE4OC1lNTIxYjZhZjUyOWMvMC9DMUFGOEM5OTlF OUQwNkRBREVCQzM4N0Q3OEIzMDVBQjg3MTZEQzJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzFBRjhDOTk5RTlEMDZEQURFQkMzODdENzhCMzA1QUI4NzE2 REMyRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5MjA1ZTdjLWE4ODEtNDg3My05 MTg4LWU1MjFiNmFmNTI5Yy8wLzMxMzAzMzJlMzIzMjJlMzIzNDM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZxb4MA0GCSqG SIb3DQEBCwUAA4IBAQArOVUMUVvSPukqmY6x3jDpmioaUoPg/laoS5jfdQZ0QR3S PjuX51IcZQ0oXtV5FTMGiAYGxbpQRbLzTu2YttAAdFCBtkf+diDRKu2n4n2FRoID /DepyvKL89YJ5MaLd6Oiv4ZIBwO169fYvfm0zvo5c3z2qqGzmZwMmU1aQ0wbZtm9 yrmiq5U8tJGW70ozE8ddshPpIndirV1M2m4dm4gjZrwLhFUT6+mBNzwiooosyyGQ 3VhdAK9Kw4pHEZC5B497nQzK0BNPbW6cPbJALgexHmK75tDCVc8s2NouW6UWWAbJ aAVS6gY34bhK6I9Aq3FrNYaBvFfHjem3N7TEtOsK -----END CERTIFICATE-----Generated at Wed Apr 9 19:50:38 2025 by rpki-client