$ rpki-client -vvf repo-rpki.idnic.net/repo/19879744-b818-46dc-8d9f-9c35793f4cbb/0/3130332e31362e3131392e302f32342d3234203d3e203538343832.roa File: 3130332e31362e3131392e302f32342d3234203d3e203538343832.roa (raw, json) Hash identifier: iIFNnUZAfBSC2JC2quMbIzQPZ9X9kdvxbhVTHCspiQ8= Subject key identifier: A4:03:53:0E:DE:D7:37:DA:4C:20:37:D8:EC:66:C0:DD:B6:21:E0:05 Certificate issuer: /CN=AB3C3FA1D3275E284B07A84EC95085DF9BC5A22A Certificate serial: 21590B85C2F754839E0A1B060D5AF80F67ECE8DF Authority key identifier: AB:3C:3F:A1:D3:27:5E:28:4B:07:A8:4E:C9:50:85:DF:9B:C5:A2:2A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AB3C3FA1D3275E284B07A84EC95085DF9BC5A22A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19879744-b818-46dc-8d9f-9c35793f4cbb/0/3130332e31362e3131392e302f32342d3234203d3e203538343832.roa Signing time: Thu 09 Jan 2025 08:03:00 +0000 ROA not before: Thu 09 Jan 2025 07:58:00 +0000 ROA not after: Thu 08 Jan 2026 08:03:00 +0000 asID: 58482 IP address blocks: 103.16.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19879744-b818-46dc-8d9f-9c35793f4cbb/0/AB3C3FA1D3275E284B07A84EC95085DF9BC5A22A.crl rsync://repo-rpki.idnic.net/repo/19879744-b818-46dc-8d9f-9c35793f4cbb/0/AB3C3FA1D3275E284B07A84EC95085DF9BC5A22A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AB3C3FA1D3275E284B07A84EC95085DF9BC5A22A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 02:41:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:59:0b:85:c2:f7:54:83:9e:0a:1b:06:0d:5a:f8:0f:67:ec:e8:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AB3C3FA1D3275E284B07A84EC95085DF9BC5A22A Validity Not Before: Jan 9 07:58:00 2025 GMT Not After : Jan 8 08:03:00 2026 GMT Subject: CN=A403530EDED737DA4C2037D8EC66C0DDB621E005 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b9:d1:da:77:fb:83:04:62:2a:fd:90:62:14: 2d:3f:13:7d:34:81:13:2a:5d:9c:f0:8c:51:d1:3a: 3c:93:59:39:52:01:c5:1f:e0:34:75:78:b6:f9:f3: c2:cb:bf:d3:a0:88:7c:41:9f:13:40:1e:89:3c:97: 77:86:b0:dc:9a:59:31:80:55:e0:92:98:1d:22:3a: be:1f:16:ca:6b:e4:d2:e0:5a:b3:05:73:32:49:c2: d6:d1:d5:f3:a4:61:c6:81:96:32:eb:8b:dd:73:88: 77:57:e4:68:31:31:30:a0:64:3d:e7:e0:48:8f:4c: a4:fb:02:32:94:5b:eb:fc:d6:14:33:ab:b6:da:ae: 61:29:33:da:8f:ef:89:ba:a9:a3:5a:95:9b:56:8e: 24:61:8a:aa:72:92:54:91:3e:62:44:f4:10:24:37: 10:aa:2c:a1:4f:a6:01:44:7a:ac:a7:23:6c:da:38: 63:89:57:02:46:5a:58:17:6c:71:be:6d:60:55:1b: 57:ed:04:4c:d3:c1:fb:05:b0:cf:5a:4b:a2:69:a8: 42:f9:c0:04:7d:66:11:0e:1a:26:7d:a0:78:37:8e: d4:07:34:59:5a:09:77:b7:f3:a3:c5:b3:d6:68:e2: 69:3a:6e:9c:86:c0:f7:66:85:ec:fe:15:16:25:1d: 6a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:03:53:0E:DE:D7:37:DA:4C:20:37:D8:EC:66:C0:DD:B6:21:E0:05 X509v3 Authority Key Identifier: keyid:AB:3C:3F:A1:D3:27:5E:28:4B:07:A8:4E:C9:50:85:DF:9B:C5:A2:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19879744-b818-46dc-8d9f-9c35793f4cbb/0/AB3C3FA1D3275E284B07A84EC95085DF9BC5A22A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AB3C3FA1D3275E284B07A84EC95085DF9BC5A22A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19879744-b818-46dc-8d9f-9c35793f4cbb/0/3130332e31362e3131392e302f32342d3234203d3e203538343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.16.119.0/24 Signature Algorithm: sha256WithRSAEncryption 69:61:fe:0a:50:0c:3b:59:b2:3b:9d:d6:fc:f2:a8:db:08:57: e2:28:4c:de:11:c9:e1:4f:e7:ac:cf:14:54:55:05:96:59:36: a2:ea:57:37:47:00:33:d7:17:2d:d5:58:f8:bf:93:21:4d:7d: f5:99:7e:d5:b3:ff:2d:a2:2c:3d:da:94:81:d0:94:8b:6d:fb: a7:fa:58:80:07:c3:bd:fa:93:76:38:87:22:e7:95:bd:e2:5d: cb:c6:b8:64:ba:e0:47:29:d0:7e:e9:2c:4e:8c:1d:74:ea:95: 75:f1:b8:52:ee:07:b6:8c:d9:41:ac:6b:2c:52:4d:7f:97:d3: 81:df:d0:11:2a:61:57:ad:8f:08:7c:51:9f:ed:dc:c8:a9:5a: ef:78:51:d4:3a:da:5d:67:35:ac:f9:8c:1d:3d:f2:8a:ef:33: b2:4d:ea:9a:8c:18:c7:b3:18:ed:bd:b3:f9:64:c1:1a:a2:07: 40:93:be:2e:58:27:ad:40:7e:49:35:19:b9:2b:b3:37:3e:1a: f8:c3:29:f0:5e:e6:fe:f2:e3:f5:4f:cc:b9:10:14:94:b6:61: 19:b9:a8:42:d1:4f:4a:7c:3f:bf:35:64:e4:ad:f0:7a:7e:b7: 05:1a:c4:99:c9:a1:4d:8c:65:1d:76:f3:9d:41:0e:dd:76:7f: fb:82:2c:64 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIVkLhcL3VIOeChsGDVr4D2fs6N8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUIzQzNGQTFEMzI3NUUyODRCMDdBODRFQzk1MDg1REY5 QkM1QTIyQTAeFw0yNTAxMDkwNzU4MDBaFw0yNjAxMDgwODAzMDBaMDMxMTAvBgNV BAMTKEE0MDM1MzBFREVENzM3REE0QzIwMzdEOEVDNjZDMEREQjYyMUUwMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/udHad/uDBGIq/ZBiFC0/E300 gRMqXZzwjFHROjyTWTlSAcUf4DR1eLb588LLv9OgiHxBnxNAHok8l3eGsNyaWTGA VeCSmB0iOr4fFspr5NLgWrMFczJJwtbR1fOkYcaBljLri91ziHdX5GgxMTCgZD3n 4EiPTKT7AjKUW+v81hQzq7barmEpM9qP74m6qaNalZtWjiRhiqpyklSRPmJE9BAk NxCqLKFPpgFEeqynI2zaOGOJVwJGWlgXbHG+bWBVG1ftBEzTwfsFsM9aS6JpqEL5 wAR9ZhEOGiZ9oHg3jtQHNFlaCXe386PFs9Zo4mk6bpyGwPdmhez+FRYlHWqvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUpANTDt7XN9pMIDfY7GbA3bYh4AUwHwYDVR0j BBgwFoAUqzw/odMnXihLB6hOyVCF35vFoiowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OTg3OTc0NC1iODE4LTQ2ZGMtOGQ5Zi05YzM1NzkzZjRjYmIvMC9BQjNDM0ZBMUQz Mjc1RTI4NEIwN0E4NEVDOTUwODVERjlCQzVBMjJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUIzQzNGQTFEMzI3NUUyODRCMDdBODRFQzk1MDg1REY5QkM1 QTIyQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5ODc5NzQ0LWI4MTgtNDZkYy04 ZDlmLTljMzU3OTNmNGNiYi8wLzMxMzAzMzJlMzEzNjJlMzEzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcQdzANBgkqhkiG 9w0BAQsFAAOCAQEAaWH+ClAMO1myO53W/PKo2whX4ihM3hHJ4U/nrM8UVFUFllk2 oupXN0cAM9cXLdVY+L+TIU199Zl+1bP/LaIsPdqUgdCUi237p/pYgAfDvfqTdjiH IueVveJdy8a4ZLrgRynQfuksTowddOqVdfG4Uu4HtozZQaxrLFJNf5fTgd/QESph V62PCHxRn+3cyKla73hR1DraXWc1rPmMHT3yiu8zsk3qmowYx7MY7b2z+WTBGqIH QJO+LlgnrUB+STUZuSuzNz4a+MMp8F7m/vLj9U/MuRAUlLZhGbmoQtFPSnw/vzVk 5K3wen63BRrEmcmhTYxlHXbznUEO3XZ/+4IsZA== -----END CERTIFICATE-----Generated at Sun Apr 6 07:52:35 2025 by rpki-client