$ rpki-client -vvf repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/3130332e3136392e302e302f32342d3234203d3e20313432333235.roa File: 3130332e3136392e302e302f32342d3234203d3e20313432333235.roa (raw, json) Hash identifier: BHsnMPpdFZL0d9XOfOmW0tnCHE686u/F/UGOnWHulsY= Subject key identifier: 62:23:0B:82:01:F4:D4:02:10:34:A9:9C:E8:97:FE:CC:A9:0D:4F:DC Certificate issuer: /CN=D2248A04D994A2569A8FF645D4B025A9F7CB2FE7 Certificate serial: 41B2F0070B64A15B3018904881ECC0819443E237 Authority key identifier: D2:24:8A:04:D9:94:A2:56:9A:8F:F6:45:D4:B0:25:A9:F7:CB:2F:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/3130332e3136392e302e302f32342d3234203d3e20313432333235.roa Signing time: Wed 04 Dec 2024 03:04:55 +0000 ROA not before: Wed 04 Dec 2024 02:59:55 +0000 ROA not after: Wed 03 Dec 2025 03:04:55 +0000 asID: 142325 IP address blocks: 103.169.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.crl rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 13:57:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:b2:f0:07:0b:64:a1:5b:30:18:90:48:81:ec:c0:81:94:43:e2:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2248A04D994A2569A8FF645D4B025A9F7CB2FE7 Validity Not Before: Dec 4 02:59:55 2024 GMT Not After : Dec 3 03:04:55 2025 GMT Subject: CN=62230B8201F4D4021034A99CE897FECCA90D4FDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ee:56:17:05:ec:cb:ce:6c:19:70:65:05:80: 8c:fe:45:df:4d:98:5b:9a:28:78:86:7c:c6:c8:c1: f6:2d:8d:60:f0:fd:64:1a:04:23:39:90:15:e4:4f: 61:59:e8:aa:b7:3d:c6:d3:13:e2:3c:59:e5:5c:c6: 35:55:23:0b:7b:2d:46:62:35:fd:49:b1:1e:c6:2b: ba:fb:11:dc:8b:48:eb:a1:1d:c6:21:17:c2:68:82: cb:fc:44:58:8d:f5:29:7a:0b:18:27:59:75:4a:ff: 1c:07:de:88:ed:71:6d:e8:ec:c4:d7:66:4a:c3:4e: a1:0e:ad:90:ed:1b:d1:39:28:62:a1:49:e8:d1:00: 9a:a8:0f:c1:a1:35:2a:a6:22:26:58:29:99:4a:20: a7:dd:3f:0f:7d:13:d3:26:ae:7d:a5:38:5e:b9:75: b2:d7:4a:a6:60:1c:a1:15:33:31:04:ab:2e:a6:12: 57:f6:e9:0d:34:fe:53:03:3b:ed:da:78:c9:fe:19: ac:7b:de:6e:87:25:8e:a0:44:c7:70:3c:e9:7e:d5: 20:70:0b:53:c3:0d:00:dd:28:a3:fb:19:2b:96:89: 10:96:d4:d6:8e:37:29:a4:ef:40:e4:a9:e1:06:90: f1:51:5c:b9:6d:71:8e:b5:cc:43:f4:ba:37:e1:f9: 64:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:23:0B:82:01:F4:D4:02:10:34:A9:9C:E8:97:FE:CC:A9:0D:4F:DC X509v3 Authority Key Identifier: keyid:D2:24:8A:04:D9:94:A2:56:9A:8F:F6:45:D4:B0:25:A9:F7:CB:2F:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/3130332e3136392e302e302f32342d3234203d3e20313432333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.0.0/24 Signature Algorithm: sha256WithRSAEncryption 43:27:e6:19:93:08:1a:2e:26:5f:d3:46:99:83:19:9f:21:9d: 7a:a7:c9:23:2c:bc:32:be:53:bd:13:cd:fb:b2:2c:71:3e:86: 2e:5f:d1:a9:0d:69:41:54:fa:e4:36:da:94:2c:1b:5a:af:33: 6f:db:de:2c:c9:64:af:dc:c9:6a:16:b2:c6:f3:c0:d9:f2:8c: 75:4b:da:20:16:57:c8:c7:ba:88:25:31:f8:3e:84:3e:af:fe: 96:d0:84:93:7e:65:e5:09:26:91:97:e1:a6:46:17:6d:d1:3d: 64:73:3b:94:79:93:11:76:87:f4:a4:3c:6d:2a:19:f2:e8:01: a6:73:d9:db:71:bd:57:64:37:1f:26:46:1a:a3:55:29:fa:2c: de:84:57:b1:db:fa:44:7a:87:04:58:44:17:9e:9d:69:ed:b5: 58:fa:e5:7c:9b:33:3b:c9:02:cb:af:06:cc:0f:1f:3f:28:4e: 1e:14:42:27:f9:87:cd:77:34:8a:f4:b3:97:df:1a:e2:6b:a1: 70:e3:43:24:86:73:26:81:e2:cb:1f:c1:3b:e9:44:40:7e:f1: 96:1c:0a:20:3d:28:14:79:a2:65:d4:f3:65:ed:f5:c8:4c:0a: 5c:05:c6:33:86:59:dc:8a:dd:32:43:eb:8d:61:9c:23:10:7b: 2f:fc:a6:78 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQbLwBwtkoVswGJBIgezAgZRD4jcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIyNDhBMDREOTk0QTI1NjlBOEZGNjQ1RDRCMDI1QTlG N0NCMkZFNzAeFw0yNDEyMDQwMjU5NTVaFw0yNTEyMDMwMzA0NTVaMDMxMTAvBgNV BAMTKDYyMjMwQjgyMDFGNEQ0MDIxMDM0QTk5Q0U4OTdGRUNDQTkwRDRGREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH7lYXBezLzmwZcGUFgIz+Rd9N mFuaKHiGfMbIwfYtjWDw/WQaBCM5kBXkT2FZ6Kq3PcbTE+I8WeVcxjVVIwt7LUZi Nf1JsR7GK7r7EdyLSOuhHcYhF8Jogsv8RFiN9Sl6CxgnWXVK/xwH3ojtcW3o7MTX ZkrDTqEOrZDtG9E5KGKhSejRAJqoD8GhNSqmIiZYKZlKIKfdPw99E9Mmrn2lOF65 dbLXSqZgHKEVMzEEqy6mElf26Q00/lMDO+3aeMn+Gax73m6HJY6gRMdwPOl+1SBw C1PDDQDdKKP7GSuWiRCW1NaONymk70DkqeEGkPFRXLltcY61zEP0ujfh+WQBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYiMLggH01AIQNKmc6Jf+zKkNT9wwHwYDVR0j BBgwFoAU0iSKBNmUolaaj/ZF1LAlqffLL+cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTNjYzJjMS0xNDZjLTQ4YTktYjAwMy03YmQ4MzgyMjA4NGQvMC9EMjI0OEEwNEQ5 OTRBMjU2OUE4RkY2NDVENEIwMjVBOUY3Q0IyRkU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDIyNDhBMDREOTk0QTI1NjlBOEZGNjQ1RDRCMDI1QTlGN0NC MkZFNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhM2NjMmMxLTE0NmMtNDhhOS1i MDAzLTdiZDgzODIyMDg0ZC8wLzMxMzAzMzJlMzEzNjM5MmUzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMjMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGepADANBgkqhkiG 9w0BAQsFAAOCAQEAQyfmGZMIGi4mX9NGmYMZnyGdeqfJIyy8Mr5TvRPN+7IscT6G Ll/RqQ1pQVT65DbalCwbWq8zb9veLMlkr9zJahayxvPA2fKMdUvaIBZXyMe6iCUx +D6EPq/+ltCEk35l5QkmkZfhpkYXbdE9ZHM7lHmTEXaH9KQ8bSoZ8ugBpnPZ23G9 V2Q3HyZGGqNVKfos3oRXsdv6RHqHBFhEF56dae21WPrlfJszO8kCy68GzA8fPyhO HhRCJ/mHzXc0ivSzl98a4muhcONDJIZzJoHiyx/BO+lEQH7xlhwKID0oFHmiZdTz Ze31yEwKXAXGM4ZZ3IrdMkPrjWGcIxB7L/ymeA== -----END CERTIFICATE-----Generated at Sun Apr 6 18:11:57 2025 by rpki-client