$ rpki-client -vvf repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/3130332e3132312e3136382e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3136382e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: hJb47Cih3yK2ughpevnMJU/IHmzWp3j4uIzblFeg3/4= Subject key identifier: ED:23:F1:52:CD:A0:B6:CF:7A:2F:59:82:16:C4:1D:F3:CA:C1:0D:EE Certificate issuer: /CN=87C7B4B7933266A0A09E2290B0934622DD072C9B Certificate serial: 4E9607445B6838214A81A33CDE098B63E044075F Authority key identifier: 87:C7:B4:B7:93:32:66:A0:A0:9E:22:90:B0:93:46:22:DD:07:2C:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87C7B4B7933266A0A09E2290B0934622DD072C9B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/3130332e3132312e3136382e302f32332d3234203d3e20313335343738.roa Signing time: Wed 04 Dec 2024 09:03:08 +0000 ROA not before: Wed 04 Dec 2024 08:58:08 +0000 ROA not after: Wed 03 Dec 2025 09:03:08 +0000 asID: 135478 IP address blocks: 103.121.168.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/87C7B4B7933266A0A09E2290B0934622DD072C9B.crl rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/87C7B4B7933266A0A09E2290B0934622DD072C9B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87C7B4B7933266A0A09E2290B0934622DD072C9B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 09:33:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:96:07:44:5b:68:38:21:4a:81:a3:3c:de:09:8b:63:e0:44:07:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87C7B4B7933266A0A09E2290B0934622DD072C9B Validity Not Before: Dec 4 08:58:08 2024 GMT Not After : Dec 3 09:03:08 2025 GMT Subject: CN=ED23F152CDA0B6CF7A2F598216C41DF3CAC10DEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:28:ca:81:ea:da:6e:66:40:a8:d8:be:0e:ee: 87:7b:f2:07:0e:9b:b7:22:ce:4a:89:ab:8e:59:d0: 6d:84:1a:d6:41:5c:10:21:93:72:32:46:24:f0:a8: 8e:19:01:d6:c5:79:1b:e0:58:35:e4:72:43:cd:ad: d5:d6:67:bc:05:14:a3:99:e5:a9:4d:d0:65:17:49: bf:38:06:5b:41:f9:28:f7:33:b6:9a:8d:80:1e:1b: 3c:23:32:bd:aa:2d:bb:dc:25:0e:4c:21:8f:fa:53: 44:8a:e6:d9:d2:51:7f:93:a8:12:a8:21:24:46:f5: 4b:64:8a:7d:4a:ac:d0:b5:c2:f7:8b:29:19:1d:68: d4:cb:6c:88:43:19:be:23:11:c8:d5:b7:80:05:20: 04:29:c9:4b:d7:50:86:51:6f:df:00:ca:1e:ab:71: 8b:3f:45:f2:0c:1f:9a:82:2a:3b:a0:ce:f6:b0:a7: 1a:b6:87:e3:21:12:f2:73:58:e8:d2:24:26:42:0e: 47:29:89:3a:80:79:f5:91:e1:89:be:13:56:56:d0: 52:26:41:ee:bb:6e:65:e0:ac:d7:ab:41:ab:9a:27: 4e:29:6a:50:f0:47:ee:fb:42:9f:5a:13:b8:a7:8b: cc:2c:d4:b8:8d:e7:b1:20:14:88:25:b0:eb:40:7c: 96:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:23:F1:52:CD:A0:B6:CF:7A:2F:59:82:16:C4:1D:F3:CA:C1:0D:EE X509v3 Authority Key Identifier: keyid:87:C7:B4:B7:93:32:66:A0:A0:9E:22:90:B0:93:46:22:DD:07:2C:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/87C7B4B7933266A0A09E2290B0934622DD072C9B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87C7B4B7933266A0A09E2290B0934622DD072C9B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/3130332e3132312e3136382e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.168.0/23 Signature Algorithm: sha256WithRSAEncryption 1f:aa:4f:be:87:e2:98:a7:c7:b8:39:9e:69:e4:23:07:eb:aa: 9f:b1:54:30:fd:15:01:97:69:f2:37:35:ba:e0:eb:25:7a:a3: 9a:68:15:3d:e6:ab:06:f8:90:67:7c:b1:31:a6:7b:6a:a7:6c: e2:2b:03:27:ab:de:81:bc:ec:57:4c:a6:95:91:f0:f5:3f:71: d4:d7:19:5f:1e:6c:5a:92:a0:f7:57:5d:ec:d0:da:3e:9f:67: c9:b8:c5:84:9c:c0:91:e6:4f:49:2d:0b:eb:15:76:ce:72:be: 03:1a:21:c8:fc:03:8e:06:c9:86:02:d3:04:1a:9f:b7:c7:4f: 04:3a:23:e6:e2:2f:c1:3e:b2:6e:8e:c4:c5:25:54:41:1f:62: 47:e6:8f:69:a1:7f:f3:b8:b9:8b:d6:fe:2f:8a:3a:2e:02:71: 2d:5a:8e:a8:54:55:86:bb:d7:8f:ba:9a:f9:68:13:35:75:24: 04:06:0f:46:bd:eb:33:7d:50:da:36:5b:4f:1d:e0:7f:8b:4b: a5:5f:5d:6c:34:32:fc:72:14:f8:a1:06:55:d0:30:51:c5:19: 62:87:fd:5f:97:3b:f9:7c:30:00:0a:da:00:9e:de:fd:bd:bc: 92:3f:6a:e2:4f:37:d5:d7:35:5b:df:39:de:f3:2a:03:11:1f: f9:ac:33:e9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTpYHRFtoOCFKgaM83gmLY+BEB18wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODdDN0I0Qjc5MzMyNjZBMEEwOUUyMjkwQjA5MzQ2MjJE RDA3MkM5QjAeFw0yNDEyMDQwODU4MDhaFw0yNTEyMDMwOTAzMDhaMDMxMTAvBgNV BAMTKEVEMjNGMTUyQ0RBMEI2Q0Y3QTJGNTk4MjE2QzQxREYzQ0FDMTBERUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfKMqB6tpuZkCo2L4O7od78gcO m7cizkqJq45Z0G2EGtZBXBAhk3IyRiTwqI4ZAdbFeRvgWDXkckPNrdXWZ7wFFKOZ 5alN0GUXSb84BltB+Sj3M7aajYAeGzwjMr2qLbvcJQ5MIY/6U0SK5tnSUX+TqBKo ISRG9Utkin1KrNC1wveLKRkdaNTLbIhDGb4jEcjVt4AFIAQpyUvXUIZRb98Ayh6r cYs/RfIMH5qCKjugzvawpxq2h+MhEvJzWOjSJCZCDkcpiTqAefWR4Ym+E1ZW0FIm Qe67bmXgrNerQauaJ04palDwR+77Qp9aE7ini8ws1LiN57EgFIglsOtAfJYNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU7SPxUs2gts96L1mCFsQd88rBDe4wHwYDVR0j BBgwFoAUh8e0t5MyZqCgniKQsJNGIt0HLJswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTU4YWYyNC00NjNiLTQ0ZDgtYjZmMC0zOWI4MmI0NThmNzUvMC84N0M3QjRCNzkz MzI2NkEwQTA5RTIyOTBCMDkzNDYyMkREMDcyQzlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODdDN0I0Qjc5MzMyNjZBMEEwOUUyMjkwQjA5MzQ2MjJERDA3 MkM5Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhNThhZjI0LTQ2M2ItNDRkOC1i NmYwLTM5YjgyYjQ1OGY3NS8wLzMxMzAzMzJlMzEzMjMxMmUzMTM2MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneagwDQYJ KoZIhvcNAQELBQADggEBAB+qT76H4pinx7g5nmnkIwfrqp+xVDD9FQGXafI3Nbrg 6yV6o5poFT3mqwb4kGd8sTGme2qnbOIrAyer3oG87FdMppWR8PU/cdTXGV8ebFqS oPdXXezQ2j6fZ8m4xYScwJHmT0ktC+sVds5yvgMaIcj8A44GyYYC0wQan7fHTwQ6 I+biL8E+sm6OxMUlVEEfYkfmj2mhf/O4uYvW/i+KOi4CcS1ajqhUVYa714+6mvlo EzV1JAQGD0a96zN9UNo2W08d4H+LS6VfXWw0MvxyFPihBlXQMFHFGWKH/V+XO/l8 MAAK2gCe3v29vJI/auJPN9XXNVvfOd7zKgMRH/msM+k= -----END CERTIFICATE-----Generated at Sun Apr 6 08:30:34 2025 by rpki-client