$ rpki-client -vvf repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3130332e3133352e37342e302f32332d3234203d3e203436303236.roa File: 3130332e3133352e37342e302f32332d3234203d3e203436303236.roa (raw, json) Hash identifier: KXtJmDO4hKKtckmp6/OjWqYrbZ7ZmK12D4CTr8FodJE= Subject key identifier: 34:56:55:5A:4C:DC:AD:1D:4E:F2:CE:B0:29:EA:D7:74:0B:7E:05:D0 Certificate issuer: /CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Certificate serial: 3C90251293681FA221E55A081928F83AEAE29267 Authority key identifier: F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3130332e3133352e37342e302f32332d3234203d3e203436303236.roa Signing time: Mon 16 Dec 2024 03:00:00 +0000 ROA not before: Mon 16 Dec 2024 02:55:00 +0000 ROA not after: Mon 15 Dec 2025 03:00:00 +0000 asID: 46026 IP address blocks: 103.135.74.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 17:17:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:90:25:12:93:68:1f:a2:21:e5:5a:08:19:28:f8:3a:ea:e2:92:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8C19A8F8CB0DDC85D1C8E55638FB43584903E17 Validity Not Before: Dec 16 02:55:00 2024 GMT Not After : Dec 15 03:00:00 2025 GMT Subject: CN=3456555A4CDCAD1D4EF2CEB029EAD7740B7E05D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:59:84:12:e2:09:79:c2:d0:17:4e:d3:8e:13: 81:81:6b:06:37:4f:b1:bf:89:c4:24:7b:a5:22:e1: 09:00:25:aa:7b:9e:05:81:1c:14:df:33:fe:e2:83: ba:a4:d6:7f:99:8b:0b:67:f5:17:f8:df:ed:98:35: 0d:1c:d1:0a:60:b9:cc:ba:be:a9:6a:19:50:e3:02: 25:4a:c9:e6:43:7a:97:9c:45:f8:7b:aa:9a:e8:a6: 93:36:b9:ee:90:9b:df:2a:0c:80:7d:38:b0:fe:d2: 19:80:6c:78:4e:85:8f:59:9b:9c:4d:40:11:62:3f: 36:06:37:98:77:bc:2c:74:07:a8:67:6b:07:2a:b4: 2b:4d:fa:93:c5:bd:f5:13:07:7a:eb:a1:b0:f5:59: a6:b4:ab:0c:67:1e:99:57:2e:d0:f4:b5:e9:4b:4f: 75:aa:b8:ad:e8:0a:04:1e:a8:99:1e:7c:df:3b:55: 61:65:f1:ef:75:58:1d:23:1f:0b:e5:33:29:7c:37: 97:cf:75:e5:da:75:80:e8:c6:2e:e8:22:ba:f2:8e: 93:42:5f:a1:4f:33:43:fc:e1:cf:88:51:56:61:8e: c9:dc:0a:c8:3a:04:3d:44:fa:cd:4d:4d:9b:67:b3: e0:0f:e5:a2:7e:0d:12:fe:20:34:fa:21:da:7d:84: 4b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:56:55:5A:4C:DC:AD:1D:4E:F2:CE:B0:29:EA:D7:74:0B:7E:05:D0 X509v3 Authority Key Identifier: keyid:F8:C1:9A:8F:8C:B0:DD:C8:5D:1C:8E:55:63:8F:B4:35:84:90:3E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8C19A8F8CB0DDC85D1C8E55638FB43584903E17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ff4ebcd-29cf-4eec-a92a-d1136f5f9936/0/3130332e3133352e37342e302f32332d3234203d3e203436303236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.135.74.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:b4:3a:48:29:fc:72:7c:d4:25:3f:de:0c:3a:69:2f:e8:82: d2:00:a6:0f:80:06:ba:39:48:9d:06:d5:e4:e0:d9:c1:03:4d: c2:9d:f7:17:e3:ef:1e:5c:f3:0d:54:98:4b:74:af:a7:69:06: 2e:08:6f:18:ca:5a:d7:12:11:36:76:15:72:ef:59:f2:8f:14: 80:01:af:1e:bc:a0:0f:97:9d:a4:da:27:b9:50:15:9c:9c:7f: f6:57:1a:4a:d1:9f:bc:d2:94:eb:ef:7b:98:37:12:7d:43:6e: b9:66:9b:6e:18:9e:73:e7:c3:3f:4e:b8:7e:d5:6f:c6:b4:64: c2:a7:90:3f:66:c0:fa:9b:9c:3b:5d:dd:04:36:3a:b0:cf:ff: b3:05:56:7d:3a:cb:43:f6:70:93:91:5f:f6:b7:22:06:6f:9b: 76:47:33:57:12:0b:7b:5e:95:cf:23:09:7b:a6:a9:9a:d5:95: 41:85:90:e4:d1:49:c2:e7:c1:d4:ee:72:c5:12:d8:d9:12:87: f5:1b:a3:b4:9d:8f:5d:f6:42:00:22:ae:42:a6:42:16:c0:bd: 65:4a:54:4f:f2:d8:33:09:61:fe:fc:a9:18:66:57:52:93:91: aa:34:44:dd:f4:6c:75:3b:c2:a2:5e:66:39:a6:8d:8d:d1:7d: e8:b6:f8:a4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPJAlEpNoH6Ih5VoIGSj4OurikmcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4 NDkwM0UxNzAeFw0yNDEyMTYwMjU1MDBaFw0yNTEyMTUwMzAwMDBaMDMxMTAvBgNV BAMTKDM0NTY1NTVBNENEQ0FEMUQ0RUYyQ0VCMDI5RUFENzc0MEI3RTA1RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqWYQS4gl5wtAXTtOOE4GBawY3 T7G/icQke6Ui4QkAJap7ngWBHBTfM/7ig7qk1n+Ziwtn9Rf43+2YNQ0c0Qpgucy6 vqlqGVDjAiVKyeZDepecRfh7qproppM2ue6Qm98qDIB9OLD+0hmAbHhOhY9Zm5xN QBFiPzYGN5h3vCx0B6hnawcqtCtN+pPFvfUTB3rrobD1Waa0qwxnHplXLtD0telL T3WquK3oCgQeqJkefN87VWFl8e91WB0jHwvlMyl8N5fPdeXadYDoxi7oIrryjpNC X6FPM0P84c+IUVZhjsncCsg6BD1E+s1NTZtns+AP5aJ+DRL+IDT6Idp9hEt5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNFZVWkzcrR1O8s6wKerXdAt+BdAwHwYDVR0j BBgwFoAU+MGaj4yw3chdHI5VY4+0NYSQPhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZmY0ZWJjZC0yOWNmLTRlZWMtYTkyYS1kMTEzNmY1Zjk5MzYvMC9GOEMxOUE4RjhD QjBEREM4NUQxQzhFNTU2MzhGQjQzNTg0OTAzRTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhDMTlBOEY4Q0IwRERDODVEMUM4RTU1NjM4RkI0MzU4NDkw M0UxNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFmZjRlYmNkLTI5Y2YtNGVlYy1h OTJhLWQxMTM2ZjVmOTkzNi8wLzMxMzAzMzJlMzEzMzM1MmUzNzM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNjMwMzIzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWeHSjANBgkqhkiG 9w0BAQsFAAOCAQEATrQ6SCn8cnzUJT/eDDppL+iC0gCmD4AGujlInQbV5ODZwQNN wp33F+PvHlzzDVSYS3Svp2kGLghvGMpa1xIRNnYVcu9Z8o8UgAGvHrygD5edpNon uVAVnJx/9lcaStGfvNKU6+97mDcSfUNuuWabbhiec+fDP064ftVvxrRkwqeQP2bA +pucO13dBDY6sM//swVWfTrLQ/Zwk5Ff9rciBm+bdkczVxILe16VzyMJe6apmtWV QYWQ5NFJwufB1O5yxRLY2RKH9RujtJ2PXfZCACKuQqZCFsC9ZUpUT/LYMwlh/vyp GGZXUpORqjRE3fRsdTvCol5mOaaNjdF96Lb4pA== -----END CERTIFICATE-----Generated at Fri Feb 21 11:13:30 2025 by rpki-client