$ rpki-client -vvf repo-rpki.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/3131302e39332e31322e302f32322d3234203d3e203435373037.roa File: 3131302e39332e31322e302f32322d3234203d3e203435373037.roa (raw, json) Hash identifier: 7iXx5jGESFjpBjO3AiKnrpyYnQjS82YYkQqBjeaeWk0= Subject key identifier: BA:BE:07:98:42:99:8D:C0:FA:F8:55:9C:1A:11:00:D2:9E:7E:15:E8 Certificate issuer: /CN=754BC04892430632A8C965AF4C5B71C59B2A3CCB Certificate serial: 4FCEBE8C66A632338510CF1ECC37B87E70012B1B Authority key identifier: 75:4B:C0:48:92:43:06:32:A8:C9:65:AF:4C:5B:71:C5:9B:2A:3C:CB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/754BC04892430632A8C965AF4C5B71C59B2A3CCB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/3131302e39332e31322e302f32322d3234203d3e203435373037.roa Signing time: Fri 27 Dec 2024 09:00:01 +0000 ROA not before: Fri 27 Dec 2024 08:55:01 +0000 ROA not after: Fri 26 Dec 2025 09:00:01 +0000 asID: 45707 IP address blocks: 110.93.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/754BC04892430632A8C965AF4C5B71C59B2A3CCB.crl rsync://repo-rpki.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/754BC04892430632A8C965AF4C5B71C59B2A3CCB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/754BC04892430632A8C965AF4C5B71C59B2A3CCB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 00:10:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:ce:be:8c:66:a6:32:33:85:10:cf:1e:cc:37:b8:7e:70:01:2b:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=754BC04892430632A8C965AF4C5B71C59B2A3CCB Validity Not Before: Dec 27 08:55:01 2024 GMT Not After : Dec 26 09:00:01 2025 GMT Subject: CN=BABE079842998DC0FAF8559C1A1100D29E7E15E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d6:68:0c:99:78:ab:b3:fb:9f:c2:b1:1c:79: 38:41:fd:f6:03:67:40:c0:5e:6c:18:ed:5b:ae:da: d4:5e:da:9b:a4:5a:24:97:09:28:b0:a0:a1:4b:c2: 92:89:32:b9:c9:71:43:2a:45:31:99:b3:ef:52:50: 8e:db:b3:08:cd:a7:0d:38:a9:c1:5b:4f:f3:1b:88: 42:40:6b:e5:2e:94:25:f5:71:78:d6:4c:d3:d6:85: 91:25:3e:c2:9f:65:73:35:b8:b7:de:2e:4c:b5:a4: 87:69:a4:22:cf:f0:77:c2:a4:e1:4a:a8:61:14:ec: 6e:f4:6c:e0:24:28:27:0a:d0:09:f4:d5:7b:87:a1: bd:61:88:ac:65:af:22:68:1a:9b:36:ba:9a:d3:f8: af:e7:fe:31:96:3f:fa:07:83:a7:81:a8:4a:f1:72: 88:01:38:08:df:58:0a:e5:a3:e0:a2:81:99:97:f2: bd:31:45:9d:5f:de:46:9f:4f:3d:2f:01:86:5a:3b: 99:de:5d:a4:ac:01:a5:60:95:c6:7f:71:af:dd:a0: a9:8c:fb:93:e9:99:90:15:d5:d7:90:f8:f4:9e:36: 58:7e:e0:4f:cd:a2:2d:77:f6:52:25:69:d9:f9:cb: 32:3c:87:35:5c:37:1a:a6:5d:16:2e:ea:15:22:a1: bc:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:BE:07:98:42:99:8D:C0:FA:F8:55:9C:1A:11:00:D2:9E:7E:15:E8 X509v3 Authority Key Identifier: keyid:75:4B:C0:48:92:43:06:32:A8:C9:65:AF:4C:5B:71:C5:9B:2A:3C:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/754BC04892430632A8C965AF4C5B71C59B2A3CCB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/754BC04892430632A8C965AF4C5B71C59B2A3CCB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/3131302e39332e31322e302f32322d3234203d3e203435373037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.93.12.0/22 Signature Algorithm: sha256WithRSAEncryption cb:88:ec:5d:ab:fc:e9:fb:90:d3:4b:61:86:d2:ff:36:46:37: 85:37:ab:7f:d7:fb:ad:73:0f:58:24:43:f0:f9:a4:0c:22:d9: 19:90:53:9d:d5:35:a3:db:b7:9d:2b:d9:15:09:1e:bc:91:b7: a9:a3:d7:33:10:82:de:7a:55:67:63:d7:e2:5a:aa:99:fc:77: 71:41:0c:69:a9:2a:f1:84:d6:ed:9d:35:14:f8:d6:b2:16:9d: 8e:27:02:e2:21:f3:49:ae:45:02:81:0c:fe:08:c1:3c:43:96: b7:9f:a7:33:b2:09:ef:98:d1:e7:1f:8a:5d:f1:7d:13:3c:67: a8:d0:f3:21:4f:32:38:48:77:ba:9c:69:e5:64:cd:3e:eb:03: db:f2:e9:42:15:e5:f6:f5:58:1d:d2:48:c7:6f:5f:47:f6:20: a5:c7:8c:78:b8:a2:3c:7f:a2:3a:31:b0:08:31:af:4f:f2:e4: 3d:8e:40:97:30:f9:80:0d:7d:a5:5a:ab:57:fb:f9:17:cb:42: 4e:c7:74:40:53:71:8f:f2:66:42:b2:cd:92:3b:b2:2d:f2:c2: 58:5e:58:1c:36:b1:15:f7:8c:e0:58:84:ee:91:03:f1:13:0e: ff:73:6e:ce:0d:5a:66:2d:47:b9:a0:d5:0e:98:3d:ec:60:3e: 81:f0:00:5c -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUT86+jGamMjOFEM8ezDe4fnABKxswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzU0QkMwNDg5MjQzMDYzMkE4Qzk2NUFGNEM1QjcxQzU5 QjJBM0NDQjAeFw0yNDEyMjcwODU1MDFaFw0yNTEyMjYwOTAwMDFaMDMxMTAvBgNV BAMTKEJBQkUwNzk4NDI5OThEQzBGQUY4NTU5QzFBMTEwMEQyOUU3RTE1RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/1mgMmXirs/ufwrEceThB/fYD Z0DAXmwY7Vuu2tRe2pukWiSXCSiwoKFLwpKJMrnJcUMqRTGZs+9SUI7bswjNpw04 qcFbT/MbiEJAa+UulCX1cXjWTNPWhZElPsKfZXM1uLfeLky1pIdppCLP8HfCpOFK qGEU7G70bOAkKCcK0An01XuHob1hiKxlryJoGps2uprT+K/n/jGWP/oHg6eBqErx cogBOAjfWArlo+CigZmX8r0xRZ1f3kafTz0vAYZaO5neXaSsAaVglcZ/ca/doKmM +5PpmZAV1deQ+PSeNlh+4E/Noi139lIladn5yzI8hzVcNxqmXRYu6hUiobyZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUur4HmEKZjcD6+FWcGhEA0p5+FegwHwYDVR0j BBgwFoAUdUvASJJDBjKoyWWvTFtxxZsqPMswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGQyYmRlNC0wNTZiLTQ1YzYtODBiZi1mNWQ0ZDI3NzMzNmIvMC83NTRCQzA0ODky NDMwNjMyQThDOTY1QUY0QzVCNzFDNTlCMkEzQ0NCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzU0QkMwNDg5MjQzMDYzMkE4Qzk2NUFGNEM1QjcxQzU5QjJB M0NDQi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwZDJiZGU0LTA1NmItNDVjNi04 MGJmLWY1ZDRkMjc3MzM2Yi8wLzMxMzEzMDJlMzkzMzJlMzEzMjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDM0MzUzNzMwMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJuXQwwDQYJKoZIhvcN AQELBQADggEBAMuI7F2r/On7kNNLYYbS/zZGN4U3q3/X+61zD1gkQ/D5pAwi2RmQ U53VNaPbt50r2RUJHryRt6mj1zMQgt56VWdj1+Jaqpn8d3FBDGmpKvGE1u2dNRT4 1rIWnY4nAuIh80muRQKBDP4IwTxDlrefpzOyCe+Y0ecfil3xfRM8Z6jQ8yFPMjhI d7qcaeVkzT7rA9vy6UIV5fb1WB3SSMdvX0f2IKXHjHi4ojx/ojoxsAgxr0/y5D2O QJcw+YANfaVaq1f7+RfLQk7HdEBTcY/yZkKyzZI7si3ywlheWBw2sRX3jOBYhO6R A/ETDv9zbs4NWmYtR7mg1Q6YPexgPoHwAFw= -----END CERTIFICATE-----Generated at Fri Feb 21 11:20:18 2025 by rpki-client