$ rpki-client -vvf repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/3130332e3232352e3234322e302f32342d3234203d3e20313332363334.roa File: 3130332e3232352e3234322e302f32342d3234203d3e20313332363334.roa (raw, json) Hash identifier: Fp/8UnawhM2NuX7rV7CkvyBDfW79/QkTvgsmF36JIIM= Subject key identifier: 82:8F:8E:92:D7:E8:34:C2:8F:AA:32:B2:1B:3A:B3:11:C4:B3:BA:F9 Certificate issuer: /CN=0B47BFC94FDCEC084CD7B35536C8510E41F55130 Certificate serial: 21133965D9D5E64A8C7E75EC0607BAF0511496D9 Authority key identifier: 0B:47:BF:C9:4F:DC:EC:08:4C:D7:B3:55:36:C8:51:0E:41:F5:51:30 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0B47BFC94FDCEC084CD7B35536C8510E41F55130.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/3130332e3232352e3234322e302f32342d3234203d3e20313332363334.roa Signing time: Sat 14 Dec 2024 04:00:02 +0000 ROA not before: Sat 14 Dec 2024 03:55:02 +0000 ROA not after: Sat 13 Dec 2025 04:00:02 +0000 asID: 132634 IP address blocks: 103.225.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/0B47BFC94FDCEC084CD7B35536C8510E41F55130.crl rsync://repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/0B47BFC94FDCEC084CD7B35536C8510E41F55130.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0B47BFC94FDCEC084CD7B35536C8510E41F55130.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 10:16:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:13:39:65:d9:d5:e6:4a:8c:7e:75:ec:06:07:ba:f0:51:14:96:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0B47BFC94FDCEC084CD7B35536C8510E41F55130 Validity Not Before: Dec 14 03:55:02 2024 GMT Not After : Dec 13 04:00:02 2025 GMT Subject: CN=828F8E92D7E834C28FAA32B21B3AB311C4B3BAF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f3:d7:7b:6a:66:65:64:42:fe:8d:f9:83:9b: f3:7b:c9:17:b9:ab:b2:8f:43:3e:1d:a0:25:67:e0: 2c:35:88:ae:e1:c1:a9:83:fa:a6:7c:d8:ad:f0:54: e7:92:37:40:0e:ff:c7:01:36:ae:2e:8a:28:c2:9c: ee:05:31:ad:e3:2a:fd:7c:f1:d6:78:b4:f3:d4:28: ea:37:c9:25:23:b0:c6:f7:9e:39:7c:43:1e:dc:ef: fe:b3:a1:68:9b:e7:7f:05:8a:27:05:8a:31:51:33: 0b:11:9f:a7:70:a9:a3:25:c8:bb:12:a9:7a:58:d1: f4:b5:10:8f:22:80:31:6b:2a:f6:61:d7:ff:26:50: 6a:bf:f5:c9:06:f9:ae:8e:80:00:a8:f6:0f:b5:92: 97:44:8f:a0:d9:9e:52:a7:dd:2a:23:a0:0e:d6:15: 67:3e:e7:b5:d9:67:86:b4:23:18:64:be:e9:90:cd: 0d:fc:0c:5c:02:86:a3:47:af:4a:8b:63:6c:20:f3: 72:75:b9:01:0c:c4:7b:16:c7:c6:70:b4:f3:68:de: 18:14:c9:cc:ec:b3:22:29:20:4d:8b:a3:dc:79:4c: af:80:3f:a0:99:13:7f:d5:6f:7a:0a:c2:60:b4:64: 1e:b9:9a:71:00:a4:af:c3:73:23:d8:0d:aa:57:96: a0:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:8F:8E:92:D7:E8:34:C2:8F:AA:32:B2:1B:3A:B3:11:C4:B3:BA:F9 X509v3 Authority Key Identifier: keyid:0B:47:BF:C9:4F:DC:EC:08:4C:D7:B3:55:36:C8:51:0E:41:F5:51:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/0B47BFC94FDCEC084CD7B35536C8510E41F55130.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0B47BFC94FDCEC084CD7B35536C8510E41F55130.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/3130332e3232352e3234322e302f32342d3234203d3e20313332363334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.225.242.0/24 Signature Algorithm: sha256WithRSAEncryption 24:c1:b3:db:b9:56:19:31:e7:32:23:1a:b0:72:d5:41:24:1a: 03:4c:58:d0:3e:a1:64:36:76:48:6c:ab:91:60:d3:1f:ab:67: 61:a8:7a:fb:47:6e:ca:e2:76:af:1c:94:42:56:f3:40:2d:15: fe:3d:c3:32:f9:b9:69:4d:5f:c2:1b:58:90:aa:b5:31:66:d5: 9b:72:70:5d:49:59:be:c6:ed:25:ce:26:0f:01:86:a7:cf:87: 8d:a1:2b:df:93:53:17:ea:1e:d8:0e:3c:90:d9:cf:4d:b5:46: de:59:0d:02:36:3d:07:9f:50:0c:a3:40:73:d6:85:d1:d7:9b: 11:d5:98:7d:41:ab:7d:ef:68:29:d5:4f:57:1f:15:3c:51:d4: 03:af:d0:0d:e3:03:62:46:a3:e5:96:0f:d2:06:f6:c5:7f:a7: 1d:7b:82:18:73:4f:ac:fa:35:56:9d:5d:3c:c2:74:96:e8:0c: 5b:2c:4e:b8:eb:2e:46:42:6f:c1:06:b5:40:2e:e8:69:5f:d1: 09:0d:75:ec:86:d6:8c:52:37:af:79:e6:54:6b:49:2b:68:3a: 91:02:3e:e5:d4:5d:67:68:02:eb:b5:07:ca:79:53:e6:0b:d2: 13:a9:a3:e9:32:17:25:29:97:72:cf:db:bc:01:ae:f1:e3:9d: 30:65:6c:55 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIRM5ZdnV5kqMfnXsBge68FEUltkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEI0N0JGQzk0RkRDRUMwODRDRDdCMzU1MzZDODUxMEU0 MUY1NTEzMDAeFw0yNDEyMTQwMzU1MDJaFw0yNTEyMTMwNDAwMDJaMDMxMTAvBgNV BAMTKDgyOEY4RTkyRDdFODM0QzI4RkFBMzJCMjFCM0FCMzExQzRCM0JBRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC389d7amZlZEL+jfmDm/N7yRe5 q7KPQz4doCVn4Cw1iK7hwamD+qZ82K3wVOeSN0AO/8cBNq4uiijCnO4FMa3jKv18 8dZ4tPPUKOo3ySUjsMb3njl8Qx7c7/6zoWib538FiicFijFRMwsRn6dwqaMlyLsS qXpY0fS1EI8igDFrKvZh1/8mUGq/9ckG+a6OgACo9g+1kpdEj6DZnlKn3SojoA7W FWc+57XZZ4a0IxhkvumQzQ38DFwChqNHr0qLY2wg83J1uQEMxHsWx8ZwtPNo3hgU yczssyIpIE2Lo9x5TK+AP6CZE3/Vb3oKwmC0ZB65mnEApK/DcyPYDapXlqAzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUgo+OktfoNMKPqjKyGzqzEcSzuvkwHwYDVR0j BBgwFoAUC0e/yU/c7AhM17NVNshRDkH1UTAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGY3YmUwNi05NjcyLTQ2NDEtOTdiZC05YmZkZjk1NWRlMTcvMC8wQjQ3QkZDOTRG RENFQzA4NENEN0IzNTUzNkM4NTEwRTQxRjU1MTMwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEI0N0JGQzk0RkRDRUMwODRDRDdCMzU1MzZDODUxMEU0MUY1 NTEzMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwZjdiZTA2LTk2NzItNDY0MS05 N2JkLTliZmRmOTU1ZGUxNy8wLzMxMzAzMzJlMzIzMjM1MmUzMjM0MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzIzNjMzMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn4fIwDQYJ KoZIhvcNAQELBQADggEBACTBs9u5Vhkx5zIjGrBy1UEkGgNMWNA+oWQ2dkhsq5Fg 0x+rZ2GoevtHbsridq8clEJW80AtFf49wzL5uWlNX8IbWJCqtTFm1ZtycF1JWb7G 7SXOJg8BhqfPh42hK9+TUxfqHtgOPJDZz021Rt5ZDQI2PQefUAyjQHPWhdHXmxHV mH1Bq33vaCnVT1cfFTxR1AOv0A3jA2JGo+WWD9IG9sV/px17ghhzT6z6NVadXTzC dJboDFssTrjrLkZCb8EGtUAu6Glf0QkNdeyG1oxSN6955lRrSStoOpECPuXUXWdo Auu1B8p5U+YL0hOpo+kyFyUpl3LP27wBrvHjnTBlbFU= -----END CERTIFICATE-----Generated at Sun Apr 6 12:12:46 2025 by rpki-client