$ rpki-client -vvf repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/3130332e362e33342e302f32342d3234203d3e20313332363334.roa File: 3130332e362e33342e302f32342d3234203d3e20313332363334.roa (raw, json) Hash identifier: HvrDpYE/J5atwLV8aNk1LyzF9yjb46bY62W/GVeHaaA= Subject key identifier: 29:1E:10:3E:1E:AE:38:76:5B:2D:CB:D2:08:F2:AD:C3:09:7C:58:42 Certificate issuer: /CN=0B47BFC94FDCEC084CD7B35536C8510E41F55130 Certificate serial: 1A99FAD0CE12AD6E014654444F8F588858082FAB Authority key identifier: 0B:47:BF:C9:4F:DC:EC:08:4C:D7:B3:55:36:C8:51:0E:41:F5:51:30 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0B47BFC94FDCEC084CD7B35536C8510E41F55130.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/3130332e362e33342e302f32342d3234203d3e20313332363334.roa Signing time: Sat 14 Dec 2024 04:00:02 +0000 ROA not before: Sat 14 Dec 2024 03:55:02 +0000 ROA not after: Sat 13 Dec 2025 04:00:02 +0000 asID: 132634 IP address blocks: 103.6.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/0B47BFC94FDCEC084CD7B35536C8510E41F55130.crl rsync://repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/0B47BFC94FDCEC084CD7B35536C8510E41F55130.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0B47BFC94FDCEC084CD7B35536C8510E41F55130.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 10:16:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:99:fa:d0:ce:12:ad:6e:01:46:54:44:4f:8f:58:88:58:08:2f:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0B47BFC94FDCEC084CD7B35536C8510E41F55130 Validity Not Before: Dec 14 03:55:02 2024 GMT Not After : Dec 13 04:00:02 2025 GMT Subject: CN=291E103E1EAE38765B2DCBD208F2ADC3097C5842 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ea:85:89:65:78:4e:d0:09:ec:7e:de:48:76: a9:f3:77:99:b0:ab:ef:fc:0e:97:92:ac:41:0a:bc: af:d2:db:6a:49:31:5a:6f:a0:7c:c7:6c:bb:cb:4b: 55:f6:19:00:68:78:9b:75:fc:3a:17:29:9f:59:9a: 01:82:a1:df:8e:6b:c7:1e:1f:fe:c5:96:3a:63:a7: 25:f4:80:9f:72:59:48:83:6f:96:80:22:6a:83:b3: b3:cd:bb:62:8a:a7:64:3a:b5:53:3d:49:12:c6:e1: bb:b3:a8:67:d3:e0:f2:d3:fe:63:23:ed:18:56:eb: cf:12:ad:05:7e:b0:b9:a7:b4:84:d3:14:38:84:0a: 0d:cd:84:82:f6:bb:f0:7e:90:fa:a5:ff:86:c5:3d: 25:b8:51:ea:51:3e:9a:25:00:8f:42:ab:ba:af:9a: c4:43:3f:fc:5e:5d:b8:47:ed:bd:63:7c:45:7e:0e: e5:8f:3f:68:c6:64:85:2b:96:77:51:aa:53:58:76: 53:40:c1:88:80:56:7b:ff:2c:8b:6e:95:52:ad:41: b3:f1:37:11:78:bd:0f:f9:b3:89:bc:9a:18:51:94: 20:65:8c:cb:c2:ad:3d:7c:dd:19:5a:24:ee:9e:2c: a5:d2:43:09:7e:cd:f1:f9:f9:2a:a2:a5:2e:93:79: 12:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:1E:10:3E:1E:AE:38:76:5B:2D:CB:D2:08:F2:AD:C3:09:7C:58:42 X509v3 Authority Key Identifier: keyid:0B:47:BF:C9:4F:DC:EC:08:4C:D7:B3:55:36:C8:51:0E:41:F5:51:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/0B47BFC94FDCEC084CD7B35536C8510E41F55130.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0B47BFC94FDCEC084CD7B35536C8510E41F55130.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/3130332e362e33342e302f32342d3234203d3e20313332363334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.6.34.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:5d:e9:a0:33:1d:53:d9:ff:6f:9b:0f:4f:24:9a:12:47:ca: 60:f9:29:a1:6c:dd:93:9b:0d:08:70:5b:74:79:b1:01:d8:eb: 3a:14:58:f5:36:ee:d1:f2:af:00:4b:2f:1b:72:d6:a4:9d:f2: 99:ff:16:c2:9f:68:92:5e:7d:61:f6:33:04:f1:79:3a:3b:1b: 1f:c8:7c:8a:23:26:bd:c6:24:3f:32:74:e6:87:60:42:85:73: 2f:5b:37:3f:80:0b:f1:b2:ab:2d:49:5a:79:ab:ef:b4:36:2b: 11:13:46:f6:5e:94:12:6d:e7:99:8e:b2:1a:cc:ec:d7:02:ea: 9f:6b:42:9c:42:0f:1f:29:af:55:a7:0a:58:fc:dd:1f:9b:e9: bf:3d:5a:46:ed:cf:ee:f7:d3:80:58:8b:34:cc:41:a7:a2:44: f2:3d:df:3e:91:83:be:56:4e:69:34:1c:72:9d:70:0e:14:a6: ca:79:dd:ac:ec:aa:fd:d9:9b:a5:6c:f5:7a:a4:63:3f:56:2f: bb:57:fc:ed:d6:9e:18:4f:06:6f:e0:f1:aa:22:9b:42:a0:47: 3c:df:a9:7e:5a:a1:ff:91:4f:6f:a2:13:c5:14:34:1a:20:1d: 45:3a:e9:12:99:13:ab:9f:9b:e6:64:4c:c5:19:ce:38:64:f0: 33:ef:1f:06 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUGpn60M4SrW4BRlRET49YiFgIL6swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEI0N0JGQzk0RkRDRUMwODRDRDdCMzU1MzZDODUxMEU0 MUY1NTEzMDAeFw0yNDEyMTQwMzU1MDJaFw0yNTEyMTMwNDAwMDJaMDMxMTAvBgNV BAMTKDI5MUUxMDNFMUVBRTM4NzY1QjJEQ0JEMjA4RjJBREMzMDk3QzU4NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCe6oWJZXhO0Ansft5Idqnzd5mw q+/8DpeSrEEKvK/S22pJMVpvoHzHbLvLS1X2GQBoeJt1/DoXKZ9ZmgGCod+Oa8ce H/7FljpjpyX0gJ9yWUiDb5aAImqDs7PNu2KKp2Q6tVM9SRLG4buzqGfT4PLT/mMj 7RhW688SrQV+sLmntITTFDiECg3NhIL2u/B+kPql/4bFPSW4UepRPpolAI9Cq7qv msRDP/xeXbhH7b1jfEV+DuWPP2jGZIUrlndRqlNYdlNAwYiAVnv/LItulVKtQbPx NxF4vQ/5s4m8mhhRlCBljMvCrT183RlaJO6eLKXSQwl+zfH5+SqipS6TeRKxAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUKR4QPh6uOHZbLcvSCPKtwwl8WEIwHwYDVR0j BBgwFoAUC0e/yU/c7AhM17NVNshRDkH1UTAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGY3YmUwNi05NjcyLTQ2NDEtOTdiZC05YmZkZjk1NWRlMTcvMC8wQjQ3QkZDOTRG RENFQzA4NENEN0IzNTUzNkM4NTEwRTQxRjU1MTMwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEI0N0JGQzk0RkRDRUMwODRDRDdCMzU1MzZDODUxMEU0MUY1 NTEzMC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwZjdiZTA2LTk2NzItNDY0MS05 N2JkLTliZmRmOTU1ZGUxNy8wLzMxMzAzMzJlMzYyZTMzMzQyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTMzMzIzNjMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnBiIwDQYJKoZIhvcN AQELBQADggEBAH5d6aAzHVPZ/2+bD08kmhJHymD5KaFs3ZObDQhwW3R5sQHY6zoU WPU27tHyrwBLLxty1qSd8pn/FsKfaJJefWH2MwTxeTo7Gx/IfIojJr3GJD8ydOaH YEKFcy9bNz+AC/Gyqy1JWnmr77Q2KxETRvZelBJt55mOshrM7NcC6p9rQpxCDx8p r1WnClj83R+b6b89Wkbtz+7304BYizTMQaeiRPI93z6Rg75WTmk0HHKdcA4Upsp5 3azsqv3Zm6Vs9XqkYz9WL7tX/O3WnhhPBm/g8aoim0KgRzzfqX5aof+RT2+iE8UU NBogHUU66RKZE6ufm+ZkTMUZzjhk8DPvHwY= -----END CERTIFICATE-----Generated at Sun Apr 6 11:52:02 2025 by rpki-client