$ rpki-client -vvf repo-rpki.idnic.net/repo/23ba024b-87f2-4edd-89ff-a4fca7008c36/0/3130332e3136322e33352e302f32342d3234203d3e20313431363535.roa File: 3130332e3136322e33352e302f32342d3234203d3e20313431363535.roa (raw, json) Hash identifier: 2q+rh+u7xtZBbh00UB11LmVHu3mC0doj4usif/1P0SE= Subject key identifier: 96:C9:C0:29:F7:28:5A:44:97:0C:E3:3C:BE:68:94:50:8E:E7:96:31 Certificate issuer: /CN=3194DFD66457359AF7BF3BF09EA766ADEF1329B5 Certificate serial: 2455E1FFC9F013DC3858776F8BEB9FE1FA0A8ACE Authority key identifier: 31:94:DF:D6:64:57:35:9A:F7:BF:3B:F0:9E:A7:66:AD:EF:13:29:B5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3194DFD66457359AF7BF3BF09EA766ADEF1329B5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/23ba024b-87f2-4edd-89ff-a4fca7008c36/0/3130332e3136322e33352e302f32342d3234203d3e20313431363535.roa Signing time: Tue 31 Dec 2024 03:59:19 +0000 ROA not before: Tue 31 Dec 2024 03:54:19 +0000 ROA not after: Tue 30 Dec 2025 03:59:19 +0000 asID: 141655 IP address blocks: 103.162.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/23ba024b-87f2-4edd-89ff-a4fca7008c36/0/3194DFD66457359AF7BF3BF09EA766ADEF1329B5.crl rsync://repo-rpki.idnic.net/repo/23ba024b-87f2-4edd-89ff-a4fca7008c36/0/3194DFD66457359AF7BF3BF09EA766ADEF1329B5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3194DFD66457359AF7BF3BF09EA766ADEF1329B5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 04:03:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:55:e1:ff:c9:f0:13:dc:38:58:77:6f:8b:eb:9f:e1:fa:0a:8a:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3194DFD66457359AF7BF3BF09EA766ADEF1329B5 Validity Not Before: Dec 31 03:54:19 2024 GMT Not After : Dec 30 03:59:19 2025 GMT Subject: CN=96C9C029F7285A44970CE33CBE6894508EE79631 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f6:d5:c4:2c:6c:30:05:d9:aa:31:67:d1:93: 70:a8:fd:72:be:6d:07:07:9d:48:20:7b:01:f4:19: b0:19:3f:f4:d8:0a:23:23:eb:7b:01:4e:4f:95:eb: 22:1d:49:51:17:10:86:99:1c:96:ad:97:20:00:b2: 4c:d2:be:11:36:7d:b5:5f:0a:e9:1b:61:79:77:e1: 34:8b:c1:33:b4:d8:f8:14:bc:94:1d:ed:f6:5a:5c: 34:85:34:d2:db:29:d7:6c:cb:db:f8:24:8b:e6:76: 75:1a:49:7b:19:e6:ca:88:e2:5d:98:1a:25:70:1a: 27:81:1d:5b:bc:38:77:b7:ad:a7:da:1e:1f:9d:f7: cb:76:4b:24:f7:4a:5f:f6:8c:12:81:a0:ce:31:1b: 47:0b:dd:85:b7:a3:a4:d5:e6:b8:87:31:03:ae:43: 92:e0:b0:51:ee:bb:56:43:a0:a1:27:0d:ae:16:1c: 9f:f3:4c:81:91:a6:6d:06:3f:e3:b4:40:cb:1e:36: 17:e9:ec:fa:bd:50:3f:c7:65:b3:ba:3b:1c:ab:b4: 6a:99:0f:50:e4:7a:b1:a1:37:dc:e2:1a:6d:47:89: f0:51:a9:8c:39:49:d1:eb:e3:f9:8b:94:53:f6:7a: 07:de:66:4a:78:c0:a5:e6:2d:99:f0:b1:23:81:d0: fb:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:C9:C0:29:F7:28:5A:44:97:0C:E3:3C:BE:68:94:50:8E:E7:96:31 X509v3 Authority Key Identifier: keyid:31:94:DF:D6:64:57:35:9A:F7:BF:3B:F0:9E:A7:66:AD:EF:13:29:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/23ba024b-87f2-4edd-89ff-a4fca7008c36/0/3194DFD66457359AF7BF3BF09EA766ADEF1329B5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3194DFD66457359AF7BF3BF09EA766ADEF1329B5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/23ba024b-87f2-4edd-89ff-a4fca7008c36/0/3130332e3136322e33352e302f32342d3234203d3e20313431363535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.35.0/24 Signature Algorithm: sha256WithRSAEncryption 25:04:b4:5a:2e:f8:85:35:03:a7:09:3e:f2:3d:81:bd:1c:f3: 55:f0:78:81:e1:d9:3f:27:8f:fa:cf:21:e3:1f:8c:1d:d1:c6: 7a:9c:33:80:22:b0:b5:fd:86:2e:7e:48:1b:2c:ab:90:45:ef: d4:ea:d3:43:f9:2a:14:ef:33:c6:84:9d:aa:34:8f:f3:2b:48: ea:9a:d3:d1:07:b9:4f:55:34:a2:c4:61:47:d5:2e:fa:07:00: 29:2e:d7:9c:b2:75:2d:5f:bf:bf:4a:68:d4:79:a8:e2:e4:d6: 9a:c0:8c:73:74:1c:ad:d7:0b:36:a5:0a:f2:4a:4d:e2:70:96: 4b:e3:54:7d:8b:40:49:b5:e3:31:22:df:9c:a8:b2:91:b3:63: 3a:74:8f:f8:f0:61:d6:42:1b:c8:4b:b0:c8:3d:35:e6:f0:0f: a3:a5:81:be:0f:fa:b3:1e:7e:b0:40:95:84:03:09:1b:05:57: a5:29:03:6c:3b:bf:01:5d:74:de:8a:6c:a9:4e:3c:6d:e0:34: c3:a2:ce:66:03:c4:8f:1a:41:99:8b:de:e6:2f:f0:00:17:f9: fc:3e:a8:a2:19:c8:47:e9:9e:13:7a:67:12:ad:7b:95:fb:f0: e9:89:d8:53:fc:1e:97:69:35:6f:5a:03:ed:ff:3d:a8:39:a2: e3:96:d9:4f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJFXh/8nwE9w4WHdvi+uf4foKis4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzE5NERGRDY2NDU3MzU5QUY3QkYzQkYwOUVBNzY2QURF RjEzMjlCNTAeFw0yNDEyMzEwMzU0MTlaFw0yNTEyMzAwMzU5MTlaMDMxMTAvBgNV BAMTKDk2QzlDMDI5RjcyODVBNDQ5NzBDRTMzQ0JFNjg5NDUwOEVFNzk2MzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC19tXELGwwBdmqMWfRk3Co/XK+ bQcHnUggewH0GbAZP/TYCiMj63sBTk+V6yIdSVEXEIaZHJatlyAAskzSvhE2fbVf CukbYXl34TSLwTO02PgUvJQd7fZaXDSFNNLbKddsy9v4JIvmdnUaSXsZ5sqI4l2Y GiVwGieBHVu8OHe3rafaHh+d98t2SyT3Sl/2jBKBoM4xG0cL3YW3o6TV5riHMQOu Q5LgsFHuu1ZDoKEnDa4WHJ/zTIGRpm0GP+O0QMseNhfp7Pq9UD/HZbO6OxyrtGqZ D1DkerGhN9ziGm1HifBRqYw5SdHr4/mLlFP2egfeZkp4wKXmLZnwsSOB0PuBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUlsnAKfcoWkSXDOM8vmiUUI7nljEwHwYDVR0j BBgwFoAUMZTf1mRXNZr3vzvwnqdmre8TKbUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y M2JhMDI0Yi04N2YyLTRlZGQtODlmZi1hNGZjYTcwMDhjMzYvMC8zMTk0REZENjY0 NTczNTlBRjdCRjNCRjA5RUE3NjZBREVGMTMyOUI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzE5NERGRDY2NDU3MzU5QUY3QkYzQkYwOUVBNzY2QURFRjEz MjlCNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIzYmEwMjRiLTg3ZjItNGVkZC04 OWZmLWE0ZmNhNzAwOGMzNi8wLzMxMzAzMzJlMzEzNjMyMmUzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6IjMA0GCSqG SIb3DQEBCwUAA4IBAQAlBLRaLviFNQOnCT7yPYG9HPNV8HiB4dk/J4/6zyHjH4wd 0cZ6nDOAIrC1/YYufkgbLKuQRe/U6tND+SoU7zPGhJ2qNI/zK0jqmtPRB7lPVTSi xGFH1S76BwApLtecsnUtX7+/SmjUeaji5NaawIxzdByt1ws2pQrySk3icJZL41R9 i0BJteMxIt+cqLKRs2M6dI/48GHWQhvIS7DIPTXm8A+jpYG+D/qzHn6wQJWEAwkb BVelKQNsO78BXXTeimypTjxt4DTDos5mA8SPGkGZi97mL/AAF/n8PqiiGchH6Z4T emcSrXuV+/DpidhT/B6XaTVvWgPt/z2oOaLjltlP -----END CERTIFICATE-----Generated at Sat Feb 22 04:28:37 2025 by rpki-client