$ rpki-client -vvf repo-rpki.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/3130332e3234352e3132332e302f32342d3234203d3e203436303536.roa File: 3130332e3234352e3132332e302f32342d3234203d3e203436303536.roa (raw, json) Hash identifier: d0ghX40bSMS1dMb8WA83TWeR7JuJ1eSw0dLWGuACjTw= Subject key identifier: 55:2E:2E:9A:A6:2D:24:5B:CC:E4:ED:88:FE:79:D4:25:1B:01:C6:D0 Certificate issuer: /CN=AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06 Certificate serial: 280D8F725E31EA5515C200C3A47AE673172E5F82 Authority key identifier: AB:58:72:11:82:B4:EA:A8:FE:CD:4A:D8:80:8C:EE:F5:CD:DD:1B:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/3130332e3234352e3132332e302f32342d3234203d3e203436303536.roa Signing time: Mon 01 Jul 2024 01:06:03 +0000 ROA not before: Mon 01 Jul 2024 01:01:03 +0000 ROA not after: Mon 30 Jun 2025 01:06:03 +0000 asID: 46056 IP address blocks: 103.245.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06.crl rsync://repo-rpki.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 02:30:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:0d:8f:72:5e:31:ea:55:15:c2:00:c3:a4:7a:e6:73:17:2e:5f:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06 Validity Not Before: Jul 1 01:01:03 2024 GMT Not After : Jun 30 01:06:03 2025 GMT Subject: CN=552E2E9AA62D245BCCE4ED88FE79D4251B01C6D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:9e:46:a4:23:57:fd:5e:9b:7c:dd:32:e8:d0: 43:77:30:ab:d0:63:4e:27:96:12:71:b5:92:0c:27: 1c:df:0e:12:0a:36:bf:c4:ae:2a:1f:90:a4:14:11: 5c:45:61:0d:82:e7:ad:95:db:63:be:62:42:42:b4: 9e:f5:24:1f:b9:58:7f:f2:f2:58:9a:e0:a0:5e:dd: ce:45:a1:e0:f0:0d:c7:01:7d:e5:0d:ef:65:ca:6e: 32:60:2f:a0:d7:8e:72:6c:97:08:89:a7:0b:d6:be: ac:30:95:92:22:75:ce:4e:39:97:fc:8c:e0:2c:fc: 35:47:eb:72:c1:3f:dd:bd:34:e0:ac:c4:44:6e:77: f8:72:da:3a:6a:71:74:f6:90:5f:76:b3:3d:17:9a: 63:6e:0d:93:8f:c1:15:30:f1:11:37:b4:14:19:4c: 7a:66:07:eb:c7:27:c5:f8:68:b6:78:ad:e3:73:b7: ed:42:4e:0c:6b:c9:6c:44:5c:f7:09:9b:4c:70:a5: 64:f1:ae:08:1c:01:73:34:ce:59:85:37:91:d5:9e: db:0e:60:4c:d1:ce:bd:ae:30:0c:26:8c:1f:03:ce: de:46:2d:61:78:e9:9a:44:a6:61:b3:d8:43:7e:8b: da:fc:bf:da:84:3c:b2:60:97:24:02:07:dd:44:fc: ed:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:2E:2E:9A:A6:2D:24:5B:CC:E4:ED:88:FE:79:D4:25:1B:01:C6:D0 X509v3 Authority Key Identifier: keyid:AB:58:72:11:82:B4:EA:A8:FE:CD:4A:D8:80:8C:EE:F5:CD:DD:1B:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/3130332e3234352e3132332e302f32342d3234203d3e203436303536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.245.123.0/24 Signature Algorithm: sha256WithRSAEncryption c0:2a:54:3a:a0:70:2d:97:48:19:57:2d:3b:ea:9e:e1:49:90: ed:7c:ba:b2:9c:6e:7f:6d:22:da:35:27:35:fa:a3:34:95:85: fc:b6:10:10:0f:61:0c:d4:de:03:4b:da:71:97:ed:5f:71:03: 74:83:20:61:d2:01:37:81:d4:d1:1c:09:85:e4:9a:a1:d4:28: c3:06:57:ab:cd:d4:01:3d:3e:27:db:d8:cc:d3:a5:cc:16:bf: 4c:6a:31:46:e7:77:a8:f6:7a:6a:f6:9d:c9:ae:a1:90:2c:43: df:c0:b5:e2:b1:5d:5d:52:f9:bd:1b:86:68:2b:4c:1c:07:08: 86:8d:dd:44:4f:1c:a0:4f:34:d8:83:3a:92:06:72:15:22:f1: 4e:2f:3f:0d:a4:3f:60:0d:5f:f4:38:e3:dc:06:aa:9f:50:75: 47:24:c2:81:51:46:0b:15:4b:ac:ff:66:ed:eb:72:c6:38:a7: 10:8b:74:73:d0:27:73:6d:b0:1a:21:dc:95:f3:12:7b:4d:b6: cd:69:93:da:20:22:b6:dd:19:8b:41:8b:99:2c:2c:7e:86:08: cb:aa:9f:6d:ab:88:ca:22:06:f1:4d:88:cc:45:d3:53:78:75: f1:7f:dc:f7:7e:39:8a:d6:c4:17:b1:5b:4a:2c:d5:b0:52:c0: a3:a2:d2:65 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKA2Pcl4x6lUVwgDDpHrmcxcuX4IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUI1ODcyMTE4MkI0RUFBOEZFQ0Q0QUQ4ODA4Q0VFRjVD REREMUIwNjAeFw0yNDA3MDEwMTAxMDNaFw0yNTA2MzAwMTA2MDNaMDMxMTAvBgNV BAMTKDU1MkUyRTlBQTYyRDI0NUJDQ0U0RUQ4OEZFNzlENDI1MUIwMUM2RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbnkakI1f9Xpt83TLo0EN3MKvQ Y04nlhJxtZIMJxzfDhIKNr/EriofkKQUEVxFYQ2C562V22O+YkJCtJ71JB+5WH/y 8lia4KBe3c5FoeDwDccBfeUN72XKbjJgL6DXjnJslwiJpwvWvqwwlZIidc5OOZf8 jOAs/DVH63LBP929NOCsxERud/hy2jpqcXT2kF92sz0XmmNuDZOPwRUw8RE3tBQZ THpmB+vHJ8X4aLZ4reNzt+1CTgxryWxEXPcJm0xwpWTxrggcAXM0zlmFN5HVntsO YEzRzr2uMAwmjB8Dzt5GLWF46ZpEpmGz2EN+i9r8v9qEPLJglyQCB91E/O2rAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVS4umqYtJFvM5O2I/nnUJRsBxtAwHwYDVR0j BBgwFoAUq1hyEYK06qj+zUrYgIzu9c3dGwYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDEwZmE0My0wYmUzLTQ3MWEtOWMyMC04MTA0NjI5MWNhMTEvMC9BQjU4NzIxMTgy QjRFQUE4RkVDRDRBRDg4MDhDRUVGNUNEREQxQjA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUI1ODcyMTE4MkI0RUFBOEZFQ0Q0QUQ4ODA4Q0VFRjVDRERE MUIwNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0MTBmYTQzLTBiZTMtNDcxYS05 YzIwLTgxMDQ2MjkxY2ExMS8wLzMxMzAzMzJlMzIzNDM1MmUzMTMyMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/V7MA0GCSqG SIb3DQEBCwUAA4IBAQDAKlQ6oHAtl0gZVy076p7hSZDtfLqynG5/bSLaNSc1+qM0 lYX8thAQD2EM1N4DS9pxl+1fcQN0gyBh0gE3gdTRHAmF5Jqh1CjDBlerzdQBPT4n 29jM06XMFr9MajFG53eo9npq9p3JrqGQLEPfwLXisV1dUvm9G4ZoK0wcBwiGjd1E TxygTzTYgzqSBnIVIvFOLz8NpD9gDV/0OOPcBqqfUHVHJMKBUUYLFUus/2bt63LG OKcQi3Rz0CdzbbAaIdyV8xJ7TbbNaZPaICK23RmLQYuZLCx+hgjLqp9tq4jKIgbx TYjMRdNTeHXxf9z3fjmK1sQXsVtKLNWwUsCjotJl -----END CERTIFICATE-----Generated at Fri Feb 21 11:07:44 2025 by rpki-client