$ rpki-client -vvf repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/3130332e3139312e3135322e302f32342d3234203d3e203338353234.roa File: 3130332e3139312e3135322e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: WAM8LzXIJx5krdWc3hy1Oy3kMn09ylHcJLe1/WPk6IA= Subject key identifier: 9D:E8:4F:68:37:8F:69:58:C7:A5:5A:2F:00:79:DB:B9:57:8B:82:47 Certificate issuer: /CN=28ABF8522A43CF7CC7257905A5BA3E50431F0F47 Certificate serial: 2EC758E3799C5C99C272E2F1F8283970702598DE Authority key identifier: 28:AB:F8:52:2A:43:CF:7C:C7:25:79:05:A5:BA:3E:50:43:1F:0F:47 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/3130332e3139312e3135322e302f32342d3234203d3e203338353234.roa Signing time: Tue 25 Jun 2024 11:00:01 +0000 ROA not before: Tue 25 Jun 2024 10:55:01 +0000 ROA not after: Tue 24 Jun 2025 11:00:01 +0000 asID: 38524 IP address blocks: 103.191.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.crl rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 21:54:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:c7:58:e3:79:9c:5c:99:c2:72:e2:f1:f8:28:39:70:70:25:98:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28ABF8522A43CF7CC7257905A5BA3E50431F0F47 Validity Not Before: Jun 25 10:55:01 2024 GMT Not After : Jun 24 11:00:01 2025 GMT Subject: CN=9DE84F68378F6958C7A55A2F0079DBB9578B8247 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:25:0d:43:4f:ea:24:87:c8:d2:45:8f:6c:3b: f8:d8:a2:5a:74:91:a4:3c:9a:d4:f5:ea:13:8d:c8: 9c:a5:d7:29:32:a5:6d:cb:73:93:41:16:63:f6:fb: c4:80:0d:32:a7:29:4c:75:91:a5:18:5f:db:a7:54: 13:8c:de:2d:ac:fc:1f:dd:b8:8e:b6:96:c0:2c:7f: 54:81:60:f8:93:79:4c:ea:62:4e:d4:27:12:18:f1: ce:af:1e:ed:23:0a:3a:9b:6a:82:00:23:7f:74:62: 49:33:82:94:80:c8:e0:fb:5a:5d:f5:b7:b3:da:f8: 95:5c:15:ee:42:e9:41:f3:83:50:1b:1f:f9:09:92: ac:39:93:e9:86:7e:7f:5c:70:4b:0e:a3:44:14:be: c2:da:1a:ce:96:a4:b6:42:29:49:e5:5f:05:8e:e2: b6:53:bf:14:b5:d4:dd:af:ae:79:d4:53:26:b9:53: e1:59:dc:15:a6:38:e4:08:d9:45:d6:a8:9e:1f:bb: 06:aa:63:08:14:98:3d:91:91:9b:d5:8d:e8:f6:6a: 35:f2:75:e4:0c:c7:c2:f0:38:09:5c:45:4f:2e:8e: 66:da:6d:db:d7:e4:eb:66:68:90:c0:51:f2:1e:80: e2:4f:e5:90:71:d6:8a:ba:db:3e:8d:70:b8:86:9b: ba:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:E8:4F:68:37:8F:69:58:C7:A5:5A:2F:00:79:DB:B9:57:8B:82:47 X509v3 Authority Key Identifier: keyid:28:AB:F8:52:2A:43:CF:7C:C7:25:79:05:A5:BA:3E:50:43:1F:0F:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/3130332e3139312e3135322e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.152.0/24 Signature Algorithm: sha256WithRSAEncryption 85:1c:6f:8c:e7:a0:96:c4:19:3d:57:1d:47:c6:19:da:32:26: a7:b2:24:dc:7c:57:d1:33:64:46:c8:6d:23:f9:4e:45:53:fc: 88:b2:dc:c1:8c:26:1b:39:bc:e8:cb:63:e2:7b:d2:ce:9a:7c: eb:f0:d6:11:2a:af:d5:00:59:e0:16:af:ad:75:f7:91:6e:57: 76:38:31:af:7d:52:27:57:39:a1:75:26:71:39:36:4b:b9:b6: fc:93:be:ba:17:12:59:07:78:70:dc:45:f3:ff:fd:9f:86:76: 7d:20:83:fe:20:47:25:d6:ca:5d:a1:c1:c7:95:48:ad:86:94: 72:80:1f:7d:5a:f6:9c:7e:94:6e:99:53:13:9d:d6:fa:52:e9: c2:d0:46:96:ef:b9:5d:d6:5e:07:14:af:ef:87:77:c4:45:2c: 0f:c5:a0:bb:c8:8c:d4:b4:3a:37:0c:7e:68:7c:78:17:78:0c: d4:33:0b:b7:e6:73:47:e6:68:a5:f9:19:67:1c:92:1e:52:20: 25:9d:5f:a8:fc:60:0a:f1:80:51:40:64:ff:70:ba:3a:2c:45: 82:6e:57:68:5b:ba:f6:8c:37:23:5b:29:db:4d:5d:3a:35:37: e3:c3:43:b0:f4:9e:ab:fd:c1:82:4e:90:d3:5e:10:3b:cc:e9: cd:3e:03:60 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULsdY43mcXJnCcuLx+Cg5cHAlmN4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjhBQkY4NTIyQTQzQ0Y3Q0M3MjU3OTA1QTVCQTNFNTA0 MzFGMEY0NzAeFw0yNDA2MjUxMDU1MDFaFw0yNTA2MjQxMTAwMDFaMDMxMTAvBgNV BAMTKDlERTg0RjY4Mzc4RjY5NThDN0E1NUEyRjAwNzlEQkI5NTc4QjgyNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbJQ1DT+okh8jSRY9sO/jYolp0 kaQ8mtT16hONyJyl1ykypW3Lc5NBFmP2+8SADTKnKUx1kaUYX9unVBOM3i2s/B/d uI62lsAsf1SBYPiTeUzqYk7UJxIY8c6vHu0jCjqbaoIAI390YkkzgpSAyOD7Wl31 t7Pa+JVcFe5C6UHzg1AbH/kJkqw5k+mGfn9ccEsOo0QUvsLaGs6WpLZCKUnlXwWO 4rZTvxS11N2vrnnUUya5U+FZ3BWmOOQI2UXWqJ4fuwaqYwgUmD2RkZvVjej2ajXy deQMx8LwOAlcRU8ujmbabdvX5OtmaJDAUfIegOJP5ZBx1oq62z6NcLiGm7qxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnehPaDePaVjHpVovAHnbuVeLgkcwHwYDVR0j BBgwFoAUKKv4UipDz3zHJXkFpbo+UEMfD0cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmE2Y2ExMi1iMjg3LTRhYzctODdiOC02Y2Q3MzM1M2U2N2YvMC8yOEFCRjg1MjJB NDNDRjdDQzcyNTc5MDVBNUJBM0U1MDQzMUYwRjQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjhBQkY4NTIyQTQzQ0Y3Q0M3MjU3OTA1QTVCQTNFNTA0MzFG MEY0Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2YTZjYTEyLWIyODctNGFjNy04 N2I4LTZjZDczMzUzZTY3Zi8wLzMxMzAzMzJlMzEzOTMxMmUzMTM1MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7+YMA0GCSqG SIb3DQEBCwUAA4IBAQCFHG+M56CWxBk9Vx1HxhnaMiansiTcfFfRM2RGyG0j+U5F U/yIstzBjCYbObzoy2Pie9LOmnzr8NYRKq/VAFngFq+tdfeRbld2ODGvfVInVzmh dSZxOTZLubb8k766FxJZB3hw3EXz//2fhnZ9IIP+IEcl1spdocHHlUithpRygB99 WvacfpRumVMTndb6UunC0EaW77ld1l4HFK/vh3fERSwPxaC7yIzUtDo3DH5ofHgX eAzUMwu35nNH5mil+RlnHJIeUiAlnV+o/GAK8YBRQGT/cLo6LEWCbldoW7r2jDcj WynbTV06NTfjw0Ow9J6r/cGCTpDTXhA7zOnNPgNg -----END CERTIFICATE-----Generated at Tue Mar 11 05:04:19 2025 by rpki-client