$ rpki-client -vvf repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/3130332e37352e3133372e302f32342d3234203d3e20313530353233.roa File: 3130332e37352e3133372e302f32342d3234203d3e20313530353233.roa (raw, json) Hash identifier: Qa1udsECIRHsg1OUvc+qS4VEGfZjWwfHSm/JuoyHhYg= Subject key identifier: 3E:DB:5F:9C:34:C4:8B:72:72:D8:11:D0:52:23:6A:B2:4C:82:6D:19 Certificate issuer: /CN=D0F79D826E43EAB61A7A834E6A2777C5EC821FFD Certificate serial: 0646ABF57AA695C2FFDAC0CF962D3A1D293C1775 Authority key identifier: D0:F7:9D:82:6E:43:EA:B6:1A:7A:83:4E:6A:27:77:C5:EC:82:1F:FD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/3130332e37352e3133372e302f32342d3234203d3e20313530353233.roa Signing time: Mon 02 Dec 2024 17:00:01 +0000 ROA not before: Mon 02 Dec 2024 16:55:01 +0000 ROA not after: Mon 01 Dec 2025 17:00:01 +0000 asID: 150523 IP address blocks: 103.75.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Apr 2025 23:54:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:46:ab:f5:7a:a6:95:c2:ff:da:c0:cf:96:2d:3a:1d:29:3c:17:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0F79D826E43EAB61A7A834E6A2777C5EC821FFD Validity Not Before: Dec 2 16:55:01 2024 GMT Not After : Dec 1 17:00:01 2025 GMT Subject: CN=3EDB5F9C34C48B7272D811D052236AB24C826D19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0c:92:bb:9c:df:fc:7b:b0:50:1f:81:9c:2d: c1:a6:04:11:6c:41:c9:a5:f9:90:1b:ab:7b:34:56: 25:7e:c1:13:51:76:74:40:53:ea:a8:4b:77:91:6d: 21:da:a5:e3:58:66:1d:27:fe:82:e9:ce:f7:2d:90: c8:18:bb:38:5d:37:df:6c:5e:10:63:a7:04:07:b0: c3:c7:15:bb:c3:67:e0:af:45:2d:40:d8:86:7b:be: 60:2f:db:00:6d:64:6c:a3:0f:e8:f2:15:f0:6f:33: c5:e5:9a:ba:7c:6f:27:7e:04:16:8b:5b:11:c9:59: 4a:a2:8a:38:84:f3:1d:61:36:8d:fe:88:fe:f6:82: fb:1f:ae:29:d3:02:26:59:12:a2:dd:87:0c:bd:35: af:ca:cc:27:33:af:dc:43:01:d9:80:11:f7:e6:63: 10:02:16:73:63:3c:51:99:21:68:2d:0a:ff:5f:1d: a5:e7:90:a6:89:3f:19:0b:25:f5:f3:08:f7:e7:cb: 8a:9e:a9:a3:d9:6a:ee:9e:d3:93:4a:ee:15:b9:3e: 86:99:07:5e:6b:bf:fd:8f:10:66:d5:fa:78:5e:74: 18:aa:de:64:f2:ee:ba:af:38:56:6b:ca:cd:c4:8b: b5:59:21:d6:5a:5f:b9:86:a8:fa:66:79:89:68:d5: 3b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:DB:5F:9C:34:C4:8B:72:72:D8:11:D0:52:23:6A:B2:4C:82:6D:19 X509v3 Authority Key Identifier: keyid:D0:F7:9D:82:6E:43:EA:B6:1A:7A:83:4E:6A:27:77:C5:EC:82:1F:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/3130332e37352e3133372e302f32342d3234203d3e20313530353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.75.137.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:19:8e:12:fa:30:94:a1:07:37:7c:e6:a7:59:59:1e:50:94: 6f:f2:43:e7:2b:87:80:b7:e0:69:e1:18:08:41:03:2c:4c:fd: e2:82:d9:a1:7b:74:19:dd:f9:39:53:1b:ca:b3:ba:5e:a1:16: 10:87:cb:7b:3f:f0:b6:14:6f:92:c2:dc:1e:21:79:2a:5a:0e: 21:e3:10:9e:f9:24:e2:68:e6:24:03:80:19:cd:6a:df:5e:c5: a6:dc:17:e9:e4:9f:2c:cc:54:f4:33:5e:12:0f:eb:c6:96:fa: de:eb:d9:65:d9:2a:d2:09:71:f5:09:c8:6c:6b:bb:06:2d:14: 8b:1f:4a:d7:aa:a5:cf:5f:6b:03:c8:cf:64:41:75:d7:15:e9: 21:e6:bf:36:66:a7:79:44:dd:3c:83:7e:f8:86:89:88:1e:95: c6:41:03:85:63:7b:b4:c4:9c:c9:66:81:21:1e:0f:cd:b1:2b: d6:ae:ed:0a:cf:d5:18:fe:44:82:d3:bf:f4:44:34:33:89:16: d8:f1:15:3f:10:eb:52:d1:6e:33:d3:64:4f:c8:a8:8b:01:cc: 2e:37:da:a3:6d:57:5d:38:7e:cf:af:be:23:3b:0b:de:f7:6d: bf:82:d5:c1:f3:de:55:b0:fc:93:b5:c6:85:f8:eb:03:3a:f1: bc:86:ff:bf -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBkar9XqmlcL/2sDPli06HSk8F3UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3QzVF QzgyMUZGRDAeFw0yNDEyMDIxNjU1MDFaFw0yNTEyMDExNzAwMDFaMDMxMTAvBgNV BAMTKDNFREI1RjlDMzRDNDhCNzI3MkQ4MTFEMDUyMjM2QUIyNEM4MjZEMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyDJK7nN/8e7BQH4GcLcGmBBFs Qcml+ZAbq3s0ViV+wRNRdnRAU+qoS3eRbSHapeNYZh0n/oLpzvctkMgYuzhdN99s XhBjpwQHsMPHFbvDZ+CvRS1A2IZ7vmAv2wBtZGyjD+jyFfBvM8Xlmrp8byd+BBaL WxHJWUqiijiE8x1hNo3+iP72gvsfrinTAiZZEqLdhwy9Na/KzCczr9xDAdmAEffm YxACFnNjPFGZIWgtCv9fHaXnkKaJPxkLJfXzCPfny4qeqaPZau6e05NK7hW5PoaZ B15rv/2PEGbV+nhedBiq3mTy7rqvOFZrys3Ei7VZIdZaX7mGqPpmeYlo1TthAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPttfnDTEi3Jy2BHQUiNqskyCbRkwHwYDVR0j BBgwFoAU0Pedgm5D6rYaeoNOaid3xeyCH/0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODQ2MzI4NS03YzI4LTQzNWEtODJiYi1mY2MzMmQ1ODAyMGUvMC9EMEY3OUQ4MjZF NDNFQUI2MUE3QTgzNEU2QTI3NzdDNUVDODIxRkZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3QzVFQzgy MUZGRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI4NDYzMjg1LTdjMjgtNDM1YS04 MmJiLWZjYzMyZDU4MDIwZS8wLzMxMzAzMzJlMzczNTJlMzEzMzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzUzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0uJMA0GCSqG SIb3DQEBCwUAA4IBAQAdGY4S+jCUoQc3fOanWVkeUJRv8kPnK4eAt+Bp4RgIQQMs TP3igtmhe3QZ3fk5UxvKs7peoRYQh8t7P/C2FG+SwtweIXkqWg4h4xCe+STiaOYk A4AZzWrfXsWm3Bfp5J8szFT0M14SD+vGlvre69ll2SrSCXH1Cchsa7sGLRSLH0rX qqXPX2sDyM9kQXXXFekh5r82Zqd5RN08g374homIHpXGQQOFY3u0xJzJZoEhHg/N sSvWru0Kz9UY/kSC07/0RDQziRbY8RU/EOtS0W4z02RPyKiLAcwuN9qjbVddOH7P r74jOwve922/gtXB895VsPyTtcaF+OsDOvG8hv+/ -----END CERTIFICATE-----Generated at Wed Apr 23 03:53:30 2025 by rpki-client