$ rpki-client -vvf repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/3130332e3138312e3235322e302f32332d3234203d3e20313439333838.roa File: 3130332e3138312e3235322e302f32332d3234203d3e20313439333838.roa (raw, json) Hash identifier: rpmDubCh8ghWxGZsNQF0QQPtIiBo6ONgFBKC1N35ALo= Subject key identifier: AB:79:78:1B:19:96:56:C5:DD:CA:0E:7A:51:63:A7:F3:2E:E1:A4:EE Certificate issuer: /CN=D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14 Certificate serial: 4004294082A1ECDC6AA069F4ABA2286596E1F835 Authority key identifier: D2:9E:D5:B5:FC:4D:BF:FE:44:7D:DD:02:2C:0D:01:EB:00:BA:8F:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/3130332e3138312e3235322e302f32332d3234203d3e20313439333838.roa Signing time: Thu 05 Dec 2024 09:00:01 +0000 ROA not before: Thu 05 Dec 2024 08:55:01 +0000 ROA not after: Thu 04 Dec 2025 09:00:01 +0000 asID: 149388 IP address blocks: 103.181.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.crl rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 10:42:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:04:29:40:82:a1:ec:dc:6a:a0:69:f4:ab:a2:28:65:96:e1:f8:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14 Validity Not Before: Dec 5 08:55:01 2024 GMT Not After : Dec 4 09:00:01 2025 GMT Subject: CN=AB79781B199656C5DDCA0E7A5163A7F32EE1A4EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:9f:2a:ee:70:28:70:e6:16:61:91:39:ff:e7: fd:b7:95:38:64:a3:46:6d:3d:59:90:80:50:2d:9b: 72:c1:a6:46:e9:ff:df:1d:10:db:1e:e0:de:a9:cb: 7f:c2:ba:7d:17:e8:9f:0c:66:6e:1f:49:e5:be:da: 03:e1:08:f3:34:37:51:a9:23:99:e5:f6:f9:4f:d0: 40:0a:5f:78:72:62:3f:a2:6c:cb:26:d5:aa:6a:48: 20:15:c0:16:ab:25:ce:ff:47:eb:d1:4c:25:ed:a1: b3:46:d0:d6:d0:80:65:bb:23:48:f6:b9:6c:91:9d: f5:2a:91:e0:f1:6d:f8:b5:70:3f:f8:81:10:b4:08: 70:42:8e:35:68:fb:52:eb:57:0a:52:d8:18:22:93: 8c:80:1b:6b:af:91:75:06:b7:86:6e:b5:95:c5:17: 15:a1:3d:fb:b0:25:cf:24:56:e8:6f:63:87:99:5b: d5:c8:9b:bc:d5:ee:8a:28:11:4c:2d:62:a2:3b:25: 3c:c7:76:5c:4c:29:ac:89:fb:2c:1d:0e:cc:a4:4f: 28:c5:9f:f9:39:44:3a:5d:f4:5e:79:4e:ba:cb:2a: 98:0e:1e:ba:01:88:9d:d5:8e:72:ea:4c:c7:08:bc: 63:e3:3a:17:f5:9d:4d:0a:08:ec:19:89:7f:67:b4: ed:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:79:78:1B:19:96:56:C5:DD:CA:0E:7A:51:63:A7:F3:2E:E1:A4:EE X509v3 Authority Key Identifier: keyid:D2:9E:D5:B5:FC:4D:BF:FE:44:7D:DD:02:2C:0D:01:EB:00:BA:8F:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/3130332e3138312e3235322e302f32332d3234203d3e20313439333838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.181.252.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:7c:ed:7d:d0:a3:84:0e:4b:95:12:d1:67:e1:7a:c0:9d:71: 66:ad:b3:ba:41:df:d4:fd:88:f4:fb:cf:3a:57:29:fc:9b:f8: 45:8e:5e:7c:69:28:51:10:89:ea:77:28:7b:97:45:b0:59:e1: e9:7c:68:61:8f:87:1d:9d:d5:34:88:35:4d:67:13:8b:2e:a3: 68:2c:06:ec:e0:43:6f:0f:50:d4:cb:08:4a:8c:d8:a7:c5:8e: ca:36:cb:76:13:cc:84:55:ec:4a:95:b9:72:15:8a:75:83:c8: c9:63:61:f0:32:88:78:61:ef:41:0d:38:8f:d8:7e:dc:be:3a: 78:73:43:97:0a:4e:43:4b:e1:86:dc:f6:45:b0:aa:89:0f:34: 29:cd:14:bf:4e:48:00:00:64:e5:38:fc:ee:0e:4a:cc:0b:28: 67:1d:67:41:c0:43:b7:fd:d1:eb:52:7a:dc:13:fb:72:03:a5: 48:b1:71:38:18:f6:dd:ae:39:ba:08:a1:5b:a6:e8:fb:83:1d: df:36:3a:6b:44:2c:56:eb:a0:4f:cf:c6:76:55:ce:ea:d5:6b: fb:9e:4d:92:ec:6e:4a:07:eb:6e:c5:2e:5d:21:62:bd:df:7b: a4:bd:72:5a:4e:41:8d:d1:ba:83:7a:c3:76:95:01:32:08:05: cf:4e:51:7b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQAQpQIKh7NxqoGn0q6IoZZbh+DUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI5RUQ1QjVGQzREQkZGRTQ0N0RERDAyMkMwRDAxRUIw MEJBOEYxNDAeFw0yNDEyMDUwODU1MDFaFw0yNTEyMDQwOTAwMDFaMDMxMTAvBgNV BAMTKEFCNzk3ODFCMTk5NjU2QzVERENBMEU3QTUxNjNBN0YzMkVFMUE0RUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDenyrucChw5hZhkTn/5/23lThk o0ZtPVmQgFAtm3LBpkbp/98dENse4N6py3/Cun0X6J8MZm4fSeW+2gPhCPM0N1Gp I5nl9vlP0EAKX3hyYj+ibMsm1apqSCAVwBarJc7/R+vRTCXtobNG0NbQgGW7I0j2 uWyRnfUqkeDxbfi1cD/4gRC0CHBCjjVo+1LrVwpS2Bgik4yAG2uvkXUGt4ZutZXF FxWhPfuwJc8kVuhvY4eZW9XIm7zV7oooEUwtYqI7JTzHdlxMKayJ+ywdDsykTyjF n/k5RDpd9F55TrrLKpgOHroBiJ3VjnLqTMcIvGPjOhf1nU0KCOwZiX9ntO1ZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUq3l4GxmWVsXdyg56UWOn8y7hpO4wHwYDVR0j BBgwFoAU0p7VtfxNv/5Efd0CLA0B6wC6jxQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODUyNDNlNS1jNjYwLTQxMTItYmRjMy01OTQ0MTJkZWRjNGQvMC9EMjlFRDVCNUZD NERCRkZFNDQ3REREMDIyQzBEMDFFQjAwQkE4RjE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI5RUQ1QjVGQzREQkZGRTQ0N0RERDAyMkMwRDAxRUIwMEJB OEYxNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI4NTI0M2U1LWM2NjAtNDExMi1i ZGMzLTU5NDQxMmRlZGM0ZC8wLzMxMzAzMzJlMzEzODMxMmUzMjM1MzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzkzMzM4Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFntfwwDQYJ KoZIhvcNAQELBQADggEBAEx87X3Qo4QOS5US0WfhesCdcWats7pB39T9iPT7zzpX Kfyb+EWOXnxpKFEQiep3KHuXRbBZ4el8aGGPhx2d1TSINU1nE4suo2gsBuzgQ28P UNTLCEqM2KfFjso2y3YTzIRV7EqVuXIVinWDyMljYfAyiHhh70ENOI/Yfty+Onhz Q5cKTkNL4Ybc9kWwqokPNCnNFL9OSAAAZOU4/O4OSswLKGcdZ0HAQ7f90etSetwT +3IDpUixcTgY9t2uOboIoVum6PuDHd82OmtELFbroE/PxnZVzurVa/ueTZLsbkoH 627FLl0hYr3fe6S9clpOQY3RuoN6w3aVATIIBc9OUXs= -----END CERTIFICATE-----Generated at Thu Apr 10 14:38:09 2025 by rpki-client