$ rpki-client -vvf repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/3130332e3136392e34302e302f32342d3234203d3e20313432333332.roa File: 3130332e3136392e34302e302f32342d3234203d3e20313432333332.roa (raw, json) Hash identifier: nx/juUy7/tZki2r/tMlastEiMjYSJvx7cPICFmmbvLQ= Subject key identifier: 4D:1F:CC:89:B6:EB:F2:2F:66:FC:96:BC:23:B7:36:61:3B:3D:38:F8 Certificate issuer: /CN=D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7 Certificate serial: 68030AFC36F40C082725DCAA426AC5520D42561A Authority key identifier: D5:8B:CD:47:A6:26:3C:C3:A1:2A:BD:E6:E3:A2:AD:28:AF:8B:DE:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/3130332e3136392e34302e302f32342d3234203d3e20313432333332.roa Signing time: Fri 09 Aug 2024 10:02:20 +0000 ROA not before: Fri 09 Aug 2024 09:57:20 +0000 ROA not after: Fri 08 Aug 2025 10:02:20 +0000 asID: 142332 IP address blocks: 103.169.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.crl rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Feb 2025 08:25:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:03:0a:fc:36:f4:0c:08:27:25:dc:aa:42:6a:c5:52:0d:42:56:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7 Validity Not Before: Aug 9 09:57:20 2024 GMT Not After : Aug 8 10:02:20 2025 GMT Subject: CN=4D1FCC89B6EBF22F66FC96BC23B736613B3D38F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:06:1c:0f:54:46:09:ee:f4:a2:4d:2e:c9:e6: e7:f5:95:ae:f4:30:bb:58:13:31:ef:c4:2d:93:65: 04:a1:e3:94:0e:a9:b9:43:81:fe:70:af:f4:71:48: 5d:fc:29:8c:8f:20:89:96:b4:9d:2f:83:6a:87:84: 5a:52:64:30:49:1a:8c:e7:ec:f0:cd:c6:a2:0d:69: 92:d8:bc:b4:5e:68:f7:13:7c:d7:fa:85:23:78:18: b5:6c:17:4d:00:be:c4:f8:98:00:ac:e0:85:09:b1: 4c:01:97:76:7f:46:8b:c2:65:51:f3:ce:5d:e7:8d: ee:a6:8b:67:6f:cb:f7:ef:ed:d1:ff:d8:f2:3c:c4: dc:45:09:a9:23:c4:04:18:99:dc:f7:87:81:75:00: bd:c9:2c:14:48:7e:f9:da:48:55:5c:b9:e6:11:e3: 43:20:5f:18:b1:8e:49:87:18:db:33:a6:8b:e9:0e: 8d:88:86:c6:67:fb:d0:de:c5:9a:c8:f5:78:2d:cd: fc:22:51:4d:ef:d0:b1:8f:a8:9e:5b:ee:b0:10:a4: dd:b1:4a:f8:69:f9:09:54:38:92:1e:43:64:b8:fb: 08:35:9b:2f:67:ca:74:4c:c3:88:99:18:b4:98:a0: 43:b0:22:d3:c5:14:54:96:ac:3a:75:44:02:f8:e3: 4b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:1F:CC:89:B6:EB:F2:2F:66:FC:96:BC:23:B7:36:61:3B:3D:38:F8 X509v3 Authority Key Identifier: keyid:D5:8B:CD:47:A6:26:3C:C3:A1:2A:BD:E6:E3:A2:AD:28:AF:8B:DE:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/3130332e3136392e34302e302f32342d3234203d3e20313432333332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.40.0/24 Signature Algorithm: sha256WithRSAEncryption 80:99:b6:50:2c:8c:64:b7:08:87:e3:85:29:71:b0:c9:ed:0e: 46:7f:54:0e:19:7c:68:83:33:55:37:e6:05:5d:09:c6:0e:b5: 27:4a:c4:dc:f9:eb:22:28:1c:33:23:04:b8:8e:a0:53:b4:d7: e9:0e:16:22:cd:9c:6d:13:d4:fe:99:09:6c:94:cd:95:4a:d8: 37:9d:0d:ee:4d:ed:d1:ac:ce:43:41:a0:e8:fa:d9:0a:bd:8e: 44:24:6f:9f:14:59:ce:61:e0:d2:a7:b1:c1:38:b0:45:af:67: 37:24:7f:fb:40:39:47:1d:d4:ba:00:a1:1c:7b:2e:e3:db:fe: 17:34:98:f0:e1:29:8b:94:0f:b4:fa:0a:de:35:dc:33:de:cb: 05:9e:fd:6c:4a:08:03:25:ff:94:b1:da:dc:4a:5e:d5:fd:71: df:31:42:bf:8b:c8:a3:5a:09:f7:16:24:8d:3b:17:0d:ea:c9: 34:7a:c5:cd:4c:0c:4d:a1:b7:2f:b2:32:92:11:da:7a:c3:e6: 7b:42:87:91:19:b5:13:98:bd:95:42:53:97:00:b7:b6:a8:f3: 67:0f:d2:de:ff:ba:d1:82:a6:61:a4:da:6b:9a:4e:e4:58:a7: f0:22:fb:bc:9b:d3:9c:d7:a5:ae:5e:ea:62:35:2a:81:de:c8: cd:eb:ca:23 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaAMK/Db0DAgnJdyqQmrFUg1CVhowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU4QkNENDdBNjI2M0NDM0ExMkFCREU2RTNBMkFEMjhB RjhCREVENzAeFw0yNDA4MDkwOTU3MjBaFw0yNTA4MDgxMDAyMjBaMDMxMTAvBgNV BAMTKDREMUZDQzg5QjZFQkYyMkY2NkZDOTZCQzIzQjczNjYxM0IzRDM4RjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgBhwPVEYJ7vSiTS7J5uf1la70 MLtYEzHvxC2TZQSh45QOqblDgf5wr/RxSF38KYyPIImWtJ0vg2qHhFpSZDBJGozn 7PDNxqINaZLYvLReaPcTfNf6hSN4GLVsF00AvsT4mACs4IUJsUwBl3Z/RovCZVHz zl3nje6mi2dvy/fv7dH/2PI8xNxFCakjxAQYmdz3h4F1AL3JLBRIfvnaSFVcueYR 40MgXxixjkmHGNszpovpDo2IhsZn+9DexZrI9XgtzfwiUU3v0LGPqJ5b7rAQpN2x Svhp+QlUOJIeQ2S4+wg1my9nynRMw4iZGLSYoEOwItPFFFSWrDp1RAL440sxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTR/Mibbr8i9m/Ja8I7c2YTs9OPgwHwYDVR0j BBgwFoAU1YvNR6YmPMOhKr3m46KtKK+L3tcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y Y2I1MjYxOS0zNzlkLTQzMGEtYjE5Yi0xZjBlYzUzYWU5MDkvMC9ENThCQ0Q0N0E2 MjYzQ0MzQTEyQUJERTZFM0EyQUQyOEFGOEJERUQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU4QkNENDdBNjI2M0NDM0ExMkFCREU2RTNBMkFEMjhBRjhC REVENy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjYjUyNjE5LTM3OWQtNDMwYS1i MTliLTFmMGVjNTNhZTkwOS8wLzMxMzAzMzJlMzEzNjM5MmUzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6koMA0GCSqG SIb3DQEBCwUAA4IBAQCAmbZQLIxktwiH44UpcbDJ7Q5Gf1QOGXxogzNVN+YFXQnG DrUnSsTc+esiKBwzIwS4jqBTtNfpDhYizZxtE9T+mQlslM2VStg3nQ3uTe3RrM5D QaDo+tkKvY5EJG+fFFnOYeDSp7HBOLBFr2c3JH/7QDlHHdS6AKEcey7j2/4XNJjw 4SmLlA+0+greNdwz3ssFnv1sSggDJf+UsdrcSl7V/XHfMUK/i8ijWgn3FiSNOxcN 6sk0esXNTAxNobcvsjKSEdp6w+Z7QoeRGbUTmL2VQlOXALe2qPNnD9Le/7rRgqZh pNprmk7kWKfwIvu8m9Oc16WuXupiNSqB3sjN68oj -----END CERTIFICATE-----Generated at Fri Feb 21 11:24:29 2025 by rpki-client