$ rpki-client -vvf repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/3130332e3136392e34312e302f32342d3234203d3e20313432333332.roa File: 3130332e3136392e34312e302f32342d3234203d3e20313432333332.roa (raw, json) Hash identifier: CfGKDTwzaK9/cDjPw8NSmCs5voaTVZ8iBlLH2WBXSno= Subject key identifier: F8:F7:3D:5A:A5:4B:88:8B:F0:C9:DF:69:2C:D2:A3:80:6E:66:B3:53 Certificate issuer: /CN=D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7 Certificate serial: 0FA6C57311D446E7C8A41E7E60D4D04796D028C8 Authority key identifier: D5:8B:CD:47:A6:26:3C:C3:A1:2A:BD:E6:E3:A2:AD:28:AF:8B:DE:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/3130332e3136392e34312e302f32342d3234203d3e20313432333332.roa Signing time: Fri 09 Aug 2024 10:02:20 +0000 ROA not before: Fri 09 Aug 2024 09:57:20 +0000 ROA not after: Fri 08 Aug 2025 10:02:20 +0000 asID: 142332 IP address blocks: 103.169.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.crl rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 04:59:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:a6:c5:73:11:d4:46:e7:c8:a4:1e:7e:60:d4:d0:47:96:d0:28:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7 Validity Not Before: Aug 9 09:57:20 2024 GMT Not After : Aug 8 10:02:20 2025 GMT Subject: CN=F8F73D5AA54B888BF0C9DF692CD2A3806E66B353 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a3:58:0e:f7:98:6e:9b:9c:af:96:3c:d8:86: 98:c1:e7:37:7e:73:58:f7:ab:b1:b9:1c:68:a1:54: c6:a5:42:12:ec:29:91:b3:fc:4a:75:06:0e:83:fd: e3:7d:b1:07:ae:16:6e:e3:b5:ba:53:f1:6c:3e:ce: 61:3e:9f:6b:97:e1:1f:c7:63:63:4e:df:75:6f:a6: 04:d7:bc:4b:51:83:b1:95:9c:42:c1:d9:58:73:d3: 85:6b:39:15:3c:0f:6d:5c:ec:bb:36:6d:34:c3:84: 8a:ec:94:30:23:14:08:ac:0e:8b:63:a0:14:c2:34: 35:45:89:98:b4:1b:16:64:72:79:d1:46:da:10:74: 6c:fb:65:4e:4a:e7:7e:bc:fe:a6:ac:ab:47:83:83: b6:a1:69:cc:5a:b2:cd:69:3e:05:2e:b5:5b:38:79: 46:22:8f:aa:ba:df:2b:e4:af:9a:5f:6c:90:d6:4f: 5a:9c:36:a3:c8:3a:58:ae:37:13:f5:ff:86:ac:79: 60:be:25:5a:94:81:e7:f5:e0:aa:58:a5:6f:9b:44: c1:93:12:70:c3:76:0c:02:0f:2d:25:16:0e:64:e3: 7c:bb:2c:bc:fa:6b:93:9b:52:d2:ee:2c:15:0e:50: d8:a1:5a:fc:e0:cb:90:7b:75:5e:e1:36:fd:7e:4a: 63:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:F7:3D:5A:A5:4B:88:8B:F0:C9:DF:69:2C:D2:A3:80:6E:66:B3:53 X509v3 Authority Key Identifier: keyid:D5:8B:CD:47:A6:26:3C:C3:A1:2A:BD:E6:E3:A2:AD:28:AF:8B:DE:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/3130332e3136392e34312e302f32342d3234203d3e20313432333332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.41.0/24 Signature Algorithm: sha256WithRSAEncryption 19:88:bf:29:16:57:6b:5d:ca:8b:f6:bd:14:f1:67:00:09:f6: 5b:8e:33:13:94:e5:84:e7:26:23:8a:11:9a:78:6a:ee:db:36: 06:21:e5:0e:19:4c:a9:df:21:66:07:40:2d:71:64:21:e6:e0: f2:74:c2:77:46:3c:eb:bc:f4:00:bc:c5:b1:c3:e7:52:a6:63: 0e:79:80:6a:86:79:02:8b:c2:7a:de:29:74:04:a6:6b:37:43: 09:bc:10:6c:70:ca:07:10:d6:a8:78:d1:44:80:49:d2:44:89: 8f:1a:1d:5f:22:b3:dc:1d:bb:64:50:5a:4c:06:c9:a0:74:5c: b1:0b:5e:06:75:0f:b0:c2:cb:9f:b3:3f:45:19:e9:21:67:b1: 3a:6d:41:7f:86:b4:a7:20:11:92:cd:90:62:fc:6f:76:06:3c: 04:af:93:65:fb:a2:01:14:f2:66:13:a9:8c:2a:db:67:81:07: dc:0f:14:c5:ba:82:d4:68:0b:3b:7b:21:fb:34:16:f7:ac:0c: 51:e9:8c:b5:8b:be:03:72:b7:fb:f3:a5:fa:a9:3c:e1:7f:df: ff:a1:c1:4f:bc:95:f4:a1:33:8d:43:c0:5d:98:51:96:1a:7d: 63:84:7e:3f:64:da:a8:9d:cf:18:af:4f:4b:78:95:62:af:6c: db:a2:bf:be -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUD6bFcxHURufIpB5+YNTQR5bQKMgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU4QkNENDdBNjI2M0NDM0ExMkFCREU2RTNBMkFEMjhB RjhCREVENzAeFw0yNDA4MDkwOTU3MjBaFw0yNTA4MDgxMDAyMjBaMDMxMTAvBgNV BAMTKEY4RjczRDVBQTU0Qjg4OEJGMEM5REY2OTJDRDJBMzgwNkU2NkIzNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTo1gO95hum5yvljzYhpjB5zd+ c1j3q7G5HGihVMalQhLsKZGz/Ep1Bg6D/eN9sQeuFm7jtbpT8Ww+zmE+n2uX4R/H Y2NO33VvpgTXvEtRg7GVnELB2Vhz04VrORU8D21c7Ls2bTTDhIrslDAjFAisDotj oBTCNDVFiZi0GxZkcnnRRtoQdGz7ZU5K5368/qasq0eDg7ahacxass1pPgUutVs4 eUYij6q63yvkr5pfbJDWT1qcNqPIOliuNxP1/4aseWC+JVqUgef14KpYpW+bRMGT EnDDdgwCDy0lFg5k43y7LLz6a5ObUtLuLBUOUNihWvzgy5B7dV7hNv1+SmPvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+Pc9WqVLiIvwyd9pLNKjgG5ms1MwHwYDVR0j BBgwFoAU1YvNR6YmPMOhKr3m46KtKK+L3tcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y Y2I1MjYxOS0zNzlkLTQzMGEtYjE5Yi0xZjBlYzUzYWU5MDkvMC9ENThCQ0Q0N0E2 MjYzQ0MzQTEyQUJERTZFM0EyQUQyOEFGOEJERUQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU4QkNENDdBNjI2M0NDM0ExMkFCREU2RTNBMkFEMjhBRjhC REVENy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjYjUyNjE5LTM3OWQtNDMwYS1i MTliLTFmMGVjNTNhZTkwOS8wLzMxMzAzMzJlMzEzNjM5MmUzNDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6kpMA0GCSqG SIb3DQEBCwUAA4IBAQAZiL8pFldrXcqL9r0U8WcACfZbjjMTlOWE5yYjihGaeGru 2zYGIeUOGUyp3yFmB0AtcWQh5uDydMJ3RjzrvPQAvMWxw+dSpmMOeYBqhnkCi8J6 3il0BKZrN0MJvBBscMoHENaoeNFEgEnSRImPGh1fIrPcHbtkUFpMBsmgdFyxC14G dQ+wwsufsz9FGekhZ7E6bUF/hrSnIBGSzZBi/G92BjwEr5Nl+6IBFPJmE6mMKttn gQfcDxTFuoLUaAs7eyH7NBb3rAxR6Yy1i74Dcrf786X6qTzhf9//ocFPvJX0oTON Q8BdmFGWGn1jhH4/ZNqonc8Yr09LeJVir2zbor++ -----END CERTIFICATE-----Generated at Sun Apr 20 18:17:17 2025 by rpki-client