$ rpki-client -vvf repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132302e302f32322d3234203d3e20313334363538.roa File: 3130332e3231302e3132302e302f32322d3234203d3e20313334363538.roa (raw, json) Hash identifier: ekik3SPAnpG4g8MYbyIQd12hwoxoo1uid5VUdoMl00o= Subject key identifier: AD:77:59:28:EF:C9:DC:2C:DB:23:81:4B:BC:4F:6D:97:BF:46:81:A9 Certificate issuer: /CN=B11E5C9B4E322460FD701387F25B9EAEFE67C3EC Certificate serial: 336F5664174E2A43B8C693B3899DCD69B53A5AFD Authority key identifier: B1:1E:5C:9B:4E:32:24:60:FD:70:13:87:F2:5B:9E:AE:FE:67:C3:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132302e302f32322d3234203d3e20313334363538.roa Signing time: Sat 06 Jul 2024 10:00:00 +0000 ROA not before: Sat 06 Jul 2024 09:55:00 +0000 ROA not after: Sat 05 Jul 2025 10:00:00 +0000 asID: 134658 IP address blocks: 103.210.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.crl rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Mar 2025 16:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:6f:56:64:17:4e:2a:43:b8:c6:93:b3:89:9d:cd:69:b5:3a:5a:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B11E5C9B4E322460FD701387F25B9EAEFE67C3EC Validity Not Before: Jul 6 09:55:00 2024 GMT Not After : Jul 5 10:00:00 2025 GMT Subject: CN=AD775928EFC9DC2CDB23814BBC4F6D97BF4681A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f7:6d:57:5d:af:b8:ce:e1:49:6c:96:09:4e: 59:50:7e:f0:0d:a4:7c:3a:a4:18:f7:9a:a3:40:9d: 01:59:fa:85:c1:68:dc:5f:1d:e9:ce:5f:76:a0:fc: 9b:ff:77:90:d7:aa:27:b7:19:21:66:5b:04:40:a6: eb:e0:be:94:45:eb:53:1c:e8:f3:12:04:04:8c:06: 59:54:f7:14:8e:4a:3d:01:76:3f:b5:64:8f:5e:6d: 8e:4e:c3:ca:69:99:95:5e:87:d4:3f:11:df:ab:23: 04:9c:fc:5a:4c:a1:5d:9b:be:55:af:6c:d8:99:98: ca:8d:ac:e6:b7:63:44:6f:ce:9e:88:5b:b8:b4:2f: e7:0b:6e:72:b3:b6:6d:cb:85:d9:e8:85:86:41:a0: 1b:69:61:ca:fb:de:18:bc:21:7a:a6:4d:64:7b:3c: 85:81:09:1a:d8:70:ba:4b:bf:55:5e:2c:f3:d6:2c: 66:6f:df:7a:22:9c:07:51:5b:dd:d1:61:45:d8:e8: 9c:0c:13:fe:e2:38:2e:2b:55:e8:e9:9c:d4:1b:b4: 32:dc:e2:69:e9:94:a5:b6:1a:85:36:41:5b:8d:cd: fa:ff:db:e9:37:90:77:7d:74:77:85:21:b4:3d:56: 69:fb:46:4a:2b:01:0b:b7:71:e5:fd:b8:6c:45:cd: 09:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:77:59:28:EF:C9:DC:2C:DB:23:81:4B:BC:4F:6D:97:BF:46:81:A9 X509v3 Authority Key Identifier: keyid:B1:1E:5C:9B:4E:32:24:60:FD:70:13:87:F2:5B:9E:AE:FE:67:C3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132302e302f32322d3234203d3e20313334363538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.210.120.0/22 Signature Algorithm: sha256WithRSAEncryption 9d:08:ec:b5:5c:13:cf:41:9a:40:8c:93:09:2d:6b:8d:cd:9c: 95:e5:c5:37:70:fd:91:e6:5a:7b:c4:ba:b9:1f:ad:45:61:b9: 8a:ab:92:26:c8:2e:23:54:c6:0c:66:d2:26:b0:a4:98:f6:ae: 90:83:a6:2c:90:86:d4:79:ed:03:92:03:08:f2:17:ff:4d:87: ef:74:1a:cc:b6:12:bd:34:f1:8c:e8:91:9d:56:64:1d:4c:74: 7d:d6:8b:ae:34:dd:e7:c9:fb:0a:6c:32:52:a7:b9:e0:0d:e2: 6d:b0:da:cf:73:de:04:d0:2d:2b:6e:b1:1f:11:09:f6:b5:bb: 20:b6:cf:44:d9:c9:a5:68:2d:66:77:84:99:98:02:16:5f:55: 64:b8:43:17:bb:76:d6:67:9d:f2:c5:0e:37:88:df:88:86:99: 97:2a:c3:23:b0:16:57:e0:5b:f1:37:a6:d9:c8:30:fd:90:e9: 7d:ff:38:b5:2d:6e:8b:d6:82:70:97:23:b7:16:79:f4:9e:e7: f3:60:ad:69:90:68:67:43:ac:33:15:66:2f:e8:85:15:75:c0: 7f:df:7c:ab:da:ee:1a:1c:e9:92:55:04:b6:6f:98:ea:c6:10: 00:e5:6a:0a:4e:0d:e1:ab:28:1f:ef:39:5f:28:35:84:5f:4c: 3a:ee:ad:b0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUM29WZBdOKkO4xpOziZ3NabU6Wv0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjExRTVDOUI0RTMyMjQ2MEZENzAxMzg3RjI1QjlFQUVG RTY3QzNFQzAeFw0yNDA3MDYwOTU1MDBaFw0yNTA3MDUxMDAwMDBaMDMxMTAvBgNV BAMTKEFENzc1OTI4RUZDOURDMkNEQjIzODE0QkJDNEY2RDk3QkY0NjgxQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp921XXa+4zuFJbJYJTllQfvAN pHw6pBj3mqNAnQFZ+oXBaNxfHenOX3ag/Jv/d5DXqie3GSFmWwRApuvgvpRF61Mc 6PMSBASMBllU9xSOSj0Bdj+1ZI9ebY5Ow8ppmZVeh9Q/Ed+rIwSc/FpMoV2bvlWv bNiZmMqNrOa3Y0Rvzp6IW7i0L+cLbnKztm3LhdnohYZBoBtpYcr73hi8IXqmTWR7 PIWBCRrYcLpLv1VeLPPWLGZv33oinAdRW93RYUXY6JwME/7iOC4rVejpnNQbtDLc 4mnplKW2GoU2QVuNzfr/2+k3kHd9dHeFIbQ9Vmn7RkorAQu3ceX9uGxFzQlNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUrXdZKO/J3CzbI4FLvE9tl79GgakwHwYDVR0j BBgwFoAUsR5cm04yJGD9cBOH8luerv5nw+wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDQ4NzM2MC04NzM1LTQxZDctOTdhOC1kYmIzNGQ3OWVmZjQvMC9CMTFFNUM5QjRF MzIyNDYwRkQ3MDEzODdGMjVCOUVBRUZFNjdDM0VDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjExRTVDOUI0RTMyMjQ2MEZENzAxMzg3RjI1QjlFQUVGRTY3 QzNFQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkNDg3MzYwLTg3MzUtNDFkNy05 N2E4LWRiYjM0ZDc5ZWZmNC8wLzMxMzAzMzJlMzIzMTMwMmUzMTMyMzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM1Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn0ngwDQYJ KoZIhvcNAQELBQADggEBAJ0I7LVcE89BmkCMkwkta43NnJXlxTdw/ZHmWnvEurkf rUVhuYqrkibILiNUxgxm0iawpJj2rpCDpiyQhtR57QOSAwjyF/9Nh+90Gsy2Er00 8YzokZ1WZB1MdH3Wi6403efJ+wpsMlKnueAN4m2w2s9z3gTQLStusR8RCfa1uyC2 z0TZyaVoLWZ3hJmYAhZfVWS4Qxe7dtZnnfLFDjeI34iGmZcqwyOwFlfgW/E3ptnI MP2Q6X3/OLUtbovWgnCXI7cWefSe5/NgrWmQaGdDrDMVZi/ohRV1wH/ffKva7hoc 6ZJVBLZvmOrGEADlagpODeGrKB/vOV8oNYRfTDrurbA= -----END CERTIFICATE-----Generated at Tue Mar 11 05:03:41 2025 by rpki-client