$ rpki-client -vvf repo-rpki.idnic.net/repo/303ebabb-999f-4f3e-84c1-bf279bfe1787/0/3130332e3136372e3130342e302f32342d3234203d3e20313339343130.roa File: 3130332e3136372e3130342e302f32342d3234203d3e20313339343130.roa (raw, json) Hash identifier: cilQSsMRfqwA9LOmx5CPo41uuLBHWQ7Qq5S49MHRn2E= Subject key identifier: 6C:E7:E4:55:92:21:1F:5A:4A:1D:FC:4A:65:60:4D:42:D8:71:46:84 Certificate issuer: /CN=7FEF6BF53FA3122A0F09CEF4B408E13792A14545 Certificate serial: 183512678F7BBEC688573D686A8C1D6A27AD470D Authority key identifier: 7F:EF:6B:F5:3F:A3:12:2A:0F:09:CE:F4:B4:08:E1:37:92:A1:45:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7FEF6BF53FA3122A0F09CEF4B408E13792A14545.cer Subject info access: rsync://repo-rpki.idnic.net/repo/303ebabb-999f-4f3e-84c1-bf279bfe1787/0/3130332e3136372e3130342e302f32342d3234203d3e20313339343130.roa Signing time: Thu 21 Nov 2024 07:00:03 +0000 ROA not before: Thu 21 Nov 2024 06:55:03 +0000 ROA not after: Thu 20 Nov 2025 07:00:03 +0000 asID: 139410 IP address blocks: 103.167.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/303ebabb-999f-4f3e-84c1-bf279bfe1787/0/7FEF6BF53FA3122A0F09CEF4B408E13792A14545.crl rsync://repo-rpki.idnic.net/repo/303ebabb-999f-4f3e-84c1-bf279bfe1787/0/7FEF6BF53FA3122A0F09CEF4B408E13792A14545.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7FEF6BF53FA3122A0F09CEF4B408E13792A14545.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 18 Mar 2025 09:25:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:35:12:67:8f:7b:be:c6:88:57:3d:68:6a:8c:1d:6a:27:ad:47:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7FEF6BF53FA3122A0F09CEF4B408E13792A14545 Validity Not Before: Nov 21 06:55:03 2024 GMT Not After : Nov 20 07:00:03 2025 GMT Subject: CN=6CE7E45592211F5A4A1DFC4A65604D42D8714684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:77:69:f3:df:a2:5e:87:b3:2b:2d:7b:a5:53: dd:9e:ae:03:66:87:38:6e:b1:d9:7a:87:8a:84:0a: 95:58:33:fb:91:a6:ee:eb:f2:01:22:df:b3:b4:0c: 13:ed:18:28:a2:d9:62:d1:25:f1:20:a0:8a:91:80: bb:0d:38:2e:50:95:e2:65:c2:a4:bc:36:5c:93:fa: 9c:7d:95:24:f6:08:f4:1a:ed:29:b6:83:dd:26:02: b6:ae:01:93:dd:78:17:a1:69:35:9a:e7:53:50:01: f6:26:9e:de:d3:44:11:a3:e8:fa:ac:87:49:d1:f2: 22:a4:28:ee:6b:c9:f6:09:d8:c5:9b:6b:c5:6f:47: e7:ac:4a:50:f4:56:3b:81:a0:15:4a:92:27:82:e7: a7:e9:66:b4:59:a5:73:41:3f:e0:f0:37:f7:6d:ee: 70:a9:96:a8:bc:a8:0e:77:f3:36:29:92:81:08:b3: a4:8a:dc:c4:30:6b:09:c6:92:0a:d2:cd:9f:41:aa: e1:0d:a1:30:eb:e6:bd:2e:86:3c:71:f8:63:70:17: b1:55:90:f3:28:72:d5:39:63:d3:8b:e4:6b:af:76: f1:ee:2d:0b:ae:7f:0b:33:24:04:56:ff:f8:40:9d: 90:93:fb:09:b5:60:1c:25:9a:ea:eb:14:80:c9:3c: 69:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:E7:E4:55:92:21:1F:5A:4A:1D:FC:4A:65:60:4D:42:D8:71:46:84 X509v3 Authority Key Identifier: keyid:7F:EF:6B:F5:3F:A3:12:2A:0F:09:CE:F4:B4:08:E1:37:92:A1:45:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/303ebabb-999f-4f3e-84c1-bf279bfe1787/0/7FEF6BF53FA3122A0F09CEF4B408E13792A14545.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7FEF6BF53FA3122A0F09CEF4B408E13792A14545.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/303ebabb-999f-4f3e-84c1-bf279bfe1787/0/3130332e3136372e3130342e302f32342d3234203d3e20313339343130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.104.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:3b:f2:e1:9d:7f:37:33:5d:e9:72:ca:e0:a2:95:ea:0a:8d: e3:82:d2:08:77:8e:fd:74:8e:ee:a0:be:d3:ab:c1:ef:82:0f: 6c:ef:d7:5d:9d:da:f0:e6:72:e0:e0:a1:52:7b:cf:bc:8d:22: 78:81:ca:50:9a:a3:b9:7b:b9:d0:8e:d4:10:2d:50:78:09:e7: cf:fb:e9:8c:56:e6:07:2e:2d:cf:73:00:43:0c:fc:d6:d3:94: 18:ee:57:e2:91:7c:38:32:91:8e:da:28:44:68:54:4c:44:3c: e4:54:77:7c:6d:b6:6d:94:46:35:a0:41:68:65:9a:02:48:50: ef:a4:e2:3b:79:6a:84:0d:53:c3:24:df:ce:90:1c:bd:ab:ce: a6:6d:23:1f:04:0c:4b:00:7c:dc:29:1a:80:0e:c3:22:fa:19: b5:89:e4:72:cc:5d:04:64:c5:d3:13:95:1c:e1:db:68:11:1d: e2:3e:a4:1b:74:66:58:ab:ce:40:93:42:75:a6:a3:5c:3d:f0: 7d:01:7b:56:16:e9:1b:91:9c:19:ad:8b:e5:56:6c:0d:30:bd: ef:a5:00:4b:83:72:65:08:6e:72:1b:08:82:bf:a1:b2:c6:78: 58:77:4d:4c:79:d2:64:56:c6:47:3d:66:b8:f2:63:f9:99:54: 59:4e:68:2e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGDUSZ497vsaIVz1oaowdaietRw0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0ZFRjZCRjUzRkEzMTIyQTBGMDlDRUY0QjQwOEUxMzc5 MkExNDU0NTAeFw0yNDExMjEwNjU1MDNaFw0yNTExMjAwNzAwMDNaMDMxMTAvBgNV BAMTKDZDRTdFNDU1OTIyMTFGNUE0QTFERkM0QTY1NjA0RDQyRDg3MTQ2ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfd2nz36Jeh7MrLXulU92ergNm hzhusdl6h4qECpVYM/uRpu7r8gEi37O0DBPtGCii2WLRJfEgoIqRgLsNOC5QleJl wqS8NlyT+px9lST2CPQa7Sm2g90mArauAZPdeBehaTWa51NQAfYmnt7TRBGj6Pqs h0nR8iKkKO5ryfYJ2MWba8VvR+esSlD0VjuBoBVKkieC56fpZrRZpXNBP+DwN/dt 7nCplqi8qA538zYpkoEIs6SK3MQwawnGkgrSzZ9BquENoTDr5r0uhjxx+GNwF7FV kPMoctU5Y9OL5GuvdvHuLQuufwszJARW//hAnZCT+wm1YBwlmurrFIDJPGnVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUbOfkVZIhH1pKHfxKZWBNQthxRoQwHwYDVR0j BBgwFoAUf+9r9T+jEioPCc70tAjhN5KhRUUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDNlYmFiYi05OTlmLTRmM2UtODRjMS1iZjI3OWJmZTE3ODcvMC83RkVGNkJGNTNG QTMxMjJBMEYwOUNFRjRCNDA4RTEzNzkyQTE0NTQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0ZFRjZCRjUzRkEzMTIyQTBGMDlDRUY0QjQwOEUxMzc5MkEx NDU0NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwM2ViYWJiLTk5OWYtNGYzZS04 NGMxLWJmMjc5YmZlMTc4Ny8wLzMxMzAzMzJlMzEzNjM3MmUzMTMwMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDMxMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnp2gwDQYJ KoZIhvcNAQELBQADggEBAG878uGdfzczXelyyuCileoKjeOC0gh3jv10ju6gvtOr we+CD2zv112d2vDmcuDgoVJ7z7yNIniBylCao7l7udCO1BAtUHgJ58/76YxW5gcu Lc9zAEMM/NbTlBjuV+KRfDgykY7aKERoVExEPORUd3xttm2URjWgQWhlmgJIUO+k 4jt5aoQNU8Mk386QHL2rzqZtIx8EDEsAfNwpGoAOwyL6GbWJ5HLMXQRkxdMTlRzh 22gRHeI+pBt0ZlirzkCTQnWmo1w98H0Be1YW6RuRnBmti+VWbA0wve+lAEuDcmUI bnIbCIK/obLGeFh3TUx50mRWxkc9ZrjyY/mZVFlOaC4= -----END CERTIFICATE-----Generated at Sat Mar 15 05:49:13 2025 by rpki-client