$ rpki-client -vvf repo-rpki.idnic.net/repo/347b0264-9a0a-4ce4-93cb-2cdd840b8534/0/3130332e37362e3130352e302f32342d3234203d3e20313531353839.roa File: 3130332e37362e3130352e302f32342d3234203d3e20313531353839.roa (raw, json) Hash identifier: e/owJdVHtzdiWlc+5bYf6duathP08XcWsRrtdLiCBT0= Subject key identifier: BC:06:76:B0:22:5E:F9:EF:7A:3E:20:01:AB:F2:B3:9D:EF:33:E6:42 Certificate issuer: /CN=1F4C46E18F21AFBE4D8AC9846090B63AA98782BB Certificate serial: 21A24C19E37241FB3B885FD37CD8626A659CBB7C Authority key identifier: 1F:4C:46:E1:8F:21:AF:BE:4D:8A:C9:84:60:90:B6:3A:A9:87:82:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F4C46E18F21AFBE4D8AC9846090B63AA98782BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/347b0264-9a0a-4ce4-93cb-2cdd840b8534/0/3130332e37362e3130352e302f32342d3234203d3e20313531353839.roa Signing time: Sat 21 Dec 2024 14:00:01 +0000 ROA not before: Sat 21 Dec 2024 13:55:01 +0000 ROA not after: Sat 20 Dec 2025 14:00:01 +0000 asID: 151589 IP address blocks: 103.76.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/347b0264-9a0a-4ce4-93cb-2cdd840b8534/0/1F4C46E18F21AFBE4D8AC9846090B63AA98782BB.crl rsync://repo-rpki.idnic.net/repo/347b0264-9a0a-4ce4-93cb-2cdd840b8534/0/1F4C46E18F21AFBE4D8AC9846090B63AA98782BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F4C46E18F21AFBE4D8AC9846090B63AA98782BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 22:43:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:a2:4c:19:e3:72:41:fb:3b:88:5f:d3:7c:d8:62:6a:65:9c:bb:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F4C46E18F21AFBE4D8AC9846090B63AA98782BB Validity Not Before: Dec 21 13:55:01 2024 GMT Not After : Dec 20 14:00:01 2025 GMT Subject: CN=BC0676B0225EF9EF7A3E2001ABF2B39DEF33E642 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f7:fc:64:53:5d:39:5c:a4:cd:27:de:ee:15: be:31:e5:85:a5:0c:a3:9b:78:02:e0:c6:af:6d:f3: e4:af:a6:dd:31:e5:72:6b:41:cc:19:9e:4c:f3:0f: 91:8f:3b:25:8a:7f:81:8a:69:eb:a5:ed:9e:2a:f9: 94:f2:6c:87:0a:93:61:f5:12:aa:eb:27:91:a2:4e: 9d:73:6c:72:d8:ee:36:a8:56:39:30:6c:9e:f3:80: ee:11:76:2c:91:83:10:f6:f8:89:76:62:4a:36:80: 22:20:83:0e:cf:24:cd:e0:70:ed:0d:7e:b6:af:11: 5c:dd:96:e7:f2:4d:3e:ff:22:49:36:70:14:48:37: de:0e:07:57:23:0e:be:a7:6f:08:52:ca:37:20:7a: 2d:00:95:b8:a6:4c:1c:82:c9:df:92:4f:d0:2b:da: e3:90:2b:2a:03:26:6b:6a:37:2d:e5:53:e3:66:da: dd:e0:0f:36:77:d2:ce:38:f1:e7:78:f1:4c:77:a4: 13:36:79:e9:c5:4a:3d:51:dd:4c:22:43:6c:f1:aa: aa:1e:1a:4b:ab:94:b5:3e:66:bb:db:0a:0e:b5:f0: bf:e0:27:38:8e:48:ac:8d:de:be:00:71:9c:59:67: f4:cd:d5:da:98:f0:bc:40:56:51:1f:37:fd:38:e2: d9:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:06:76:B0:22:5E:F9:EF:7A:3E:20:01:AB:F2:B3:9D:EF:33:E6:42 X509v3 Authority Key Identifier: keyid:1F:4C:46:E1:8F:21:AF:BE:4D:8A:C9:84:60:90:B6:3A:A9:87:82:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/347b0264-9a0a-4ce4-93cb-2cdd840b8534/0/1F4C46E18F21AFBE4D8AC9846090B63AA98782BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F4C46E18F21AFBE4D8AC9846090B63AA98782BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/347b0264-9a0a-4ce4-93cb-2cdd840b8534/0/3130332e37362e3130352e302f32342d3234203d3e20313531353839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.76.105.0/24 Signature Algorithm: sha256WithRSAEncryption 43:a5:85:3a:94:23:ce:b8:e4:9d:e5:5f:dc:06:bc:36:33:dc: 41:50:d0:45:28:06:b9:34:1e:15:43:6c:29:d3:d3:85:36:93: 14:df:03:39:8b:e9:9c:a0:e5:5c:1e:04:03:68:b7:c5:98:ba: 3e:3e:db:02:18:34:46:c8:84:17:09:2c:fa:1f:ea:8e:64:b6: 67:9b:e5:00:5f:1d:37:6b:26:3c:02:89:98:f8:f7:99:02:8c: 82:e4:3a:60:d3:81:1c:f3:fd:3b:ec:ef:25:8e:71:5a:5b:b8: 0e:4e:4d:2f:10:3d:3b:30:45:0b:a1:0e:b9:18:f0:36:b5:56: 9a:cf:11:7a:bf:86:23:63:75:54:36:c1:4b:c4:2e:8a:58:a1: 4a:76:ba:93:f7:b7:c0:a1:9d:27:3f:c5:79:86:b9:fa:81:16: 85:ee:da:8f:f3:d4:9c:0b:0e:8d:e4:08:42:22:88:c7:87:e3: 3c:e5:45:97:16:f8:40:3b:37:e7:1a:45:92:f8:53:9c:d9:df: 3a:d8:cf:b8:f3:ce:30:6a:89:34:48:e8:d0:78:0b:79:c1:76: 86:43:8e:93:8e:f4:a0:25:93:b2:a5:5c:57:5e:89:9f:dc:a3: bb:48:e6:54:e7:7e:17:04:50:b9:30:45:be:8b:b5:ef:3c:55: 37:a6:19:af -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIaJMGeNyQfs7iF/TfNhiamWcu3wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY0QzQ2RTE4RjIxQUZCRTREOEFDOTg0NjA5MEI2M0FB OTg3ODJCQjAeFw0yNDEyMjExMzU1MDFaFw0yNTEyMjAxNDAwMDFaMDMxMTAvBgNV BAMTKEJDMDY3NkIwMjI1RUY5RUY3QTNFMjAwMUFCRjJCMzlERUYzM0U2NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB9/xkU105XKTNJ97uFb4x5YWl DKObeALgxq9t8+Svpt0x5XJrQcwZnkzzD5GPOyWKf4GKaeul7Z4q+ZTybIcKk2H1 EqrrJ5GiTp1zbHLY7jaoVjkwbJ7zgO4RdiyRgxD2+Il2Yko2gCIggw7PJM3gcO0N fravEVzdlufyTT7/Ikk2cBRIN94OB1cjDr6nbwhSyjcgei0AlbimTByCyd+ST9Ar 2uOQKyoDJmtqNy3lU+Nm2t3gDzZ30s448ed48Ux3pBM2eenFSj1R3UwiQ2zxqqoe GkurlLU+ZrvbCg618L/gJziOSKyN3r4AcZxZZ/TN1dqY8LxAVlEfN/044tkjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvAZ2sCJe+e96PiABq/Kzne8z5kIwHwYDVR0j BBgwFoAUH0xG4Y8hr75NismEYJC2OqmHgrswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NDdiMDI2NC05YTBhLTRjZTQtOTNjYi0yY2RkODQwYjg1MzQvMC8xRjRDNDZFMThG MjFBRkJFNEQ4QUM5ODQ2MDkwQjYzQUE5ODc4MkJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUY0QzQ2RTE4RjIxQUZCRTREOEFDOTg0NjA5MEI2M0FBOTg3 ODJCQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM0N2IwMjY0LTlhMGEtNGNlNC05 M2NiLTJjZGQ4NDBiODUzNC8wLzMxMzAzMzJlMzczNjJlMzEzMDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0xpMA0GCSqG SIb3DQEBCwUAA4IBAQBDpYU6lCPOuOSd5V/cBrw2M9xBUNBFKAa5NB4VQ2wp09OF NpMU3wM5i+mcoOVcHgQDaLfFmLo+PtsCGDRGyIQXCSz6H+qOZLZnm+UAXx03ayY8 AomY+PeZAoyC5Dpg04Ec8/077O8ljnFaW7gOTk0vED07MEULoQ65GPA2tVaazxF6 v4YjY3VUNsFLxC6KWKFKdrqT97fAoZ0nP8V5hrn6gRaF7tqP89ScCw6N5AhCIojH h+M85UWXFvhAOzfnGkWS+FOc2d862M+4884waok0SOjQeAt5wXaGQ46TjvSgJZOy pVxXXomf3KO7SOZU534XBFC5MEW+i7XvPFU3phmv -----END CERTIFICATE-----Generated at Sun Apr 6 21:33:26 2025 by rpki-client