$ rpki-client -vvf repo-rpki.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/3130332e3234352e3137382e302f32332d3233203d3e2039333431.roa File: 3130332e3234352e3137382e302f32332d3233203d3e2039333431.roa (raw, json) Hash identifier: JQ2sbHxQyDFZhgbZypy5jZxgy9AwBRkpTank5bXdFdU= Subject key identifier: 28:3A:62:34:08:E7:E6:7E:5A:A6:E9:FF:96:90:47:8A:4E:F7:52:A6 Certificate issuer: /CN=A61585874729C58BB62740692BA8FA6ED286FDC9 Certificate serial: 71CFC924A7F7411468FFAFC29C1C1EC33AC36734 Authority key identifier: A6:15:85:87:47:29:C5:8B:B6:27:40:69:2B:A8:FA:6E:D2:86:FD:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A61585874729C58BB62740692BA8FA6ED286FDC9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/3130332e3234352e3137382e302f32332d3233203d3e2039333431.roa Signing time: Mon 22 Jul 2024 05:01:10 +0000 ROA not before: Mon 22 Jul 2024 04:56:10 +0000 ROA not after: Mon 21 Jul 2025 05:01:10 +0000 asID: 9341 IP address blocks: 103.245.178.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/A61585874729C58BB62740692BA8FA6ED286FDC9.crl rsync://repo-rpki.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/A61585874729C58BB62740692BA8FA6ED286FDC9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A61585874729C58BB62740692BA8FA6ED286FDC9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 09:30:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:cf:c9:24:a7:f7:41:14:68:ff:af:c2:9c:1c:1e:c3:3a:c3:67:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A61585874729C58BB62740692BA8FA6ED286FDC9 Validity Not Before: Jul 22 04:56:10 2024 GMT Not After : Jul 21 05:01:10 2025 GMT Subject: CN=283A623408E7E67E5AA6E9FF9690478A4EF752A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:cb:f4:9e:78:f8:ee:05:37:8d:0e:a9:84:63: 1c:94:08:d9:84:42:8c:7c:a9:6f:02:ad:33:dd:d0: 48:21:42:b4:84:9d:11:d2:3f:31:ec:d8:35:69:87: a1:ab:71:42:fa:62:60:a0:d3:b6:e7:ce:b2:ac:13: 5a:f7:91:e8:84:b0:2b:3a:0a:e4:dd:86:94:9b:2b: 03:9e:cd:c1:06:90:c3:ad:0a:01:0d:54:60:04:a6: 8e:c8:75:53:5f:db:20:95:2b:1d:8a:de:32:e8:bc: 3d:c7:5b:dd:66:d4:5c:92:f7:b2:21:8e:db:c6:9f: 7b:ef:34:39:22:4f:47:af:7e:7c:84:bc:b7:ef:9b: e1:95:da:07:72:3e:ca:e4:f3:28:8c:be:a8:e9:9c: 75:78:fb:44:60:a7:04:43:c8:db:dc:b7:eb:ed:e2: d6:55:80:fe:79:d2:0d:0a:a3:ac:e7:9d:6d:a7:6d: 76:22:d2:1c:70:de:c3:f5:be:a3:df:f6:79:b9:66: bc:6a:54:fc:33:2a:22:21:7d:35:b3:08:db:21:bc: 64:5a:70:44:64:63:30:84:e9:c2:6b:3f:ff:66:8c: 52:82:78:2a:08:57:42:cf:e3:70:9a:7f:2a:ee:4c: 9d:5a:b0:5f:d5:1e:6a:31:41:0f:1d:f9:ef:72:e8: 86:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:3A:62:34:08:E7:E6:7E:5A:A6:E9:FF:96:90:47:8A:4E:F7:52:A6 X509v3 Authority Key Identifier: keyid:A6:15:85:87:47:29:C5:8B:B6:27:40:69:2B:A8:FA:6E:D2:86:FD:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/A61585874729C58BB62740692BA8FA6ED286FDC9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A61585874729C58BB62740692BA8FA6ED286FDC9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/3130332e3234352e3137382e302f32332d3233203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.245.178.0/23 Signature Algorithm: sha256WithRSAEncryption 49:dd:7e:fe:6a:93:ab:04:67:4b:f4:85:43:a1:9d:44:4a:f3: 81:d3:c4:87:1c:49:fa:a8:d2:7c:0c:c3:68:59:c6:c4:04:be: 52:d8:e6:97:2e:68:80:99:8d:b1:4c:0e:68:f6:61:44:59:43: 2b:ce:df:44:75:c9:1d:d8:e4:16:ab:f2:e6:00:98:a1:5e:05: 64:0f:69:62:58:eb:b2:ee:e0:b2:3b:6b:67:ae:15:78:ba:5e: 0a:27:26:ed:44:42:31:b0:a6:2e:1a:cd:13:b9:10:dd:e7:74: 80:25:0a:cc:7a:81:d8:9d:cb:14:cb:be:ef:09:d6:a0:8b:e7: e1:b9:ef:f6:39:0f:3f:24:e9:fd:20:8e:dd:c7:67:14:a2:53: 8b:25:be:59:ee:5b:4a:90:61:e1:63:e0:ff:3c:1f:0e:78:64: 25:b4:22:bc:86:bf:f2:61:06:b3:e6:3b:31:ee:7d:6d:eb:95: 38:0a:c2:df:54:d6:38:a7:66:50:da:b0:4a:c2:9f:88:ba:58: 4a:a1:01:55:64:2d:ad:a8:e8:57:71:97:20:f2:d5:78:5d:d4: 71:58:58:da:e5:0d:78:0f:d6:f7:2b:a9:38:7a:a9:3b:3d:8d: 22:e1:54:64:2d:82:ab:c1:47:5e:60:0e:1d:9f:09:14:56:0e: fe:91:48:50 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcc/JJKf3QRRo/6/CnBwewzrDZzQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTYxNTg1ODc0NzI5QzU4QkI2Mjc0MDY5MkJBOEZBNkVE Mjg2RkRDOTAeFw0yNDA3MjIwNDU2MTBaFw0yNTA3MjEwNTAxMTBaMDMxMTAvBgNV BAMTKDI4M0E2MjM0MDhFN0U2N0U1QUE2RTlGRjk2OTA0NzhBNEVGNzUyQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIy/SeePjuBTeNDqmEYxyUCNmE Qox8qW8CrTPd0EghQrSEnRHSPzHs2DVph6GrcUL6YmCg07bnzrKsE1r3keiEsCs6 CuTdhpSbKwOezcEGkMOtCgENVGAEpo7IdVNf2yCVKx2K3jLovD3HW91m1FyS97Ih jtvGn3vvNDkiT0evfnyEvLfvm+GV2gdyPsrk8yiMvqjpnHV4+0RgpwRDyNvct+vt 4tZVgP550g0Ko6znnW2nbXYi0hxw3sP1vqPf9nm5ZrxqVPwzKiIhfTWzCNshvGRa cERkYzCE6cJrP/9mjFKCeCoIV0LP43CafyruTJ1asF/VHmoxQQ8d+e9y6IavAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUKDpiNAjn5n5apun/lpBHik73UqYwHwYDVR0j BBgwFoAUphWFh0cpxYu2J0BpK6j6btKG/ckwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NzBjNDc1OS00M2I4LTRlODAtYmU4Yy04M2NiZTlmODIzMWIvMC9BNjE1ODU4NzQ3 MjlDNThCQjYyNzQwNjkyQkE4RkE2RUQyODZGREM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTYxNTg1ODc0NzI5QzU4QkI2Mjc0MDY5MkJBOEZBNkVEMjg2 RkRDOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM3MGM0NzU5LTQzYjgtNGU4MC1i ZThjLTgzY2JlOWY4MjMxYi8wLzMxMzAzMzJlMzIzNDM1MmUzMTM3MzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWf1sjANBgkqhkiG 9w0BAQsFAAOCAQEASd1+/mqTqwRnS/SFQ6GdRErzgdPEhxxJ+qjSfAzDaFnGxAS+ Utjmly5ogJmNsUwOaPZhRFlDK87fRHXJHdjkFqvy5gCYoV4FZA9pYljrsu7gsjtr Z64VeLpeCicm7URCMbCmLhrNE7kQ3ed0gCUKzHqB2J3LFMu+7wnWoIvn4bnv9jkP PyTp/SCO3cdnFKJTiyW+We5bSpBh4WPg/zwfDnhkJbQivIa/8mEGs+Y7Me59beuV OArC31TWOKdmUNqwSsKfiLpYSqEBVWQtrajoV3GXIPLVeF3UcVhY2uUNeA/W9yup OHqpOz2NIuFUZC2Cq8FHXmAOHZ8JFFYO/pFIUA== -----END CERTIFICATE-----Generated at Tue Mar 11 05:04:17 2025 by rpki-client