$ rpki-client -vvf repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/3130332e3135332e3132362e302f32342d3234203d3e20313430343632.roa File: 3130332e3135332e3132362e302f32342d3234203d3e20313430343632.roa (raw, json) Hash identifier: /BYvra4DlfHnq4UOMzaF51N5Kus+HjkdFOsGHv9u+80= Subject key identifier: CF:D2:B1:1B:0F:5E:C0:AE:FE:4E:FB:05:D0:42:D8:38:50:FE:70:B5 Certificate issuer: /CN=EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C Certificate serial: 4C922B0EF5FC405794AF7C3ED65B4020D81DF511 Authority key identifier: EF:C0:FE:32:8F:7B:86:F9:C6:82:F4:FE:37:36:0C:4E:3A:D9:94:2C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/3130332e3135332e3132362e302f32342d3234203d3e20313430343632.roa Signing time: Tue 07 Jan 2025 13:00:01 +0000 ROA not before: Tue 07 Jan 2025 12:55:01 +0000 ROA not after: Tue 06 Jan 2026 13:00:01 +0000 asID: 140462 IP address blocks: 103.153.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.crl rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:16:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:92:2b:0e:f5:fc:40:57:94:af:7c:3e:d6:5b:40:20:d8:1d:f5:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C Validity Not Before: Jan 7 12:55:01 2025 GMT Not After : Jan 6 13:00:01 2026 GMT Subject: CN=CFD2B11B0F5EC0AEFE4EFB05D042D83850FE70B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:68:ce:bc:3c:d4:92:2c:f9:b0:9c:94:00:7a: f3:f9:6b:d8:d2:6b:65:f4:3f:c6:cf:dc:50:09:3c: c0:2e:8b:6d:cb:42:1b:fe:56:63:84:cd:c4:4b:53: 28:dc:dc:65:ae:b3:da:8a:5e:76:0b:c2:e1:c4:95: cd:c1:28:06:c1:93:b5:56:c4:a9:3a:97:7a:b0:e4: 82:69:b9:af:12:a8:2b:44:c6:a3:03:4f:51:de:b4: 8d:00:6a:1f:10:28:86:8e:19:57:57:4a:a8:61:6c: af:6f:98:c0:00:ec:9e:c7:74:14:fc:7b:55:1e:31: 3e:e6:fe:11:c3:40:96:c1:b3:78:f1:31:f0:6f:f9: c3:ff:85:51:6b:96:58:58:09:6f:74:f9:fb:33:fc: 9c:bc:cb:d3:31:3f:72:54:4b:bc:a5:d2:03:a7:72: 77:54:6f:e2:88:63:f4:45:f6:17:08:fe:6e:42:a0: 42:30:27:ad:4d:88:28:6e:86:8c:2f:66:dd:af:5f: 51:36:26:da:9c:0f:b5:07:bb:62:a6:15:06:e7:57: ed:88:cb:94:7b:e8:c8:00:48:96:0c:e3:be:2c:07: b9:9e:a3:7d:a2:89:15:1d:74:d4:d2:f2:ce:86:20: be:de:b9:1b:37:d2:5e:3e:03:e2:15:90:f2:0e:64: 6a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:D2:B1:1B:0F:5E:C0:AE:FE:4E:FB:05:D0:42:D8:38:50:FE:70:B5 X509v3 Authority Key Identifier: keyid:EF:C0:FE:32:8F:7B:86:F9:C6:82:F4:FE:37:36:0C:4E:3A:D9:94:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/3130332e3135332e3132362e302f32342d3234203d3e20313430343632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.126.0/24 Signature Algorithm: sha256WithRSAEncryption 77:03:91:da:5e:59:63:50:e6:40:fa:b3:f4:f7:a0:d5:57:5f: c1:b3:ab:b5:0b:f3:70:37:e8:8a:0e:9f:34:9a:b4:2f:2a:bb: 8f:5d:ed:18:5e:7d:06:5f:74:45:70:f8:cf:05:f6:1e:62:c0: 77:82:c2:62:5f:d4:d3:81:c8:df:07:f0:25:f7:c7:64:b1:ab: 85:9c:65:7f:ac:04:4f:d3:0a:fd:ac:69:8c:0c:23:02:5a:68: 96:8f:ff:0b:61:7e:a1:b1:59:76:cc:b0:88:d5:c8:42:4d:b5: 6c:41:27:d9:ea:5f:dd:e5:a1:57:38:e4:00:81:9b:f9:a1:23: 97:de:fa:91:0b:82:5f:ce:2d:a7:e3:22:ac:27:67:61:42:94: 1a:02:15:ee:60:f9:18:2c:11:c5:94:ab:6f:d5:6a:7e:3f:72: 35:0b:b3:bc:9f:9f:7f:06:b0:84:5a:bf:f6:ff:66:c9:a9:07: 44:a7:81:56:25:cf:e1:69:7e:4a:3b:12:88:d1:18:a9:d3:46: ff:2f:48:c9:f2:d7:8f:3a:ab:79:cb:d5:58:6d:17:06:bf:86: 8e:3b:67:62:f8:a1:75:a9:46:2a:9c:49:0f:2c:2d:64:e9:84: 65:43:85:ec:2c:d1:b8:1d:a6:da:33:9e:a6:25:6f:c4:c9:3e: a4:5f:5c:54 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTJIrDvX8QFeUr3w+1ltAINgd9REwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUZDMEZFMzI4RjdCODZGOUM2ODJGNEZFMzczNjBDNEUz QUQ5OTQyQzAeFw0yNTAxMDcxMjU1MDFaFw0yNjAxMDYxMzAwMDFaMDMxMTAvBgNV BAMTKENGRDJCMTFCMEY1RUMwQUVGRTRFRkIwNUQwNDJEODM4NTBGRTcwQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkaM68PNSSLPmwnJQAevP5a9jS a2X0P8bP3FAJPMAui23LQhv+VmOEzcRLUyjc3GWus9qKXnYLwuHElc3BKAbBk7VW xKk6l3qw5IJpua8SqCtExqMDT1HetI0Aah8QKIaOGVdXSqhhbK9vmMAA7J7HdBT8 e1UeMT7m/hHDQJbBs3jxMfBv+cP/hVFrllhYCW90+fsz/Jy8y9MxP3JUS7yl0gOn cndUb+KIY/RF9hcI/m5CoEIwJ61NiChuhowvZt2vX1E2JtqcD7UHu2KmFQbnV+2I y5R76MgASJYM474sB7meo32iiRUddNTS8s6GIL7euRs30l4+A+IVkPIOZGqbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUz9KxGw9ewK7+TvsF0ELYOFD+cLUwHwYDVR0j BBgwFoAU78D+Mo97hvnGgvT+NzYMTjrZlCwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODNlZDdhYi0xYWM5LTRmNDItYWNkZC01MzU1N2FjN2IzZjMvMC9FRkMwRkUzMjhG N0I4NkY5QzY4MkY0RkUzNzM2MEM0RTNBRDk5NDJDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUZDMEZFMzI4RjdCODZGOUM2ODJGNEZFMzczNjBDNEUzQUQ5 OTQyQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4M2VkN2FiLTFhYzktNGY0Mi1h Y2RkLTUzNTU3YWM3YjNmMy8wLzMxMzAzMzJlMzEzNTMzMmUzMTMyMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM2MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnmX4wDQYJ KoZIhvcNAQELBQADggEBAHcDkdpeWWNQ5kD6s/T3oNVXX8Gzq7UL83A36IoOnzSa tC8qu49d7RhefQZfdEVw+M8F9h5iwHeCwmJf1NOByN8H8CX3x2Sxq4WcZX+sBE/T Cv2saYwMIwJaaJaP/wthfqGxWXbMsIjVyEJNtWxBJ9nqX93loVc45ACBm/mhI5fe +pELgl/OLafjIqwnZ2FClBoCFe5g+RgsEcWUq2/Van4/cjULs7yfn38GsIRav/b/ ZsmpB0SngVYlz+Fpfko7EojRGKnTRv8vSMny1486q3nL1VhtFwa/ho47Z2L4oXWp RiqcSQ8sLWTphGVDhews0bgdptoznqYlb8TJPqRfXFQ= -----END CERTIFICATE-----Generated at Mon Apr 7 16:04:21 2025 by rpki-client