$ rpki-client -vvf repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/3130332e36372e39312e302f32342d3234203d3e20313532303035.roa File: 3130332e36372e39312e302f32342d3234203d3e20313532303035.roa (raw, json) Hash identifier: UkSU3ofAJMwQMSBV8CLkdD+7q/O7V/69EnZpNB0eiWY= Subject key identifier: A9:7F:1B:FB:CB:41:CB:67:E7:D4:2B:3C:5A:FF:B1:48:17:F2:AD:A7 Certificate issuer: /CN=49011B0D97FF49210FC27249FDD23F7172FD5561 Certificate serial: 6B1859F0F73E3BCD3E6DD4DBDD88225FEE1B6D06 Authority key identifier: 49:01:1B:0D:97:FF:49:21:0F:C2:72:49:FD:D2:3F:71:72:FD:55:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49011B0D97FF49210FC27249FDD23F7172FD5561.cer Subject info access: rsync://repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/3130332e36372e39312e302f32342d3234203d3e20313532303035.roa Signing time: Wed 29 Jan 2025 03:02:49 +0000 ROA not before: Wed 29 Jan 2025 02:57:49 +0000 ROA not after: Wed 28 Jan 2026 03:02:49 +0000 asID: 152005 IP address blocks: 103.67.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/49011B0D97FF49210FC27249FDD23F7172FD5561.crl rsync://repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/49011B0D97FF49210FC27249FDD23F7172FD5561.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49011B0D97FF49210FC27249FDD23F7172FD5561.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 16:22:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:18:59:f0:f7:3e:3b:cd:3e:6d:d4:db:dd:88:22:5f:ee:1b:6d:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49011B0D97FF49210FC27249FDD23F7172FD5561 Validity Not Before: Jan 29 02:57:49 2025 GMT Not After : Jan 28 03:02:49 2026 GMT Subject: CN=A97F1BFBCB41CB67E7D42B3C5AFFB14817F2ADA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:de:4b:c9:0d:9c:22:25:65:3a:2a:bd:80:52: 69:de:01:24:50:35:b4:0f:b9:0c:7f:27:60:bc:cd: af:dc:b8:1b:58:e7:e7:88:68:ad:49:64:8c:bf:e2: 32:ab:fb:44:1e:c9:58:3b:3e:7e:14:3d:f4:45:47: e0:a3:9c:84:f3:eb:0a:3c:bc:df:b5:b1:38:9d:86: b4:36:77:8b:5f:10:b1:17:b4:33:86:f0:07:f6:74: c4:a7:58:f2:36:94:19:cc:2f:25:a4:03:f4:eb:77: d3:2b:fe:1e:87:76:34:e5:dd:eb:4a:6f:f5:ef:66: b4:2a:72:91:50:9e:79:68:b0:3f:32:52:dc:b6:fd: c5:6b:29:2b:bd:b3:8f:23:5a:eb:25:e3:23:5d:5f: ea:24:fc:28:19:7e:f5:7e:bb:6a:9e:8b:03:fe:f8: ec:2f:83:66:b8:04:4c:62:de:e6:8b:d1:a8:ae:56: 32:a5:37:93:c8:9a:fc:e7:15:03:db:d0:2b:4c:8f: 85:98:57:a5:61:10:1b:ba:a8:ff:83:34:4f:37:29: 48:12:c7:58:6b:76:42:8b:74:8f:04:55:06:9a:b7: 74:71:68:0d:73:6a:77:87:36:54:13:79:11:5f:84: 18:92:e1:68:12:93:61:d8:3a:d0:b9:b2:92:0e:d2: 20:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:7F:1B:FB:CB:41:CB:67:E7:D4:2B:3C:5A:FF:B1:48:17:F2:AD:A7 X509v3 Authority Key Identifier: keyid:49:01:1B:0D:97:FF:49:21:0F:C2:72:49:FD:D2:3F:71:72:FD:55:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/49011B0D97FF49210FC27249FDD23F7172FD5561.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49011B0D97FF49210FC27249FDD23F7172FD5561.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/3130332e36372e39312e302f32342d3234203d3e20313532303035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.67.91.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:f4:b0:e1:53:f7:7e:47:a1:6f:f7:58:2f:bb:50:9d:ab:d1: 0f:83:01:e2:89:11:22:b2:ee:15:e8:dc:b9:88:27:42:07:9b: 71:67:5c:d5:d7:7a:e0:39:d0:ff:24:57:27:39:a1:52:12:9c: da:eb:1f:ba:c1:22:4d:9c:f5:56:83:4b:2e:da:60:4a:88:ef: 13:54:00:de:12:ba:36:05:15:c7:41:26:25:ff:dd:29:fd:d3: 42:5b:2a:79:24:8a:3f:6b:5e:12:24:89:18:6d:ce:01:ad:9b: 6b:e7:bc:5c:0c:e2:05:01:4b:d0:74:51:8a:93:f6:3e:51:0e: bd:08:87:4b:cd:ab:c4:0e:57:05:17:95:e4:c5:c1:c1:fe:1a: 17:b6:f9:27:11:fe:c4:08:9a:15:42:ea:bd:fb:d3:38:35:15: a3:f3:60:35:fd:0c:3d:4a:1d:14:88:7e:bd:a5:f3:88:19:5b: c6:1e:7e:da:25:00:14:2d:32:0d:b5:c9:57:68:d7:16:b3:c3: 81:81:c3:b5:ea:40:0d:df:ab:04:88:e0:1f:3b:e8:c3:03:ea: eb:dc:8d:2f:72:ca:7d:da:29:85:1b:26:d7:b3:a7:53:fb:bc: b4:04:18:77:8e:e7:a6:00:c8:84:fe:3c:64:30:50:f4:1f:9c: 0d:d2:de:88 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaxhZ8Pc+O80+bdTb3YgiX+4bbQYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkwMTFCMEQ5N0ZGNDkyMTBGQzI3MjQ5RkREMjNGNzE3 MkZENTU2MTAeFw0yNTAxMjkwMjU3NDlaFw0yNjAxMjgwMzAyNDlaMDMxMTAvBgNV BAMTKEE5N0YxQkZCQ0I0MUNCNjdFN0Q0MkIzQzVBRkZCMTQ4MTdGMkFEQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU3kvJDZwiJWU6Kr2AUmneASRQ NbQPuQx/J2C8za/cuBtY5+eIaK1JZIy/4jKr+0QeyVg7Pn4UPfRFR+CjnITz6wo8 vN+1sTidhrQ2d4tfELEXtDOG8Af2dMSnWPI2lBnMLyWkA/Trd9Mr/h6HdjTl3etK b/XvZrQqcpFQnnlosD8yUty2/cVrKSu9s48jWusl4yNdX+ok/CgZfvV+u2qeiwP+ +Owvg2a4BExi3uaL0aiuVjKlN5PImvznFQPb0CtMj4WYV6VhEBu6qP+DNE83KUgS x1hrdkKLdI8EVQaat3RxaA1zaneHNlQTeRFfhBiS4WgSk2HYOtC5spIO0iAzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqX8b+8tBy2fn1Cs8Wv+xSBfyracwHwYDVR0j BBgwFoAUSQEbDZf/SSEPwnJJ/dI/cXL9VWEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODQ4ODUxOS04ZjA0LTQ0ZjUtODMxMi04ZDlkMzYxNmQwZDkvMC80OTAxMUIwRDk3 RkY0OTIxMEZDMjcyNDlGREQyM0Y3MTcyRkQ1NTYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDkwMTFCMEQ5N0ZGNDkyMTBGQzI3MjQ5RkREMjNGNzE3MkZE NTU2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4NDg4NTE5LThmMDQtNDRmNS04 MzEyLThkOWQzNjE2ZDBkOS8wLzMxMzAzMzJlMzYzNzJlMzkzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdDWzANBgkqhkiG 9w0BAQsFAAOCAQEALfSw4VP3fkehb/dYL7tQnavRD4MB4okRIrLuFejcuYgnQgeb cWdc1dd64DnQ/yRXJzmhUhKc2usfusEiTZz1VoNLLtpgSojvE1QA3hK6NgUVx0Em Jf/dKf3TQlsqeSSKP2teEiSJGG3OAa2ba+e8XAziBQFL0HRRipP2PlEOvQiHS82r xA5XBReV5MXBwf4aF7b5JxH+xAiaFULqvfvTODUVo/NgNf0MPUodFIh+vaXziBlb xh5+2iUAFC0yDbXJV2jXFrPDgYHDtepADd+rBIjgHzvowwPq69yNL3LKfdophRsm 17OnU/u8tAQYd47npgDIhP48ZDBQ9B+cDdLeiA== -----END CERTIFICATE-----Generated at Sun Apr 6 13:38:59 2025 by rpki-client