$ rpki-client -vvf repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131392e302f32342d3234203d3e20313337333738.roa File: 3130332e3131392e3131392e302f32342d3234203d3e20313337333738.roa (raw, json) Hash identifier: 3EM09fz5U4vIetkukDcNawwvtS4WV5nD8HmoRxw+WmQ= Subject key identifier: 89:EA:7A:85:30:4B:AD:58:95:A9:57:33:D7:D0:83:58:AE:FF:5D:43 Certificate issuer: /CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F Certificate serial: 29FB997ED88808A076ED60BC4303CFF08609367C Authority key identifier: 00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131392e302f32342d3234203d3e20313337333738.roa Signing time: Mon 01 Jul 2024 01:03:26 +0000 ROA not before: Mon 01 Jul 2024 00:58:26 +0000 ROA not after: Mon 30 Jun 2025 01:03:26 +0000 asID: 137378 IP address blocks: 103.119.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.crl rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 16:46:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:fb:99:7e:d8:88:08:a0:76:ed:60:bc:43:03:cf:f0:86:09:36:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F Validity Not Before: Jul 1 00:58:26 2024 GMT Not After : Jun 30 01:03:26 2025 GMT Subject: CN=89EA7A85304BAD5895A95733D7D08358AEFF5D43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:1d:0b:11:82:62:f3:89:94:f8:15:fd:03:37: 95:8b:9c:84:03:20:09:7c:dc:e8:ad:c0:03:22:9e: 22:1c:0b:79:73:9e:db:89:30:b3:d5:ab:07:59:76: 7a:98:68:2c:b4:5a:4e:ad:47:ce:2c:21:a0:35:af: 65:a6:5d:30:98:ae:23:c7:87:ab:13:b5:d5:1e:1c: 41:50:13:19:23:8d:ba:40:1b:e8:bc:3a:23:48:46: 54:5c:0a:ad:a6:27:b3:19:df:c2:fb:8e:34:6a:92: 33:97:0c:77:40:e8:01:9f:b5:82:34:11:23:7e:11: 83:82:a9:b5:54:b0:62:4d:db:3c:8d:d7:4b:e2:bb: e7:54:88:ff:e1:18:e9:66:97:ff:2a:04:09:83:cf: 3a:76:c2:d0:fa:c6:96:29:65:e5:fc:93:d6:a8:2d: 7b:21:b0:07:98:c9:49:0c:d3:e1:9e:7f:99:d6:21: 21:fd:92:fd:eb:c5:ea:a1:58:f5:3b:ea:ac:da:57: 6f:8c:f9:72:1d:33:4c:93:86:51:c1:a5:07:81:f9: f5:1e:36:61:4a:a7:6a:8a:8b:5f:4d:5e:b5:f2:a7: 40:82:9e:ad:04:3f:3b:50:5e:26:7e:12:8d:10:b5: 1e:b1:fb:2f:19:8d:9b:bb:0c:5e:e5:6b:66:33:9b: ed:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:EA:7A:85:30:4B:AD:58:95:A9:57:33:D7:D0:83:58:AE:FF:5D:43 X509v3 Authority Key Identifier: keyid:00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131392e302f32342d3234203d3e20313337333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.119.0/24 Signature Algorithm: sha256WithRSAEncryption 91:a3:4f:c4:c3:1e:62:07:25:64:5d:30:cd:8d:71:3c:ac:a2: 7f:4e:e6:da:f1:00:ee:08:b4:69:cf:8b:46:a9:b6:08:7d:05: 31:5b:6a:fa:7a:69:74:42:db:c7:1b:79:50:91:99:a7:94:2b: 6d:6c:ca:09:17:16:3d:89:85:ed:73:53:49:d6:2d:08:d9:26: fc:b9:c2:7f:ee:d5:c6:fa:b7:08:ed:bb:b6:eb:97:37:f2:88: c9:ee:59:41:0c:92:bd:71:93:24:cb:e0:ee:11:73:50:87:38: 5b:e2:3c:f3:26:05:ad:d1:ef:d8:fd:08:ea:db:34:3d:68:66: b3:0a:5f:57:a8:e4:80:21:0d:5d:92:54:2c:43:5b:8d:de:ed: 64:3d:a4:45:6b:da:38:43:84:19:ec:86:7a:00:d2:90:6b:9d: 3b:e8:dc:4d:92:15:58:31:30:66:dc:e6:2b:be:6e:c3:6e:c5: eb:18:1c:7f:12:ca:50:b6:4c:b2:d2:a9:4f:78:97:00:68:26: 6c:84:9f:af:d5:28:2c:97:1c:c5:ec:5e:7d:da:a6:e3:ff:a6: 47:b6:b5:de:26:f7:fb:a6:11:4c:d6:b9:04:0f:14:32:2e:7e: bf:3b:7b:bd:fb:86:9d:6a:e1:7b:16:6c:a3:5e:ee:ce:d2:c6: 5e:38:f7:e7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKfuZftiICKB27WC8QwPP8IYJNnwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBBQzY1RTYxRTQ5MTMyNjhDNUQwQjhBRkU4QzdEOTEz QjY4NkQ5RjAeFw0yNDA3MDEwMDU4MjZaFw0yNTA2MzAwMTAzMjZaMDMxMTAvBgNV BAMTKDg5RUE3QTg1MzA0QkFENTg5NUE5NTczM0Q3RDA4MzU4QUVGRjVENDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoHQsRgmLziZT4Ff0DN5WLnIQD IAl83OitwAMiniIcC3lzntuJMLPVqwdZdnqYaCy0Wk6tR84sIaA1r2WmXTCYriPH h6sTtdUeHEFQExkjjbpAG+i8OiNIRlRcCq2mJ7MZ38L7jjRqkjOXDHdA6AGftYI0 ESN+EYOCqbVUsGJN2zyN10viu+dUiP/hGOlml/8qBAmDzzp2wtD6xpYpZeX8k9ao LXshsAeYyUkM0+Gef5nWISH9kv3rxeqhWPU76qzaV2+M+XIdM0yThlHBpQeB+fUe NmFKp2qKi19NXrXyp0CCnq0EPztQXiZ+Eo0QtR6x+y8ZjZu7DF7la2Yzm+1RAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUiep6hTBLrViVqVcz19CDWK7/XUMwHwYDVR0j BBgwFoAUAKxl5h5JEyaMXQuK/ox9kTtobZ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTg5NTBmMC0zYjE0LTRhNmQtYjMwZi03NTM3OWNiMmViY2UvMC8wMEFDNjVFNjFF NDkxMzI2OEM1RDBCOEFGRThDN0Q5MTNCNjg2RDlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBBQzY1RTYxRTQ5MTMyNjhDNUQwQjhBRkU4QzdEOTEzQjY4 NkQ5Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlODk1MGYwLTNiMTQtNGE2ZC1i MzBmLTc1Mzc5Y2IyZWJjZS8wLzMxMzAzMzJlMzEzMTM5MmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnd3cwDQYJ KoZIhvcNAQELBQADggEBAJGjT8TDHmIHJWRdMM2NcTyson9O5trxAO4ItGnPi0ap tgh9BTFbavp6aXRC28cbeVCRmaeUK21sygkXFj2Jhe1zU0nWLQjZJvy5wn/u1cb6 twjtu7brlzfyiMnuWUEMkr1xkyTL4O4Rc1CHOFviPPMmBa3R79j9COrbND1oZrMK X1eo5IAhDV2SVCxDW43e7WQ9pEVr2jhDhBnshnoA0pBrnTvo3E2SFVgxMGbc5iu+ bsNuxesYHH8SylC2TLLSqU94lwBoJmyEn6/VKCyXHMXsXn3apuP/pke2td4m9/um EUzWuQQPFDIufr87e737hp1q4XsWbKNe7s7Sxl449+c= -----END CERTIFICATE-----Generated at Tue Mar 11 05:04:21 2025 by rpki-client