$ rpki-client -vvf repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/3130332e3134382e37372e302f32342d3234203d3e20313339393839.roa File: 3130332e3134382e37372e302f32342d3234203d3e20313339393839.roa (raw, json) Hash identifier: +q/iuIkAvoW/+mRN5t1jx8eDH7Y2uNKgPrNXx6SUxWI= Subject key identifier: 8D:61:0B:3F:D4:95:32:78:D4:18:EC:C6:7C:F5:80:28:61:9D:EB:9A Certificate issuer: /CN=5A0CBE2DBCF9883569F8C24BFB9E595442D835D0 Certificate serial: 531D8E453ED81E528AB849C943D13B1A967CB411 Authority key identifier: 5A:0C:BE:2D:BC:F9:88:35:69:F8:C2:4B:FB:9E:59:54:42:D8:35:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/3130332e3134382e37372e302f32342d3234203d3e20313339393839.roa Signing time: Mon 01 Jul 2024 01:03:59 +0000 ROA not before: Mon 01 Jul 2024 00:58:59 +0000 ROA not after: Mon 30 Jun 2025 01:03:59 +0000 asID: 139989 IP address blocks: 103.148.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.crl rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:1d:8e:45:3e:d8:1e:52:8a:b8:49:c9:43:d1:3b:1a:96:7c:b4:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A0CBE2DBCF9883569F8C24BFB9E595442D835D0 Validity Not Before: Jul 1 00:58:59 2024 GMT Not After : Jun 30 01:03:59 2025 GMT Subject: CN=8D610B3FD4953278D418ECC67CF58028619DEB9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a8:ba:d1:1d:b4:dd:05:f6:61:de:95:4e:71: cb:b7:f0:6f:7e:7e:c7:3d:fa:59:05:eb:1e:95:a7: fa:10:48:e3:5e:96:8e:14:cb:96:b1:6d:49:56:99: af:2f:f7:92:2b:41:ac:66:e9:ce:d4:38:b1:f9:f1: a6:e4:20:ed:2a:d2:fb:d4:32:8f:79:61:08:34:7b: c2:fe:be:e2:62:61:84:9a:0f:1a:54:c1:a1:d7:cc: 1d:ff:7f:d1:05:df:23:da:95:da:18:22:e0:e0:1c: 56:b9:98:3d:0a:29:25:33:3b:7d:ac:fe:a2:f3:ce: 38:0e:13:df:44:9d:91:fc:22:fc:03:b9:73:dd:b2: 43:04:92:14:1f:34:1c:dc:69:33:c9:54:f2:31:8c: 45:35:83:c0:8f:dc:1d:f9:8e:53:46:37:74:d5:e1: 37:72:81:dd:69:71:ce:78:4c:0b:31:b9:24:37:2d: 88:e6:f9:d1:90:83:0b:11:59:10:28:19:08:47:22: b8:f5:88:1d:29:c8:74:d7:74:01:50:11:7c:df:98: fe:a4:da:b0:9b:d4:f6:cd:ff:c4:4c:5e:6f:bf:53: 06:c2:bb:05:18:98:5b:19:60:5a:19:1a:76:3b:b9: 54:ff:ca:1b:3a:9a:98:d5:c2:99:42:e0:8d:a1:ef: bf:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:61:0B:3F:D4:95:32:78:D4:18:EC:C6:7C:F5:80:28:61:9D:EB:9A X509v3 Authority Key Identifier: keyid:5A:0C:BE:2D:BC:F9:88:35:69:F8:C2:4B:FB:9E:59:54:42:D8:35:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/3130332e3134382e37372e302f32342d3234203d3e20313339393839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.77.0/24 Signature Algorithm: sha256WithRSAEncryption 67:e2:06:e1:23:5d:b2:22:3e:bc:90:ec:d9:21:cc:5e:7a:64: 2c:a5:b5:08:6b:2e:db:50:8a:19:a1:43:15:c4:56:34:f8:d6: 80:9c:35:4d:b5:a7:2a:15:ec:4a:9a:87:de:9f:c4:a2:5b:f6: af:11:4e:65:01:40:96:4d:f5:e9:4d:61:61:ba:a5:d7:86:57: c7:80:41:b6:3f:a8:07:50:fa:e8:9b:22:01:87:66:64:7d:e5: ea:dd:44:21:e9:ab:c4:a4:5c:4f:25:5d:32:c4:d0:e8:3f:c9: 31:c5:3c:cf:f9:eb:ac:dd:90:d4:7f:b7:b5:a8:09:fb:e7:70: 44:9e:17:43:f1:c1:19:15:c9:4d:d8:9c:49:83:a5:a3:f4:29: 90:24:44:f0:0c:2b:a4:71:0a:5e:2f:40:55:97:41:94:d0:6b: d4:08:13:ce:54:7b:82:34:4e:fc:3e:7f:55:ea:f2:b6:77:31: 54:7d:54:40:f5:5f:f0:51:a1:86:9f:7d:4c:f6:4f:53:76:95: a7:f4:bd:8c:22:8f:3f:4e:9f:b4:e6:fb:b6:53:2a:66:2b:29: 0a:f2:b7:43:88:50:39:20:2b:7a:01:05:6a:c0:27:ec:30:ee: 0a:89:dd:bd:5e:9d:d7:4a:75:c0:09:64:19:8d:88:12:70:df: 23:c6:69:c0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUx2ORT7YHlKKuEnJQ9E7GpZ8tBEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUEwQ0JFMkRCQ0Y5ODgzNTY5RjhDMjRCRkI5RTU5NTQ0 MkQ4MzVEMDAeFw0yNDA3MDEwMDU4NTlaFw0yNTA2MzAwMTAzNTlaMDMxMTAvBgNV BAMTKDhENjEwQjNGRDQ5NTMyNzhENDE4RUNDNjdDRjU4MDI4NjE5REVCOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmqLrRHbTdBfZh3pVOccu38G9+ fsc9+lkF6x6Vp/oQSONelo4Uy5axbUlWma8v95IrQaxm6c7UOLH58abkIO0q0vvU Mo95YQg0e8L+vuJiYYSaDxpUwaHXzB3/f9EF3yPaldoYIuDgHFa5mD0KKSUzO32s /qLzzjgOE99EnZH8IvwDuXPdskMEkhQfNBzcaTPJVPIxjEU1g8CP3B35jlNGN3TV 4Tdygd1pcc54TAsxuSQ3LYjm+dGQgwsRWRAoGQhHIrj1iB0pyHTXdAFQEXzfmP6k 2rCb1PbN/8RMXm+/UwbCuwUYmFsZYFoZGnY7uVT/yhs6mpjVwplC4I2h77/7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjWELP9SVMnjUGOzGfPWAKGGd65owHwYDVR0j BBgwFoAUWgy+Lbz5iDVp+MJL+55ZVELYNdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MDMxNzQ2ZS1iMGY2LTQ4MjctOGM0ZS1iODE5MmRlY2MzOWEvMC81QTBDQkUyREJD Rjk4ODM1NjlGOEMyNEJGQjlFNTk1NDQyRDgzNUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUEwQ0JFMkRCQ0Y5ODgzNTY5RjhDMjRCRkI5RTU5NTQ0MkQ4 MzVEMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQwMzE3NDZlLWIwZjYtNDgyNy04 YzRlLWI4MTkyZGVjYzM5YS8wLzMxMzAzMzJlMzEzNDM4MmUzNzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5RNMA0GCSqG SIb3DQEBCwUAA4IBAQBn4gbhI12yIj68kOzZIcxeemQspbUIay7bUIoZoUMVxFY0 +NaAnDVNtacqFexKmofen8SiW/avEU5lAUCWTfXpTWFhuqXXhlfHgEG2P6gHUPro myIBh2ZkfeXq3UQh6avEpFxPJV0yxNDoP8kxxTzP+eus3ZDUf7e1qAn753BEnhdD 8cEZFclN2JxJg6Wj9CmQJETwDCukcQpeL0BVl0GU0GvUCBPOVHuCNE78Pn9V6vK2 dzFUfVRA9V/wUaGGn31M9k9TdpWn9L2MIo8/Tp+05vu2UypmKykK8rdDiFA5ICt6 AQVqwCfsMO4Kid29Xp3XSnXACWQZjYgScN8jxmnA -----END CERTIFICATE-----Generated at Sun Feb 16 22:00:18 2025 by rpki-client