$ rpki-client -vvf repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/3130332e3234332e31312e302f32342d3234203d3e20313532303331.roa File: 3130332e3234332e31312e302f32342d3234203d3e20313532303331.roa (raw, json) Hash identifier: fMFb9fh0j0vyyDRCfSTBrQgFpLQVi1+4hBCwpbgvgBs= Subject key identifier: C6:00:11:4F:CB:7E:59:02:39:9E:57:7A:0B:7D:96:C9:D3:D2:71:00 Certificate issuer: /CN=A9D46A066DBAE3776A15E9AB09A6CD3C8216615B Certificate serial: 0DE3860644CEC0149B91C985617582A58A2D949F Authority key identifier: A9:D4:6A:06:6D:BA:E3:77:6A:15:E9:AB:09:A6:CD:3C:82:16:61:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/3130332e3234332e31312e302f32342d3234203d3e20313532303331.roa Signing time: Sat 14 Dec 2024 06:00:00 +0000 ROA not before: Sat 14 Dec 2024 05:55:00 +0000 ROA not after: Sat 13 Dec 2025 06:00:00 +0000 asID: 152031 IP address blocks: 103.243.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.crl rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 10:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:e3:86:06:44:ce:c0:14:9b:91:c9:85:61:75:82:a5:8a:2d:94:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9D46A066DBAE3776A15E9AB09A6CD3C8216615B Validity Not Before: Dec 14 05:55:00 2024 GMT Not After : Dec 13 06:00:00 2025 GMT Subject: CN=C600114FCB7E5902399E577A0B7D96C9D3D27100 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:bb:6e:43:22:f5:bb:e2:50:d4:f3:64:4e:29: d9:1d:29:19:c1:af:a9:28:da:9e:20:4d:73:20:7c: 7f:23:f6:3f:0a:ca:90:83:3d:56:4c:55:ce:88:50: 1f:e7:53:39:95:d1:cf:ae:c0:7f:bb:bf:6b:c7:7b: 91:32:20:59:77:2a:fc:4c:5a:4b:51:7a:6d:cb:b1: 1b:51:f3:1b:e0:fc:f9:8e:4a:d1:de:f1:ea:93:53: 15:1d:1f:a4:bf:c6:01:40:0d:f2:99:c1:07:58:27: 22:de:7f:69:cf:bd:75:8d:8e:e5:47:1e:27:46:5b: 89:e5:1b:f9:32:e4:95:91:41:09:b5:65:7c:ad:8e: 11:40:9a:ee:3d:82:53:03:c5:11:5f:f8:b3:46:b6: 01:b5:4a:bd:1b:86:e3:41:38:b7:6a:0b:55:4f:ac: e2:3b:b5:50:fd:47:b9:b5:c6:83:0d:ea:b6:2b:f4: 38:86:c2:11:9e:0f:d8:bc:4a:10:65:c5:20:f1:67: ad:d2:ce:96:16:16:48:da:ad:35:e9:9a:2b:fc:8b: 6b:73:9c:33:f7:33:d5:0a:48:e5:f6:f6:f6:fd:aa: 64:9c:8b:4f:22:f1:11:a0:ed:ea:4c:c1:c0:a6:c6: 07:89:ca:85:47:b7:92:39:ae:c8:76:2a:01:6c:3a: 15:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:00:11:4F:CB:7E:59:02:39:9E:57:7A:0B:7D:96:C9:D3:D2:71:00 X509v3 Authority Key Identifier: keyid:A9:D4:6A:06:6D:BA:E3:77:6A:15:E9:AB:09:A6:CD:3C:82:16:61:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/3130332e3234332e31312e302f32342d3234203d3e20313532303331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.243.11.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:06:98:55:78:8b:ab:bd:da:8f:75:15:fa:89:b0:32:9d:00: 52:3f:9c:a7:87:b8:dd:70:61:3e:6b:a5:3b:b6:23:64:dd:cd: 6a:cd:49:6a:22:d5:65:1c:0c:a2:c1:d5:58:7d:e8:aa:19:2c: 09:2a:9a:2d:c4:fc:c7:60:19:50:a1:50:0b:af:d5:ca:97:24: c7:fb:97:60:6b:38:d7:fd:c5:84:47:46:78:7c:3d:9d:6b:47: 59:48:e9:c3:5d:0c:a5:10:3f:f4:a0:4e:ee:56:2e:89:16:f9: c3:a3:37:c0:20:8b:73:ef:6d:24:bc:a0:6b:4a:2f:34:39:ba: b4:2a:a7:e2:f6:df:f9:91:ca:f2:2f:20:a6:f3:95:df:80:2e: 75:8d:48:30:22:52:bd:0c:eb:0c:af:98:93:f5:f5:b2:b8:2a: 5e:2c:62:d1:37:17:4f:92:3b:6e:95:d0:cc:03:25:9f:8e:ce: f8:91:b2:32:81:44:a3:9c:26:11:4b:3e:26:49:09:f0:48:01: be:c7:bd:ca:b5:14:05:95:8c:8d:e1:6a:38:27:a5:08:85:55: 8d:cd:38:9f:b9:96:f2:7e:7f:2c:d6:8c:14:12:e5:f8:4d:28: 18:65:cf:8a:7a:3b:b6:bc:91:e0:d3:40:2c:c4:63:40:1e:e7: fc:68:79:ab -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDeOGBkTOwBSbkcmFYXWCpYotlJ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlENDZBMDY2REJBRTM3NzZBMTVFOUFCMDlBNkNEM0M4 MjE2NjE1QjAeFw0yNDEyMTQwNTU1MDBaFw0yNTEyMTMwNjAwMDBaMDMxMTAvBgNV BAMTKEM2MDAxMTRGQ0I3RTU5MDIzOTlFNTc3QTBCN0Q5NkM5RDNEMjcxMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAu25DIvW74lDU82ROKdkdKRnB r6ko2p4gTXMgfH8j9j8KypCDPVZMVc6IUB/nUzmV0c+uwH+7v2vHe5EyIFl3KvxM WktRem3LsRtR8xvg/PmOStHe8eqTUxUdH6S/xgFADfKZwQdYJyLef2nPvXWNjuVH HidGW4nlG/ky5JWRQQm1ZXytjhFAmu49glMDxRFf+LNGtgG1Sr0bhuNBOLdqC1VP rOI7tVD9R7m1xoMN6rYr9DiGwhGeD9i8ShBlxSDxZ63SzpYWFkjarTXpmiv8i2tz nDP3M9UKSOX29vb9qmSci08i8RGg7epMwcCmxgeJyoVHt5I5rsh2KgFsOhWpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxgART8t+WQI5nld6C32WydPScQAwHwYDVR0j BBgwFoAUqdRqBm2643dqFemrCabNPIIWYVswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MmM3ZGZkNC1lNTEwLTQ3MDctOTgxOC1hMmIxZTJjNmIyMTYvMC9BOUQ0NkEwNjZE QkFFMzc3NkExNUU5QUIwOUE2Q0QzQzgyMTY2MTVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlENDZBMDY2REJBRTM3NzZBMTVFOUFCMDlBNkNEM0M4MjE2 NjE1Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQyYzdkZmQ0LWU1MTAtNDcwNy05 ODE4LWEyYjFlMmM2YjIxNi8wLzMxMzAzMzJlMzIzNDMzMmUzMTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/MLMA0GCSqG SIb3DQEBCwUAA4IBAQBtBphVeIurvdqPdRX6ibAynQBSP5ynh7jdcGE+a6U7tiNk 3c1qzUlqItVlHAyiwdVYfeiqGSwJKpotxPzHYBlQoVALr9XKlyTH+5dgazjX/cWE R0Z4fD2da0dZSOnDXQylED/0oE7uVi6JFvnDozfAIItz720kvKBrSi80Obq0Kqfi 9t/5kcryLyCm85XfgC51jUgwIlK9DOsMr5iT9fWyuCpeLGLRNxdPkjtuldDMAyWf js74kbIygUSjnCYRSz4mSQnwSAG+x73KtRQFlYyN4Wo4J6UIhVWNzTifuZbyfn8s 1owUEuX4TSgYZc+Keju2vJHg00AsxGNAHuf8aHmr -----END CERTIFICATE-----Generated at Sun Apr 6 12:05:59 2025 by rpki-client