$ rpki-client -vvf repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0/3130332e3132312e3130382e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3130382e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: 7k9VB041/h48tvLV9+2dfEpOlnSTzjrAAE0UGdiG0sw= Subject key identifier: C6:6D:CA:EB:4B:40:05:EF:BD:9B:ED:44:E3:D6:77:BC:6C:67:E5:9A Certificate issuer: /CN=BE77663F7F3591A0E64D8D5AC98F2635919B4B3B Certificate serial: 4C85BD410306B59DF6737E16664EEBB9048AF375 Authority key identifier: BE:77:66:3F:7F:35:91:A0:E6:4D:8D:5A:C9:8F:26:35:91:9B:4B:3B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0/3130332e3132312e3130382e302f32332d3234203d3e20313335343738.roa Signing time: Wed 04 Dec 2024 05:00:00 +0000 ROA not before: Wed 04 Dec 2024 04:55:00 +0000 ROA not after: Wed 03 Dec 2025 05:00:00 +0000 asID: 135478 IP address blocks: 103.121.108.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.crl rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 23:57:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:85:bd:41:03:06:b5:9d:f6:73:7e:16:66:4e:eb:b9:04:8a:f3:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE77663F7F3591A0E64D8D5AC98F2635919B4B3B Validity Not Before: Dec 4 04:55:00 2024 GMT Not After : Dec 3 05:00:00 2025 GMT Subject: CN=C66DCAEB4B4005EFBD9BED44E3D677BC6C67E59A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f2:b0:fe:d4:0c:2e:b5:a6:32:81:76:57:ae: 0a:12:b2:aa:ab:f0:a3:05:bb:ef:a5:18:71:d7:60: ae:4a:f3:de:b7:1b:55:40:37:14:b3:8e:7d:61:91: b3:7a:c6:d0:05:8e:f1:90:d5:eb:ec:f8:16:18:22: 67:10:7f:18:55:d7:17:65:26:61:ba:65:50:87:9d: d7:7e:f5:4c:3f:fd:83:7a:37:d1:8b:5f:e7:f2:b8: ff:cb:2e:f5:3d:3b:31:90:96:9d:c8:3d:07:37:4b: 0b:4a:51:10:61:86:cf:86:17:53:c1:a1:de:63:9f: 5b:24:95:d0:ca:29:22:8f:28:a6:54:01:f4:d8:7b: 99:51:13:e3:3e:8e:3a:62:a3:29:76:f6:94:17:8c: f8:1a:a0:03:31:6c:dc:96:c0:72:ab:a7:44:3f:d8: 9b:4a:76:87:53:31:d8:47:8c:46:0a:fb:58:4f:b9: 75:dc:39:f6:b4:7d:2d:71:24:9a:ba:09:c2:e7:b3: 2f:8b:2f:61:e1:3d:7f:80:92:05:d2:4b:5c:a3:ae: 1d:ed:73:06:45:6e:58:9b:8f:0f:51:fa:aa:be:f2: e1:00:25:ef:44:c4:f3:b6:91:c9:42:e9:2d:6e:27: f0:66:8d:c1:c3:9a:d6:b3:1a:47:50:6e:76:73:08: 10:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:6D:CA:EB:4B:40:05:EF:BD:9B:ED:44:E3:D6:77:BC:6C:67:E5:9A X509v3 Authority Key Identifier: keyid:BE:77:66:3F:7F:35:91:A0:E6:4D:8D:5A:C9:8F:26:35:91:9B:4B:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0/3130332e3132312e3130382e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.108.0/23 Signature Algorithm: sha256WithRSAEncryption 61:67:dd:7e:8e:e3:df:e8:bd:04:4e:08:78:6f:c3:48:57:59: 05:6c:3a:00:6b:1e:87:26:89:a1:41:77:32:33:cb:1b:72:68: c3:62:10:07:c4:0f:d2:aa:99:fb:e8:64:70:1f:9f:dc:42:bf: f5:65:5c:e4:b2:63:8e:e0:c3:d4:d3:7c:f0:41:c5:61:3b:8f: 86:85:c7:65:68:1a:e5:37:5e:53:1a:c1:eb:48:81:be:0d:fa: c4:93:0a:19:94:bb:00:fb:c2:92:15:a1:45:2f:68:0f:7b:ff: fc:22:9d:2c:e0:c9:e5:e6:cc:a3:7e:c7:4a:2b:88:2a:1f:6b: 7b:e7:30:ae:28:cb:61:94:fd:73:18:72:0c:e3:b4:fc:08:61: f3:de:fb:00:8b:a0:05:5e:3b:f6:50:06:78:0c:e3:20:67:4f: 28:03:c3:03:62:bb:0f:59:3b:92:48:81:e5:9a:25:d3:06:5c: 91:5e:60:a7:59:cf:46:84:36:06:b7:ed:ee:ad:b9:c4:91:db: c3:f4:93:6d:10:ed:f2:b4:db:cc:76:25:93:d7:1c:28:85:09: 64:b9:82:2f:1d:d7:23:24:af:57:bb:72:68:8a:34:8d:b1:36: a6:88:dc:6c:d5:26:fd:46:c3:a5:99:ea:89:4a:e0:08:69:bb: 0f:be:71:e3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTIW9QQMGtZ32c34WZk7ruQSK83UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3NzY2M0Y3RjM1OTFBMEU2NEQ4RDVBQzk4RjI2MzU5 MTlCNEIzQjAeFw0yNDEyMDQwNDU1MDBaFw0yNTEyMDMwNTAwMDBaMDMxMTAvBgNV BAMTKEM2NkRDQUVCNEI0MDA1RUZCRDlCRUQ0NEUzRDY3N0JDNkM2N0U1OUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB8rD+1AwutaYygXZXrgoSsqqr 8KMFu++lGHHXYK5K8963G1VANxSzjn1hkbN6xtAFjvGQ1evs+BYYImcQfxhV1xdl JmG6ZVCHndd+9Uw//YN6N9GLX+fyuP/LLvU9OzGQlp3IPQc3SwtKURBhhs+GF1PB od5jn1skldDKKSKPKKZUAfTYe5lRE+M+jjpioyl29pQXjPgaoAMxbNyWwHKrp0Q/ 2JtKdodTMdhHjEYK+1hPuXXcOfa0fS1xJJq6CcLnsy+LL2HhPX+AkgXSS1yjrh3t cwZFblibjw9R+qq+8uEAJe9ExPO2kclC6S1uJ/BmjcHDmtazGkdQbnZzCBDnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUxm3K60tABe+9m+1E49Z3vGxn5ZowHwYDVR0j BBgwFoAUvndmP381kaDmTY1ayY8mNZGbSzswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NGI0ZmU5My03Mjk2LTQ4YjQtYWEwZC1jOGE1YTNkZmQ1OWEvMC9CRTc3NjYzRjdG MzU5MUEwRTY0RDhENUFDOThGMjYzNTkxOUI0QjNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3NzY2M0Y3RjM1OTFBMEU2NEQ4RDVBQzk4RjI2MzU5MTlC NEIzQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0YjRmZTkzLTcyOTYtNDhiNC1h YTBkLWM4YTVhM2RmZDU5YS8wLzMxMzAzMzJlMzEzMjMxMmUzMTMwMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneWwwDQYJ KoZIhvcNAQELBQADggEBAGFn3X6O49/ovQROCHhvw0hXWQVsOgBrHocmiaFBdzIz yxtyaMNiEAfED9KqmfvoZHAfn9xCv/VlXOSyY47gw9TTfPBBxWE7j4aFx2VoGuU3 XlMawetIgb4N+sSTChmUuwD7wpIVoUUvaA97//winSzgyeXmzKN+x0oriCofa3vn MK4oy2GU/XMYcgzjtPwIYfPe+wCLoAVeO/ZQBngM4yBnTygDwwNiuw9ZO5JIgeWa JdMGXJFeYKdZz0aENga37e6tucSR28P0k20Q7fK028x2JZPXHCiFCWS5gi8d1yMk r1e7cmiKNI2xNqaI3GzVJv1Gw6WZ6olK4Ahpuw++ceM= -----END CERTIFICATE-----Generated at Sun Apr 6 07:43:44 2025 by rpki-client