$ rpki-client -vvf repo-rpki.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/3130332e3133392e39382e302f32332d3234203d3e20313338383632.roa File: 3130332e3133392e39382e302f32332d3234203d3e20313338383632.roa (raw, json) Hash identifier: d0zP4gpEpMGDqRwrrELVhm3gEjbXDj5VKEiqUue8+NI= Subject key identifier: 5C:4D:94:7A:68:56:5B:98:9E:C0:B6:26:E2:08:7F:7B:90:8B:E8:DD Certificate issuer: /CN=88D56B9372987974D75D5FEB6C48FA491B771DE6 Certificate serial: 55FB2AD06798046BD58A234900A09767D8B9B538 Authority key identifier: 88:D5:6B:93:72:98:79:74:D7:5D:5F:EB:6C:48:FA:49:1B:77:1D:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88D56B9372987974D75D5FEB6C48FA491B771DE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/3130332e3133392e39382e302f32332d3234203d3e20313338383632.roa Signing time: Wed 25 Dec 2024 05:00:02 +0000 ROA not before: Wed 25 Dec 2024 04:55:02 +0000 ROA not after: Wed 24 Dec 2025 05:00:02 +0000 asID: 138862 IP address blocks: 103.139.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/88D56B9372987974D75D5FEB6C48FA491B771DE6.crl rsync://repo-rpki.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/88D56B9372987974D75D5FEB6C48FA491B771DE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88D56B9372987974D75D5FEB6C48FA491B771DE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 04:27:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:fb:2a:d0:67:98:04:6b:d5:8a:23:49:00:a0:97:67:d8:b9:b5:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88D56B9372987974D75D5FEB6C48FA491B771DE6 Validity Not Before: Dec 25 04:55:02 2024 GMT Not After : Dec 24 05:00:02 2025 GMT Subject: CN=5C4D947A68565B989EC0B626E2087F7B908BE8DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bc:6f:0f:24:7b:25:7c:40:e9:20:50:52:bf: b1:8d:e4:5c:e9:a9:17:05:d9:29:7d:7b:44:20:b5: d8:7f:3f:3b:9c:e9:97:9f:55:6b:0d:23:a1:cc:f7: ff:e6:8c:79:d0:69:35:bb:32:a2:c5:7e:2f:e1:b4: 88:d4:e2:c6:37:00:09:a9:54:a0:37:c8:99:96:35: 47:32:14:41:c4:29:e3:20:18:53:96:ca:ed:9e:33: 92:9f:6c:8a:97:e2:26:28:9e:99:b2:d1:be:e1:86: 89:09:34:5b:b2:ec:c4:b3:37:62:b6:5e:57:6e:50: 98:ab:cd:aa:ee:9f:4e:af:34:5d:fa:cc:0d:b7:ad: d2:99:10:1d:cc:c1:dd:75:aa:74:59:0c:4a:99:cc: 9d:e7:45:d6:b9:94:64:9d:81:91:f0:2e:2c:8b:23: 24:4f:06:57:72:8c:e1:17:b8:9a:67:bd:73:ca:7e: 5c:4e:e4:92:5d:ad:cf:3a:86:63:ce:9d:1a:f0:02: 1d:e8:ab:57:6a:e3:f8:39:3c:90:e3:99:39:73:4b: 7d:f3:2c:42:ae:95:30:64:b4:f9:c7:ab:77:66:5f: da:fe:ff:37:ae:7a:0d:af:49:33:45:8d:4f:7f:6e: 24:e4:c8:cc:c2:3b:72:06:69:c3:76:88:fd:bf:2b: d5:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:4D:94:7A:68:56:5B:98:9E:C0:B6:26:E2:08:7F:7B:90:8B:E8:DD X509v3 Authority Key Identifier: keyid:88:D5:6B:93:72:98:79:74:D7:5D:5F:EB:6C:48:FA:49:1B:77:1D:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/88D56B9372987974D75D5FEB6C48FA491B771DE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88D56B9372987974D75D5FEB6C48FA491B771DE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/3130332e3133392e39382e302f32332d3234203d3e20313338383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.98.0/23 Signature Algorithm: sha256WithRSAEncryption bd:cd:58:b9:30:9f:13:59:c2:02:bf:c4:34:f4:27:b8:69:12: f3:16:18:b0:13:d5:ec:2c:a3:1f:42:c3:32:a4:38:c4:48:f6: 6b:70:e9:d4:5b:91:81:01:89:3a:08:87:4c:97:ac:cc:30:c7: 38:a1:10:1a:6b:ee:ca:7a:03:20:cf:53:b3:13:d2:4b:dd:1d: 67:fc:20:34:c1:08:09:22:08:96:8c:7b:76:fa:66:fb:6a:10: 5a:fc:d6:a3:2f:39:d8:3c:e1:a4:31:5a:22:b2:98:68:70:43: ba:14:cd:eb:0a:04:46:98:28:cd:61:70:a6:d1:e9:61:9c:0f: fc:ec:a6:59:7e:6a:41:a0:cc:e4:5d:c9:21:f3:ac:76:bf:fa: 16:52:5b:4f:98:c7:0c:71:1c:e0:75:1c:ef:64:d7:d3:24:49: 1b:a3:68:c2:d8:98:69:88:ac:f1:51:e4:d3:65:43:68:31:25: 88:b0:63:67:9a:5b:1d:e6:52:a4:b6:4b:3c:0d:0d:df:cf:80: 27:d8:3b:e7:cc:bb:cb:6f:b8:52:5a:78:92:6b:8a:7a:fa:5b: 91:1d:63:f4:5e:fb:57:13:86:9c:f1:55:70:e0:2e:30:38:c1: 0c:b7:d1:dd:a7:48:1e:74:d4:73:68:e3:bc:58:18:4f:d5:17: 48:0a:ae:ee -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVfsq0GeYBGvViiNJAKCXZ9i5tTgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhENTZCOTM3Mjk4Nzk3NEQ3NUQ1RkVCNkM0OEZBNDkx Qjc3MURFNjAeFw0yNDEyMjUwNDU1MDJaFw0yNTEyMjQwNTAwMDJaMDMxMTAvBgNV BAMTKDVDNEQ5NDdBNjg1NjVCOTg5RUMwQjYyNkUyMDg3RjdCOTA4QkU4REQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5vG8PJHslfEDpIFBSv7GN5Fzp qRcF2Sl9e0Qgtdh/Pzuc6ZefVWsNI6HM9//mjHnQaTW7MqLFfi/htIjU4sY3AAmp VKA3yJmWNUcyFEHEKeMgGFOWyu2eM5KfbIqX4iYonpmy0b7hhokJNFuy7MSzN2K2 XlduUJirzarun06vNF36zA23rdKZEB3Mwd11qnRZDEqZzJ3nRda5lGSdgZHwLiyL IyRPBldyjOEXuJpnvXPKflxO5JJdrc86hmPOnRrwAh3oq1dq4/g5PJDjmTlzS33z LEKulTBktPnHq3dmX9r+/zeueg2vSTNFjU9/biTkyMzCO3IGacN2iP2/K9UDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXE2UemhWW5iewLYm4gh/e5CL6N0wHwYDVR0j BBgwFoAUiNVrk3KYeXTXXV/rbEj6SRt3HeYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NTA2MzNmYy1mZTIzLTRkODItYmE2NC1iYjdlZTZkZDZlMDYvMC84OEQ1NkI5Mzcy OTg3OTc0RDc1RDVGRUI2QzQ4RkE0OTFCNzcxREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODhENTZCOTM3Mjk4Nzk3NEQ3NUQ1RkVCNkM0OEZBNDkxQjc3 MURFNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ1MDYzM2ZjLWZlMjMtNGQ4Mi1i YTY0LWJiN2VlNmRkNmUwNi8wLzMxMzAzMzJlMzEzMzM5MmUzOTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNjMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4tiMA0GCSqG SIb3DQEBCwUAA4IBAQC9zVi5MJ8TWcICv8Q09Ce4aRLzFhiwE9XsLKMfQsMypDjE SPZrcOnUW5GBAYk6CIdMl6zMMMc4oRAaa+7KegMgz1OzE9JL3R1n/CA0wQgJIgiW jHt2+mb7ahBa/NajLznYPOGkMVoisphocEO6FM3rCgRGmCjNYXCm0elhnA/87KZZ fmpBoMzkXckh86x2v/oWUltPmMcMcRzgdRzvZNfTJEkbo2jC2JhpiKzxUeTTZUNo MSWIsGNnmlsd5lKktks8DQ3fz4An2DvnzLvLb7hSWniSa4p6+luRHWP0XvtXE4ac 8VVw4C4wOMEMt9Hdp0gedNRzaOO8WBhP1RdICq7u -----END CERTIFICATE-----Generated at Sun Apr 6 21:33:22 2025 by rpki-client