$ rpki-client -vvf repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/3130332e3132342e3139372e302f32342d3234203d3e20313338303936.roa File: 3130332e3132342e3139372e302f32342d3234203d3e20313338303936.roa (raw, json) Hash identifier: 7FAJxsuBrko15cCX6rd5HfkQZUmVq0x0cSMeG2DacCw= Subject key identifier: 4D:1F:FD:1F:83:DB:A5:81:81:49:8B:3D:B9:14:A6:22:36:10:78:86 Certificate issuer: /CN=B605D71FEB5A1DBE5676CFACB394ABBA37C83A86 Certificate serial: 435E05AC6BD035FE36AFA9F4EB7CFBD0F518364B Authority key identifier: B6:05:D7:1F:EB:5A:1D:BE:56:76:CF:AC:B3:94:AB:BA:37:C8:3A:86 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.cer Subject info access: rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/3130332e3132342e3139372e302f32342d3234203d3e20313338303936.roa Signing time: Mon 01 Jul 2024 01:04:06 +0000 ROA not before: Mon 01 Jul 2024 00:59:06 +0000 ROA not after: Mon 30 Jun 2025 01:04:06 +0000 asID: 138096 IP address blocks: 103.124.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.crl rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 21:34:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:5e:05:ac:6b:d0:35:fe:36:af:a9:f4:eb:7c:fb:d0:f5:18:36:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B605D71FEB5A1DBE5676CFACB394ABBA37C83A86 Validity Not Before: Jul 1 00:59:06 2024 GMT Not After : Jun 30 01:04:06 2025 GMT Subject: CN=4D1FFD1F83DBA58181498B3DB914A62236107886 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:91:06:60:d4:b5:0e:4a:1c:0e:d5:22:04:79: 14:51:7e:45:53:46:57:b1:1d:62:b8:83:f2:6a:58: fc:64:65:80:d9:0c:e1:43:5d:4c:64:51:26:00:cf: fb:5f:dc:a7:b9:49:19:80:69:fa:55:f3:f0:43:4b: 95:bf:68:fa:5d:d5:3b:f8:42:1e:d1:47:b6:61:fd: 36:51:b6:3f:d6:92:9a:29:41:95:70:55:63:20:2e: 8c:71:54:3c:86:0e:61:b4:fa:b9:36:c7:6d:7d:82: 80:7a:62:1d:09:8c:89:3a:43:48:46:73:ad:ae:19: a3:21:34:61:80:a3:a7:c1:1f:3b:57:58:75:ad:56: e1:a5:ef:5c:44:9f:83:11:79:fd:e8:a8:bd:83:59: f2:4d:79:49:ae:01:d1:f2:be:81:ea:86:33:89:76: 85:c9:3c:57:7d:f1:d4:32:e9:fc:4a:ed:d6:8b:6d: 17:24:7f:19:5b:e2:44:9c:b1:0a:b3:8b:d6:58:56: e0:53:3f:ad:8c:15:44:c1:35:7c:7d:f4:95:3f:e5: 55:ff:07:a4:97:df:8f:98:ad:7e:6e:6e:3a:b4:1b: 77:ea:cf:14:ad:d1:1c:70:06:c5:d2:70:ed:24:db: 61:20:71:38:26:0a:aa:bb:5e:b6:1d:ce:b9:79:52: 27:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:1F:FD:1F:83:DB:A5:81:81:49:8B:3D:B9:14:A6:22:36:10:78:86 X509v3 Authority Key Identifier: keyid:B6:05:D7:1F:EB:5A:1D:BE:56:76:CF:AC:B3:94:AB:BA:37:C8:3A:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/3130332e3132342e3139372e302f32342d3234203d3e20313338303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.197.0/24 Signature Algorithm: sha256WithRSAEncryption 33:b1:e1:9a:c2:12:17:0b:8c:43:30:70:f9:16:48:41:23:23: ea:3c:13:d2:4a:c8:ae:f8:ac:0b:b8:95:ce:f7:39:d8:9c:c4: c9:f4:f3:b3:cc:58:6f:22:16:a7:d6:e8:11:de:7a:c1:7d:7c: 8e:4e:62:c5:b1:21:32:01:1c:2f:97:25:5a:9b:59:0e:61:f0: 39:33:8a:ac:ec:27:0e:26:03:dc:2a:67:e8:9e:ba:09:d3:c1: f0:15:3f:3b:30:b2:2d:52:c0:e8:ea:9b:d7:b1:6e:4f:58:05: cd:b1:39:1b:54:a8:c7:05:29:1c:6e:28:d0:13:85:44:96:f3: 68:d5:99:c2:66:14:7b:4d:60:13:70:97:63:8f:85:12:a5:1f: 43:87:a3:2b:76:2d:67:e1:7c:d9:ea:9d:ee:99:ce:ed:dd:d0: 6c:10:e7:0c:d6:05:e6:d3:53:d2:2c:10:ff:54:d7:2b:6f:e2: 71:51:df:52:a5:96:e2:b1:4f:1c:97:35:85:6d:46:36:5c:5a: dc:6c:ac:80:a9:cd:18:0c:2c:da:13:af:94:91:cb:ed:c4:f0: 47:17:a6:0e:67:8f:b8:b1:f0:df:d8:7c:56:9d:28:19:ef:ae: a4:47:4d:9e:da:3d:1b:cb:0a:53:b2:e5:e7:dd:63:5a:02:87: 29:9c:e7:29 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQ14FrGvQNf42r6n063z70PUYNkswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjYwNUQ3MUZFQjVBMURCRTU2NzZDRkFDQjM5NEFCQkEz N0M4M0E4NjAeFw0yNDA3MDEwMDU5MDZaFw0yNTA2MzAwMTA0MDZaMDMxMTAvBgNV BAMTKDREMUZGRDFGODNEQkE1ODE4MTQ5OEIzREI5MTRBNjIyMzYxMDc4ODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtkQZg1LUOShwO1SIEeRRRfkVT RlexHWK4g/JqWPxkZYDZDOFDXUxkUSYAz/tf3Ke5SRmAafpV8/BDS5W/aPpd1Tv4 Qh7RR7Zh/TZRtj/WkpopQZVwVWMgLoxxVDyGDmG0+rk2x219goB6Yh0JjIk6Q0hG c62uGaMhNGGAo6fBHztXWHWtVuGl71xEn4MRef3oqL2DWfJNeUmuAdHyvoHqhjOJ doXJPFd98dQy6fxK7daLbRckfxlb4kScsQqzi9ZYVuBTP62MFUTBNXx99JU/5VX/ B6SX34+YrX5ubjq0G3fqzxSt0RxwBsXScO0k22EgcTgmCqq7XrYdzrl5UiffAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUTR/9H4PbpYGBSYs9uRSmIjYQeIYwHwYDVR0j BBgwFoAUtgXXH+taHb5Wds+ss5SrujfIOoYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NWRmZjliMy05MDQxLTRkZDYtYjdhYi0wMjA2MGQ2NWQwOWEvMC9CNjA1RDcxRkVC NUExREJFNTY3NkNGQUNCMzk0QUJCQTM3QzgzQTg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjYwNUQ3MUZFQjVBMURCRTU2NzZDRkFDQjM5NEFCQkEzN0M4 M0E4Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ1ZGZmOWIzLTkwNDEtNGRkNi1i N2FiLTAyMDYwZDY1ZDA5YS8wLzMxMzAzMzJlMzEzMjM0MmUzMTM5MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfMUwDQYJ KoZIhvcNAQELBQADggEBADOx4ZrCEhcLjEMwcPkWSEEjI+o8E9JKyK74rAu4lc73 OdicxMn087PMWG8iFqfW6BHeesF9fI5OYsWxITIBHC+XJVqbWQ5h8DkziqzsJw4m A9wqZ+ieugnTwfAVPzswsi1SwOjqm9exbk9YBc2xORtUqMcFKRxuKNAThUSW82jV mcJmFHtNYBNwl2OPhRKlH0OHoyt2LWfhfNnqne6Zzu3d0GwQ5wzWBebTU9IsEP9U 1ytv4nFR31KlluKxTxyXNYVtRjZcWtxsrICpzRgMLNoTr5SRy+3E8EcXpg5nj7ix 8N/YfFadKBnvrqRHTZ7aPRvLClOy5efdY1oChymc5yk= -----END CERTIFICATE-----Generated at Tue Mar 11 05:05:08 2025 by rpki-client