$ rpki-client -vvf repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/3130332e3132342e3139382e302f32342d3234203d3e20313338303936.roa File: 3130332e3132342e3139382e302f32342d3234203d3e20313338303936.roa (raw, json) Hash identifier: Rs2LdPlJkRtY48YBQsSB1PkyaTPuQCoT8BnR3pXDUfE= Subject key identifier: B7:E6:93:C0:A2:AE:71:0A:1B:10:F9:00:AA:78:61:20:63:8D:AE:04 Certificate issuer: /CN=B605D71FEB5A1DBE5676CFACB394ABBA37C83A86 Certificate serial: 70E66831D843BEECF1BF704014FF706EA8DAFBEE Authority key identifier: B6:05:D7:1F:EB:5A:1D:BE:56:76:CF:AC:B3:94:AB:BA:37:C8:3A:86 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.cer Subject info access: rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/3130332e3132342e3139382e302f32342d3234203d3e20313338303936.roa Signing time: Mon 01 Jul 2024 01:04:06 +0000 ROA not before: Mon 01 Jul 2024 00:59:06 +0000 ROA not after: Mon 30 Jun 2025 01:04:06 +0000 asID: 138096 IP address blocks: 103.124.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.crl rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 21:34:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:e6:68:31:d8:43:be:ec:f1:bf:70:40:14:ff:70:6e:a8:da:fb:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B605D71FEB5A1DBE5676CFACB394ABBA37C83A86 Validity Not Before: Jul 1 00:59:06 2024 GMT Not After : Jun 30 01:04:06 2025 GMT Subject: CN=B7E693C0A2AE710A1B10F900AA786120638DAE04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:46:94:a7:91:6f:e9:01:55:c2:d5:be:52:71: 0a:5e:9f:d2:20:2a:16:d3:90:33:43:a2:f0:82:17: 6d:7e:20:dc:98:8d:e3:9e:e4:f8:6b:8a:f6:4d:a4: 9e:db:f9:03:12:0b:73:99:15:96:e1:4b:93:da:b9: cd:11:9c:85:8b:d6:91:df:6a:10:51:0f:00:5f:f2: 10:bc:59:27:88:bd:6f:56:1d:8e:b7:22:13:fc:88: 3d:34:43:ed:9b:ad:a0:ee:bc:73:a2:a3:17:61:b5: 19:eb:78:29:82:f7:f2:84:b1:62:84:a5:1a:4d:4a: 20:ef:29:36:73:af:fb:0b:7c:a4:62:b8:c9:e7:8d: 8e:76:b7:99:8f:a8:22:97:e4:61:5c:91:a7:18:72: eb:1f:7d:ab:43:b9:2b:73:ba:ea:c4:13:c4:e7:8f: de:bd:00:26:71:ea:b8:ca:65:c2:e0:6a:75:cb:ab: e4:21:37:26:af:35:f4:18:28:b4:ab:75:c0:81:77: 35:45:bb:41:aa:14:6f:2c:e4:d4:7b:4f:52:cb:5a: c9:e2:2a:1e:f5:7f:5b:ab:0a:1a:41:b6:21:e5:d9: 8e:e9:1c:c0:76:c0:f5:11:fb:95:90:60:b1:e0:cf: 9c:2d:22:f2:c4:e3:9d:92:cc:19:ec:b2:c7:59:cb: 80:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:E6:93:C0:A2:AE:71:0A:1B:10:F9:00:AA:78:61:20:63:8D:AE:04 X509v3 Authority Key Identifier: keyid:B6:05:D7:1F:EB:5A:1D:BE:56:76:CF:AC:B3:94:AB:BA:37:C8:3A:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B605D71FEB5A1DBE5676CFACB394ABBA37C83A86.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/3130332e3132342e3139382e302f32342d3234203d3e20313338303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.198.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:ab:22:34:90:da:53:91:b9:24:1f:ec:75:af:cf:49:cb:a4: b5:8c:f5:d0:75:71:f4:10:95:f1:b1:08:20:2f:6c:74:78:9c: e6:f8:fd:e0:38:56:4e:65:29:aa:d0:03:64:56:63:97:b9:99: 9c:95:f0:e8:6a:69:f1:52:ac:36:17:56:14:da:f7:2f:49:d4: 86:d3:ce:85:ea:5c:39:62:a8:c8:47:ed:f3:36:c5:ec:28:9c: 93:81:76:63:18:2f:b0:6c:82:d9:a6:16:35:da:45:b7:95:8c: 78:65:c8:c7:c9:89:3e:3f:99:5a:13:d5:ad:86:9d:16:82:f5: 4d:28:ff:1f:e4:8d:e5:9a:ac:ba:9d:35:30:a1:bc:b1:19:a9: 66:27:a5:5d:db:aa:9d:24:d0:ce:18:75:52:56:cd:e9:85:af: f2:bd:91:45:6e:43:3b:4f:2c:ac:86:55:b1:f3:89:4c:a8:13: 99:be:b1:08:b9:c4:a9:e3:ef:a5:eb:7a:8f:c8:ea:c7:a8:96: e9:e4:7d:65:8f:84:d9:e1:19:f4:b6:3e:a4:f7:73:02:a9:2d: 57:8f:a2:ed:4f:ec:be:bb:95:bf:41:b3:ec:aa:15:ae:2b:73: ca:52:a0:a1:66:90:8e:e1:5c:40:cd:21:1a:00:c5:18:54:1e: eb:1c:48:d9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcOZoMdhDvuzxv3BAFP9wbqja++4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjYwNUQ3MUZFQjVBMURCRTU2NzZDRkFDQjM5NEFCQkEz N0M4M0E4NjAeFw0yNDA3MDEwMDU5MDZaFw0yNTA2MzAwMTA0MDZaMDMxMTAvBgNV BAMTKEI3RTY5M0MwQTJBRTcxMEExQjEwRjkwMEFBNzg2MTIwNjM4REFFMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpRpSnkW/pAVXC1b5ScQpen9Ig KhbTkDNDovCCF21+INyYjeOe5PhrivZNpJ7b+QMSC3OZFZbhS5Pauc0RnIWL1pHf ahBRDwBf8hC8WSeIvW9WHY63IhP8iD00Q+2braDuvHOioxdhtRnreCmC9/KEsWKE pRpNSiDvKTZzr/sLfKRiuMnnjY52t5mPqCKX5GFckacYcusffatDuStzuurEE8Tn j969ACZx6rjKZcLganXLq+QhNyavNfQYKLSrdcCBdzVFu0GqFG8s5NR7T1LLWsni Kh71f1urChpBtiHl2Y7pHMB2wPUR+5WQYLHgz5wtIvLE452SzBnsssdZy4DBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUt+aTwKKucQobEPkAqnhhIGONrgQwHwYDVR0j BBgwFoAUtgXXH+taHb5Wds+ss5SrujfIOoYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NWRmZjliMy05MDQxLTRkZDYtYjdhYi0wMjA2MGQ2NWQwOWEvMC9CNjA1RDcxRkVC NUExREJFNTY3NkNGQUNCMzk0QUJCQTM3QzgzQTg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjYwNUQ3MUZFQjVBMURCRTU2NzZDRkFDQjM5NEFCQkEzN0M4 M0E4Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ1ZGZmOWIzLTkwNDEtNGRkNi1i N2FiLTAyMDYwZDY1ZDA5YS8wLzMxMzAzMzJlMzEzMjM0MmUzMTM5MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfMYwDQYJ KoZIhvcNAQELBQADggEBAAurIjSQ2lORuSQf7HWvz0nLpLWM9dB1cfQQlfGxCCAv bHR4nOb4/eA4Vk5lKarQA2RWY5e5mZyV8OhqafFSrDYXVhTa9y9J1IbTzoXqXDli qMhH7fM2xewonJOBdmMYL7BsgtmmFjXaRbeVjHhlyMfJiT4/mVoT1a2GnRaC9U0o /x/kjeWarLqdNTChvLEZqWYnpV3bqp0k0M4YdVJWzemFr/K9kUVuQztPLKyGVbHz iUyoE5m+sQi5xKnj76Xreo/I6seolunkfWWPhNnhGfS2PqT3cwKpLVePou1P7L67 lb9Bs+yqFa4rc8pSoKFmkI7hXEDNIRoAxRhUHuscSNk= -----END CERTIFICATE-----Generated at Tue Mar 11 05:02:47 2025 by rpki-client