$ rpki-client -vvf repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/3130332e3130352e37362e302f32342d3234203d3e20313336383734.roa File: 3130332e3130352e37362e302f32342d3234203d3e20313336383734.roa (raw, json) Hash identifier: KvURdCiLhHkbUOwAzv8M2lOHWbthmo9CgPxXvVYh4Sg= Subject key identifier: B7:D2:C2:39:E8:59:6C:AF:2B:5E:55:81:84:AB:10:8C:87:6C:6E:23 Certificate issuer: /CN=2993EFF92300988A33773DD8C4B502F74B907112 Certificate serial: 611FA9B78D6FE19750453A95B3A58563BDD83824 Authority key identifier: 29:93:EF:F9:23:00:98:8A:33:77:3D:D8:C4:B5:02:F7:4B:90:71:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2993EFF92300988A33773DD8C4B502F74B907112.cer Subject info access: rsync://repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/3130332e3130352e37362e302f32342d3234203d3e20313336383734.roa Signing time: Thu 14 Nov 2024 14:00:00 +0000 ROA not before: Thu 14 Nov 2024 13:55:00 +0000 ROA not after: Thu 13 Nov 2025 14:00:00 +0000 asID: 136874 IP address blocks: 103.105.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/2993EFF92300988A33773DD8C4B502F74B907112.crl rsync://repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/2993EFF92300988A33773DD8C4B502F74B907112.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2993EFF92300988A33773DD8C4B502F74B907112.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 17:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:1f:a9:b7:8d:6f:e1:97:50:45:3a:95:b3:a5:85:63:bd:d8:38:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2993EFF92300988A33773DD8C4B502F74B907112 Validity Not Before: Nov 14 13:55:00 2024 GMT Not After : Nov 13 14:00:00 2025 GMT Subject: CN=B7D2C239E8596CAF2B5E558184AB108C876C6E23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:be:f5:b3:64:90:1a:3c:b5:a2:95:47:77:e7: 58:c4:51:16:45:ab:fb:0b:b3:b5:17:96:4e:76:8d: 3b:cd:cb:f6:52:44:c4:1f:f8:f4:8b:b1:eb:97:ec: 6c:7e:ea:21:f5:ea:08:26:1f:c0:ac:bb:86:e6:66: 1d:96:a1:a7:28:3f:6d:51:82:c4:15:b2:84:c2:4c: 7a:c6:f9:b3:26:db:d6:f8:84:34:d0:06:66:66:3b: 20:b1:63:f5:87:bf:e3:4c:d1:f2:2d:cc:0c:42:85: 6a:81:4a:6f:6c:a7:3a:6a:41:87:77:fc:13:0a:5e: c7:a9:67:05:19:b7:d3:ae:1c:8c:70:c9:06:5a:45: 88:91:88:8b:b7:90:43:20:64:6d:41:6a:b9:b7:0a: 00:76:12:f5:09:01:5b:6b:63:d0:3d:0a:65:e7:9a: d6:d5:37:d5:35:9d:12:3a:37:e4:3a:72:b7:43:7a: c6:45:a9:81:36:b4:51:03:5d:92:0f:ee:24:51:09: 3f:92:51:13:09:97:96:4c:11:a1:e8:51:47:cf:56: 7f:7f:d6:72:b5:34:d4:0b:fb:25:13:f3:19:a8:62: 40:4e:19:6f:0b:7c:52:aa:45:46:71:69:46:ab:1a: 9d:b2:a9:5f:e9:4d:89:f0:43:4e:63:26:78:dc:c3: 2e:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:D2:C2:39:E8:59:6C:AF:2B:5E:55:81:84:AB:10:8C:87:6C:6E:23 X509v3 Authority Key Identifier: keyid:29:93:EF:F9:23:00:98:8A:33:77:3D:D8:C4:B5:02:F7:4B:90:71:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/2993EFF92300988A33773DD8C4B502F74B907112.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2993EFF92300988A33773DD8C4B502F74B907112.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/3130332e3130352e37362e302f32342d3234203d3e20313336383734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.105.76.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:ab:51:7b:0f:cf:f1:75:61:86:69:98:ba:72:42:1e:d3:6e: 50:20:de:5e:ca:62:16:e0:31:c1:8a:42:21:5b:1d:c5:b1:4b: 8b:35:a2:8e:af:ea:07:22:3e:45:b7:ff:f0:4e:61:6a:96:3c: 11:b1:ee:51:c5:ab:e9:0c:78:a7:4f:48:97:d0:13:7b:76:fc: 25:c1:a7:c3:1a:15:d5:1b:c2:83:e7:f6:ce:c0:66:c1:2d:c0: c7:68:53:0b:da:30:93:0a:ec:bb:6c:38:f8:99:c2:34:bf:4d: 14:3d:e7:73:e1:62:41:cf:3f:1a:dd:47:02:d8:46:21:92:ba: bc:4d:94:ad:1c:be:8c:74:e3:fd:ee:a2:9a:37:9e:12:65:33: b9:14:14:5f:f5:7d:97:c7:f3:fd:98:45:09:24:7a:ea:4c:4f: 6a:dc:77:7f:f4:33:2a:13:d8:de:fb:43:66:1d:8c:3e:b1:99: ba:8f:74:6c:a1:3c:b6:85:18:5f:a9:4c:d8:b3:59:ce:d8:73: bd:44:fa:ac:25:b0:12:9a:8e:82:78:39:f0:c2:20:75:c5:24: 01:af:00:f3:f6:cf:b3:13:bf:9f:69:22:8d:03:a2:c2:fd:9e: 58:8f:18:4e:1d:eb:b1:2b:42:b3:c5:1d:96:9f:f5:8a:62:de: 61:e3:cd:8b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYR+pt41v4ZdQRTqVs6WFY73YOCQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk5M0VGRjkyMzAwOTg4QTMzNzczREQ4QzRCNTAyRjc0 QjkwNzExMjAeFw0yNDExMTQxMzU1MDBaFw0yNTExMTMxNDAwMDBaMDMxMTAvBgNV BAMTKEI3RDJDMjM5RTg1OTZDQUYyQjVFNTU4MTg0QUIxMDhDODc2QzZFMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChvvWzZJAaPLWilUd351jEURZF q/sLs7UXlk52jTvNy/ZSRMQf+PSLseuX7Gx+6iH16ggmH8Csu4bmZh2WoacoP21R gsQVsoTCTHrG+bMm29b4hDTQBmZmOyCxY/WHv+NM0fItzAxChWqBSm9spzpqQYd3 /BMKXsepZwUZt9OuHIxwyQZaRYiRiIu3kEMgZG1Barm3CgB2EvUJAVtrY9A9CmXn mtbVN9U1nRI6N+Q6crdDesZFqYE2tFEDXZIP7iRRCT+SURMJl5ZMEaHoUUfPVn9/ 1nK1NNQL+yUT8xmoYkBOGW8LfFKqRUZxaUarGp2yqV/pTYnwQ05jJnjcwy4FAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUt9LCOehZbK8rXlWBhKsQjIdsbiMwHwYDVR0j BBgwFoAUKZPv+SMAmIozdz3YxLUC90uQcRIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzdiYzNkMi00YWIzLTRjZmItOTIyMi02NmM2ZWE5NDQ3ZTMvMC8yOTkzRUZGOTIz MDA5ODhBMzM3NzNERDhDNEI1MDJGNzRCOTA3MTEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk5M0VGRjkyMzAwOTg4QTMzNzczREQ4QzRCNTAyRjc0Qjkw NzExMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3N2JjM2QyLTRhYjMtNGNmYi05 MjIyLTY2YzZlYTk0NDdlMy8wLzMxMzAzMzJlMzEzMDM1MmUzNzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2lMMA0GCSqG SIb3DQEBCwUAA4IBAQBcq1F7D8/xdWGGaZi6ckIe025QIN5eymIW4DHBikIhWx3F sUuLNaKOr+oHIj5Ft//wTmFqljwRse5RxavpDHinT0iX0BN7dvwlwafDGhXVG8KD 5/bOwGbBLcDHaFML2jCTCuy7bDj4mcI0v00UPedz4WJBzz8a3UcC2EYhkrq8TZSt HL6MdOP97qKaN54SZTO5FBRf9X2Xx/P9mEUJJHrqTE9q3Hd/9DMqE9je+0NmHYw+ sZm6j3RsoTy2hRhfqUzYs1nO2HO9RPqsJbASmo6CeDnwwiB1xSQBrwDz9s+zE7+f aSKNA6LC/Z5YjxhOHeuxK0KzxR2Wn/WKYt5h482L -----END CERTIFICATE-----Generated at Fri Feb 21 11:05:17 2025 by rpki-client