$ rpki-client -vvf repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/3130332e3130352e37362e302f32342d3234203d3e203535363736.roa File: 3130332e3130352e37362e302f32342d3234203d3e203535363736.roa (raw, json) Hash identifier: UUqUhVxo4riOoAS8LfSUq3H3CWxdpGF4ZToXB6Mfx1U= Subject key identifier: 5E:91:7B:A7:4A:43:5F:02:7A:F4:78:B6:15:9B:97:A6:2A:24:A6:92 Certificate issuer: /CN=2993EFF92300988A33773DD8C4B502F74B907112 Certificate serial: 0E0C4121E8501FC8A59C4632FFCBFD3F752C81DD Authority key identifier: 29:93:EF:F9:23:00:98:8A:33:77:3D:D8:C4:B5:02:F7:4B:90:71:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2993EFF92300988A33773DD8C4B502F74B907112.cer Subject info access: rsync://repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/3130332e3130352e37362e302f32342d3234203d3e203535363736.roa Signing time: Tue 24 Dec 2024 09:13:00 +0000 ROA not before: Tue 24 Dec 2024 09:08:00 +0000 ROA not after: Tue 23 Dec 2025 09:13:00 +0000 asID: 55676 IP address blocks: 103.105.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/2993EFF92300988A33773DD8C4B502F74B907112.crl rsync://repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/2993EFF92300988A33773DD8C4B502F74B907112.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2993EFF92300988A33773DD8C4B502F74B907112.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 17:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:0c:41:21:e8:50:1f:c8:a5:9c:46:32:ff:cb:fd:3f:75:2c:81:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2993EFF92300988A33773DD8C4B502F74B907112 Validity Not Before: Dec 24 09:08:00 2024 GMT Not After : Dec 23 09:13:00 2025 GMT Subject: CN=5E917BA74A435F027AF478B6159B97A62A24A692 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:26:40:ba:55:52:e6:c2:be:75:57:50:df:f9: be:38:af:24:6d:11:21:86:6a:b4:83:2b:b8:ea:f3: 5d:55:92:35:a2:e7:a5:f5:6c:45:3b:1d:23:b3:c1: 0b:e5:fa:ba:c8:c7:65:82:a6:a8:2d:9f:76:bf:d1: 40:ca:b0:62:14:4e:9b:26:d6:4c:9e:54:e2:56:24: 1a:b1:c3:b5:51:04:eb:97:24:ee:2e:41:3d:ce:48: b8:fe:2d:32:05:a0:e3:fb:f2:42:9c:9d:07:d2:3f: 9b:b2:34:a4:f0:05:1f:ce:87:aa:9a:9d:aa:0b:fd: b8:4b:e2:28:39:3d:33:31:ea:34:75:90:ba:f3:5b: 8e:14:77:8d:2c:9c:62:76:a7:b7:17:d4:6c:7c:68: 99:9c:51:4c:b2:ac:e3:05:8b:72:6d:12:e4:e9:ab: 33:dd:88:0e:1c:9f:22:3d:bd:2a:85:7c:8e:c4:78: f7:00:72:2f:10:6c:fe:77:b6:28:58:b1:e3:50:f2: 28:3d:66:75:d8:86:05:0e:7e:ba:4a:04:c4:02:42: 36:08:79:0b:3a:18:d2:a4:8d:cb:0f:b3:b7:c7:c1: 89:3a:bb:4c:98:58:b7:c3:ff:fc:a0:5b:69:b0:30: 46:e7:8c:83:de:6d:25:6e:cb:25:75:5d:85:c4:27: aa:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:91:7B:A7:4A:43:5F:02:7A:F4:78:B6:15:9B:97:A6:2A:24:A6:92 X509v3 Authority Key Identifier: keyid:29:93:EF:F9:23:00:98:8A:33:77:3D:D8:C4:B5:02:F7:4B:90:71:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/2993EFF92300988A33773DD8C4B502F74B907112.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2993EFF92300988A33773DD8C4B502F74B907112.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/477bc3d2-4ab3-4cfb-9222-66c6ea9447e3/0/3130332e3130352e37362e302f32342d3234203d3e203535363736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.105.76.0/24 Signature Algorithm: sha256WithRSAEncryption d8:fb:e6:53:21:8b:67:e8:62:fe:d7:a6:ee:9e:5a:11:bd:c7: e3:e6:3c:08:ce:32:f8:6c:7c:d0:63:e8:03:58:f3:c3:92:cb: 68:5e:80:bb:f5:31:6a:f5:6d:f8:28:5e:1b:73:e4:b3:81:6a: c5:96:5c:12:c4:20:96:f9:8b:66:81:22:5d:76:44:54:ff:eb: 25:e7:1c:8d:de:4c:ef:15:a5:fe:20:e0:78:7c:40:a7:58:d7: 3e:f6:90:81:85:e4:8f:7d:c9:2a:4a:31:a7:ae:26:4c:ae:22: 6d:6a:0b:e2:9a:eb:53:1a:b3:f0:ec:20:ca:f8:c3:46:62:16: 47:8b:7c:dc:c3:c8:98:0c:c5:da:b1:5f:96:95:b9:76:c9:79: 29:5c:98:4f:15:a3:4e:85:c3:5f:7c:9d:9b:4f:d5:3d:60:d5: c5:1e:0d:f4:26:b0:15:1e:28:85:3b:22:0b:69:bd:47:7c:25: fd:ed:d5:40:0c:14:30:7c:77:a5:bb:43:25:6b:fd:06:db:55: 94:57:8d:68:d9:a7:ac:8f:b9:e6:cc:4c:aa:ab:3f:db:d5:e2: 22:55:8f:ee:cd:17:30:e9:30:76:df:2b:ce:47:89:a3:34:da: 35:1f:2e:8b:d2:7c:88:ba:0e:4b:00:92:d0:26:3f:51:c4:0a: 7e:15:01:a4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDgxBIehQH8ilnEYy/8v9P3Usgd0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk5M0VGRjkyMzAwOTg4QTMzNzczREQ4QzRCNTAyRjc0 QjkwNzExMjAeFw0yNDEyMjQwOTA4MDBaFw0yNTEyMjMwOTEzMDBaMDMxMTAvBgNV BAMTKDVFOTE3QkE3NEE0MzVGMDI3QUY0NzhCNjE1OUI5N0E2MkEyNEE2OTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaJkC6VVLmwr51V1Df+b44ryRt ESGGarSDK7jq811VkjWi56X1bEU7HSOzwQvl+rrIx2WCpqgtn3a/0UDKsGIUTpsm 1kyeVOJWJBqxw7VRBOuXJO4uQT3OSLj+LTIFoOP78kKcnQfSP5uyNKTwBR/Oh6qa naoL/bhL4ig5PTMx6jR1kLrzW44Ud40snGJ2p7cX1Gx8aJmcUUyyrOMFi3JtEuTp qzPdiA4cnyI9vSqFfI7EePcAci8QbP53tihYseNQ8ig9ZnXYhgUOfrpKBMQCQjYI eQs6GNKkjcsPs7fHwYk6u0yYWLfD//ygW2mwMEbnjIPebSVuyyV1XYXEJ6oBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUXpF7p0pDXwJ69Hi2FZuXpiokppIwHwYDVR0j BBgwFoAUKZPv+SMAmIozdz3YxLUC90uQcRIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzdiYzNkMi00YWIzLTRjZmItOTIyMi02NmM2ZWE5NDQ3ZTMvMC8yOTkzRUZGOTIz MDA5ODhBMzM3NzNERDhDNEI1MDJGNzRCOTA3MTEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk5M0VGRjkyMzAwOTg4QTMzNzczREQ4QzRCNTAyRjc0Qjkw NzExMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3N2JjM2QyLTRhYjMtNGNmYi05 MjIyLTY2YzZlYTk0NDdlMy8wLzMxMzAzMzJlMzEzMDM1MmUzNzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdpTDANBgkqhkiG 9w0BAQsFAAOCAQEA2PvmUyGLZ+hi/tem7p5aEb3H4+Y8CM4y+Gx80GPoA1jzw5LL aF6Au/UxavVt+CheG3Pks4FqxZZcEsQglvmLZoEiXXZEVP/rJeccjd5M7xWl/iDg eHxAp1jXPvaQgYXkj33JKkoxp64mTK4ibWoL4prrUxqz8OwgyvjDRmIWR4t83MPI mAzF2rFflpW5dsl5KVyYTxWjToXDX3ydm0/VPWDVxR4N9CawFR4ohTsiC2m9R3wl /e3VQAwUMHx3pbtDJWv9BttVlFeNaNmnrI+55sxMqqs/29XiIlWP7s0XMOkwdt8r zkeJozTaNR8ui9J8iLoOSwCS0CY/UcQKfhUBpA== -----END CERTIFICATE-----Generated at Fri Feb 21 11:22:46 2025 by rpki-client