$ rpki-client -vvf repo-rpki.idnic.net/repo/47df2ad0-6e99-44a7-a068-500656ffb00f/0/3130332e3132392e32342e302f32332d3234203d3e20313335343738.roa File: 3130332e3132392e32342e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: UPRB4PsF6TIM5gQt4Oa8RNf/90fBqBwSnDeTKStf0nw= Subject key identifier: 2A:F3:5F:AE:43:7B:76:7A:A3:4F:10:40:7F:4E:D3:53:09:75:A9:90 Certificate issuer: /CN=532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F Certificate serial: 38A193F0B80758B1F540CE6513B3FC65572CD07C Authority key identifier: 53:2A:4A:6E:A2:52:E9:D1:CF:F5:74:81:A5:A8:6B:35:CE:0D:D2:1F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/47df2ad0-6e99-44a7-a068-500656ffb00f/0/3130332e3132392e32342e302f32332d3234203d3e20313335343738.roa Signing time: Wed 04 Dec 2024 09:01:06 +0000 ROA not before: Wed 04 Dec 2024 08:56:06 +0000 ROA not after: Wed 03 Dec 2025 09:01:06 +0000 asID: 135478 IP address blocks: 103.129.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/47df2ad0-6e99-44a7-a068-500656ffb00f/0/532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F.crl rsync://repo-rpki.idnic.net/repo/47df2ad0-6e99-44a7-a068-500656ffb00f/0/532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 04:54:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:a1:93:f0:b8:07:58:b1:f5:40:ce:65:13:b3:fc:65:57:2c:d0:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F Validity Not Before: Dec 4 08:56:06 2024 GMT Not After : Dec 3 09:01:06 2025 GMT Subject: CN=2AF35FAE437B767AA34F10407F4ED3530975A990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:48:3c:78:0c:4e:db:fa:25:3b:9c:f0:be:36: c6:b2:18:34:5b:74:38:62:f5:d1:76:bd:fe:78:8c: d2:c8:ba:d1:5b:58:64:f9:61:c4:71:f8:cf:96:8a: 8f:10:15:7e:d6:d3:29:b6:b8:93:b3:f9:65:92:d6: e8:78:14:6c:8c:58:82:bc:ec:1e:17:8b:ea:e9:3d: 75:c9:a8:11:c0:39:33:db:e2:bf:17:f5:8e:1d:51: 1b:c8:2b:82:2f:f9:11:73:ed:d8:8e:e0:63:da:38: 1b:75:b6:e0:7b:5a:a6:e4:4c:28:7c:5c:72:ff:ac: 6b:c3:b8:a8:4c:e5:98:d5:e2:e1:04:44:52:9e:3e: 3c:60:ac:e4:af:2c:28:30:09:ce:54:fe:9e:8e:25: e2:24:b7:bd:45:8e:a7:28:02:13:7f:41:96:a2:3e: 9b:e7:98:34:43:c3:92:92:17:99:93:bd:96:c4:80: 80:6b:ff:f9:7b:9c:4c:ae:d0:1b:75:2c:a3:e2:db: fe:3a:b3:82:88:0b:99:dd:97:fe:5c:4f:8f:5b:e2: 7c:4a:a8:65:fc:ee:28:36:35:43:6b:a6:bf:1c:09: 35:4e:7b:14:97:2b:51:22:bd:9c:39:69:97:86:3e: 55:ea:6f:f8:77:38:68:cc:bc:af:b7:b3:8c:bd:a8: c0:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:F3:5F:AE:43:7B:76:7A:A3:4F:10:40:7F:4E:D3:53:09:75:A9:90 X509v3 Authority Key Identifier: keyid:53:2A:4A:6E:A2:52:E9:D1:CF:F5:74:81:A5:A8:6B:35:CE:0D:D2:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/47df2ad0-6e99-44a7-a068-500656ffb00f/0/532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/47df2ad0-6e99-44a7-a068-500656ffb00f/0/3130332e3132392e32342e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.24.0/23 Signature Algorithm: sha256WithRSAEncryption d9:71:6d:b3:d2:57:45:a7:df:23:68:ac:94:c9:f6:b7:46:b6: 7b:a2:27:0f:98:30:8e:d8:6f:03:04:58:94:13:8b:60:f7:25: 49:8c:23:e9:e7:9a:3f:ff:2c:fc:9e:b3:e1:f0:8d:30:6f:72: 3e:23:5b:1d:96:db:75:09:0c:9a:42:f0:0f:18:93:1b:86:19: e7:16:5d:b1:ad:4a:b0:0a:04:8a:7c:f5:1b:d1:d7:94:45:bc: 1c:f6:65:ac:95:5d:18:96:19:fe:27:11:1c:dd:d0:d2:e6:7e: 02:77:bb:a0:c5:de:35:e9:62:47:a8:b6:c3:8e:01:0e:47:3d: 2f:5c:8b:55:de:fc:5e:3a:22:f0:09:f0:c5:58:e5:ad:d2:7e: 26:32:7f:8c:52:21:ef:b2:66:0e:ec:45:79:89:a2:7b:bc:fc: 55:5f:ed:89:d6:21:44:ee:e4:87:ed:ea:b1:72:6b:9e:e9:47: c0:fc:6a:e5:6f:89:22:01:52:c7:7b:d7:09:22:91:eb:f6:e4: f8:43:10:07:4d:06:ea:da:03:2f:e0:d8:75:09:62:3f:24:0f: d8:8f:22:8b:52:81:33:c3:01:44:f0:d5:bf:55:42:1e:d9:19: d9:28:36:69:c3:9a:c7:ae:61:55:81:59:bd:a2:aa:7a:c2:7f: 8e:fb:f2:50 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOKGT8LgHWLH1QM5lE7P8ZVcs0HwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyQTRBNkVBMjUyRTlEMUNGRjU3NDgxQTVBODZCMzVD RTBERDIxRjAeFw0yNDEyMDQwODU2MDZaFw0yNTEyMDMwOTAxMDZaMDMxMTAvBgNV BAMTKDJBRjM1RkFFNDM3Qjc2N0FBMzRGMTA0MDdGNEVEMzUzMDk3NUE5OTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDASDx4DE7b+iU7nPC+NsayGDRb dDhi9dF2vf54jNLIutFbWGT5YcRx+M+Wio8QFX7W0ym2uJOz+WWS1uh4FGyMWIK8 7B4Xi+rpPXXJqBHAOTPb4r8X9Y4dURvIK4Iv+RFz7diO4GPaOBt1tuB7WqbkTCh8 XHL/rGvDuKhM5ZjV4uEERFKePjxgrOSvLCgwCc5U/p6OJeIkt71FjqcoAhN/QZai PpvnmDRDw5KSF5mTvZbEgIBr//l7nEyu0Bt1LKPi2/46s4KIC5ndl/5cT49b4nxK qGX87ig2NUNrpr8cCTVOexSXK1EivZw5aZeGPlXqb/h3OGjMvK+3s4y9qMBjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKvNfrkN7dnqjTxBAf07TUwl1qZAwHwYDVR0j BBgwFoAUUypKbqJS6dHP9XSBpahrNc4N0h8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 N2RmMmFkMC02ZTk5LTQ0YTctYTA2OC01MDA2NTZmZmIwMGYvMC81MzJBNEE2RUEy NTJFOUQxQ0ZGNTc0ODFBNUE4NkIzNUNFMEREMjFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTMyQTRBNkVBMjUyRTlEMUNGRjU3NDgxQTVBODZCMzVDRTBE RDIxRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3ZGYyYWQwLTZlOTktNDRhNy1h MDY4LTUwMDY1NmZmYjAwZi8wLzMxMzAzMzJlMzEzMjM5MmUzMjM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4EYMA0GCSqG SIb3DQEBCwUAA4IBAQDZcW2z0ldFp98jaKyUyfa3RrZ7oicPmDCO2G8DBFiUE4tg 9yVJjCPp55o//yz8nrPh8I0wb3I+I1sdltt1CQyaQvAPGJMbhhnnFl2xrUqwCgSK fPUb0deURbwc9mWslV0Ylhn+JxEc3dDS5n4Cd7ugxd416WJHqLbDjgEORz0vXItV 3vxeOiLwCfDFWOWt0n4mMn+MUiHvsmYO7EV5iaJ7vPxVX+2J1iFE7uSH7eqxcmue 6UfA/Grlb4kiAVLHe9cJIpHr9uT4QxAHTQbq2gMv4Nh1CWI/JA/YjyKLUoEzwwFE 8NW/VUIe2RnZKDZpw5rHrmFVgVm9oqp6wn+O+/JQ -----END CERTIFICATE-----Generated at Sun Apr 6 11:00:13 2025 by rpki-client