$ rpki-client -vvf repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233392e302f32342d3234203d3e20313338303936.roa File: 3130332e3230372e3233392e302f32342d3234203d3e20313338303936.roa (raw, json) Hash identifier: bCN0BjFIkGXQoNiGlR2Rw4pyaw/6SRLkI5yDk6Jonrg= Subject key identifier: FF:DA:40:D4:10:C5:AC:FF:6D:F8:F0:6B:F3:18:00:BA:40:B2:D8:CD Certificate issuer: /CN=C7F5AA72DB870E161B62ACA9250AD98AA110A014 Certificate serial: 7871759EF86D23091A70113CAFB6A689BC1CBA98 Authority key identifier: C7:F5:AA:72:DB:87:0E:16:1B:62:AC:A9:25:0A:D9:8A:A1:10:A0:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F5AA72DB870E161B62ACA9250AD98AA110A014.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233392e302f32342d3234203d3e20313338303936.roa Signing time: Fri 29 Nov 2024 19:00:01 +0000 ROA not before: Fri 29 Nov 2024 18:55:01 +0000 ROA not after: Fri 28 Nov 2025 19:00:01 +0000 asID: 138096 IP address blocks: 103.207.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/C7F5AA72DB870E161B62ACA9250AD98AA110A014.crl rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/C7F5AA72DB870E161B62ACA9250AD98AA110A014.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F5AA72DB870E161B62ACA9250AD98AA110A014.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 09:33:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:71:75:9e:f8:6d:23:09:1a:70:11:3c:af:b6:a6:89:bc:1c:ba:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C7F5AA72DB870E161B62ACA9250AD98AA110A014 Validity Not Before: Nov 29 18:55:01 2024 GMT Not After : Nov 28 19:00:01 2025 GMT Subject: CN=FFDA40D410C5ACFF6DF8F06BF31800BA40B2D8CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b5:ce:eb:8a:e9:c2:28:06:55:30:01:76:46: fd:fb:26:cf:3d:08:ef:0a:88:7c:4c:02:fa:c8:bd: 88:3b:35:fe:db:eb:22:54:d7:40:71:24:93:35:b2: a2:a7:e7:a5:25:f3:ee:aa:e5:57:3d:f7:5c:df:03: 01:51:85:14:7b:b5:34:6d:59:d6:4d:19:b9:d7:8b: 1c:03:ba:e8:fe:88:5e:0b:7c:ac:25:cd:ff:d6:7e: ec:cf:7b:fa:e9:3f:7e:81:59:54:21:17:42:d8:d5: 05:9e:3e:19:03:93:be:75:27:b0:e3:7a:dd:c0:5d: e9:fc:66:66:a9:5f:36:74:71:6c:8e:bc:7b:a1:fd: 1d:02:51:fe:74:33:e7:44:52:98:93:c6:7e:3a:89: 22:d5:6a:20:4f:8d:ad:6a:2e:e2:ce:eb:0f:2a:00: 76:e0:8f:0d:aa:d7:be:3d:f9:af:7c:72:ee:f4:20: d9:db:b9:d6:56:0b:ca:c2:46:3a:e6:c5:67:b0:cb: a0:5d:bc:c6:8f:38:13:ea:4d:e4:2e:20:ea:71:1a: c2:62:57:bb:13:c1:d8:40:f7:45:38:50:ac:63:f0: c4:de:58:4e:25:9c:a7:2f:f9:a3:79:0b:0f:f2:76: 06:25:77:9a:a0:99:ed:92:26:75:c2:12:be:c6:56: 75:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:DA:40:D4:10:C5:AC:FF:6D:F8:F0:6B:F3:18:00:BA:40:B2:D8:CD X509v3 Authority Key Identifier: keyid:C7:F5:AA:72:DB:87:0E:16:1B:62:AC:A9:25:0A:D9:8A:A1:10:A0:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/C7F5AA72DB870E161B62ACA9250AD98AA110A014.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F5AA72DB870E161B62ACA9250AD98AA110A014.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233392e302f32342d3234203d3e20313338303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.207.239.0/24 Signature Algorithm: sha256WithRSAEncryption 00:d4:df:6f:05:3a:20:8b:59:12:ad:9c:93:7f:69:7d:42:9b: 72:a6:ea:b1:9e:9c:bd:10:59:00:df:13:3b:ab:1f:59:17:17: b4:17:54:a1:7c:f7:f4:bb:fc:6a:64:2b:18:fe:05:c4:ef:fc: b1:cf:67:28:de:28:6d:32:86:34:a4:e5:bd:3f:0e:75:5a:19: 1b:a1:2d:95:32:21:01:f9:15:4a:f9:e5:f7:bf:5a:23:34:c5: 02:34:6c:a1:0e:6a:47:4d:83:66:8f:83:19:94:0a:ab:e8:74: 8c:fb:27:7f:6a:0f:30:f2:58:b1:f8:0c:56:ca:5a:78:af:1a: dc:42:c5:aa:30:1e:1c:37:21:f3:9f:fa:1d:1b:63:af:4b:86: 45:d8:7e:25:55:d1:8b:20:f3:d0:9c:2f:8c:08:5c:ee:85:0d: d4:82:4f:4b:6b:3a:70:41:69:2d:72:f1:2e:87:ec:76:23:22: aa:0e:b6:32:ed:e0:d5:b6:d1:d6:6c:22:ec:aa:09:ba:20:83: 6b:87:38:64:dc:44:4c:65:9b:b0:80:42:2b:fe:54:10:a7:de: 54:dc:ac:6a:c9:44:d0:e9:38:1b:c0:17:d7:58:28:38:4d:65: 45:39:08:d3:65:09:84:d1:7f:7c:5b:e1:0d:f8:e8:a5:d7:56: a3:c8:27:9c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeHF1nvhtIwkacBE8r7amibwcupgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzdGNUFBNzJEQjg3MEUxNjFCNjJBQ0E5MjUwQUQ5OEFB MTEwQTAxNDAeFw0yNDExMjkxODU1MDFaFw0yNTExMjgxOTAwMDFaMDMxMTAvBgNV BAMTKEZGREE0MEQ0MTBDNUFDRkY2REY4RjA2QkYzMTgwMEJBNDBCMkQ4Q0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxtc7riunCKAZVMAF2Rv37Js89 CO8KiHxMAvrIvYg7Nf7b6yJU10BxJJM1sqKn56Ul8+6q5Vc991zfAwFRhRR7tTRt WdZNGbnXixwDuuj+iF4LfKwlzf/WfuzPe/rpP36BWVQhF0LY1QWePhkDk751J7Dj et3AXen8ZmapXzZ0cWyOvHuh/R0CUf50M+dEUpiTxn46iSLVaiBPja1qLuLO6w8q AHbgjw2q1749+a98cu70INnbudZWC8rCRjrmxWewy6BdvMaPOBPqTeQuIOpxGsJi V7sTwdhA90U4UKxj8MTeWE4lnKcv+aN5Cw/ydgYld5qgme2SJnXCEr7GVnVHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU/9pA1BDFrP9t+PBr8xgAukCy2M0wHwYDVR0j BBgwFoAUx/WqctuHDhYbYqypJQrZiqEQoBQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjBlN2Y4ZS1jMjlmLTRlNmItYWQwYS05OTU3ZmJkNTY5NTMvMC9DN0Y1QUE3MkRC ODcwRTE2MUI2MkFDQTkyNTBBRDk4QUExMTBBMDE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzdGNUFBNzJEQjg3MEUxNjFCNjJBQ0E5MjUwQUQ5OEFBMTEw QTAxNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiMGU3ZjhlLWMyOWYtNGU2Yi1h ZDBhLTk5NTdmYmQ1Njk1My8wLzMxMzAzMzJlMzIzMDM3MmUzMjMzMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnz+8wDQYJ KoZIhvcNAQELBQADggEBAADU328FOiCLWRKtnJN/aX1Cm3Km6rGenL0QWQDfEzur H1kXF7QXVKF89/S7/GpkKxj+BcTv/LHPZyjeKG0yhjSk5b0/DnVaGRuhLZUyIQH5 FUr55fe/WiM0xQI0bKEOakdNg2aPgxmUCqvodIz7J39qDzDyWLH4DFbKWnivGtxC xaowHhw3IfOf+h0bY69LhkXYfiVV0Ysg89CcL4wIXO6FDdSCT0trOnBBaS1y8S6H 7HYjIqoOtjLt4NW20dZsIuyqCbogg2uHOGTcRExlm7CAQiv+VBCn3lTcrGrJRNDp OBvAF9dYKDhNZUU5CNNlCYTRf3xb4Q346KXXVqPIJ5w= -----END CERTIFICATE-----Generated at Sun Apr 6 10:48:07 2025 by rpki-client