$ rpki-client -vvf repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/3130332e3135352e3139312e302f32342d3234203d3e20313431303637.roa File: 3130332e3135352e3139312e302f32342d3234203d3e20313431303637.roa (raw, json) Hash identifier: sCyLtPxP1W6eDrRKM5zzBxs1T1DM9NmEIRenFAs3CLU= Subject key identifier: CB:B1:87:0B:7A:13:8F:23:C0:E6:FC:80:E1:2B:72:CF:C7:9D:9D:9B Certificate issuer: /CN=28B305C66336C433AB601BA6F0B352E6C57E9BEC Certificate serial: 2DFBA4449400EAEEC8F64264901643D7C2EA254C Authority key identifier: 28:B3:05:C6:63:36:C4:33:AB:60:1B:A6:F0:B3:52:E6:C5:7E:9B:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/3130332e3135352e3139312e302f32342d3234203d3e20313431303637.roa Signing time: Fri 13 Dec 2024 14:25:00 +0000 ROA not before: Fri 13 Dec 2024 14:20:00 +0000 ROA not after: Fri 12 Dec 2025 14:25:00 +0000 asID: 141067 IP address blocks: 103.155.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 02:35:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:fb:a4:44:94:00:ea:ee:c8:f6:42:64:90:16:43:d7:c2:ea:25:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28B305C66336C433AB601BA6F0B352E6C57E9BEC Validity Not Before: Dec 13 14:20:00 2024 GMT Not After : Dec 12 14:25:00 2025 GMT Subject: CN=CBB1870B7A138F23C0E6FC80E12B72CFC79D9D9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b0:1f:c3:63:a1:9a:c4:34:80:ef:55:63:5d: 15:0c:24:c0:6b:a9:2f:90:03:b1:0b:73:85:40:30: d3:74:f4:32:14:78:55:91:08:59:27:e0:68:b1:23: 0c:33:87:e1:89:66:ad:8c:72:6b:41:13:ee:60:8b: d2:2d:1a:1c:87:84:5c:83:23:cc:99:e5:46:4c:15: 92:1e:b2:92:c2:3f:d3:2d:a0:a3:c0:12:e0:b6:33: 62:91:0a:d2:a2:96:28:75:49:10:8a:55:b1:70:2f: 3e:c8:58:83:6a:f1:9e:e4:c1:75:1f:eb:11:bf:78: d8:e0:2e:58:e4:7c:30:ae:bb:96:c9:f1:20:d3:9c: f7:87:f4:af:35:66:12:a4:25:71:7a:78:69:6b:94: e2:8d:5b:02:2b:72:62:6a:7a:3b:39:ff:78:ba:50: f0:d0:8d:21:f9:3b:e4:01:14:6b:7d:00:53:7c:18: b3:9d:2e:f5:4d:26:7b:be:90:05:0b:5a:d8:8f:ee: b2:ad:27:b3:14:8d:d8:1b:3c:86:b8:ea:e0:70:bf: e4:97:24:d1:d7:86:25:3b:e9:74:fc:ae:55:28:c9: c3:f0:ea:2c:ba:8f:ac:ab:83:d0:d2:a4:3e:48:d0: 28:c2:48:6d:f8:32:b0:96:a2:51:5f:e6:96:8d:c6: 66:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:B1:87:0B:7A:13:8F:23:C0:E6:FC:80:E1:2B:72:CF:C7:9D:9D:9B X509v3 Authority Key Identifier: keyid:28:B3:05:C6:63:36:C4:33:AB:60:1B:A6:F0:B3:52:E6:C5:7E:9B:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/3130332e3135352e3139312e302f32342d3234203d3e20313431303637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.191.0/24 Signature Algorithm: sha256WithRSAEncryption a3:42:02:f0:8e:2f:27:c6:fd:9a:7b:6a:fd:83:3f:79:39:fc: fe:eb:a3:dd:b6:2a:73:51:3a:e4:3b:7b:04:f2:a5:2e:a5:17: b3:79:bf:81:cc:4a:61:3a:6b:97:9e:c5:82:74:1e:ce:a5:49: 8e:1c:60:3c:0b:47:0e:4f:3f:c3:99:ee:94:1b:49:b7:29:f5: bd:b0:c4:e0:35:d3:c3:f4:08:34:d9:c9:f0:fc:97:52:39:72: 1e:c8:2a:d6:6a:6d:63:dc:85:87:57:b6:13:07:fe:18:a8:02: 4d:74:21:1a:51:fd:19:73:f5:e4:2e:b1:db:80:f4:c9:ed:4f: 15:9c:e4:14:18:ef:ca:4b:bf:c9:be:20:0e:98:42:bb:9e:f2: 8a:04:5d:6e:06:0d:f5:54:fb:7f:b4:12:e0:f8:b6:0d:b5:f9: ef:e1:a8:ad:fe:ac:52:91:d8:98:c6:47:f9:50:3d:9d:7c:ce: 00:8f:59:23:36:46:ec:97:84:cd:c3:dc:e0:55:65:37:49:6a: 16:37:43:df:01:d4:55:89:ee:9c:bf:1b:9e:36:87:8a:7e:20: 95:5d:58:ad:22:ff:4d:43:8d:42:c5:7d:b4:f4:6a:03:17:6f: c1:5d:37:bb:77:c8:68:19:77:e0:a2:cb:e7:e1:7e:5a:83:64: 87:16:87:02 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULfukRJQA6u7I9kJkkBZD18LqJUwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUyRTZD NTdFOUJFQzAeFw0yNDEyMTMxNDIwMDBaFw0yNTEyMTIxNDI1MDBaMDMxMTAvBgNV BAMTKENCQjE4NzBCN0ExMzhGMjNDMEU2RkM4MEUxMkI3MkNGQzc5RDlEOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSsB/DY6GaxDSA71VjXRUMJMBr qS+QA7ELc4VAMNN09DIUeFWRCFkn4GixIwwzh+GJZq2McmtBE+5gi9ItGhyHhFyD I8yZ5UZMFZIespLCP9MtoKPAEuC2M2KRCtKilih1SRCKVbFwLz7IWINq8Z7kwXUf 6xG/eNjgLljkfDCuu5bJ8SDTnPeH9K81ZhKkJXF6eGlrlOKNWwIrcmJqejs5/3i6 UPDQjSH5O+QBFGt9AFN8GLOdLvVNJnu+kAULWtiP7rKtJ7MUjdgbPIa46uBwv+SX JNHXhiU76XT8rlUoycPw6iy6j6yrg9DSpD5I0CjCSG34MrCWolFf5paNxmYLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUy7GHC3oTjyPA5vyA4Styz8ednZswHwYDVR0j BBgwFoAUKLMFxmM2xDOrYBum8LNS5sV+m+wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjZlOWI1MS1iZDg3LTQ5MDUtOWJmNC1hODQ4YTQ0ZTViYTUvMC8yOEIzMDVDNjYz MzZDNDMzQUI2MDFCQTZGMEIzNTJFNkM1N0U5QkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUyRTZDNTdF OUJFQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiNmU5YjUxLWJkODctNDkwNS05 YmY0LWE4NDhhNDRlNWJhNS8wLzMxMzAzMzJlMzEzNTM1MmUzMTM5MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM2Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnm78wDQYJ KoZIhvcNAQELBQADggEBAKNCAvCOLyfG/Zp7av2DP3k5/P7ro922KnNROuQ7ewTy pS6lF7N5v4HMSmE6a5eexYJ0Hs6lSY4cYDwLRw5PP8OZ7pQbSbcp9b2wxOA108P0 CDTZyfD8l1I5ch7IKtZqbWPchYdXthMH/hioAk10IRpR/Rlz9eQusduA9MntTxWc 5BQY78pLv8m+IA6YQrue8ooEXW4GDfVU+3+0EuD4tg21+e/hqK3+rFKR2JjGR/lQ PZ18zgCPWSM2RuyXhM3D3OBVZTdJahY3Q98B1FWJ7py/G542h4p+IJVdWK0i/01D jULFfbT0agMXb8FdN7t3yGgZd+Ciy+fhflqDZIcWhwI= -----END CERTIFICATE-----Generated at Sat Apr 19 17:12:19 2025 by rpki-client