$ rpki-client -vvf repo-rpki.idnic.net/repo/4d61c750-880f-498b-a698-1f4780fa69ff/0/3130332e37362e33312e302f32342d3234203d3e20313530343732.roa File: 3130332e37362e33312e302f32342d3234203d3e20313530343732.roa (raw, json) Hash identifier: Ziyg0D5V2s9TzgtFXhxrBwlw2/DAp6aRN3+gPcC29v4= Subject key identifier: CB:CA:84:80:37:5D:A0:8F:27:99:48:0F:96:F7:A6:06:0A:47:95:2D Certificate issuer: /CN=A5959C75F8AC190DC22C7C3276CF95834D5CA687 Certificate serial: 2D09A4C1D8E8D1DE232E00F1387B7B6F5396FE0F Authority key identifier: A5:95:9C:75:F8:AC:19:0D:C2:2C:7C:32:76:CF:95:83:4D:5C:A6:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A5959C75F8AC190DC22C7C3276CF95834D5CA687.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d61c750-880f-498b-a698-1f4780fa69ff/0/3130332e37362e33312e302f32342d3234203d3e20313530343732.roa Signing time: Tue 05 Nov 2024 05:00:00 +0000 ROA not before: Tue 05 Nov 2024 04:55:00 +0000 ROA not after: Tue 04 Nov 2025 05:00:00 +0000 asID: 150472 IP address blocks: 103.76.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d61c750-880f-498b-a698-1f4780fa69ff/0/A5959C75F8AC190DC22C7C3276CF95834D5CA687.crl rsync://repo-rpki.idnic.net/repo/4d61c750-880f-498b-a698-1f4780fa69ff/0/A5959C75F8AC190DC22C7C3276CF95834D5CA687.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A5959C75F8AC190DC22C7C3276CF95834D5CA687.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 06:34:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:09:a4:c1:d8:e8:d1:de:23:2e:00:f1:38:7b:7b:6f:53:96:fe:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A5959C75F8AC190DC22C7C3276CF95834D5CA687 Validity Not Before: Nov 5 04:55:00 2024 GMT Not After : Nov 4 05:00:00 2025 GMT Subject: CN=CBCA8480375DA08F2799480F96F7A6060A47952D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:24:6b:83:7c:54:18:d9:30:7c:94:0d:cb:56: b6:34:88:da:d8:e4:aa:11:4e:bf:b3:50:7a:d0:b4: 0e:3c:32:20:e3:11:8a:be:c4:37:07:5c:54:41:77: 05:23:e7:7e:8b:04:7f:fd:2f:bc:00:71:84:e9:8a: 62:43:08:f6:8c:d8:5c:d2:8e:3f:70:a9:df:9a:80: d2:1d:cc:f7:1f:3b:49:2e:81:0e:1f:ee:a9:e6:72: b3:00:99:fe:9d:cb:be:b1:e9:a5:48:35:81:14:b1: 1e:0a:80:c8:b1:9e:ec:a6:b7:87:c5:5c:c7:45:f3: 2c:77:60:49:1e:d2:18:5d:69:39:76:3a:99:b5:f3: 9f:2d:39:bc:40:75:ec:eb:25:35:72:9e:6f:d5:3d: df:39:99:69:f5:4c:83:64:44:4b:8c:e4:40:c6:b8: dd:33:a7:83:8b:29:77:9a:c4:db:3d:9e:79:47:c8: ec:59:93:0f:55:57:3e:98:90:70:55:aa:c2:e1:42: 40:c1:41:e9:81:5e:cf:97:43:1a:33:4a:8d:b3:9e: 79:cb:dd:9a:5b:ed:a3:58:c9:0f:15:5e:ab:28:a7: 18:e8:37:eb:56:e3:b6:a1:12:ed:bb:15:7e:90:6e: 61:13:05:60:8a:90:7a:78:51:d6:bd:94:40:2c:66: b1:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:CA:84:80:37:5D:A0:8F:27:99:48:0F:96:F7:A6:06:0A:47:95:2D X509v3 Authority Key Identifier: keyid:A5:95:9C:75:F8:AC:19:0D:C2:2C:7C:32:76:CF:95:83:4D:5C:A6:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d61c750-880f-498b-a698-1f4780fa69ff/0/A5959C75F8AC190DC22C7C3276CF95834D5CA687.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A5959C75F8AC190DC22C7C3276CF95834D5CA687.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d61c750-880f-498b-a698-1f4780fa69ff/0/3130332e37362e33312e302f32342d3234203d3e20313530343732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.76.31.0/24 Signature Algorithm: sha256WithRSAEncryption 33:fb:0e:fc:a4:18:2c:10:57:81:ef:e2:c2:19:5a:e4:ed:32: a0:95:89:74:16:76:ca:e4:de:56:fa:05:c4:fe:fe:ac:d2:50: 42:76:45:ae:33:b2:0f:e3:3a:1a:7e:37:f7:d9:ae:55:87:e0: f7:fb:c3:d0:db:97:72:9b:b7:17:db:33:79:4a:a1:fd:e8:b9: 1e:a9:7a:65:0f:c8:23:6c:e2:e7:c4:cd:d2:65:9f:d8:f6:46: 7a:10:b3:d0:83:ad:f4:f4:73:82:e0:d5:77:cf:98:c4:1d:22: 18:0a:88:87:e3:5c:54:a7:a2:09:25:aa:e7:2c:a0:85:21:3e: e6:12:c6:e5:f9:0e:19:0c:db:d1:64:2c:43:af:12:a6:5d:00: 88:df:04:80:87:ec:cf:56:ee:1e:f1:a7:ad:89:cb:c1:48:33: f2:86:6f:11:2f:17:f2:8c:23:70:2d:5e:ae:8c:f6:73:7c:4c: 77:bc:41:3b:f6:61:3f:6a:31:e6:a2:d9:ee:7d:b3:7c:d1:2d: 48:bb:89:5a:05:e6:53:92:e4:33:26:bc:c1:b6:ff:9a:95:de: 2a:fc:e6:fd:f8:c7:34:be:c9:a8:bc:c8:cf:3d:21:e0:16:e6: b0:c9:f1:9a:de:cd:07:c6:cf:81:b3:90:98:50:aa:6f:29:65: f8:9a:14:b0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULQmkwdjo0d4jLgDxOHt7b1OW/g8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTU5NTlDNzVGOEFDMTkwREMyMkM3QzMyNzZDRjk1ODM0 RDVDQTY4NzAeFw0yNDExMDUwNDU1MDBaFw0yNTExMDQwNTAwMDBaMDMxMTAvBgNV BAMTKENCQ0E4NDgwMzc1REEwOEYyNzk5NDgwRjk2RjdBNjA2MEE0Nzk1MkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeJGuDfFQY2TB8lA3LVrY0iNrY 5KoRTr+zUHrQtA48MiDjEYq+xDcHXFRBdwUj536LBH/9L7wAcYTpimJDCPaM2FzS jj9wqd+agNIdzPcfO0kugQ4f7qnmcrMAmf6dy76x6aVINYEUsR4KgMixnuymt4fF XMdF8yx3YEke0hhdaTl2Opm1858tObxAdezrJTVynm/VPd85mWn1TINkREuM5EDG uN0zp4OLKXeaxNs9nnlHyOxZkw9VVz6YkHBVqsLhQkDBQemBXs+XQxozSo2znnnL 3Zpb7aNYyQ8VXqsopxjoN+tW47ahEu27FX6QbmETBWCKkHp4Uda9lEAsZrElAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUy8qEgDddoI8nmUgPlvemBgpHlS0wHwYDVR0j BBgwFoAUpZWcdfisGQ3CLHwyds+Vg01cpocwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDYxYzc1MC04ODBmLTQ5OGItYTY5OC0xZjQ3ODBmYTY5ZmYvMC9BNTk1OUM3NUY4 QUMxOTBEQzIyQzdDMzI3NkNGOTU4MzRENUNBNjg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTU5NTlDNzVGOEFDMTkwREMyMkM3QzMyNzZDRjk1ODM0RDVD QTY4Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkNjFjNzUwLTg4MGYtNDk4Yi1h Njk4LTFmNDc4MGZhNjlmZi8wLzMxMzAzMzJlMzczNjJlMzMzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDM0MzczMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdMHzANBgkqhkiG 9w0BAQsFAAOCAQEAM/sO/KQYLBBXge/iwhla5O0yoJWJdBZ2yuTeVvoFxP7+rNJQ QnZFrjOyD+M6Gn4399muVYfg9/vD0NuXcpu3F9szeUqh/ei5Hql6ZQ/II2zi58TN 0mWf2PZGehCz0IOt9PRzguDVd8+YxB0iGAqIh+NcVKeiCSWq5yyghSE+5hLG5fkO GQzb0WQsQ68Spl0AiN8EgIfsz1buHvGnrYnLwUgz8oZvES8X8owjcC1eroz2c3xM d7xBO/ZhP2ox5qLZ7n2zfNEtSLuJWgXmU5LkMya8wbb/mpXeKvzm/fjHNL7JqLzI zz0h4BbmsMnxmt7NB8bPgbOQmFCqbyll+JoUsA== -----END CERTIFICATE-----Generated at Fri Feb 21 11:16:11 2025 by rpki-client