$ rpki-client -vvf repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3130332e31302e3235332e302f32342d3234203d3e203536323539.roa File: 3130332e31302e3235332e302f32342d3234203d3e203536323539.roa (raw, json) Hash identifier: Y9UwdeMAqthoV4BdpHdzHHfHrHSy2NpCx4uk4sbXYrk= Subject key identifier: 38:0F:8B:33:54:A3:9D:80:DF:8B:88:41:52:8B:EA:71:1B:40:5B:9C Certificate issuer: /CN=3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F Certificate serial: 75DF859493A310A1DC41F7C673256CFE4A1F847A Authority key identifier: 3D:78:9F:AF:5F:7E:BE:69:38:C4:C7:23:DC:D2:EE:D7:85:C3:5E:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3130332e31302e3235332e302f32342d3234203d3e203536323539.roa Signing time: Mon 19 Aug 2024 14:00:01 +0000 ROA not before: Mon 19 Aug 2024 13:55:01 +0000 ROA not after: Mon 18 Aug 2025 14:00:01 +0000 asID: 56259 IP address blocks: 103.10.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.crl rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 01:35:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:df:85:94:93:a3:10:a1:dc:41:f7:c6:73:25:6c:fe:4a:1f:84:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F Validity Not Before: Aug 19 13:55:01 2024 GMT Not After : Aug 18 14:00:01 2025 GMT Subject: CN=380F8B3354A39D80DF8B8841528BEA711B405B9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:62:ee:e9:05:31:74:50:d4:6d:2d:4a:85:19: a2:58:6e:d9:f2:57:40:93:97:a7:4b:b0:67:db:82: fa:4e:ff:e6:04:b9:ed:00:06:77:70:4f:f4:95:df: ea:ba:9e:3f:b6:0d:11:78:66:a9:62:ee:03:72:b7: ff:9b:be:8d:f7:68:fd:d2:cb:91:8f:d8:25:be:ca: 73:4a:07:3f:9c:c4:b0:a1:e3:c1:24:00:46:3e:fa: 2b:88:c4:65:8b:a7:a3:70:0f:f3:15:53:f1:14:d6: ea:0c:61:c1:8c:a4:70:41:d3:40:c8:00:07:90:7a: b9:e2:af:13:27:77:e4:0c:af:0e:10:53:4e:62:9f: 22:19:38:1e:7e:89:ca:fa:75:72:37:2d:54:e0:0e: 0b:41:ec:d5:51:cc:8a:bd:c8:d0:d6:bd:40:a6:e8: 63:b3:f5:21:ae:f6:99:b7:44:34:67:f0:4e:b1:cc: b8:b4:38:f4:9e:a9:4e:90:61:97:ed:45:b8:d3:67: 61:75:70:c4:a0:97:36:0c:09:e0:81:eb:3b:7f:8c: d5:c5:ac:6d:78:d7:45:7f:c5:6f:fb:9a:29:cb:ad: 43:e2:c0:20:e5:95:c1:b8:a3:cb:7f:65:be:b2:df: c8:f2:22:6e:78:bc:f6:c2:5a:c4:95:6b:0f:ab:70: 51:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:0F:8B:33:54:A3:9D:80:DF:8B:88:41:52:8B:EA:71:1B:40:5B:9C X509v3 Authority Key Identifier: keyid:3D:78:9F:AF:5F:7E:BE:69:38:C4:C7:23:DC:D2:EE:D7:85:C3:5E:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3130332e31302e3235332e302f32342d3234203d3e203536323539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.253.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:ef:5a:94:7a:de:cf:17:10:11:1c:c1:4b:72:4f:4f:bb:0c: 35:dc:4d:5c:42:ce:29:5a:41:47:8b:ad:bf:17:4e:c5:b3:b3: 50:e0:d7:8c:90:c2:4b:9e:fd:59:df:bd:d9:99:80:2e:f0:67: 6c:bb:7d:a1:bb:a8:2e:07:da:5d:02:06:e8:30:1e:2d:4d:19: e6:a2:a9:3e:fe:b1:fd:53:60:15:5c:d7:3c:08:4c:ce:65:39: f0:e0:1e:22:d7:4d:37:0a:0d:97:9e:c0:34:01:54:2a:1b:35: e3:8b:f9:31:50:d0:a2:35:f8:24:60:b0:32:85:d1:71:6f:14: cf:ad:62:45:78:74:46:05:ca:21:92:2c:04:34:d6:e1:da:76: 80:31:80:18:a2:01:fc:72:25:fb:cc:2f:06:f3:b9:f8:73:8a: cd:71:59:0d:7a:8b:0d:00:f2:66:7b:bf:d1:7e:e8:9a:77:41: 67:2c:9b:81:db:54:96:c9:5c:8a:64:1c:b5:39:b0:5e:37:0b: 3c:8b:c8:4d:80:5f:85:84:7c:9e:ea:36:cf:ea:22:59:49:7f: 7c:54:63:81:4d:61:7a:ac:7a:34:db:dc:bb:01:7a:7b:df:fe: 87:36:35:b2:5b:7c:fd:45:dd:3e:84:ba:ae:ca:76:2a:24:d0: 50:b7:ee:48 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdd+FlJOjEKHcQffGcyVs/kofhHowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q3ODlGQUY1RjdFQkU2OTM4QzRDNzIzRENEMkVFRDc4 NUMzNUU0RjAeFw0yNDA4MTkxMzU1MDFaFw0yNTA4MTgxNDAwMDFaMDMxMTAvBgNV BAMTKDM4MEY4QjMzNTRBMzlEODBERjhCODg0MTUyOEJFQTcxMUI0MDVCOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRYu7pBTF0UNRtLUqFGaJYbtny V0CTl6dLsGfbgvpO/+YEue0ABndwT/SV3+q6nj+2DRF4Zqli7gNyt/+bvo33aP3S y5GP2CW+ynNKBz+cxLCh48EkAEY++iuIxGWLp6NwD/MVU/EU1uoMYcGMpHBB00DI AAeQernirxMnd+QMrw4QU05inyIZOB5+icr6dXI3LVTgDgtB7NVRzIq9yNDWvUCm 6GOz9SGu9pm3RDRn8E6xzLi0OPSeqU6QYZftRbjTZ2F1cMSglzYMCeCB6zt/jNXF rG1410V/xW/7minLrUPiwCDllcG4o8t/Zb6y38jyIm54vPbCWsSVaw+rcFGBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUOA+LM1SjnYDfi4hBUovqcRtAW5wwHwYDVR0j BBgwFoAUPXifr19+vmk4xMcj3NLu14XDXk8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDk3MDAzMi0wOGVhLTQ4OTAtYmRiYS02MzA5YTQ5NzkxN2QvMC8zRDc4OUZBRjVG N0VCRTY5MzhDNEM3MjNEQ0QyRUVENzg1QzM1RTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q3ODlGQUY1RjdFQkU2OTM4QzRDNzIzRENEMkVFRDc4NUMz NUU0Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkOTcwMDMyLTA4ZWEtNDg5MC1i ZGJhLTYzMDlhNDk3OTE3ZC8wLzMxMzAzMzJlMzEzMDJlMzIzNTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcK/TANBgkqhkiG 9w0BAQsFAAOCAQEAXe9alHrezxcQERzBS3JPT7sMNdxNXELOKVpBR4utvxdOxbOz UODXjJDCS579Wd+92ZmALvBnbLt9obuoLgfaXQIG6DAeLU0Z5qKpPv6x/VNgFVzX PAhMzmU58OAeItdNNwoNl57ANAFUKhs144v5MVDQojX4JGCwMoXRcW8Uz61iRXh0 RgXKIZIsBDTW4dp2gDGAGKIB/HIl+8wvBvO5+HOKzXFZDXqLDQDyZnu/0X7omndB ZyybgdtUlslcimQctTmwXjcLPIvITYBfhYR8nuo2z+oiWUl/fFRjgU1heqx6NNvc uwF6e9/+hzY1slt8/UXdPoS6rsp2KiTQULfuSA== -----END CERTIFICATE-----Generated at Fri Feb 21 11:21:00 2025 by rpki-client