$ rpki-client -vvf repo-rpki.idnic.net/repo/4e98b3bd-284d-4a7d-9f27-cb587e9dd841/0/3130332e38332e3131362e302f32342d3234203d3e20313336303634.roa File: 3130332e38332e3131362e302f32342d3234203d3e20313336303634.roa (raw, json) Hash identifier: egnrAxySdNzwkvZG7pgW2GfPGQmn/8OQ66XKF6zUyrM= Subject key identifier: 55:57:DF:2A:E1:64:E8:B8:28:3E:E0:60:DF:B3:AC:FC:AE:E8:A7:10 Certificate issuer: /CN=38F85F0AA81AE33827BDF573D6A712452180A036 Certificate serial: 41826B77C5FC40FF00F8D200B06010A23354A81C Authority key identifier: 38:F8:5F:0A:A8:1A:E3:38:27:BD:F5:73:D6:A7:12:45:21:80:A0:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38F85F0AA81AE33827BDF573D6A712452180A036.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4e98b3bd-284d-4a7d-9f27-cb587e9dd841/0/3130332e38332e3131362e302f32342d3234203d3e20313336303634.roa Signing time: Wed 27 Nov 2024 12:00:01 +0000 ROA not before: Wed 27 Nov 2024 11:55:01 +0000 ROA not after: Wed 26 Nov 2025 12:00:01 +0000 asID: 136064 IP address blocks: 103.83.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4e98b3bd-284d-4a7d-9f27-cb587e9dd841/0/38F85F0AA81AE33827BDF573D6A712452180A036.crl rsync://repo-rpki.idnic.net/repo/4e98b3bd-284d-4a7d-9f27-cb587e9dd841/0/38F85F0AA81AE33827BDF573D6A712452180A036.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38F85F0AA81AE33827BDF573D6A712452180A036.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 01:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:82:6b:77:c5:fc:40:ff:00:f8:d2:00:b0:60:10:a2:33:54:a8:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38F85F0AA81AE33827BDF573D6A712452180A036 Validity Not Before: Nov 27 11:55:01 2024 GMT Not After : Nov 26 12:00:01 2025 GMT Subject: CN=5557DF2AE164E8B8283EE060DFB3ACFCAEE8A710 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:78:f6:f8:fe:3b:01:fd:7a:b1:9b:18:c9:5f: dc:60:5f:a0:78:7d:52:fc:fa:84:08:7d:be:9d:b0: 79:98:d7:38:44:c1:11:e7:83:a0:62:57:bc:6f:1f: 4e:34:8c:ab:24:4d:d6:b7:5e:50:0d:4b:81:04:d8: 86:53:e7:11:4e:bf:13:12:2d:ea:57:9c:93:6c:00: e0:cb:dd:7c:2c:4e:a2:be:d2:72:e7:d8:1d:30:82: 2c:9e:8a:df:38:c2:90:70:57:f9:0c:83:36:2a:e2: 69:65:53:53:e1:61:f5:63:be:fa:53:6e:d5:04:aa: 74:9c:e1:84:ef:30:6c:a8:0a:ee:6c:e4:f5:96:e9: 8d:d6:e4:b5:0d:21:45:f6:42:e8:88:1d:01:59:56: 34:95:31:99:62:42:a8:e1:b3:11:3e:49:24:ca:b0: 62:ab:a4:8f:24:f2:33:de:ab:e0:e6:00:ad:f8:da: ff:81:87:2a:b7:6b:82:d2:01:bb:49:7b:72:90:ce: 4d:b6:29:41:bd:1f:30:8b:74:2e:f0:1a:4a:57:41: 2f:8d:d6:fc:39:b5:da:5d:83:fc:fa:f6:f7:06:f2: bd:f2:58:14:d5:85:5b:05:0a:59:c0:db:b8:0e:e7: b4:ae:ed:a9:5f:58:f8:72:71:ff:43:d1:d9:a1:e6: 72:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:57:DF:2A:E1:64:E8:B8:28:3E:E0:60:DF:B3:AC:FC:AE:E8:A7:10 X509v3 Authority Key Identifier: keyid:38:F8:5F:0A:A8:1A:E3:38:27:BD:F5:73:D6:A7:12:45:21:80:A0:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4e98b3bd-284d-4a7d-9f27-cb587e9dd841/0/38F85F0AA81AE33827BDF573D6A712452180A036.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38F85F0AA81AE33827BDF573D6A712452180A036.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4e98b3bd-284d-4a7d-9f27-cb587e9dd841/0/3130332e38332e3131362e302f32342d3234203d3e20313336303634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.83.116.0/24 Signature Algorithm: sha256WithRSAEncryption 21:1d:bd:96:31:32:90:1d:50:45:41:3d:c7:f3:17:1e:98:7d: 20:39:ad:6f:c0:c2:fe:92:9d:25:47:00:98:7f:7c:da:08:11: 91:71:1a:b9:dc:22:d4:29:23:58:18:e3:18:07:4c:a0:54:fd: c7:f5:83:dc:00:15:eb:66:bd:05:a5:59:84:42:18:8f:ee:1b: 68:91:2b:80:c8:21:98:d6:9e:d7:3a:52:fa:13:85:13:35:53: c9:5a:ba:29:b5:86:d6:41:22:1d:90:04:49:f5:72:a5:5d:01: 3d:95:7e:cb:60:3e:dd:06:ad:40:fc:2a:86:10:e5:90:68:75: 76:6f:07:34:b5:62:b1:1a:dd:cb:76:b7:a2:86:ba:3c:0e:60: b2:7d:b0:fc:74:72:1d:81:94:26:c0:f0:63:21:63:54:cd:13: 33:93:68:1b:a8:b9:e8:d0:67:a5:9b:52:3b:75:3f:33:b5:40: 47:6f:f9:94:4c:7a:04:e5:7d:e4:21:b7:1b:01:a8:37:24:de: 5a:31:47:5c:82:85:39:62:aa:d1:95:cd:bc:95:1b:9e:42:ac: e2:9d:07:6a:9a:95:4f:79:6d:35:7c:d9:2c:2a:b0:a3:b8:55: 1d:e2:fd:6c:7b:c5:53:88:3f:c3:34:bd:d9:f9:d5:0b:5a:e2: 12:85:7f:a6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQYJrd8X8QP8A+NIAsGAQojNUqBwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhGODVGMEFBODFBRTMzODI3QkRGNTczRDZBNzEyNDUy MTgwQTAzNjAeFw0yNDExMjcxMTU1MDFaFw0yNTExMjYxMjAwMDFaMDMxMTAvBgNV BAMTKDU1NTdERjJBRTE2NEU4QjgyODNFRTA2MERGQjNBQ0ZDQUVFOEE3MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyePb4/jsB/XqxmxjJX9xgX6B4 fVL8+oQIfb6dsHmY1zhEwRHng6BiV7xvH040jKskTda3XlANS4EE2IZT5xFOvxMS LepXnJNsAODL3XwsTqK+0nLn2B0wgiyeit84wpBwV/kMgzYq4mllU1PhYfVjvvpT btUEqnSc4YTvMGyoCu5s5PWW6Y3W5LUNIUX2QuiIHQFZVjSVMZliQqjhsxE+SSTK sGKrpI8k8jPeq+DmAK342v+Bhyq3a4LSAbtJe3KQzk22KUG9HzCLdC7wGkpXQS+N 1vw5tdpdg/z69vcG8r3yWBTVhVsFClnA27gO57Su7alfWPhycf9D0dmh5nKbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVVffKuFk6LgoPuBg37Os/K7opxAwHwYDVR0j BBgwFoAUOPhfCqga4zgnvfVz1qcSRSGAoDYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZTk4YjNiZC0yODRkLTRhN2QtOWYyNy1jYjU4N2U5ZGQ4NDEvMC8zOEY4NUYwQUE4 MUFFMzM4MjdCREY1NzNENkE3MTI0NTIxODBBMDM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzhGODVGMEFBODFBRTMzODI3QkRGNTczRDZBNzEyNDUyMTgw QTAzNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRlOThiM2JkLTI4NGQtNGE3ZC05 ZjI3LWNiNTg3ZTlkZDg0MS8wLzMxMzAzMzJlMzgzMzJlMzEzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1N0MA0GCSqG SIb3DQEBCwUAA4IBAQAhHb2WMTKQHVBFQT3H8xcemH0gOa1vwML+kp0lRwCYf3za CBGRcRq53CLUKSNYGOMYB0ygVP3H9YPcABXrZr0FpVmEQhiP7htokSuAyCGY1p7X OlL6E4UTNVPJWroptYbWQSIdkARJ9XKlXQE9lX7LYD7dBq1A/CqGEOWQaHV2bwc0 tWKxGt3Ldreihro8DmCyfbD8dHIdgZQmwPBjIWNUzRMzk2gbqLno0Gelm1I7dT8z tUBHb/mUTHoE5X3kIbcbAag3JN5aMUdcgoU5YqrRlc28lRueQqzinQdqmpVPeW01 fNksKrCjuFUd4v1se8VTiD/DNL3Z+dULWuIShX+m -----END CERTIFICATE-----Generated at Sun Apr 6 17:51:51 2025 by rpki-client