$ rpki-client -vvf repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3130332e3133322e3233302e302f32342d3234203d3e20313338313237.roa File: 3130332e3133322e3233302e302f32342d3234203d3e20313338313237.roa (raw, json) Hash identifier: SdfVlvgb41TvQfFCAAr6Hvu/iM3n38wFz7a+3vMqJi4= Subject key identifier: 5C:BE:1E:7F:BB:12:FC:93:12:56:DB:46:75:89:BE:05:EF:5D:71:75 Certificate issuer: /CN=3E0B957B582D8AEF99A49C6448F9993C72378BF3 Certificate serial: 58C032F5B12F2D0457097277AE32DD151DB20C6B Authority key identifier: 3E:0B:95:7B:58:2D:8A:EF:99:A4:9C:64:48:F9:99:3C:72:37:8B:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0B957B582D8AEF99A49C6448F9993C72378BF3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3130332e3133322e3233302e302f32342d3234203d3e20313338313237.roa Signing time: Fri 20 Dec 2024 07:02:59 +0000 ROA not before: Fri 20 Dec 2024 06:57:59 +0000 ROA not after: Fri 19 Dec 2025 07:02:59 +0000 asID: 138127 IP address blocks: 103.132.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.crl rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0B957B582D8AEF99A49C6448F9993C72378BF3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 05:52:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:c0:32:f5:b1:2f:2d:04:57:09:72:77:ae:32:dd:15:1d:b2:0c:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E0B957B582D8AEF99A49C6448F9993C72378BF3 Validity Not Before: Dec 20 06:57:59 2024 GMT Not After : Dec 19 07:02:59 2025 GMT Subject: CN=5CBE1E7FBB12FC931256DB467589BE05EF5D7175 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:bd:aa:7f:6c:4b:1a:d0:f9:c7:f3:0e:39:5c: df:08:56:4f:53:55:e7:0d:3c:cc:0f:ec:95:43:98: a2:30:91:9e:75:8c:5a:78:31:2b:09:c6:fe:15:00: 29:3b:43:14:52:93:95:ac:da:77:14:9e:52:91:cd: 0a:fc:13:9d:bc:fc:45:aa:3f:2f:79:37:77:53:bf: 0a:10:ab:3b:24:54:6f:97:91:c2:68:76:f9:e4:09: 16:da:d8:89:e5:27:db:bd:82:72:1b:07:01:be:2a: 96:59:85:c3:01:f5:12:34:06:13:60:c8:a6:10:80: ae:72:87:69:c5:de:64:bb:ca:5b:e7:7f:20:4d:c8: 4a:34:be:b7:1a:35:93:d2:ad:89:c4:e8:0b:18:5f: 10:81:43:e8:11:fd:7d:f3:54:11:36:06:67:76:2d: 4e:a5:c8:70:eb:7e:b0:b3:d8:08:b7:dd:78:e5:36: 83:ac:23:03:5b:1b:d3:63:2c:30:06:a3:b1:2d:ee: 60:8f:15:6e:8a:c3:fe:fc:d4:58:7d:5a:f3:c8:38: e7:e8:9f:8e:ef:6c:c8:3c:7a:bd:9c:e9:c8:23:e7: 99:fc:b4:24:4c:98:84:6e:d9:87:e5:7c:5d:96:41: 7b:c8:12:fd:cf:d9:b3:f3:b0:73:83:67:66:c1:de: 34:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:BE:1E:7F:BB:12:FC:93:12:56:DB:46:75:89:BE:05:EF:5D:71:75 X509v3 Authority Key Identifier: keyid:3E:0B:95:7B:58:2D:8A:EF:99:A4:9C:64:48:F9:99:3C:72:37:8B:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0B957B582D8AEF99A49C6448F9993C72378BF3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3130332e3133322e3233302e302f32342d3234203d3e20313338313237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.230.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:39:2b:90:ec:47:f6:9c:d4:11:a9:ee:45:26:bc:5b:74:b5: bb:7e:71:23:84:69:2c:c2:1c:23:bb:10:9b:10:56:68:2a:f5: 7f:27:0d:3b:45:45:5c:75:cc:5d:da:63:6a:f4:a3:9b:cf:35: c1:b5:46:c6:6b:1a:7b:a0:22:dd:59:51:87:56:12:bb:90:b8: a4:cc:55:0d:24:48:e7:76:33:69:bc:9c:b1:77:52:16:ed:94: e7:dd:2a:99:21:8c:50:01:e8:16:a7:35:a2:57:4f:e6:e0:af: 5e:d8:cd:b2:8e:40:cb:1b:23:64:c7:9f:75:b3:0a:0e:cf:78: 1a:b1:e2:0c:6b:dc:99:17:82:b5:03:b5:fa:c6:a3:c4:fc:d6: 5e:a4:59:cb:91:6a:85:a8:6b:98:92:20:f4:01:05:46:f3:f0: c0:32:07:aa:33:cb:c2:4e:a7:29:10:cc:03:88:c0:d8:f6:27: c9:fc:bf:e0:53:bf:5d:2d:fe:6a:f7:8e:c5:f1:ec:c0:ff:95: 65:25:25:1d:03:73:36:20:15:9b:39:ed:4b:80:df:e5:16:8d: 16:71:82:b6:7c:6e:10:cd:35:9e:7c:db:c3:85:ca:85:24:8a: 87:21:17:b7:10:8d:52:03:8a:05:c8:30:7e:71:31:00:1e:bf: d2:7b:b1:92 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWMAy9bEvLQRXCXJ3rjLdFR2yDGswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0UwQjk1N0I1ODJEOEFFRjk5QTQ5QzY0NDhGOTk5M0M3 MjM3OEJGMzAeFw0yNDEyMjAwNjU3NTlaFw0yNTEyMTkwNzAyNTlaMDMxMTAvBgNV BAMTKDVDQkUxRTdGQkIxMkZDOTMxMjU2REI0Njc1ODlCRTA1RUY1RDcxNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLvap/bEsa0PnH8w45XN8IVk9T VecNPMwP7JVDmKIwkZ51jFp4MSsJxv4VACk7QxRSk5Ws2ncUnlKRzQr8E528/EWq Py95N3dTvwoQqzskVG+XkcJodvnkCRba2InlJ9u9gnIbBwG+KpZZhcMB9RI0BhNg yKYQgK5yh2nF3mS7ylvnfyBNyEo0vrcaNZPSrYnE6AsYXxCBQ+gR/X3zVBE2Bmd2 LU6lyHDrfrCz2Ai33XjlNoOsIwNbG9NjLDAGo7Et7mCPFW6Kw/781Fh9WvPIOOfo n47vbMg8er2c6cgj55n8tCRMmIRu2YflfF2WQXvIEv3P2bPzsHODZ2bB3jRTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUXL4ef7sS/JMSVttGdYm+Be9dcXUwHwYDVR0j BBgwFoAUPguVe1gtiu+ZpJxkSPmZPHI3i/MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZWRjOWU0Zi04MTgwLTQxZDYtYjA4ZC04ZWU1YThhNzBhMDUvMC8zRTBCOTU3QjU4 MkQ4QUVGOTlBNDlDNjQ0OEY5OTkzQzcyMzc4QkYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0UwQjk1N0I1ODJEOEFFRjk5QTQ5QzY0NDhGOTk5M0M3MjM3 OEJGMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRlZGM5ZTRmLTgxODAtNDFkNi1i MDhkLThlZTVhOGE3MGEwNS8wLzMxMzAzMzJlMzEzMzMyMmUzMjMzMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMyMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnhOYwDQYJ KoZIhvcNAQELBQADggEBAE85K5DsR/ac1BGp7kUmvFt0tbt+cSOEaSzCHCO7EJsQ Vmgq9X8nDTtFRVx1zF3aY2r0o5vPNcG1RsZrGnugIt1ZUYdWEruQuKTMVQ0kSOd2 M2m8nLF3UhbtlOfdKpkhjFAB6BanNaJXT+bgr17YzbKOQMsbI2THn3WzCg7PeBqx 4gxr3JkXgrUDtfrGo8T81l6kWcuRaoWoa5iSIPQBBUbz8MAyB6ozy8JOpykQzAOI wNj2J8n8v+BTv10t/mr3jsXx7MD/lWUlJR0DczYgFZs57UuA3+UWjRZxgrZ8bhDN NZ5828OFyoUkiochF7cQjVIDigXIMH5xMQAev9J7sZI= -----END CERTIFICATE-----Generated at Wed Apr 9 01:41:42 2025 by rpki-client