$ rpki-client -vvf repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/3130332e3132312e3133362e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3133362e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: XTHSvGcaRTEV+p1Y+pj9uwCkeA4dOjhqgF5dBEY4xig= Subject key identifier: C2:48:F2:7E:D1:43:93:47:0B:B9:37:8A:22:1F:E5:5B:1A:1C:40:89 Certificate issuer: /CN=5CC6B0489E576BC0D642B626195A0AA0560DC792 Certificate serial: 6E205CC7D6BE0776FD8EFD7189BC3CFE1600D8CE Authority key identifier: 5C:C6:B0:48:9E:57:6B:C0:D6:42:B6:26:19:5A:0A:A0:56:0D:C7:92 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5CC6B0489E576BC0D642B626195A0AA0560DC792.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/3130332e3132312e3133362e302f32332d3234203d3e20313335343738.roa Signing time: Wed 04 Dec 2024 07:01:42 +0000 ROA not before: Wed 04 Dec 2024 06:56:42 +0000 ROA not after: Wed 03 Dec 2025 07:01:42 +0000 asID: 135478 IP address blocks: 103.121.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/5CC6B0489E576BC0D642B626195A0AA0560DC792.crl rsync://repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/5CC6B0489E576BC0D642B626195A0AA0560DC792.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5CC6B0489E576BC0D642B626195A0AA0560DC792.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 20:56:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:20:5c:c7:d6:be:07:76:fd:8e:fd:71:89:bc:3c:fe:16:00:d8:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5CC6B0489E576BC0D642B626195A0AA0560DC792 Validity Not Before: Dec 4 06:56:42 2024 GMT Not After : Dec 3 07:01:42 2025 GMT Subject: CN=C248F27ED14393470BB9378A221FE55B1A1C4089 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:16:a2:16:18:86:4a:d6:66:df:d7:6b:06:31: 90:5c:01:7d:76:0c:86:56:54:f8:aa:83:35:82:8d: 82:dd:69:f8:e5:67:52:c5:13:9f:47:10:b7:41:b5: 02:1c:7f:77:19:70:3c:0d:41:09:f7:3c:b3:0d:f2: f9:0e:42:d6:81:ac:f2:2c:52:4b:1e:f6:29:c3:e4: 15:b4:72:f4:09:e4:21:f7:47:6b:d1:2e:5a:fe:1a: 47:eb:75:41:3a:a8:e7:08:b8:6c:00:54:43:ee:f4: ec:f7:70:33:9d:ba:df:6a:18:04:c7:68:43:5f:77: 63:28:97:f8:df:d2:da:1f:29:b3:b3:87:53:27:14: f9:9b:cf:f1:33:ed:c6:fd:d8:a5:7d:42:ad:0c:9d: 88:49:37:76:cb:e1:dd:05:f7:8e:f2:7f:42:30:0e: 15:b8:cd:66:38:7a:2d:c9:56:e0:c4:fe:7d:4d:be: 15:cb:4c:1a:94:95:e6:df:d1:14:67:82:e0:97:da: 07:43:9f:e3:ae:ba:21:8f:c7:e7:0d:cf:a7:0e:8b: 70:ee:59:13:32:0c:90:7f:d5:3b:fb:4c:cf:ef:ec: cd:d6:66:10:d0:67:92:f9:07:8b:0a:d9:db:37:b3: 75:3b:53:52:2f:65:b9:24:42:cc:7f:ba:a1:b5:09: 17:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:48:F2:7E:D1:43:93:47:0B:B9:37:8A:22:1F:E5:5B:1A:1C:40:89 X509v3 Authority Key Identifier: keyid:5C:C6:B0:48:9E:57:6B:C0:D6:42:B6:26:19:5A:0A:A0:56:0D:C7:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/5CC6B0489E576BC0D642B626195A0AA0560DC792.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5CC6B0489E576BC0D642B626195A0AA0560DC792.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/3130332e3132312e3133362e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.136.0/23 Signature Algorithm: sha256WithRSAEncryption cb:d0:1c:4f:e6:8d:ed:be:dd:ee:7b:cb:49:5a:cb:4a:0d:a0: b4:45:16:96:68:b7:26:8c:6b:20:2e:15:0f:83:25:d2:48:09: 72:5a:57:24:bd:a4:35:42:e9:07:94:a5:1d:eb:a4:d8:05:f6: 15:86:9d:d9:79:33:f4:61:d7:e1:aa:8a:c0:6b:a1:70:cd:fa: 7d:3c:41:7c:e2:91:92:d6:f7:c2:76:fc:3c:ee:fb:34:16:e1: bb:ed:87:6b:0a:90:7d:df:51:a4:42:0f:1b:4d:97:ac:22:b5: a0:ba:80:2f:a1:e7:78:29:8b:77:14:bf:c8:e2:4e:ba:7c:ed: 6b:c9:29:cf:4c:21:16:b4:04:8b:29:6a:7c:cd:c9:e8:58:27: f1:01:3d:8f:5a:c4:64:85:1d:77:11:62:c2:c7:8b:43:b4:1e: a2:60:23:65:f2:54:c5:5a:50:20:84:bf:e0:c2:2e:dd:82:b7: 94:31:97:e1:d7:31:3a:0f:83:f6:3f:26:be:5a:a5:c4:2f:aa: 72:6c:ac:09:9e:0e:18:b2:ef:76:f7:48:d0:e7:90:2d:a6:64: 5c:fa:7a:66:ea:39:00:1c:0f:aa:5c:d8:cd:88:aa:49:b7:a0: 06:62:e6:80:31:e4:8e:8f:86:3b:c1:52:34:07:27:66:c5:49: 7e:ac:39:ce -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbiBcx9a+B3b9jv1xibw8/hYA2M4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUNDNkIwNDg5RTU3NkJDMEQ2NDJCNjI2MTk1QTBBQTA1 NjBEQzc5MjAeFw0yNDEyMDQwNjU2NDJaFw0yNTEyMDMwNzAxNDJaMDMxMTAvBgNV BAMTKEMyNDhGMjdFRDE0MzkzNDcwQkI5Mzc4QTIyMUZFNTVCMUExQzQwODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1FqIWGIZK1mbf12sGMZBcAX12 DIZWVPiqgzWCjYLdafjlZ1LFE59HELdBtQIcf3cZcDwNQQn3PLMN8vkOQtaBrPIs Ukse9inD5BW0cvQJ5CH3R2vRLlr+GkfrdUE6qOcIuGwAVEPu9Oz3cDOdut9qGATH aENfd2Mol/jf0tofKbOzh1MnFPmbz/Ez7cb92KV9Qq0MnYhJN3bL4d0F947yf0Iw DhW4zWY4ei3JVuDE/n1NvhXLTBqUlebf0RRnguCX2gdDn+OuuiGPx+cNz6cOi3Du WRMyDJB/1Tv7TM/v7M3WZhDQZ5L5B4sK2ds3s3U7U1IvZbkkQsx/uqG1CRfrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUwkjyftFDk0cLuTeKIh/lWxocQIkwHwYDVR0j BBgwFoAUXMawSJ5Xa8DWQrYmGVoKoFYNx5IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjRmYTdiOC01MzAyLTQ5MGItOTJlNC0yN2YyOGM2NjU3NWMvMC81Q0M2QjA0ODlF NTc2QkMwRDY0MkI2MjYxOTVBMEFBMDU2MERDNzkyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUNDNkIwNDg5RTU3NkJDMEQ2NDJCNjI2MTk1QTBBQTA1NjBE Qzc5Mi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmNGZhN2I4LTUzMDItNDkwYi05 MmU0LTI3ZjI4YzY2NTc1Yy8wLzMxMzAzMzJlMzEzMjMxMmUzMTMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneYgwDQYJ KoZIhvcNAQELBQADggEBAMvQHE/mje2+3e57y0lay0oNoLRFFpZotyaMayAuFQ+D JdJICXJaVyS9pDVC6QeUpR3rpNgF9hWGndl5M/Rh1+GqisBroXDN+n08QXzikZLW 98J2/Dzu+zQW4bvth2sKkH3fUaRCDxtNl6witaC6gC+h53gpi3cUv8jiTrp87WvJ Kc9MIRa0BIspanzNyehYJ/EBPY9axGSFHXcRYsLHi0O0HqJgI2XyVMVaUCCEv+DC Lt2Ct5Qxl+HXMToPg/Y/Jr5apcQvqnJsrAmeDhiy73b3SNDnkC2mZFz6embqOQAc D6pc2M2Iqkm3oAZi5oAx5I6PhjvBUjQHJ2bFSX6sOc4= -----END CERTIFICATE-----Generated at Sun Apr 6 13:41:30 2025 by rpki-client