$ rpki-client -vvf repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/3130332e3132312e3133382e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3133382e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: IYSPzv0ipkmDqn5ZyXeN0f328BkzkZ8Pmn6bIzAKtQc= Subject key identifier: A6:6C:D0:5E:A3:C4:8F:75:54:8B:9E:5A:D2:07:B3:50:9E:9F:77:54 Certificate issuer: /CN=5CC6B0489E576BC0D642B626195A0AA0560DC792 Certificate serial: 05A63C7CBE8C0900A0EDAEBCA535D0ADAE7404DA Authority key identifier: 5C:C6:B0:48:9E:57:6B:C0:D6:42:B6:26:19:5A:0A:A0:56:0D:C7:92 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5CC6B0489E576BC0D642B626195A0AA0560DC792.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/3130332e3132312e3133382e302f32332d3234203d3e20313335343738.roa Signing time: Wed 04 Dec 2024 07:01:42 +0000 ROA not before: Wed 04 Dec 2024 06:56:42 +0000 ROA not after: Wed 03 Dec 2025 07:01:42 +0000 asID: 135478 IP address blocks: 103.121.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/5CC6B0489E576BC0D642B626195A0AA0560DC792.crl rsync://repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/5CC6B0489E576BC0D642B626195A0AA0560DC792.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5CC6B0489E576BC0D642B626195A0AA0560DC792.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 20:56:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:a6:3c:7c:be:8c:09:00:a0:ed:ae:bc:a5:35:d0:ad:ae:74:04:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5CC6B0489E576BC0D642B626195A0AA0560DC792 Validity Not Before: Dec 4 06:56:42 2024 GMT Not After : Dec 3 07:01:42 2025 GMT Subject: CN=A66CD05EA3C48F75548B9E5AD207B3509E9F7754 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:24:5f:1a:42:b2:2e:bc:13:59:c4:ee:8f:1e: 14:b8:3b:eb:4b:46:fa:b6:4c:6e:f2:2e:d0:66:c0: 18:23:d4:da:97:c8:b2:10:96:57:62:e3:55:4a:74: 07:b5:f7:7a:b7:c6:b4:72:27:3a:b7:4e:6c:21:57: 7c:97:1d:06:6e:b3:7d:44:20:ba:d2:b8:41:a8:0d: c7:da:a3:34:8d:33:ed:ae:60:a1:dd:f7:f0:3f:ad: ff:f9:b7:d3:0d:99:60:8c:0f:49:99:42:23:0e:47: 06:6a:bc:3e:d0:ab:b2:a3:0e:59:e4:17:4b:c0:f0: d2:e5:06:be:08:db:76:51:7a:47:07:36:a0:a9:70: 21:85:b6:58:1a:7a:c6:59:85:3b:79:b3:68:da:c1: a6:8e:20:c1:04:c1:13:80:81:12:a0:c2:dc:5c:89: 2a:ad:1e:13:3f:b7:75:05:fe:16:c8:08:b6:59:ea: 86:2e:f9:07:7d:64:c6:56:15:1c:0c:cc:83:b0:53: f0:15:4a:e1:0c:a5:35:43:74:78:4b:64:7e:73:b8: 00:4c:bc:7b:e1:fb:88:e8:b2:3a:6d:6c:d9:97:c3: 84:c1:7e:62:71:15:3f:cb:02:b8:bd:9f:5a:8c:54: e4:38:b5:31:90:f2:32:46:1a:44:33:75:fc:05:74: ab:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:6C:D0:5E:A3:C4:8F:75:54:8B:9E:5A:D2:07:B3:50:9E:9F:77:54 X509v3 Authority Key Identifier: keyid:5C:C6:B0:48:9E:57:6B:C0:D6:42:B6:26:19:5A:0A:A0:56:0D:C7:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/5CC6B0489E576BC0D642B626195A0AA0560DC792.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5CC6B0489E576BC0D642B626195A0AA0560DC792.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/3130332e3132312e3133382e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.138.0/23 Signature Algorithm: sha256WithRSAEncryption 03:f4:80:19:c2:e2:94:25:3f:ac:44:2a:fb:3e:6d:a2:22:8c: b6:1b:98:57:10:3a:97:78:cd:df:92:42:d3:46:09:83:4d:b8: 14:40:21:cb:fc:1f:3f:c3:74:76:c9:31:01:ac:83:2a:cf:e8: a9:cb:b2:9f:66:9d:12:88:fb:45:03:d8:13:9c:ed:3b:11:1d: ea:f0:10:57:12:a8:d1:43:79:9b:61:a8:b8:22:dc:5f:37:ca: 58:e6:1d:18:ca:0e:57:61:b4:34:c6:27:ab:cd:22:47:29:b1: dc:bd:5e:e3:70:bc:d3:18:78:63:06:44:a4:30:ae:c4:22:e3: 59:6a:dc:b3:56:e5:e8:a0:25:7b:b0:aa:9b:e0:63:a0:e1:62: 66:12:35:7e:f2:6d:73:19:38:9e:99:55:f0:6b:b2:25:14:99: 2e:9b:08:04:06:86:bd:c7:10:ec:ab:b8:d4:7d:0f:08:bd:d3: 9e:35:5e:49:b8:73:34:ba:c3:9f:0b:b9:04:ff:6d:85:c8:f7: ca:b2:07:1b:48:f6:5c:29:c6:04:d3:cf:08:b1:3d:38:64:9d: 12:0e:94:b8:f7:1e:96:18:5d:12:51:8f:c6:9f:b4:50:1d:2f: 1e:ed:f4:8e:2f:7f:63:ca:af:76:30:5b:47:0a:4b:a1:36:75: 60:c1:ac:90 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBaY8fL6MCQCg7a68pTXQra50BNowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUNDNkIwNDg5RTU3NkJDMEQ2NDJCNjI2MTk1QTBBQTA1 NjBEQzc5MjAeFw0yNDEyMDQwNjU2NDJaFw0yNTEyMDMwNzAxNDJaMDMxMTAvBgNV BAMTKEE2NkNEMDVFQTNDNDhGNzU1NDhCOUU1QUQyMDdCMzUwOUU5Rjc3NTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtJF8aQrIuvBNZxO6PHhS4O+tL Rvq2TG7yLtBmwBgj1NqXyLIQlldi41VKdAe193q3xrRyJzq3TmwhV3yXHQZus31E ILrSuEGoDcfaozSNM+2uYKHd9/A/rf/5t9MNmWCMD0mZQiMORwZqvD7Qq7KjDlnk F0vA8NLlBr4I23ZRekcHNqCpcCGFtlgaesZZhTt5s2jawaaOIMEEwROAgRKgwtxc iSqtHhM/t3UF/hbICLZZ6oYu+Qd9ZMZWFRwMzIOwU/AVSuEMpTVDdHhLZH5zuABM vHvh+4josjptbNmXw4TBfmJxFT/LAri9n1qMVOQ4tTGQ8jJGGkQzdfwFdKsnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUpmzQXqPEj3VUi55a0gezUJ6fd1QwHwYDVR0j BBgwFoAUXMawSJ5Xa8DWQrYmGVoKoFYNx5IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjRmYTdiOC01MzAyLTQ5MGItOTJlNC0yN2YyOGM2NjU3NWMvMC81Q0M2QjA0ODlF NTc2QkMwRDY0MkI2MjYxOTVBMEFBMDU2MERDNzkyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUNDNkIwNDg5RTU3NkJDMEQ2NDJCNjI2MTk1QTBBQTA1NjBE Qzc5Mi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmNGZhN2I4LTUzMDItNDkwYi05 MmU0LTI3ZjI4YzY2NTc1Yy8wLzMxMzAzMzJlMzEzMjMxMmUzMTMzMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneYowDQYJ KoZIhvcNAQELBQADggEBAAP0gBnC4pQlP6xEKvs+baIijLYbmFcQOpd4zd+SQtNG CYNNuBRAIcv8Hz/DdHbJMQGsgyrP6KnLsp9mnRKI+0UD2BOc7TsRHerwEFcSqNFD eZthqLgi3F83yljmHRjKDldhtDTGJ6vNIkcpsdy9XuNwvNMYeGMGRKQwrsQi41lq 3LNW5eigJXuwqpvgY6DhYmYSNX7ybXMZOJ6ZVfBrsiUUmS6bCAQGhr3HEOyruNR9 Dwi90541Xkm4czS6w58LuQT/bYXI98qyBxtI9lwpxgTTzwixPThknRIOlLj3HpYY XRJRj8aftFAdLx7t9I4vf2PKr3YwW0cKS6E2dWDBrJA= -----END CERTIFICATE-----Generated at Sun Apr 6 13:43:53 2025 by rpki-client