$ rpki-client -vvf repo-rpki.idnic.net/repo/55cab9df-03b5-48b3-a872-a0fe12a67426/0/3130332e3130352e3139362e302f32332d3234203d3e20313337323837.roa File: 3130332e3130352e3139362e302f32332d3234203d3e20313337323837.roa (raw, json) Hash identifier: 5Xv6mrgfWe+rWcCn7CecS/d4Z1XQ/6GwMQiiafaEOqI= Subject key identifier: 18:38:5A:7C:61:FD:90:6F:E4:59:1F:4F:46:EA:BB:7D:DA:E6:19:A1 Certificate issuer: /CN=D9B568DACE796AFC606BD299D9DA57F714CD7970 Certificate serial: 59EC6063B8EBC65CC793365AC8576B81E95C8D6F Authority key identifier: D9:B5:68:DA:CE:79:6A:FC:60:6B:D2:99:D9:DA:57:F7:14:CD:79:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9B568DACE796AFC606BD299D9DA57F714CD7970.cer Subject info access: rsync://repo-rpki.idnic.net/repo/55cab9df-03b5-48b3-a872-a0fe12a67426/0/3130332e3130352e3139362e302f32332d3234203d3e20313337323837.roa Signing time: Tue 03 Dec 2024 07:00:00 +0000 ROA not before: Tue 03 Dec 2024 06:55:00 +0000 ROA not after: Tue 02 Dec 2025 07:00:00 +0000 asID: 137287 IP address blocks: 103.105.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/55cab9df-03b5-48b3-a872-a0fe12a67426/0/D9B568DACE796AFC606BD299D9DA57F714CD7970.crl rsync://repo-rpki.idnic.net/repo/55cab9df-03b5-48b3-a872-a0fe12a67426/0/D9B568DACE796AFC606BD299D9DA57F714CD7970.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9B568DACE796AFC606BD299D9DA57F714CD7970.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 16:26:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:ec:60:63:b8:eb:c6:5c:c7:93:36:5a:c8:57:6b:81:e9:5c:8d:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9B568DACE796AFC606BD299D9DA57F714CD7970 Validity Not Before: Dec 3 06:55:00 2024 GMT Not After : Dec 2 07:00:00 2025 GMT Subject: CN=18385A7C61FD906FE4591F4F46EABB7DDAE619A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3c:32:4a:59:51:2b:9f:d6:48:ec:3a:75:18: 5a:14:7f:44:65:90:43:d4:a3:a5:52:e2:37:b1:98: 16:b2:be:c6:fb:14:b5:73:d6:8c:bf:cc:59:6c:ab: 10:f2:4a:33:44:0e:d5:32:bc:c5:8d:f5:96:3c:0c: 36:e9:36:20:86:7d:e8:38:ae:8a:2b:9e:89:fc:a0: a5:4c:34:cc:a2:5f:0a:8f:39:b7:9c:e3:fa:ab:fd: de:2d:6c:29:82:77:41:fd:c7:4d:aa:57:0f:42:bb: 6b:ad:ab:fb:2f:65:f8:9c:02:a9:25:a6:2d:3f:fb: 38:42:e0:8c:e7:fd:93:3a:0c:fe:40:9c:2b:65:40: 1c:7b:28:5e:95:5a:86:43:bf:eb:8f:7d:1e:2f:f8: 01:d5:89:a4:16:95:b7:c9:52:ac:50:ab:fe:6c:8b: 2f:c4:b7:8f:14:94:f1:f5:f0:82:2f:3a:0e:a7:ef: d7:93:3b:47:46:a8:75:cd:b4:47:bc:64:67:5b:08: 46:d7:17:d3:f7:d3:d5:98:5d:82:4e:6a:0f:28:cc: 64:10:bb:1a:c4:71:df:e9:3f:81:8d:2f:5c:d4:ab: 6d:cb:40:da:11:28:37:2d:4d:c7:5e:f6:df:03:96: 10:27:c9:f2:16:c6:42:90:6f:45:a6:e5:e7:20:ed: 70:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:38:5A:7C:61:FD:90:6F:E4:59:1F:4F:46:EA:BB:7D:DA:E6:19:A1 X509v3 Authority Key Identifier: keyid:D9:B5:68:DA:CE:79:6A:FC:60:6B:D2:99:D9:DA:57:F7:14:CD:79:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/55cab9df-03b5-48b3-a872-a0fe12a67426/0/D9B568DACE796AFC606BD299D9DA57F714CD7970.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9B568DACE796AFC606BD299D9DA57F714CD7970.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55cab9df-03b5-48b3-a872-a0fe12a67426/0/3130332e3130352e3139362e302f32332d3234203d3e20313337323837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.105.196.0/23 Signature Algorithm: sha256WithRSAEncryption 4b:57:30:ab:97:18:1e:01:a5:fc:a0:d2:76:dd:9e:cb:a5:82: 07:c9:99:ef:a2:6e:3a:1e:a9:d7:fe:fa:5a:a3:e6:f4:ec:c6: 08:ce:12:a7:78:3d:69:3a:1c:7b:71:89:56:1d:03:0f:11:98: f4:3f:8d:90:6e:96:a8:68:4f:54:65:a9:58:9d:79:52:9f:c4: 60:59:82:23:a4:d5:3f:10:11:db:4b:d8:bd:ad:be:d0:21:47: 3a:55:a2:20:54:6b:c3:3c:30:69:da:db:61:ad:33:e2:f1:1c: 5d:f6:a3:93:15:65:c6:e7:b5:64:17:d0:c7:67:d5:6c:84:a9: 55:30:e0:a7:19:54:b8:08:85:cf:f0:3c:d4:8f:dd:b3:b7:19: 12:b2:30:0f:39:f3:48:ba:96:2c:a0:5c:d0:ed:ad:57:51:a3: 53:fa:a2:59:5c:81:f2:4f:55:b7:95:5f:d6:a2:74:9d:35:80: dc:dc:13:d9:97:0e:2f:79:2e:fe:03:ab:0e:43:f1:22:d0:38: 9f:2c:04:76:07:9a:b4:1b:77:78:e1:4c:46:16:05:92:16:34: b7:3e:fc:f4:fe:71:9f:98:e3:ff:af:96:44:90:80:20:20:d2: dc:35:bd:f2:0e:bc:28:e2:73:3d:8f:09:38:34:a6:97:f1:07: 0b:22:43:8c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWexgY7jrxlzHkzZayFdrgelcjW8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlCNTY4REFDRTc5NkFGQzYwNkJEMjk5RDlEQTU3Rjcx NENENzk3MDAeFw0yNDEyMDMwNjU1MDBaFw0yNTEyMDIwNzAwMDBaMDMxMTAvBgNV BAMTKDE4Mzg1QTdDNjFGRDkwNkZFNDU5MUY0RjQ2RUFCQjdEREFFNjE5QTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1PDJKWVErn9ZI7Dp1GFoUf0Rl kEPUo6VS4jexmBayvsb7FLVz1oy/zFlsqxDySjNEDtUyvMWN9ZY8DDbpNiCGfeg4 roornon8oKVMNMyiXwqPObec4/qr/d4tbCmCd0H9x02qVw9Cu2utq/svZficAqkl pi0/+zhC4Izn/ZM6DP5AnCtlQBx7KF6VWoZDv+uPfR4v+AHViaQWlbfJUqxQq/5s iy/Et48UlPH18IIvOg6n79eTO0dGqHXNtEe8ZGdbCEbXF9P309WYXYJOag8ozGQQ uxrEcd/pP4GNL1zUq23LQNoRKDctTcde9t8DlhAnyfIWxkKQb0Wm5ecg7XDjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUGDhafGH9kG/kWR9PRuq7fdrmGaEwHwYDVR0j BBgwFoAU2bVo2s55avxga9KZ2dpX9xTNeXAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NWNhYjlkZi0wM2I1LTQ4YjMtYTg3Mi1hMGZlMTJhNjc0MjYvMC9EOUI1NjhEQUNF Nzk2QUZDNjA2QkQyOTlEOURBNTdGNzE0Q0Q3OTcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlCNTY4REFDRTc5NkFGQzYwNkJEMjk5RDlEQTU3RjcxNENE Nzk3MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1Y2FiOWRmLTAzYjUtNDhiMy1h ODcyLWEwZmUxMmE2NzQyNi8wLzMxMzAzMzJlMzEzMDM1MmUzMTM5MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzczMjM4Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnacQwDQYJ KoZIhvcNAQELBQADggEBAEtXMKuXGB4Bpfyg0nbdnsulggfJme+ibjoeqdf++lqj 5vTsxgjOEqd4PWk6HHtxiVYdAw8RmPQ/jZBulqhoT1RlqVideVKfxGBZgiOk1T8Q EdtL2L2tvtAhRzpVoiBUa8M8MGna22GtM+LxHF32o5MVZcbntWQX0Mdn1WyEqVUw 4KcZVLgIhc/wPNSP3bO3GRKyMA8580i6liygXNDtrVdRo1P6ollcgfJPVbeVX9ai dJ01gNzcE9mXDi95Lv4Dqw5D8SLQOJ8sBHYHmrQbd3jhTEYWBZIWNLc+/PT+cZ+Y 4/+vlkSQgCAg0tw1vfIOvCjicz2PCTg0ppfxBwsiQ4w= -----END CERTIFICATE-----Generated at Tue Mar 11 05:02:36 2025 by rpki-client