$ rpki-client -vvf repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/3130332e3232302e3131332e302f32342d3234203d3e20313333383237.roa File: 3130332e3232302e3131332e302f32342d3234203d3e20313333383237.roa (raw, json) Hash identifier: XpFPcsbLxCI6NKz3XGZEwQyDlDuJ1JV+kC2sTVPG1no= Subject key identifier: 5A:9D:66:D7:9A:AC:22:54:2A:7C:07:46:03:0D:07:7B:CF:07:49:2D Certificate issuer: /CN=0CE6A79D53D829F2A55623676E8D2A9A569F836F Certificate serial: 78FF4CC33AB9CC6FCC6A1BD722719818901E0D86 Authority key identifier: 0C:E6:A7:9D:53:D8:29:F2:A5:56:23:67:6E:8D:2A:9A:56:9F:83:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/3130332e3232302e3131332e302f32342d3234203d3e20313333383237.roa Signing time: Thu 08 Aug 2024 04:00:02 +0000 ROA not before: Thu 08 Aug 2024 03:55:02 +0000 ROA not after: Thu 07 Aug 2025 04:00:02 +0000 asID: 133827 IP address blocks: 103.220.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/0CE6A79D53D829F2A55623676E8D2A9A569F836F.crl rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/0CE6A79D53D829F2A55623676E8D2A9A569F836F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 22:20:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:ff:4c:c3:3a:b9:cc:6f:cc:6a:1b:d7:22:71:98:18:90:1e:0d:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CE6A79D53D829F2A55623676E8D2A9A569F836F Validity Not Before: Aug 8 03:55:02 2024 GMT Not After : Aug 7 04:00:02 2025 GMT Subject: CN=5A9D66D79AAC22542A7C0746030D077BCF07492D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:eb:a3:c6:df:eb:21:01:ed:dc:5f:92:1b:da: c0:dd:9c:16:3a:4d:af:70:43:9e:d2:51:75:67:95: 0c:55:5f:3a:b9:a2:b7:34:f9:6f:fd:37:b7:7c:d5: 8a:fd:a1:c6:f9:5d:a0:88:07:09:bf:b7:68:9c:0b: ff:9c:64:6f:39:ff:2e:57:96:41:a0:1a:25:57:3a: 6c:87:27:90:40:1d:06:b6:7e:71:cb:23:11:2e:d7: ca:b3:fa:47:f7:49:d5:c2:22:be:9b:77:ac:28:2c: 32:f6:39:fb:81:f8:62:76:18:33:7e:ff:b6:ac:bd: 16:19:02:24:97:8e:1e:f2:13:1a:81:54:2d:0e:78: 3d:84:49:68:ee:d1:44:d2:c4:c9:78:26:20:31:26: 0e:d3:85:18:c2:03:9a:d5:2e:ee:8d:5b:e3:ba:07: d6:0b:94:1e:a8:b9:81:c9:d5:d4:eb:2e:f3:f3:60: cf:ea:66:7f:73:58:36:68:a3:26:fd:d3:25:c4:a9: de:6f:20:67:18:ea:44:a5:0d:0e:40:99:e6:e1:99: 62:a8:d9:b3:10:47:d6:40:04:2b:62:17:d5:d4:21: e0:1a:d6:9d:4d:c3:11:59:55:22:ad:56:71:cc:29: ab:d1:84:3d:01:8d:a4:95:3a:0d:84:7b:d8:3f:85: e4:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:9D:66:D7:9A:AC:22:54:2A:7C:07:46:03:0D:07:7B:CF:07:49:2D X509v3 Authority Key Identifier: keyid:0C:E6:A7:9D:53:D8:29:F2:A5:56:23:67:6E:8D:2A:9A:56:9F:83:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/0CE6A79D53D829F2A55623676E8D2A9A569F836F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/3130332e3232302e3131332e302f32342d3234203d3e20313333383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.220.113.0/24 Signature Algorithm: sha256WithRSAEncryption 55:10:85:8c:76:11:c7:ed:9d:fb:ac:ec:31:a4:7f:b6:03:8f: 3c:a4:23:d7:4d:74:04:49:b0:dc:03:33:b3:2f:74:55:37:cd: c2:34:d4:49:42:a7:78:74:e9:da:27:1f:e9:e3:6c:21:9c:cd: db:bf:7c:cb:ee:25:83:f1:e5:2e:6d:b2:c3:e6:08:7a:bc:dd: 6d:0d:37:db:88:cd:e7:4d:7a:fd:3c:6f:12:f1:98:c0:69:8f: ca:34:a0:50:39:e2:45:c3:b2:55:ea:2c:1f:c6:05:be:ed:5f: 09:5d:32:f7:5b:f6:7e:bd:78:c8:95:25:c6:6b:c7:a0:36:42: 29:80:af:9d:c0:e1:10:1d:c1:c6:3d:4b:84:31:f4:47:8f:a6: 19:14:e8:1d:30:f2:77:18:5a:db:87:85:76:41:b3:58:54:18: b6:1a:86:c9:1c:03:58:55:d9:8c:09:30:40:b7:87:8b:de:64: 3c:61:ea:e1:a5:02:dc:51:de:68:ad:88:f7:46:19:51:b4:6e: 22:5a:3d:28:d3:67:8a:29:a1:6e:9e:5f:8f:c4:d3:dc:86:64: c3:84:6e:a1:ca:1f:85:25:73:b8:b8:45:e1:dc:13:f7:e9:55: ab:f8:ac:6e:7f:a7:c7:fd:71:7e:56:bf:a3:34:ad:ff:eb:2d: 9e:b4:9d:e1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeP9Mwzq5zG/MahvXInGYGJAeDYYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMENFNkE3OUQ1M0Q4MjlGMkE1NTYyMzY3NkU4RDJBOUE1 NjlGODM2RjAeFw0yNDA4MDgwMzU1MDJaFw0yNTA4MDcwNDAwMDJaMDMxMTAvBgNV BAMTKDVBOUQ2NkQ3OUFBQzIyNTQyQTdDMDc0NjAzMEQwNzdCQ0YwNzQ5MkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV66PG3+shAe3cX5Ib2sDdnBY6 Ta9wQ57SUXVnlQxVXzq5orc0+W/9N7d81Yr9ocb5XaCIBwm/t2icC/+cZG85/y5X lkGgGiVXOmyHJ5BAHQa2fnHLIxEu18qz+kf3SdXCIr6bd6woLDL2OfuB+GJ2GDN+ /7asvRYZAiSXjh7yExqBVC0OeD2ESWju0UTSxMl4JiAxJg7ThRjCA5rVLu6NW+O6 B9YLlB6ouYHJ1dTrLvPzYM/qZn9zWDZooyb90yXEqd5vIGcY6kSlDQ5AmebhmWKo 2bMQR9ZABCtiF9XUIeAa1p1NwxFZVSKtVnHMKavRhD0BjaSVOg2Ee9g/heTjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWp1m15qsIlQqfAdGAw0He88HSS0wHwYDVR0j BBgwFoAUDOannVPYKfKlViNnbo0qmlafg28wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTk5MDEyNS02MDlhLTQ4YzgtYWM4Ni0xYzNiYzMxNWJhZDYvMC8wQ0U2QTc5RDUz RDgyOUYyQTU1NjIzNjc2RThEMkE5QTU2OUY4MzZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMENFNkE3OUQ1M0Q4MjlGMkE1NTYyMzY3NkU4RDJBOUE1NjlG ODM2Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhOTkwMTI1LTYwOWEtNDhjOC1h Yzg2LTFjM2JjMzE1YmFkNi8wLzMxMzAzMzJlMzIzMjMwMmUzMTMxMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzODMyMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn3HEwDQYJ KoZIhvcNAQELBQADggEBAFUQhYx2Ecftnfus7DGkf7YDjzykI9dNdARJsNwDM7Mv dFU3zcI01ElCp3h06donH+njbCGczdu/fMvuJYPx5S5tssPmCHq83W0NN9uIzedN ev08bxLxmMBpj8o0oFA54kXDslXqLB/GBb7tXwldMvdb9n69eMiVJcZrx6A2QimA r53A4RAdwcY9S4Qx9EePphkU6B0w8ncYWtuHhXZBs1hUGLYahskcA1hV2YwJMEC3 h4veZDxh6uGlAtxR3mitiPdGGVG0biJaPSjTZ4opoW6eX4/E09yGZMOEbqHKH4Ul c7i4ReHcE/fpVav4rG5/p8f9cX5Wv6M0rf/rLZ60neE= -----END CERTIFICATE-----Generated at Tue Mar 11 05:02:05 2025 by rpki-client