$ rpki-client -vvf repo-rpki.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/3130332e3134342e33382e302f32342d3234203d3e20313339343234.roa File: 3130332e3134342e33382e302f32342d3234203d3e20313339343234.roa (raw, json) Hash identifier: SkrAvX0pF+pQyxeTzXJZ/61PFAWYMW8+rbO8WcqeNoE= Subject key identifier: 4E:DA:06:1F:D0:6F:E4:1A:DA:F3:08:66:7A:1F:D7:25:17:CD:99:C6 Certificate issuer: /CN=507DBCE0DE73C38C3EE975AE23FB7C0C0377011A Certificate serial: 6758D588036FFD5174F42C9AA1E0CEAF8A488CBA Authority key identifier: 50:7D:BC:E0:DE:73:C3:8C:3E:E9:75:AE:23:FB:7C:0C:03:77:01:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/507DBCE0DE73C38C3EE975AE23FB7C0C0377011A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/3130332e3134342e33382e302f32342d3234203d3e20313339343234.roa Signing time: Sun 15 Dec 2024 08:00:02 +0000 ROA not before: Sun 15 Dec 2024 07:55:02 +0000 ROA not after: Sun 14 Dec 2025 08:00:02 +0000 asID: 139424 IP address blocks: 103.144.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/507DBCE0DE73C38C3EE975AE23FB7C0C0377011A.crl rsync://repo-rpki.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/507DBCE0DE73C38C3EE975AE23FB7C0C0377011A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/507DBCE0DE73C38C3EE975AE23FB7C0C0377011A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 06:54:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:58:d5:88:03:6f:fd:51:74:f4:2c:9a:a1:e0:ce:af:8a:48:8c:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=507DBCE0DE73C38C3EE975AE23FB7C0C0377011A Validity Not Before: Dec 15 07:55:02 2024 GMT Not After : Dec 14 08:00:02 2025 GMT Subject: CN=4EDA061FD06FE41ADAF308667A1FD72517CD99C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:56:9c:23:c0:39:1a:33:29:c4:ab:4f:a7:57: f0:87:e4:91:e4:2d:38:7c:31:ca:29:e2:d2:3f:06: 65:45:ec:68:94:cc:66:b5:8d:fc:bc:a2:76:67:fd: 5e:39:6f:bc:4a:85:0c:00:47:52:b4:76:48:7c:da: 8a:93:e0:50:e3:59:ab:31:b3:fd:00:35:cd:85:a3: 7a:5e:60:f8:38:64:8c:0e:f4:aa:e1:64:e3:29:e4: fc:1e:5a:6a:57:a1:f4:8e:05:b0:aa:8e:5f:b7:72: 69:c0:62:0a:8b:87:57:f1:7c:52:19:3b:6f:cf:58: ac:8c:10:eb:a5:bd:90:60:ad:7c:8e:64:ef:ee:94: be:d9:19:2e:37:8b:1b:1e:57:48:8e:f3:bb:e3:c4: e6:fb:bd:8e:05:20:97:93:62:5a:9c:cf:64:84:52: b6:e9:d6:38:30:65:49:9e:44:a2:75:1c:ee:6c:94: 80:a0:f3:d4:7d:00:dc:f9:6d:79:1b:31:e8:3d:7e: 9f:8f:3b:ac:7e:0b:80:15:7e:8c:d9:4b:06:d9:db: b3:df:50:fa:e7:ca:0a:a9:4e:a9:4e:f4:aa:d7:74: fe:57:4b:8c:07:b0:9e:91:6b:c1:7a:5b:5f:c9:80: 64:00:82:30:25:5b:b1:36:ce:90:f6:2f:53:bc:ef: 75:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:DA:06:1F:D0:6F:E4:1A:DA:F3:08:66:7A:1F:D7:25:17:CD:99:C6 X509v3 Authority Key Identifier: keyid:50:7D:BC:E0:DE:73:C3:8C:3E:E9:75:AE:23:FB:7C:0C:03:77:01:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/507DBCE0DE73C38C3EE975AE23FB7C0C0377011A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/507DBCE0DE73C38C3EE975AE23FB7C0C0377011A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/3130332e3134342e33382e302f32342d3234203d3e20313339343234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.38.0/24 Signature Algorithm: sha256WithRSAEncryption 82:26:f4:0b:28:cf:3a:68:78:37:d5:65:85:71:21:98:24:59: 8a:4f:66:57:9f:0f:e1:9c:79:9a:f5:7e:df:94:39:ff:bd:4f: 23:09:b7:6f:f7:73:db:71:ed:c5:a5:79:13:07:e5:d7:0a:cd: 86:70:a6:c0:e6:95:78:da:56:ac:de:f1:ab:6d:50:a4:39:dc: 4d:fe:78:57:fe:e0:88:48:81:94:da:ae:ee:02:28:4c:92:31: 94:c0:14:e5:33:ad:e3:ee:0c:d3:f4:a8:f5:8f:f6:13:2f:37: b1:21:51:ae:77:51:0e:52:22:28:72:29:1c:a2:5d:14:21:a3: 48:f8:51:c9:07:b4:e8:5e:f4:ac:ee:2c:61:66:a8:de:70:a3: 6c:3d:25:6e:80:66:07:dd:64:2e:52:e7:74:06:82:af:ad:b2: 9d:03:92:67:3f:25:61:ed:4a:1b:dc:65:62:e1:eb:82:74:22: d4:de:a0:7b:5a:ab:08:0b:dc:0f:89:bb:49:07:d7:19:18:05: a5:8f:b5:f1:23:08:36:0b:ff:35:9d:fd:d4:52:28:0b:e1:35: 27:d0:b1:4d:92:89:3a:ab:3b:e3:16:4d:67:b7:c0:72:55:d0: 20:da:e3:fd:ce:1c:d7:39:96:9a:03:81:c4:35:7e:06:d9:45: 8d:49:d7:08 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZ1jViANv/VF09CyaoeDOr4pIjLowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA3REJDRTBERTczQzM4QzNFRTk3NUFFMjNGQjdDMEMw Mzc3MDExQTAeFw0yNDEyMTUwNzU1MDJaFw0yNTEyMTQwODAwMDJaMDMxMTAvBgNV BAMTKDRFREEwNjFGRDA2RkU0MUFEQUYzMDg2NjdBMUZENzI1MTdDRDk5QzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYVpwjwDkaMynEq0+nV/CH5JHk LTh8Mcop4tI/BmVF7GiUzGa1jfy8onZn/V45b7xKhQwAR1K0dkh82oqT4FDjWasx s/0ANc2Fo3peYPg4ZIwO9KrhZOMp5PweWmpXofSOBbCqjl+3cmnAYgqLh1fxfFIZ O2/PWKyMEOulvZBgrXyOZO/ulL7ZGS43ixseV0iO87vjxOb7vY4FIJeTYlqcz2SE Urbp1jgwZUmeRKJ1HO5slICg89R9ANz5bXkbMeg9fp+PO6x+C4AVfozZSwbZ27Pf UPrnygqpTqlO9KrXdP5XS4wHsJ6Ra8F6W1/JgGQAgjAlW7E2zpD2L1O873WhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTtoGH9Bv5Bra8whmeh/XJRfNmcYwHwYDVR0j BBgwFoAUUH284N5zw4w+6XWuI/t8DAN3ARowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWIwYTU5YS02MWJhLTQ2MmUtYTgyYS1hMjAyYjdmYjgwZjAvMC81MDdEQkNFMERF NzNDMzhDM0VFOTc1QUUyM0ZCN0MwQzAzNzcwMTFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA3REJDRTBERTczQzM4QzNFRTk3NUFFMjNGQjdDMEMwMzc3 MDExQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYjBhNTlhLTYxYmEtNDYyZS1h ODJhLWEyMDJiN2ZiODBmMC8wLzMxMzAzMzJlMzEzNDM0MmUzMzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5AmMA0GCSqG SIb3DQEBCwUAA4IBAQCCJvQLKM86aHg31WWFcSGYJFmKT2ZXnw/hnHma9X7flDn/ vU8jCbdv93Pbce3FpXkTB+XXCs2GcKbA5pV42las3vGrbVCkOdxN/nhX/uCISIGU 2q7uAihMkjGUwBTlM63j7gzT9Kj1j/YTLzexIVGud1EOUiIocikcol0UIaNI+FHJ B7ToXvSs7ixhZqjecKNsPSVugGYH3WQuUud0BoKvrbKdA5JnPyVh7Uob3GVi4euC dCLU3qB7WqsIC9wPibtJB9cZGAWlj7XxIwg2C/81nf3UUigL4TUn0LFNkok6qzvj Fk1nt8ByVdAg2uP9zhzXOZaaA4HENX4G2UWNSdcI -----END CERTIFICATE-----Generated at Sat Jun 7 11:50:48 2025 by rpki-client