$ rpki-client -vvf repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133362e302f32322d3234203d3e20313338303839.roa File: 3130332e3132342e3133362e302f32322d3234203d3e20313338303839.roa (raw, json) Hash identifier: 0fYEP8T/Nnelfp7GTy05C/LwRW0usrD9PvaWq6iCxUk= Subject key identifier: 93:73:06:7F:1E:02:18:1C:FF:9E:C5:54:ED:80:71:E4:D0:BE:2D:B2 Certificate issuer: /CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Certificate serial: 2155D3231FAE41A49F5F2BCF8CB9C7255CDAC5D1 Authority key identifier: 7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133362e302f32322d3234203d3e20313338303839.roa Signing time: Wed 08 Jan 2025 02:00:00 +0000 ROA not before: Wed 08 Jan 2025 01:55:00 +0000 ROA not after: Wed 07 Jan 2026 02:00:00 +0000 asID: 138089 IP address blocks: 103.124.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 00:52:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:55:d3:23:1f:ae:41:a4:9f:5f:2b:cf:8c:b9:c7:25:5c:da:c5:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Validity Not Before: Jan 8 01:55:00 2025 GMT Not After : Jan 7 02:00:00 2026 GMT Subject: CN=9373067F1E02181CFF9EC554ED8071E4D0BE2DB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:42:18:f2:22:c4:a9:de:da:d5:64:21:b7:1b: 01:77:16:a1:d3:c6:62:42:78:51:80:66:18:66:03: a9:81:e7:b4:59:fc:4b:91:97:e2:06:79:d3:e2:6a: 06:f8:f1:13:af:e6:22:9e:d4:2d:90:c9:eb:c1:d1: 22:9a:fb:b4:cb:30:35:aa:37:53:4c:c4:c0:62:1a: 06:ac:67:45:d1:6c:e3:58:b9:4b:15:05:9b:c5:0e: 25:89:0a:ac:03:64:84:8e:0d:94:48:06:8f:cb:76: 79:c2:c8:0f:18:1d:4b:6d:48:a2:15:41:86:9b:ac: 07:61:84:d4:eb:53:ff:50:38:28:80:ec:19:b6:a2: 8b:96:f0:83:5a:20:89:2f:58:dc:52:8d:52:22:6c: 3b:a1:23:c6:2d:87:a6:dc:87:df:ac:4a:e0:65:2c: f4:64:84:7e:ff:ba:fb:b5:37:93:3a:04:31:a2:44: 3f:65:43:46:49:21:e4:23:11:55:76:d3:9c:41:14: ea:7a:71:5a:24:31:e2:30:94:6b:4d:94:4b:d3:76: e2:3d:fd:37:3c:e9:05:93:6d:54:d6:b2:52:af:eb: 7a:e0:cf:e6:2b:60:8b:20:3a:e4:d2:5f:31:0a:4a: 69:38:92:1d:6a:08:98:24:94:19:7b:15:e7:1d:f1: e3:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:73:06:7F:1E:02:18:1C:FF:9E:C5:54:ED:80:71:E4:D0:BE:2D:B2 X509v3 Authority Key Identifier: keyid:7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133362e302f32322d3234203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.136.0/22 Signature Algorithm: sha256WithRSAEncryption d5:f9:33:a6:59:20:f6:3e:96:b6:d1:a8:7d:b3:42:cc:f4:b3: 32:91:86:6c:28:9d:41:ec:93:05:f7:f9:ac:34:ab:c5:66:c8: b0:44:fa:10:db:e4:21:90:d8:26:5c:11:b2:b4:f8:a0:a4:3e: 6a:31:16:b1:17:03:6d:60:29:9c:12:b2:c6:19:74:61:20:05: cc:fb:ce:ea:00:2b:17:28:42:5f:20:40:8e:da:e6:40:8d:44: 8c:84:39:35:cd:ab:ef:46:b7:84:fa:ba:e9:d5:bc:61:88:8d: b5:6f:4f:f1:fa:f7:73:7c:ac:a5:a0:79:35:38:7a:3d:3e:0a: 07:e6:45:8f:64:aa:af:e0:c1:38:28:dc:60:b8:74:85:54:36: 20:fc:c6:02:9d:d3:ce:b7:ce:70:a2:5d:e6:4e:56:7a:72:52: f3:45:5c:ad:0b:a0:3f:72:3d:c0:a2:16:fa:29:3f:29:34:49: 04:41:d9:5f:77:62:05:cc:89:da:ae:f9:c0:86:36:5d:bd:64: 71:86:4c:45:aa:6c:b6:c1:6b:02:f7:72:31:af:96:af:7b:74: 41:a2:ff:8e:22:61:04:40:d2:16:d5:ec:a9:9c:1a:44:ae:d3: a9:07:9f:2b:4a:40:b4:44:ee:20:7f:45:fe:e2:78:6f:54:e9: 95:2d:c4:47 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIVXTIx+uQaSfXyvPjLnHJVzaxdEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVB RjcwRTczMzAeFw0yNTAxMDgwMTU1MDBaFw0yNjAxMDcwMjAwMDBaMDMxMTAvBgNV BAMTKDkzNzMwNjdGMUUwMjE4MUNGRjlFQzU1NEVEODA3MUU0RDBCRTJEQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIQhjyIsSp3trVZCG3GwF3FqHT xmJCeFGAZhhmA6mB57RZ/EuRl+IGedPiagb48ROv5iKe1C2QyevB0SKa+7TLMDWq N1NMxMBiGgasZ0XRbONYuUsVBZvFDiWJCqwDZISODZRIBo/LdnnCyA8YHUttSKIV QYabrAdhhNTrU/9QOCiA7Bm2oouW8INaIIkvWNxSjVIibDuhI8Yth6bch9+sSuBl LPRkhH7/uvu1N5M6BDGiRD9lQ0ZJIeQjEVV205xBFOp6cVokMeIwlGtNlEvTduI9 /Tc86QWTbVTWslKv63rgz+YrYIsgOuTSXzEKSmk4kh1qCJgklBl7Fecd8ePVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUk3MGfx4CGBz/nsVU7YBx5NC+LbIwHwYDVR0j BBgwFoAUfU8NAHtgE0mWrDGYueW3Hq9w5zMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWJhNGU1OS1mYjMxLTQxYjUtODhlNy0wYjJjZWQxZjIwMWMvMC83RDRGMEQwMDdC NjAxMzQ5OTZBQzMxOThCOUU1QjcxRUFGNzBFNzMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVBRjcw RTczMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMxMzAzMzJlMzEzMjM0MmUzMTMzMzYyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnfIgwDQYJ KoZIhvcNAQELBQADggEBANX5M6ZZIPY+lrbRqH2zQsz0szKRhmwonUHskwX3+aw0 q8VmyLBE+hDb5CGQ2CZcEbK0+KCkPmoxFrEXA21gKZwSssYZdGEgBcz7zuoAKxco Ql8gQI7a5kCNRIyEOTXNq+9Gt4T6uunVvGGIjbVvT/H693N8rKWgeTU4ej0+Cgfm RY9kqq/gwTgo3GC4dIVUNiD8xgKd0863znCiXeZOVnpyUvNFXK0LoD9yPcCiFvop Pyk0SQRB2V93YgXMidqu+cCGNl29ZHGGTEWqbLbBawL3cjGvlq97dEGi/44iYQRA 0hbV7KmcGkSu06kHnytKQLRE7iB/Rf7ieG9U6ZUtxEc= -----END CERTIFICATE-----Generated at Sun Apr 6 17:45:40 2025 by rpki-client