$ rpki-client -vvf repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133392e302f32342d3234203d3e20313338303839.roa File: 3130332e3132342e3133392e302f32342d3234203d3e20313338303839.roa (raw, json) Hash identifier: qQ/OJJBLuknzR6dOBM+bTowxaxIwEUGdeh8g4k+xMHc= Subject key identifier: 8E:D5:7C:C7:93:DD:D0:34:8E:F6:4B:6F:2F:38:0D:AE:46:26:4B:23 Certificate issuer: /CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Certificate serial: 732A49721B33CDDA8DEF3A0AAC5EF4E4990025E0 Authority key identifier: 7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133392e302f32342d3234203d3e20313338303839.roa Signing time: Thu 02 Jan 2025 17:00:00 +0000 ROA not before: Thu 02 Jan 2025 16:55:00 +0000 ROA not after: Thu 01 Jan 2026 17:00:00 +0000 asID: 138089 IP address blocks: 103.124.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 00:52:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:2a:49:72:1b:33:cd:da:8d:ef:3a:0a:ac:5e:f4:e4:99:00:25:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Validity Not Before: Jan 2 16:55:00 2025 GMT Not After : Jan 1 17:00:00 2026 GMT Subject: CN=8ED57CC793DDD0348EF64B6F2F380DAE46264B23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:85:71:11:45:58:5a:ee:79:f5:d9:4c:1d:9c: bd:f3:4c:0e:7f:d5:b6:70:19:32:8b:5e:59:ce:f7: cb:59:42:bb:61:a8:9e:d9:34:17:cb:cd:4f:c9:e0: fd:03:10:32:de:9a:63:fb:fb:e3:4a:91:79:32:2e: e7:46:78:0e:a6:74:74:b5:9e:62:55:bb:af:83:1c: 24:7c:c5:b9:da:72:b9:46:b2:ed:9d:5f:a0:c7:78: 73:b5:aa:ef:b9:5f:22:06:28:3d:de:08:26:70:a4: 05:05:21:93:71:73:6d:0f:13:c9:8d:15:99:ba:5c: 84:02:9f:a8:45:34:6f:6f:01:c2:f4:f5:80:f9:bf: a5:92:f1:83:98:78:a5:04:f7:62:4d:c0:e7:85:50: 68:fd:6c:75:08:4a:aa:7a:40:b5:0e:8b:bb:9a:0e: cc:f2:10:d9:b1:43:c7:cc:87:b0:4a:12:06:30:8e: ab:c3:17:dc:f3:1d:27:ca:6f:de:54:bc:a2:80:cc: b4:bb:24:51:6f:95:d7:26:82:e9:99:f8:d4:63:d3: 23:c4:93:2b:9f:7b:42:41:e9:f7:4f:ba:fb:c2:f0: 3f:d4:08:18:0c:f5:65:93:b7:88:1b:bd:45:bd:51: 5f:4c:1c:2c:e5:2f:ff:d5:cf:43:0a:52:04:ca:be: 86:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:D5:7C:C7:93:DD:D0:34:8E:F6:4B:6F:2F:38:0D:AE:46:26:4B:23 X509v3 Authority Key Identifier: keyid:7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133392e302f32342d3234203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.139.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:ac:25:9e:c5:50:ac:ba:52:3c:76:42:fe:59:6e:28:9b:20: bd:ac:a4:83:5b:80:80:15:92:7b:6f:e2:e5:09:57:08:2f:2d: 83:47:64:ab:e0:b9:f5:d6:a5:6d:48:e9:26:bf:aa:b2:3e:94: 73:e0:ec:67:a5:d6:74:31:e0:d4:22:9c:4b:d5:7a:a4:af:31: cb:87:43:0c:2f:35:b3:0f:c6:d0:fd:88:4d:50:86:ac:6b:90: 48:fa:14:19:ff:bd:05:dc:de:c4:d3:9a:92:55:c9:ef:1a:33: 2e:1e:09:a0:77:24:2c:0a:49:19:61:49:aa:7e:64:10:e3:57: ad:f1:36:c2:d3:62:b7:96:a4:f1:cf:dc:87:48:15:76:00:c5: 2c:0b:8c:c2:7c:55:70:3b:e7:33:61:ba:d2:c3:2c:63:f8:91: fe:bb:19:ae:39:43:2f:fd:d5:2d:6a:50:1b:5c:4d:ef:a9:35: 28:16:0a:f0:53:1b:4c:b8:d3:ee:4e:f4:0e:3b:7d:0c:8e:a5: 0e:f8:63:58:0e:25:89:2a:28:1d:41:e8:69:4e:f7:56:5a:15: 56:05:bd:73:da:04:04:19:24:15:6f:c6:b3:11:95:50:6e:ba: 89:94:29:7a:08:1d:cf:cb:aa:cf:88:e2:48:fc:11:64:8d:bd: 95:e2:0d:62 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcypJchszzdqN7zoKrF705JkAJeAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVB RjcwRTczMzAeFw0yNTAxMDIxNjU1MDBaFw0yNjAxMDExNzAwMDBaMDMxMTAvBgNV BAMTKDhFRDU3Q0M3OTNEREQwMzQ4RUY2NEI2RjJGMzgwREFFNDYyNjRCMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMhXERRVha7nn12UwdnL3zTA5/ 1bZwGTKLXlnO98tZQrthqJ7ZNBfLzU/J4P0DEDLemmP7++NKkXkyLudGeA6mdHS1 nmJVu6+DHCR8xbnacrlGsu2dX6DHeHO1qu+5XyIGKD3eCCZwpAUFIZNxc20PE8mN FZm6XIQCn6hFNG9vAcL09YD5v6WS8YOYeKUE92JNwOeFUGj9bHUISqp6QLUOi7ua DszyENmxQ8fMh7BKEgYwjqvDF9zzHSfKb95UvKKAzLS7JFFvldcmgumZ+NRj0yPE kyufe0JB6fdPuvvC8D/UCBgM9WWTt4gbvUW9UV9MHCzlL//Vz0MKUgTKvobfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjtV8x5Pd0DSO9ktvLzgNrkYmSyMwHwYDVR0j BBgwFoAUfU8NAHtgE0mWrDGYueW3Hq9w5zMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWJhNGU1OS1mYjMxLTQxYjUtODhlNy0wYjJjZWQxZjIwMWMvMC83RDRGMEQwMDdC NjAxMzQ5OTZBQzMxOThCOUU1QjcxRUFGNzBFNzMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVBRjcw RTczMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMxMzAzMzJlMzEzMjM0MmUzMTMzMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfIswDQYJ KoZIhvcNAQELBQADggEBACusJZ7FUKy6Ujx2Qv5ZbiibIL2spINbgIAVkntv4uUJ VwgvLYNHZKvgufXWpW1I6Sa/qrI+lHPg7Gel1nQx4NQinEvVeqSvMcuHQwwvNbMP xtD9iE1QhqxrkEj6FBn/vQXc3sTTmpJVye8aMy4eCaB3JCwKSRlhSap+ZBDjV63x NsLTYreWpPHP3IdIFXYAxSwLjMJ8VXA75zNhutLDLGP4kf67Ga45Qy/91S1qUBtc Te+pNSgWCvBTG0y40+5O9A47fQyOpQ74Y1gOJYkqKB1B6GlO91ZaFVYFvXPaBAQZ JBVvxrMRlVBuuomUKXoIHc/Lqs+I4kj8EWSNvZXiDWI= -----END CERTIFICATE-----Generated at Sun Apr 6 17:45:29 2025 by rpki-client