$ rpki-client -vvf repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/3130332e3232352e31372e302f32342d3234203d3e20313532303632.roa File: 3130332e3232352e31372e302f32342d3234203d3e20313532303632.roa (raw, json) Hash identifier: P8QCMdvNkcGuA4F0hmx15JmIaSEyGRAUfWjBJiusufQ= Subject key identifier: D7:88:4D:12:30:35:3B:9A:EF:00:BF:79:29:F5:66:03:7B:D7:CC:21 Certificate issuer: /CN=2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0 Certificate serial: 3D8FE8DF6048707B3903FC11B0B503B6F5F61ABF Authority key identifier: 2B:0D:3D:70:A0:27:B5:3C:7A:D2:17:FE:22:CA:0E:D1:11:FD:F3:B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/3130332e3232352e31372e302f32342d3234203d3e20313532303632.roa Signing time: Thu 31 Oct 2024 10:17:52 +0000 ROA not before: Thu 31 Oct 2024 10:12:52 +0000 ROA not after: Thu 30 Oct 2025 10:17:52 +0000 asID: 152062 IP address blocks: 103.225.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.crl rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 16:32:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:8f:e8:df:60:48:70:7b:39:03:fc:11:b0:b5:03:b6:f5:f6:1a:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0 Validity Not Before: Oct 31 10:12:52 2024 GMT Not After : Oct 30 10:17:52 2025 GMT Subject: CN=D7884D1230353B9AEF00BF7929F566037BD7CC21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ec:7a:24:0b:c3:fc:5c:9a:ce:77:a2:4b:66: ea:71:15:c3:59:6c:f2:0f:22:52:d9:81:e3:22:32: 4a:c6:c8:48:7f:9f:65:53:d7:c5:82:4c:60:fd:27: a1:d9:14:3f:6f:48:c1:4b:ed:41:73:18:eb:5b:69: d8:ce:7e:76:76:95:6e:ee:28:ba:0a:09:df:38:7e: 2b:23:23:bc:5e:29:d7:8f:f6:e8:3b:2e:34:5d:37: 90:d4:9a:aa:71:03:e3:82:c1:f6:b0:c4:5e:58:ce: 72:26:a8:68:a8:e2:47:51:3d:fd:e4:a7:2a:c0:c2: 66:b3:7d:db:80:51:71:6b:92:a8:61:bc:98:ee:4b: 75:ce:89:88:41:51:41:93:27:7f:0c:e4:b8:b6:f6: dc:ea:88:ab:a2:3d:9f:e2:e2:c7:17:a2:ea:b2:e6: 67:08:62:88:3e:1a:01:dc:55:cd:55:54:fa:67:42: 5b:f3:71:cc:bc:5b:d9:6a:91:83:f9:08:ef:ec:7c: 5e:9e:71:a8:9b:a9:6b:b5:f9:dc:3e:1c:3f:dc:2d: cd:ba:07:52:00:92:57:52:3e:e2:3f:f9:96:27:73: 80:e2:9c:b6:bb:16:bc:73:b4:f9:49:53:89:42:c7: 4c:40:cd:13:06:48:25:56:33:98:7a:83:02:c2:f9: ac:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:88:4D:12:30:35:3B:9A:EF:00:BF:79:29:F5:66:03:7B:D7:CC:21 X509v3 Authority Key Identifier: keyid:2B:0D:3D:70:A0:27:B5:3C:7A:D2:17:FE:22:CA:0E:D1:11:FD:F3:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/3130332e3232352e31372e302f32342d3234203d3e20313532303632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.225.17.0/24 Signature Algorithm: sha256WithRSAEncryption af:b2:1b:f5:0a:20:c0:80:d4:7b:cd:49:88:70:ed:be:f1:40: 7c:62:75:d5:e4:a9:a3:04:69:5e:7c:b5:4e:d8:c9:83:9d:6f: b7:be:16:78:51:d3:83:33:c3:b3:b4:92:50:bb:46:ab:ac:3f: 89:e5:ec:1f:09:64:75:c6:28:13:39:05:a4:9b:e0:bb:b4:52: dd:bd:e1:b7:31:b0:1f:a6:7f:b9:c2:ed:6c:06:9b:74:ae:3e: 74:5a:e7:a0:50:2f:c7:a4:6c:05:1a:3b:5d:4a:4d:49:3d:7b: c2:17:06:77:1a:32:9f:0d:b7:24:6d:c6:df:c4:e3:e6:03:d1: 0f:8e:eb:5c:38:1b:77:93:b6:78:4a:d0:04:92:9a:bc:6a:af: 20:5f:eb:f4:37:f7:62:ab:93:9d:63:10:d0:4b:a9:4e:c3:29: 3b:81:1c:9f:d8:6e:56:a3:c3:c7:63:ad:2b:12:28:03:42:b5: 09:69:f1:ef:ea:dc:6c:85:86:c6:ad:5b:65:71:d6:62:85:77: fc:32:75:5a:9c:5b:7f:65:4d:c8:2b:95:eb:c9:ca:2b:2e:28: 29:64:41:78:58:a9:79:45:7b:ad:bd:45:80:a9:95:0c:31:64: 0f:42:b5:6b:a7:bc:f0:d7:30:5d:68:6b:a9:e4:dd:23:65:74: 85:bb:a7:b7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPY/o32BIcHs5A/wRsLUDtvX2Gr8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkIwRDNENzBBMDI3QjUzQzdBRDIxN0ZFMjJDQTBFRDEx MUZERjNCMDAeFw0yNDEwMzExMDEyNTJaFw0yNTEwMzAxMDE3NTJaMDMxMTAvBgNV BAMTKEQ3ODg0RDEyMzAzNTNCOUFFRjAwQkY3OTI5RjU2NjAzN0JEN0NDMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC77HokC8P8XJrOd6JLZupxFcNZ bPIPIlLZgeMiMkrGyEh/n2VT18WCTGD9J6HZFD9vSMFL7UFzGOtbadjOfnZ2lW7u KLoKCd84fisjI7xeKdeP9ug7LjRdN5DUmqpxA+OCwfawxF5YznImqGio4kdRPf3k pyrAwmazfduAUXFrkqhhvJjuS3XOiYhBUUGTJ38M5Li29tzqiKuiPZ/i4scXouqy 5mcIYog+GgHcVc1VVPpnQlvzccy8W9lqkYP5CO/sfF6ecaibqWu1+dw+HD/cLc26 B1IAkldSPuI/+ZYnc4DinLa7FrxztPlJU4lCx0xAzRMGSCVWM5h6gwLC+ayzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU14hNEjA1O5rvAL95KfVmA3vXzCEwHwYDVR0j BBgwFoAUKw09cKAntTx60hf+IsoO0RH987AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzcyZDNmNS1kZDUzLTRiNzQtOTQ3Yy02YmI1MTBmNGY1MDMvMC8yQjBEM0Q3MEEw MjdCNTNDN0FEMjE3RkUyMkNBMEVEMTExRkRGM0IwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkIwRDNENzBBMDI3QjUzQzdBRDIxN0ZFMjJDQTBFRDExMUZE RjNCMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjNzJkM2Y1LWRkNTMtNGI3NC05 NDdjLTZiYjUxMGY0ZjUwMy8wLzMxMzAzMzJlMzIzMjM1MmUzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzNjMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+ERMA0GCSqG SIb3DQEBCwUAA4IBAQCvshv1CiDAgNR7zUmIcO2+8UB8YnXV5KmjBGlefLVO2MmD nW+3vhZ4UdODM8OztJJQu0arrD+J5ewfCWR1xigTOQWkm+C7tFLdveG3MbAfpn+5 wu1sBpt0rj50WuegUC/HpGwFGjtdSk1JPXvCFwZ3GjKfDbckbcbfxOPmA9EPjutc OBt3k7Z4StAEkpq8aq8gX+v0N/diq5OdYxDQS6lOwyk7gRyf2G5Wo8PHY60rEigD QrUJafHv6txshYbGrVtlcdZihXf8MnVanFt/ZU3IK5XrycorLigpZEF4WKl5RXut vUWAqZUMMWQPQrVrp7zw1zBdaGup5N0jZXSFu6e3 -----END CERTIFICATE-----Generated at Fri Feb 21 11:03:25 2025 by rpki-client