$ rpki-client -vvf repo-rpki.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/3130332e32362e3132382e302f32342d3234203d3e20313431363634.roa File: 3130332e32362e3132382e302f32342d3234203d3e20313431363634.roa (raw, json) Hash identifier: crpaOCx3kY0T7I/j3xZ/n6sW+eaOViCs86ZdsVyaof0= Subject key identifier: D3:63:F5:04:9B:38:B5:9C:68:36:9E:F5:2C:81:11:91:BC:3A:A5:E6 Certificate issuer: /CN=9A635D422743AA8C31CA82C7F503B95FFB64A4DF Certificate serial: 7D1062498B6B2851D17A9C6F6B3FB1E23DA56904 Authority key identifier: 9A:63:5D:42:27:43:AA:8C:31:CA:82:C7:F5:03:B9:5F:FB:64:A4:DF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A635D422743AA8C31CA82C7F503B95FFB64A4DF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/3130332e32362e3132382e302f32342d3234203d3e20313431363634.roa Signing time: Wed 08 Jan 2025 08:00:01 +0000 ROA not before: Wed 08 Jan 2025 07:55:01 +0000 ROA not after: Wed 07 Jan 2026 08:00:01 +0000 asID: 141664 IP address blocks: 103.26.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/9A635D422743AA8C31CA82C7F503B95FFB64A4DF.crl rsync://repo-rpki.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/9A635D422743AA8C31CA82C7F503B95FFB64A4DF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A635D422743AA8C31CA82C7F503B95FFB64A4DF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 03:48:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:10:62:49:8b:6b:28:51:d1:7a:9c:6f:6b:3f:b1:e2:3d:a5:69:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A635D422743AA8C31CA82C7F503B95FFB64A4DF Validity Not Before: Jan 8 07:55:01 2025 GMT Not After : Jan 7 08:00:01 2026 GMT Subject: CN=D363F5049B38B59C68369EF52C811191BC3AA5E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:fa:b2:20:3e:b1:44:5d:ed:48:51:2f:51:c3: 88:5a:d7:10:e5:ec:b9:38:6f:b7:e9:9a:d4:87:88: 9c:1d:2e:b2:2f:97:c3:9b:20:2e:60:fa:22:e5:39: 24:8e:9c:4e:df:55:85:cd:60:ee:2b:7b:eb:f9:e5: df:88:60:10:a5:8d:19:30:c0:87:b4:f7:55:12:a3: 01:fd:ee:6e:e8:7d:d2:0c:5a:21:da:d7:f8:c6:a5: be:32:ce:7b:aa:4e:02:6f:8a:04:45:a6:1e:6d:ea: f6:f0:96:47:80:86:5a:d3:f0:6d:77:68:18:08:ae: ed:da:94:74:c4:53:92:04:78:31:4d:cb:d4:b6:6b: 07:3a:76:e3:af:2d:19:df:cc:e1:f9:8b:07:d5:ca: e7:db:42:c0:89:cc:42:ea:3a:37:80:6e:e2:10:68: 0e:f7:a7:de:e9:59:f4:24:61:80:17:e3:06:f0:f0: b3:03:65:9e:94:17:80:21:9f:00:ed:e8:ff:0c:db: bc:d9:4e:75:31:d3:0a:db:d5:8b:ea:1a:ac:0e:ac: 83:38:a5:57:d2:4f:e9:47:a9:f1:ff:47:d4:ad:b8: 93:de:0c:64:32:2b:77:55:3c:d5:21:05:4a:f3:02: 90:72:08:c1:cd:aa:0a:44:75:26:16:46:7f:c2:7e: d3:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:63:F5:04:9B:38:B5:9C:68:36:9E:F5:2C:81:11:91:BC:3A:A5:E6 X509v3 Authority Key Identifier: keyid:9A:63:5D:42:27:43:AA:8C:31:CA:82:C7:F5:03:B9:5F:FB:64:A4:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/9A635D422743AA8C31CA82C7F503B95FFB64A4DF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A635D422743AA8C31CA82C7F503B95FFB64A4DF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/3130332e32362e3132382e302f32342d3234203d3e20313431363634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.26.128.0/24 Signature Algorithm: sha256WithRSAEncryption 07:4d:41:3c:22:1e:a5:fb:72:89:41:cd:55:ac:0e:41:e0:ab: e5:b1:33:b6:13:13:fe:b9:44:0c:28:4d:06:db:94:7a:86:f0: d8:2d:a3:23:68:4f:b0:52:39:6c:a5:c3:5d:46:bd:df:1f:8a: 86:8f:e1:88:46:b4:77:ca:f5:31:46:78:33:37:91:5e:f0:c1: d8:51:87:f6:fa:08:eb:97:be:ac:78:a9:8e:95:c8:78:31:b1: a0:ac:8c:8a:30:97:93:c0:4a:ab:5f:e9:39:b2:83:0d:23:bd: 05:45:87:37:7f:8b:0a:c0:3c:c8:00:a4:2a:4a:49:ce:98:8d: d1:bc:a9:d6:b7:a8:3f:d3:26:79:95:87:e5:7c:a3:27:c3:40: be:97:f1:62:b9:78:e6:ac:f7:10:2b:38:37:7a:7c:91:19:f4: d1:7f:23:41:bf:66:e8:30:12:e9:b0:cc:5a:40:a4:a1:35:d3: 8e:ac:ee:ec:4c:82:c3:e3:cc:b9:ea:99:d4:ae:c5:b1:4d:6d: 54:3d:92:cb:41:a4:df:42:f6:fc:60:71:af:28:f3:37:0e:c3: c7:e0:1f:29:3f:86:2a:6f:0f:29:e6:d6:e6:52:8d:ef:1c:76: c9:7e:ce:4c:3d:7b:5e:58:e2:d0:96:c5:00:38:84:6c:f5:1f: 03:fe:9a:28 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfRBiSYtrKFHRepxvaz+x4j2laQQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE2MzVENDIyNzQzQUE4QzMxQ0E4MkM3RjUwM0I5NUZG QjY0QTRERjAeFw0yNTAxMDgwNzU1MDFaFw0yNjAxMDcwODAwMDFaMDMxMTAvBgNV BAMTKEQzNjNGNTA0OUIzOEI1OUM2ODM2OUVGNTJDODExMTkxQkMzQUE1RTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDg+rIgPrFEXe1IUS9Rw4ha1xDl 7Lk4b7fpmtSHiJwdLrIvl8ObIC5g+iLlOSSOnE7fVYXNYO4re+v55d+IYBCljRkw wIe091USowH97m7ofdIMWiHa1/jGpb4yznuqTgJvigRFph5t6vbwlkeAhlrT8G13 aBgIru3alHTEU5IEeDFNy9S2awc6duOvLRnfzOH5iwfVyufbQsCJzELqOjeAbuIQ aA73p97pWfQkYYAX4wbw8LMDZZ6UF4AhnwDt6P8M27zZTnUx0wrb1YvqGqwOrIM4 pVfST+lHqfH/R9StuJPeDGQyK3dVPNUhBUrzApByCMHNqgpEdSYWRn/CftOxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU02P1BJs4tZxoNp71LIERkbw6peYwHwYDVR0j BBgwFoAUmmNdQidDqowxyoLH9QO5X/tkpN8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZGEzMjk2Ny1kNTU4LTRhMzQtYmU4ZS02NGVmNGNmYzA0ZTMvMC85QTYzNUQ0MjI3 NDNBQThDMzFDQTgyQzdGNTAzQjk1RkZCNjRBNERGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE2MzVENDIyNzQzQUE4QzMxQ0E4MkM3RjUwM0I5NUZGQjY0 QTRERi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkYTMyOTY3LWQ1NTgtNGEzNC1i ZThlLTY0ZWY0Y2ZjMDRlMy8wLzMxMzAzMzJlMzIzNjJlMzEzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxqAMA0GCSqG SIb3DQEBCwUAA4IBAQAHTUE8Ih6l+3KJQc1VrA5B4KvlsTO2ExP+uUQMKE0G25R6 hvDYLaMjaE+wUjlspcNdRr3fH4qGj+GIRrR3yvUxRngzN5Fe8MHYUYf2+gjrl76s eKmOlch4MbGgrIyKMJeTwEqrX+k5soMNI70FRYc3f4sKwDzIAKQqSknOmI3RvKnW t6g/0yZ5lYflfKMnw0C+l/FiuXjmrPcQKzg3enyRGfTRfyNBv2boMBLpsMxaQKSh NdOOrO7sTILD48y56pnUrsWxTW1UPZLLQaTfQvb8YHGvKPM3DsPH4B8pP4Yqbw8p 5tbmUo3vHHbJfs5MPXteWOLQlsUAOIRs9R8D/poo -----END CERTIFICATE-----Generated at Sun Apr 6 08:30:34 2025 by rpki-client