$ rpki-client -vvf repo-rpki.idnic.net/repo/5f0a2bec-f81a-4a3b-a144-175b168e22fd/0/3130332e3134372e3231312e302f32342d3234203d3e20313530353434.roa File: 3130332e3134372e3231312e302f32342d3234203d3e20313530353434.roa (raw, json) Hash identifier: bS7LBWeAvEGSD1T5Z6RuPXiny8Jnqyau0FNwJL5y5Qs= Subject key identifier: F6:76:37:D0:02:C3:96:4C:34:2E:16:28:F1:F6:11:15:34:FE:D9:F9 Certificate issuer: /CN=F71ADE61635D40E729AD7D386CF8F90E391AB884 Certificate serial: 39D6E72EC5F821BD294DA469515186487AC198C6 Authority key identifier: F7:1A:DE:61:63:5D:40:E7:29:AD:7D:38:6C:F8:F9:0E:39:1A:B8:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F71ADE61635D40E729AD7D386CF8F90E391AB884.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5f0a2bec-f81a-4a3b-a144-175b168e22fd/0/3130332e3134372e3231312e302f32342d3234203d3e20313530353434.roa Signing time: Thu 29 Aug 2024 04:19:56 +0000 ROA not before: Thu 29 Aug 2024 04:14:56 +0000 ROA not after: Thu 28 Aug 2025 04:19:56 +0000 asID: 150544 IP address blocks: 103.147.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5f0a2bec-f81a-4a3b-a144-175b168e22fd/0/F71ADE61635D40E729AD7D386CF8F90E391AB884.crl rsync://repo-rpki.idnic.net/repo/5f0a2bec-f81a-4a3b-a144-175b168e22fd/0/F71ADE61635D40E729AD7D386CF8F90E391AB884.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F71ADE61635D40E729AD7D386CF8F90E391AB884.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 05:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:d6:e7:2e:c5:f8:21:bd:29:4d:a4:69:51:51:86:48:7a:c1:98:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F71ADE61635D40E729AD7D386CF8F90E391AB884 Validity Not Before: Aug 29 04:14:56 2024 GMT Not After : Aug 28 04:19:56 2025 GMT Subject: CN=F67637D002C3964C342E1628F1F6111534FED9F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:32:d3:87:98:e2:80:cc:9c:1d:df:de:27:24: c3:ab:c6:33:76:74:5f:f0:e6:5a:fb:26:c0:f6:c2: c6:41:89:92:62:5e:d3:40:f2:35:30:fa:b9:68:41: 06:b6:76:f2:f8:73:b8:c2:8e:e4:3a:a7:fe:81:90: 4c:bb:d9:39:57:3e:5a:85:04:9f:82:46:c9:0e:97: 42:8e:0e:5d:0d:f2:29:0a:cf:0d:42:97:99:e5:0d: 22:72:3c:16:d3:39:73:5b:60:e1:e9:25:35:43:d2: da:0b:86:99:7b:8c:59:9c:c9:94:74:d3:ae:44:78: c8:d2:2e:54:39:17:ba:8a:f5:55:2c:07:8e:1d:a0: b7:ac:30:98:8d:a8:fa:19:a2:a5:f1:ae:59:b2:13: 88:44:29:73:88:b1:eb:84:fb:89:14:b6:3b:da:c5: 2d:c4:be:f4:28:c2:97:fa:11:d8:bd:c8:83:73:73: f8:f0:80:ae:78:a4:6e:37:20:15:4a:7e:be:67:59: 20:56:15:89:61:6e:95:6f:c7:ee:3d:ca:ce:e6:17: b3:3e:87:16:a0:7a:c7:5e:97:4b:de:96:e0:6a:a4: e5:28:96:f5:8b:74:bc:5f:60:21:02:89:d8:03:52: fe:01:ce:4e:84:fe:e0:65:eb:2c:ea:14:a2:98:0b: 4b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:76:37:D0:02:C3:96:4C:34:2E:16:28:F1:F6:11:15:34:FE:D9:F9 X509v3 Authority Key Identifier: keyid:F7:1A:DE:61:63:5D:40:E7:29:AD:7D:38:6C:F8:F9:0E:39:1A:B8:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5f0a2bec-f81a-4a3b-a144-175b168e22fd/0/F71ADE61635D40E729AD7D386CF8F90E391AB884.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F71ADE61635D40E729AD7D386CF8F90E391AB884.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5f0a2bec-f81a-4a3b-a144-175b168e22fd/0/3130332e3134372e3231312e302f32342d3234203d3e20313530353434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.211.0/24 Signature Algorithm: sha256WithRSAEncryption 34:c7:99:45:be:e8:d5:29:38:11:71:c8:e3:66:e9:97:07:02: 8b:0f:bd:3b:22:e3:40:c9:f8:86:c1:54:c9:f6:6c:b1:77:fe: 53:e7:ef:ce:5e:f1:05:35:7c:ba:4a:43:24:2b:04:d0:52:4c: 99:49:24:4d:68:b7:a1:42:d0:cc:35:e0:0b:f4:9b:d0:ab:dc: 46:5e:a1:b4:e6:87:6f:e1:1b:23:28:48:56:00:cb:68:86:d0: 66:6c:30:9e:15:c8:05:ab:08:f6:3c:33:6b:24:35:cf:28:6f: 16:d2:74:55:01:fb:b8:e7:e2:39:99:fa:19:e5:c8:b2:48:65: 9e:8c:77:8b:ae:3b:f0:63:12:ae:7b:38:0b:e2:47:30:5b:66: 0f:c8:5d:54:7f:f8:78:82:ed:a3:cb:f1:a6:91:3a:92:8e:59: 8b:1f:2e:18:2e:cd:f1:1b:2c:37:e7:d2:56:38:8b:77:71:81: 70:89:b2:a5:1d:fd:81:41:21:e4:18:9d:ba:8a:63:5e:20:63: 0e:8a:52:24:71:f6:bf:6d:47:a7:89:59:02:f3:a4:af:9a:cf: 19:57:fa:3e:0f:2c:a5:8d:5b:32:84:1c:be:38:46:8c:14:3c: e0:b4:5b:8e:e6:47:26:1f:d3:87:38:0b:5c:47:ac:6f:99:40: a2:6b:f0:1a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOdbnLsX4Ib0pTaRpUVGGSHrBmMYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjcxQURFNjE2MzVENDBFNzI5QUQ3RDM4NkNGOEY5MEUz OTFBQjg4NDAeFw0yNDA4MjkwNDE0NTZaFw0yNTA4MjgwNDE5NTZaMDMxMTAvBgNV BAMTKEY2NzYzN0QwMDJDMzk2NEMzNDJFMTYyOEYxRjYxMTE1MzRGRUQ5RjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7MtOHmOKAzJwd394nJMOrxjN2 dF/w5lr7JsD2wsZBiZJiXtNA8jUw+rloQQa2dvL4c7jCjuQ6p/6BkEy72TlXPlqF BJ+CRskOl0KODl0N8ikKzw1Cl5nlDSJyPBbTOXNbYOHpJTVD0toLhpl7jFmcyZR0 065EeMjSLlQ5F7qK9VUsB44doLesMJiNqPoZoqXxrlmyE4hEKXOIseuE+4kUtjva xS3EvvQowpf6Edi9yINzc/jwgK54pG43IBVKfr5nWSBWFYlhbpVvx+49ys7mF7M+ hxagesdel0veluBqpOUolvWLdLxfYCECidgDUv4Bzk6E/uBl6yzqFKKYC0u/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU9nY30ALDlkw0LhYo8fYRFTT+2fkwHwYDVR0j BBgwFoAU9xreYWNdQOcprX04bPj5DjkauIQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZjBhMmJlYy1mODFhLTRhM2ItYTE0NC0xNzViMTY4ZTIyZmQvMC9GNzFBREU2MTYz NUQ0MEU3MjlBRDdEMzg2Q0Y4RjkwRTM5MUFCODg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjcxQURFNjE2MzVENDBFNzI5QUQ3RDM4NkNGOEY5MEUzOTFB Qjg4NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVmMGEyYmVjLWY4MWEtNGEzYi1h MTQ0LTE3NWIxNjhlMjJmZC8wLzMxMzAzMzJlMzEzNDM3MmUzMjMxMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzNTM0MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnk9MwDQYJ KoZIhvcNAQELBQADggEBADTHmUW+6NUpOBFxyONm6ZcHAosPvTsi40DJ+IbBVMn2 bLF3/lPn785e8QU1fLpKQyQrBNBSTJlJJE1ot6FC0Mw14Av0m9Cr3EZeobTmh2/h GyMoSFYAy2iG0GZsMJ4VyAWrCPY8M2skNc8obxbSdFUB+7jn4jmZ+hnlyLJIZZ6M d4uuO/BjEq57OAviRzBbZg/IXVR/+HiC7aPL8aaROpKOWYsfLhguzfEbLDfn0lY4 i3dxgXCJsqUd/YFBIeQYnbqKY14gYw6KUiRx9r9tR6eJWQLzpK+azxlX+j4PLKWN WzKEHL44RowUPOC0W47mRyYf04c4C1xHrG+ZQKJr8Bo= -----END CERTIFICATE-----Generated at Fri Feb 21 11:24:31 2025 by rpki-client