$ rpki-client -vvf repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/3130332e3130322e31322e302f32332d3233203d3e20313336383635.roa File: 3130332e3130322e31322e302f32332d3233203d3e20313336383635.roa (raw, json) Hash identifier: VX2tVKkS7LzPxrLmOsssh+r2zJ3zeiGSJ2bMTYWz5Q8= Subject key identifier: 14:7F:A0:DF:26:AF:82:49:F2:06:E0:79:B8:1D:A2:36:F7:EF:5D:E1 Certificate issuer: /CN=08773191FBFC21A3C8615A3E36A2ACB187F63C25 Certificate serial: 1A6811B3F95500F6631AE4BBFBBA4A3E464D417F Authority key identifier: 08:77:31:91:FB:FC:21:A3:C8:61:5A:3E:36:A2:AC:B1:87:F6:3C:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08773191FBFC21A3C8615A3E36A2ACB187F63C25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/3130332e3130322e31322e302f32332d3233203d3e20313336383635.roa Signing time: Sun 22 Dec 2024 09:00:01 +0000 ROA not before: Sun 22 Dec 2024 08:55:01 +0000 ROA not after: Sun 21 Dec 2025 09:00:01 +0000 asID: 136865 IP address blocks: 103.102.12.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/08773191FBFC21A3C8615A3E36A2ACB187F63C25.crl rsync://repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/08773191FBFC21A3C8615A3E36A2ACB187F63C25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08773191FBFC21A3C8615A3E36A2ACB187F63C25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 14:38:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:68:11:b3:f9:55:00:f6:63:1a:e4:bb:fb:ba:4a:3e:46:4d:41:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08773191FBFC21A3C8615A3E36A2ACB187F63C25 Validity Not Before: Dec 22 08:55:01 2024 GMT Not After : Dec 21 09:00:01 2025 GMT Subject: CN=147FA0DF26AF8249F206E079B81DA236F7EF5DE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:8d:37:94:fe:70:b9:21:9f:aa:56:6a:e5:b6: 83:f0:84:2f:54:4d:65:40:8d:e4:bb:d0:7c:99:bf: 5a:cb:90:f4:4e:17:2e:53:6d:c1:3f:eb:23:d4:23: df:77:f5:19:35:a1:c3:28:92:f0:55:fa:4e:80:a4: b7:8a:98:5d:f8:e9:f4:72:a8:b2:38:0a:cc:81:45: ce:2a:38:6b:d3:93:88:82:3b:1e:00:95:48:55:0f: c4:6e:e9:66:b2:d2:30:8e:13:e1:c2:2a:0d:00:7d: 67:2c:91:f9:2d:99:5b:a7:37:68:29:89:7f:3c:99: f3:fe:98:37:bf:3c:0e:95:12:fa:22:68:98:0c:20: f2:6a:b1:c6:d1:01:c1:bf:fb:9a:0b:2c:4d:32:f4: e8:18:c8:cd:30:cf:a9:20:56:41:87:35:d4:2a:92: 44:eb:d0:45:3a:42:07:60:e9:69:48:58:41:de:26: 38:6d:75:d2:e6:98:fa:97:d3:70:1f:f0:6f:50:f4: ea:11:c3:63:9f:9e:e8:ac:f7:1d:41:fd:22:d8:55: 7f:b7:8b:51:fe:4a:d3:fb:dc:32:43:1e:ed:e1:63: c9:c6:8a:be:b9:ae:14:e2:d3:8a:7f:7e:49:4f:96: a4:d3:c0:12:7b:9e:cb:20:74:bc:f5:b3:a2:2f:2f: a0:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:7F:A0:DF:26:AF:82:49:F2:06:E0:79:B8:1D:A2:36:F7:EF:5D:E1 X509v3 Authority Key Identifier: keyid:08:77:31:91:FB:FC:21:A3:C8:61:5A:3E:36:A2:AC:B1:87:F6:3C:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/08773191FBFC21A3C8615A3E36A2ACB187F63C25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08773191FBFC21A3C8615A3E36A2ACB187F63C25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/3130332e3130322e31322e302f32332d3233203d3e20313336383635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.12.0/23 Signature Algorithm: sha256WithRSAEncryption 30:4a:00:33:6a:fd:3c:ed:42:fd:2e:59:68:12:60:3d:04:46: a2:06:3a:07:18:8d:b7:46:9f:60:4a:ac:b6:80:ab:e1:dc:5a: ad:bc:b3:1c:13:aa:8f:7f:25:db:d4:d4:cf:97:c6:5b:f6:23: 36:25:33:02:92:f1:9e:50:31:9d:b8:dc:ef:81:67:e5:52:9b: f5:cc:e6:9c:65:56:2f:82:38:5b:96:4d:4b:6f:fa:ff:f7:0f: 6f:f6:fa:99:37:aa:cc:d9:66:6d:47:91:c4:47:2b:25:cc:4a: 6e:df:ff:91:a4:cd:b6:6c:f7:f3:af:ee:c7:28:9a:24:ea:43: ee:42:8e:4f:73:48:f4:50:b2:1d:f7:a8:ac:55:29:86:7d:10: 17:f4:41:f2:79:17:07:9f:96:41:d4:4d:95:ba:07:11:f6:1b: 64:39:a3:8f:25:03:c0:c9:82:9b:f5:93:61:65:06:c1:4b:5b: 48:df:b9:75:2c:cf:5f:98:91:d6:a0:0b:77:30:04:79:90:b3: 6c:4d:85:fb:5f:95:59:26:ab:b2:9a:b8:76:36:4e:b4:b8:99: a6:81:e5:66:6b:23:6d:15:84:3a:21:9a:0b:66:16:e3:e6:f4: 9b:50:67:1f:9f:a9:4a:b6:dd:37:27:d5:ee:ad:1a:2c:60:d8: 63:66:dc:98 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGmgRs/lVAPZjGuS7+7pKPkZNQX8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg3NzMxOTFGQkZDMjFBM0M4NjE1QTNFMzZBMkFDQjE4 N0Y2M0MyNTAeFw0yNDEyMjIwODU1MDFaFw0yNTEyMjEwOTAwMDFaMDMxMTAvBgNV BAMTKDE0N0ZBMERGMjZBRjgyNDlGMjA2RTA3OUI4MURBMjM2RjdFRjVERTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOjTeU/nC5IZ+qVmrltoPwhC9U TWVAjeS70HyZv1rLkPROFy5TbcE/6yPUI9939Rk1ocMokvBV+k6ApLeKmF346fRy qLI4CsyBRc4qOGvTk4iCOx4AlUhVD8Ru6Way0jCOE+HCKg0AfWcskfktmVunN2gp iX88mfP+mDe/PA6VEvoiaJgMIPJqscbRAcG/+5oLLE0y9OgYyM0wz6kgVkGHNdQq kkTr0EU6Qgdg6WlIWEHeJjhtddLmmPqX03Af8G9Q9OoRw2Ofnuis9x1B/SLYVX+3 i1H+StP73DJDHu3hY8nGir65rhTi04p/fklPlqTTwBJ7nssgdLz1s6IvL6ABAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFH+g3yavgknyBuB5uB2iNvfvXeEwHwYDVR0j BBgwFoAUCHcxkfv8IaPIYVo+NqKssYf2PCUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Zjg2YjEyZS1lNTc0LTQyNmItYWE2Yi00OTM5ZTNiMDMwYmEvMC8wODc3MzE5MUZC RkMyMUEzQzg2MTVBM0UzNkEyQUNCMTg3RjYzQzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDg3NzMxOTFGQkZDMjFBM0M4NjE1QTNFMzZBMkFDQjE4N0Y2 M0MyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVmODZiMTJlLWU1NzQtNDI2Yi1h YTZiLTQ5MzllM2IwMzBiYS8wLzMxMzAzMzJlMzEzMDMyMmUzMTMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM2MzgzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ2YMMA0GCSqG SIb3DQEBCwUAA4IBAQAwSgAzav087UL9LlloEmA9BEaiBjoHGI23Rp9gSqy2gKvh 3FqtvLMcE6qPfyXb1NTPl8Zb9iM2JTMCkvGeUDGduNzvgWflUpv1zOacZVYvgjhb lk1Lb/r/9w9v9vqZN6rM2WZtR5HERyslzEpu3/+RpM22bPfzr+7HKJok6kPuQo5P c0j0ULId96isVSmGfRAX9EHyeRcHn5ZB1E2VugcR9htkOaOPJQPAyYKb9ZNhZQbB S1tI37l1LM9fmJHWoAt3MAR5kLNsTYX7X5VZJquymrh2Nk60uJmmgeVmayNtFYQ6 IZoLZhbj5vSbUGcfn6lKtt03J9XurRosYNhjZtyY -----END CERTIFICATE-----Generated at Wed Apr 9 23:06:20 2025 by rpki-client