$ rpki-client -vvf repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/3130332e3130322e31332e302f32342d3234203d3e20313336383635.roa File: 3130332e3130322e31332e302f32342d3234203d3e20313336383635.roa (raw, json) Hash identifier: w8KhQhAE9qtOeUsIYiL4lko66TpmJ+xch/XP9e9vq2Y= Subject key identifier: D5:71:AF:FD:06:81:20:40:38:D4:ED:BB:66:44:5D:AB:A9:BE:91:F6 Certificate issuer: /CN=08773191FBFC21A3C8615A3E36A2ACB187F63C25 Certificate serial: 2AB894DDCF39FDAD2FEDD5AF7EE4214B576E6464 Authority key identifier: 08:77:31:91:FB:FC:21:A3:C8:61:5A:3E:36:A2:AC:B1:87:F6:3C:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08773191FBFC21A3C8615A3E36A2ACB187F63C25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/3130332e3130322e31332e302f32342d3234203d3e20313336383635.roa Signing time: Sun 22 Dec 2024 09:00:01 +0000 ROA not before: Sun 22 Dec 2024 08:55:01 +0000 ROA not after: Sun 21 Dec 2025 09:00:01 +0000 asID: 136865 IP address blocks: 103.102.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/08773191FBFC21A3C8615A3E36A2ACB187F63C25.crl rsync://repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/08773191FBFC21A3C8615A3E36A2ACB187F63C25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08773191FBFC21A3C8615A3E36A2ACB187F63C25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 14:38:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:b8:94:dd:cf:39:fd:ad:2f:ed:d5:af:7e:e4:21:4b:57:6e:64:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08773191FBFC21A3C8615A3E36A2ACB187F63C25 Validity Not Before: Dec 22 08:55:01 2024 GMT Not After : Dec 21 09:00:01 2025 GMT Subject: CN=D571AFFD0681204038D4EDBB66445DABA9BE91F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0a:09:df:87:28:04:10:d7:b0:d7:d4:af:29: dd:fa:a3:c0:d9:8e:ad:38:27:39:8d:be:7a:41:b9: 27:3c:0e:1f:03:8c:32:ee:c3:e2:1b:cc:d8:6c:ca: 07:70:e4:f9:21:d2:65:a9:5f:5e:82:0d:bd:b4:3a: 76:87:cf:23:e1:3a:94:b2:5c:52:65:f0:88:4e:99: f0:1d:fe:f1:85:2a:cb:7c:5d:14:9b:39:3e:65:ee: 53:5e:bb:81:5a:fd:f0:fd:b1:f4:cb:34:92:33:7a: a0:d5:e7:96:3f:5a:fe:ca:23:23:e3:b8:94:ee:5e: b0:33:2e:95:09:92:67:37:66:ca:ca:b2:25:ce:1b: a8:c8:ff:5c:6a:84:57:ae:1e:c9:95:2d:15:0d:30: c5:f9:d2:0d:df:f1:98:1c:8e:cc:b9:07:36:be:1d: 67:8f:5c:23:40:35:66:1c:73:87:79:20:c8:cd:88: 5a:fb:f6:91:2d:b4:72:59:70:a2:85:c4:d5:46:2c: 64:c9:d5:c1:1f:df:8a:3d:15:bf:63:2f:4c:c6:d0: f1:35:ba:54:7b:83:c7:d3:26:95:cb:ee:92:93:e7: 16:d8:be:1a:d3:8f:0e:46:78:92:23:7b:8d:55:25: 14:ac:93:1a:bc:ba:ab:39:27:a5:a8:0b:52:04:38: 0f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:71:AF:FD:06:81:20:40:38:D4:ED:BB:66:44:5D:AB:A9:BE:91:F6 X509v3 Authority Key Identifier: keyid:08:77:31:91:FB:FC:21:A3:C8:61:5A:3E:36:A2:AC:B1:87:F6:3C:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/08773191FBFC21A3C8615A3E36A2ACB187F63C25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08773191FBFC21A3C8615A3E36A2ACB187F63C25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/3130332e3130322e31332e302f32342d3234203d3e20313336383635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.13.0/24 Signature Algorithm: sha256WithRSAEncryption 51:33:e7:04:59:26:13:56:85:9e:65:91:d6:35:4e:8d:e5:a2: 41:93:f5:c0:81:7d:62:de:b4:36:9b:e2:4e:a0:73:55:af:12: 05:ea:b0:2a:dd:ea:46:74:a0:d9:c1:a7:19:bd:58:5c:78:fe: f1:db:04:21:15:14:a1:9b:62:3d:a9:6e:20:d5:06:ef:8f:6e: cd:6d:60:a1:df:b7:78:3a:7e:7b:65:56:30:f0:d1:0f:86:cd: 7d:63:57:80:3d:77:7f:db:44:44:97:55:f5:6b:d1:34:ea:96: c4:a7:33:a3:ce:56:dd:ed:55:90:a1:ca:cf:0e:8a:16:b0:81: 37:c6:37:ba:ce:19:1f:fd:4f:81:52:10:c6:05:dc:cf:85:f6: 10:59:c5:74:64:47:f7:e0:ad:e0:82:3d:72:11:e3:38:19:7b: 3d:21:4e:c9:2b:6a:d0:38:22:dd:29:27:35:e3:b2:dc:ae:f8: fa:fc:7f:50:77:79:c3:46:44:98:a5:0f:55:50:cb:5b:7f:99: dd:73:ef:7c:e8:e1:92:18:51:fe:b9:37:40:54:8e:e2:9d:b6: de:c6:45:df:51:8f:49:ed:68:1c:a6:f3:5c:f9:d9:c1:84:80: 56:e4:46:e9:d1:11:c3:8a:5f:82:e7:c3:0d:f3:67:29:34:c9: 61:34:49:55 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKriU3c85/a0v7dWvfuQhS1duZGQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg3NzMxOTFGQkZDMjFBM0M4NjE1QTNFMzZBMkFDQjE4 N0Y2M0MyNTAeFw0yNDEyMjIwODU1MDFaFw0yNTEyMjEwOTAwMDFaMDMxMTAvBgNV BAMTKEQ1NzFBRkZEMDY4MTIwNDAzOEQ0RURCQjY2NDQ1REFCQTlCRTkxRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7CgnfhygEENew19SvKd36o8DZ jq04JzmNvnpBuSc8Dh8DjDLuw+IbzNhsygdw5Pkh0mWpX16CDb20OnaHzyPhOpSy XFJl8IhOmfAd/vGFKst8XRSbOT5l7lNeu4Fa/fD9sfTLNJIzeqDV55Y/Wv7KIyPj uJTuXrAzLpUJkmc3ZsrKsiXOG6jI/1xqhFeuHsmVLRUNMMX50g3f8Zgcjsy5Bza+ HWePXCNANWYcc4d5IMjNiFr79pEttHJZcKKFxNVGLGTJ1cEf34o9Fb9jL0zG0PE1 ulR7g8fTJpXL7pKT5xbYvhrTjw5GeJIje41VJRSskxq8uqs5J6WoC1IEOA/HAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1XGv/QaBIEA41O27ZkRdq6m+kfYwHwYDVR0j BBgwFoAUCHcxkfv8IaPIYVo+NqKssYf2PCUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Zjg2YjEyZS1lNTc0LTQyNmItYWE2Yi00OTM5ZTNiMDMwYmEvMC8wODc3MzE5MUZC RkMyMUEzQzg2MTVBM0UzNkEyQUNCMTg3RjYzQzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDg3NzMxOTFGQkZDMjFBM0M4NjE1QTNFMzZBMkFDQjE4N0Y2 M0MyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVmODZiMTJlLWU1NzQtNDI2Yi1h YTZiLTQ5MzllM2IwMzBiYS8wLzMxMzAzMzJlMzEzMDMyMmUzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2YNMA0GCSqG SIb3DQEBCwUAA4IBAQBRM+cEWSYTVoWeZZHWNU6N5aJBk/XAgX1i3rQ2m+JOoHNV rxIF6rAq3epGdKDZwacZvVhceP7x2wQhFRShm2I9qW4g1Qbvj27NbWCh37d4On57 ZVYw8NEPhs19Y1eAPXd/20REl1X1a9E06pbEpzOjzlbd7VWQocrPDooWsIE3xje6 zhkf/U+BUhDGBdzPhfYQWcV0ZEf34K3ggj1yEeM4GXs9IU7JK2rQOCLdKSc147Lc rvj6/H9Qd3nDRkSYpQ9VUMtbf5ndc+986OGSGFH+uTdAVI7inbbexkXfUY9J7Wgc pvNc+dnBhIBW5Ebp0RHDil+C58MN82cpNMlhNElV -----END CERTIFICATE-----Generated at Wed Apr 9 23:08:49 2025 by rpki-client