$ rpki-client -vvf repo-rpki.idnic.net/repo/62af8352-cd65-4db7-b0cb-048b45e7a4bf/0/3130332e38372e36362e302f32332d3233203d3e20313333383030.roa File: 3130332e38372e36362e302f32332d3233203d3e20313333383030.roa (raw, json) Hash identifier: YUNDCL4eKY/WSBYrQHBCQwjmiznybb06CPTcpquocBA= Subject key identifier: 45:BF:8E:15:EF:3F:A1:CB:B3:56:BD:18:D9:A8:EB:A2:0F:66:B5:95 Certificate issuer: /CN=5CDA120200D28E4FC66FECD60F5AFCC57E79E642 Certificate serial: 0D2042470D78B6592FEC47B86EBB724632D96311 Authority key identifier: 5C:DA:12:02:00:D2:8E:4F:C6:6F:EC:D6:0F:5A:FC:C5:7E:79:E6:42 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5CDA120200D28E4FC66FECD60F5AFCC57E79E642.cer Subject info access: rsync://repo-rpki.idnic.net/repo/62af8352-cd65-4db7-b0cb-048b45e7a4bf/0/3130332e38372e36362e302f32332d3233203d3e20313333383030.roa Signing time: Mon 17 Feb 2025 03:26:00 +0000 ROA not before: Mon 17 Feb 2025 03:21:00 +0000 ROA not after: Mon 16 Feb 2026 03:26:00 +0000 asID: 133800 IP address blocks: 103.87.66.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/62af8352-cd65-4db7-b0cb-048b45e7a4bf/0/5CDA120200D28E4FC66FECD60F5AFCC57E79E642.crl rsync://repo-rpki.idnic.net/repo/62af8352-cd65-4db7-b0cb-048b45e7a4bf/0/5CDA120200D28E4FC66FECD60F5AFCC57E79E642.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5CDA120200D28E4FC66FECD60F5AFCC57E79E642.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Feb 2025 19:27:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:20:42:47:0d:78:b6:59:2f:ec:47:b8:6e:bb:72:46:32:d9:63:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5CDA120200D28E4FC66FECD60F5AFCC57E79E642 Validity Not Before: Feb 17 03:21:00 2025 GMT Not After : Feb 16 03:26:00 2026 GMT Subject: CN=45BF8E15EF3FA1CBB356BD18D9A8EBA20F66B595 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0f:4d:43:cf:64:b1:ab:c2:fd:17:5f:8c:ab: 32:10:c6:1a:04:e9:0c:a9:de:de:e6:5b:32:be:96: 83:15:db:cd:e9:0c:c5:b0:89:de:fb:36:3a:40:7b: d1:a8:cd:fd:f7:12:b5:28:ef:28:da:11:5f:2c:f7: a7:61:5d:1f:1b:f0:2a:dc:1c:7d:66:ea:04:76:a8: 33:1b:6c:93:de:53:1b:99:4e:59:e5:6b:76:77:98: 01:0a:e7:53:04:03:81:e9:2e:ba:b6:1f:f9:af:cb: 8a:82:51:20:a8:e8:5f:3d:cd:98:12:94:8f:8f:3b: 41:a0:21:8a:be:52:76:5d:20:4b:b8:29:eb:96:84: 00:64:82:fc:d0:d2:80:ff:d0:fd:21:2f:e9:04:e7: 1e:ec:52:08:a5:c5:eb:b0:1a:4b:8e:77:de:52:5f: 01:7e:5c:66:c6:8a:7a:de:4a:b4:80:99:a1:5b:a6: 68:67:c8:6e:1b:c0:be:0a:50:b2:a0:86:98:3f:bc: a9:69:c5:b7:e0:f5:07:cd:57:05:27:10:a0:7b:54: dd:d4:c8:9e:f0:81:80:a0:8b:3c:1e:97:e7:7d:18: 8d:dc:19:8e:82:94:19:b3:9d:00:d6:90:e1:ba:93: c4:70:4e:33:9c:64:7c:d1:42:33:0d:0d:d2:e7:1a: 26:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:BF:8E:15:EF:3F:A1:CB:B3:56:BD:18:D9:A8:EB:A2:0F:66:B5:95 X509v3 Authority Key Identifier: keyid:5C:DA:12:02:00:D2:8E:4F:C6:6F:EC:D6:0F:5A:FC:C5:7E:79:E6:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/62af8352-cd65-4db7-b0cb-048b45e7a4bf/0/5CDA120200D28E4FC66FECD60F5AFCC57E79E642.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5CDA120200D28E4FC66FECD60F5AFCC57E79E642.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/62af8352-cd65-4db7-b0cb-048b45e7a4bf/0/3130332e38372e36362e302f32332d3233203d3e20313333383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.87.66.0/23 Signature Algorithm: sha256WithRSAEncryption 89:7c:29:79:b9:f1:2a:90:ab:74:d0:fc:ad:26:57:78:1c:60: a1:9e:9f:82:e6:30:bc:df:aa:10:e6:4a:ee:c0:c0:62:b3:fe: 4f:cc:33:92:e2:f2:97:d6:29:c4:b5:fd:b6:2e:87:99:02:08: 67:fc:f0:18:d2:7f:29:05:b0:0c:af:a2:7e:de:8b:1e:a3:a7: 79:13:cc:86:af:12:8b:70:cc:09:8d:0f:03:89:64:cb:da:dc: 0f:21:de:eb:a5:7c:2f:d9:d2:17:84:99:1e:1c:ad:c1:b2:b2: b1:b3:28:81:28:41:2e:32:9f:f1:e7:d2:53:7e:1d:1a:71:c6: 24:af:74:4c:cc:b1:a2:dd:3b:26:02:c3:4e:7c:ff:89:5d:9c: fe:96:27:d6:a2:b1:a3:4e:2e:ca:94:e7:4f:8a:f3:05:50:a8: fd:55:3f:39:0a:86:d8:55:6c:9f:47:0e:cf:33:65:ad:7e:15: 07:47:7f:35:67:9a:38:50:fd:99:50:e9:1d:e3:28:01:92:66: 58:f6:41:b7:d8:b3:5c:b9:c4:93:a4:28:bf:1e:fa:0b:7a:80: 70:7c:36:c7:73:31:c9:47:c1:bc:bb:df:89:d8:35:5f:6a:d8: ec:70:6f:bf:eb:3a:e4:71:20:2f:1b:f5:fd:86:6e:47:f2:dc: 8f:fd:96:8f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDSBCRw14tlkv7Ee4brtyRjLZYxEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUNEQTEyMDIwMEQyOEU0RkM2NkZFQ0Q2MEY1QUZDQzU3 RTc5RTY0MjAeFw0yNTAyMTcwMzIxMDBaFw0yNjAyMTYwMzI2MDBaMDMxMTAvBgNV BAMTKDQ1QkY4RTE1RUYzRkExQ0JCMzU2QkQxOEQ5QThFQkEyMEY2NkI1OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9D01Dz2Sxq8L9F1+MqzIQxhoE 6Qyp3t7mWzK+loMV283pDMWwid77NjpAe9Gozf33ErUo7yjaEV8s96dhXR8b8Crc HH1m6gR2qDMbbJPeUxuZTlnla3Z3mAEK51MEA4HpLrq2H/mvy4qCUSCo6F89zZgS lI+PO0GgIYq+UnZdIEu4KeuWhABkgvzQ0oD/0P0hL+kE5x7sUgilxeuwGkuOd95S XwF+XGbGinreSrSAmaFbpmhnyG4bwL4KULKghpg/vKlpxbfg9QfNVwUnEKB7VN3U yJ7wgYCgizwel+d9GI3cGY6ClBmznQDWkOG6k8RwTjOcZHzRQjMNDdLnGiYpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURb+OFe8/ocuzVr0Y2ajrog9mtZUwHwYDVR0j BBgwFoAUXNoSAgDSjk/Gb+zWD1r8xX555kIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MmFmODM1Mi1jZDY1LTRkYjctYjBjYi0wNDhiNDVlN2E0YmYvMC81Q0RBMTIwMjAw RDI4RTRGQzY2RkVDRDYwRjVBRkNDNTdFNzlFNjQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUNEQTEyMDIwMEQyOEU0RkM2NkZFQ0Q2MEY1QUZDQzU3RTc5 RTY0Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyYWY4MzUyLWNkNjUtNGRiNy1i MGNiLTA0OGI0NWU3YTRiZi8wLzMxMzAzMzJlMzgzNzJlMzYzNjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzMzMzM4MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWdXQjANBgkqhkiG 9w0BAQsFAAOCAQEAiXwpebnxKpCrdND8rSZXeBxgoZ6fguYwvN+qEOZK7sDAYrP+ T8wzkuLyl9YpxLX9ti6HmQIIZ/zwGNJ/KQWwDK+ift6LHqOneRPMhq8Si3DMCY0P A4lky9rcDyHe66V8L9nSF4SZHhytwbKysbMogShBLjKf8efSU34dGnHGJK90TMyx ot07JgLDTnz/iV2c/pYn1qKxo04uypTnT4rzBVCo/VU/OQqG2FVsn0cOzzNlrX4V B0d/NWeaOFD9mVDpHeMoAZJmWPZBt9izXLnEk6Qovx76C3qAcHw2x3MxyUfBvLvf idg1X2rY7HBvv+s65HEgLxv1/YZuR/Lcj/2Wjw== -----END CERTIFICATE-----Generated at Fri Feb 21 11:08:15 2025 by rpki-client