$ rpki-client -vvf repo-rpki.idnic.net/repo/62af8352-cd65-4db7-b0cb-048b45e7a4bf/0/3130332e38372e36372e302f32342d3234203d3e20313333383030.roa File: 3130332e38372e36372e302f32342d3234203d3e20313333383030.roa (raw, json) Hash identifier: SHAFGJOdQSS5ZqozGPq16khbD5estk3T1ejmGm1B3pU= Subject key identifier: 2D:BE:F8:A7:F2:5A:83:29:F7:94:EB:E1:0E:B2:F5:54:F4:FA:37:27 Certificate issuer: /CN=5CDA120200D28E4FC66FECD60F5AFCC57E79E642 Certificate serial: 5CD685DFBCB2E2F9790E30F7CF4EEA89611B57F8 Authority key identifier: 5C:DA:12:02:00:D2:8E:4F:C6:6F:EC:D6:0F:5A:FC:C5:7E:79:E6:42 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5CDA120200D28E4FC66FECD60F5AFCC57E79E642.cer Subject info access: rsync://repo-rpki.idnic.net/repo/62af8352-cd65-4db7-b0cb-048b45e7a4bf/0/3130332e38372e36372e302f32342d3234203d3e20313333383030.roa Signing time: Mon 17 Feb 2025 03:26:28 +0000 ROA not before: Mon 17 Feb 2025 03:21:28 +0000 ROA not after: Mon 16 Feb 2026 03:26:28 +0000 asID: 133800 IP address blocks: 103.87.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/62af8352-cd65-4db7-b0cb-048b45e7a4bf/0/5CDA120200D28E4FC66FECD60F5AFCC57E79E642.crl rsync://repo-rpki.idnic.net/repo/62af8352-cd65-4db7-b0cb-048b45e7a4bf/0/5CDA120200D28E4FC66FECD60F5AFCC57E79E642.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5CDA120200D28E4FC66FECD60F5AFCC57E79E642.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Feb 2025 19:27:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:d6:85:df:bc:b2:e2:f9:79:0e:30:f7:cf:4e:ea:89:61:1b:57:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5CDA120200D28E4FC66FECD60F5AFCC57E79E642 Validity Not Before: Feb 17 03:21:28 2025 GMT Not After : Feb 16 03:26:28 2026 GMT Subject: CN=2DBEF8A7F25A8329F794EBE10EB2F554F4FA3727 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:dc:83:fa:06:9c:cf:a8:f3:0e:07:d3:f9:af: 9b:18:2f:cb:7e:20:e4:fe:29:16:5c:14:09:73:77: 9a:1e:29:19:92:d5:18:98:36:0b:df:0c:ce:67:a3: 71:72:84:8c:b5:ef:04:f9:81:d4:95:da:2a:eb:f7: 19:8e:79:78:ca:b8:7d:91:71:e0:98:fe:af:96:98: 0a:1c:f0:3f:bf:7f:30:fd:26:3e:70:e4:c5:e9:e1: d6:51:ea:a1:48:7b:07:98:e5:1d:97:3e:c7:f8:ad: 5c:f6:c1:d5:b3:d3:3f:8d:b3:1a:54:fc:e2:d6:e2: 4b:93:94:1e:fe:6d:e5:74:5a:db:7a:14:a6:5d:7a: 6d:94:6e:a2:c0:7b:8c:54:b1:d9:51:a0:65:51:43: 62:51:ce:ca:00:c7:e6:ee:3a:a2:24:79:70:41:93: 81:ca:85:6f:b0:78:46:f1:f9:5c:d6:b3:3e:18:b0: 9e:2f:4c:dc:87:28:66:1b:72:35:46:ba:5e:2c:b2: 1e:39:14:c6:f1:db:d0:0d:76:7a:a3:df:1c:0a:ea: 49:ad:26:75:ea:ab:e4:9e:a7:3e:25:82:21:3a:0b: bc:d1:d2:04:f1:36:f6:f2:c8:a6:f6:77:da:c0:ef: 2d:d8:b0:9e:69:82:19:6e:2e:b5:e9:83:63:2b:33: ed:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:BE:F8:A7:F2:5A:83:29:F7:94:EB:E1:0E:B2:F5:54:F4:FA:37:27 X509v3 Authority Key Identifier: keyid:5C:DA:12:02:00:D2:8E:4F:C6:6F:EC:D6:0F:5A:FC:C5:7E:79:E6:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/62af8352-cd65-4db7-b0cb-048b45e7a4bf/0/5CDA120200D28E4FC66FECD60F5AFCC57E79E642.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5CDA120200D28E4FC66FECD60F5AFCC57E79E642.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/62af8352-cd65-4db7-b0cb-048b45e7a4bf/0/3130332e38372e36372e302f32342d3234203d3e20313333383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.87.67.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:0a:a9:d5:68:7f:a6:90:c8:ec:fb:0b:37:c2:28:dd:bd:b6: 39:89:48:9a:10:9e:48:c0:83:ae:16:33:d8:c3:69:59:5c:23: 17:7d:f0:06:d1:44:3d:0c:a4:c3:6c:ac:79:53:0e:bd:64:51: ff:ee:0d:0f:e2:a7:60:d0:a1:25:0c:1c:4e:3a:31:78:7b:9c: 5b:41:fb:b3:34:9f:8f:68:ee:f1:20:cb:49:d1:2d:fd:33:68: 34:4d:5d:d9:a5:56:24:b7:51:30:ef:d0:ea:38:09:0c:d2:95: a7:f3:97:2e:cd:24:a6:0f:85:5b:17:7e:a8:c9:5e:e9:30:47: c5:4f:66:da:ef:03:13:d4:bc:82:c6:48:b4:ac:47:86:cc:3c: e5:3f:76:6a:48:45:d6:f4:8b:04:3b:8b:00:01:5a:6f:44:dd: ab:33:b5:95:48:84:c8:dc:4f:5f:27:be:ff:af:65:50:5e:4a: 2d:bf:35:b9:db:70:d9:63:ba:2a:52:ba:8b:49:e3:c1:fc:7f: 30:ef:93:61:e8:7e:a8:12:5a:9d:66:d0:c2:20:88:7b:af:06: 18:08:4c:db:20:8a:dc:4e:3a:c7:5c:03:7f:5e:83:5e:2c:d1: af:99:5c:ec:33:6c:8c:bd:f5:19:77:79:3c:86:19:28:a7:df: aa:c0:34:05 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXNaF37yy4vl5DjD3z07qiWEbV/gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUNEQTEyMDIwMEQyOEU0RkM2NkZFQ0Q2MEY1QUZDQzU3 RTc5RTY0MjAeFw0yNTAyMTcwMzIxMjhaFw0yNjAyMTYwMzI2MjhaMDMxMTAvBgNV BAMTKDJEQkVGOEE3RjI1QTgzMjlGNzk0RUJFMTBFQjJGNTU0RjRGQTM3MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR3IP6BpzPqPMOB9P5r5sYL8t+ IOT+KRZcFAlzd5oeKRmS1RiYNgvfDM5no3FyhIy17wT5gdSV2irr9xmOeXjKuH2R ceCY/q+WmAoc8D+/fzD9Jj5w5MXp4dZR6qFIeweY5R2XPsf4rVz2wdWz0z+NsxpU /OLW4kuTlB7+beV0Wtt6FKZdem2UbqLAe4xUsdlRoGVRQ2JRzsoAx+buOqIkeXBB k4HKhW+weEbx+VzWsz4YsJ4vTNyHKGYbcjVGul4ssh45FMbx29ANdnqj3xwK6kmt JnXqq+Sepz4lgiE6C7zR0gTxNvbyyKb2d9rA7y3YsJ5pghluLrXpg2MrM+2tAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULb74p/Jagyn3lOvhDrL1VPT6NycwHwYDVR0j BBgwFoAUXNoSAgDSjk/Gb+zWD1r8xX555kIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MmFmODM1Mi1jZDY1LTRkYjctYjBjYi0wNDhiNDVlN2E0YmYvMC81Q0RBMTIwMjAw RDI4RTRGQzY2RkVDRDYwRjVBRkNDNTdFNzlFNjQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUNEQTEyMDIwMEQyOEU0RkM2NkZFQ0Q2MEY1QUZDQzU3RTc5 RTY0Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyYWY4MzUyLWNkNjUtNGRiNy1i MGNiLTA0OGI0NWU3YTRiZi8wLzMxMzAzMzJlMzgzNzJlMzYzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMzM4MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdXQzANBgkqhkiG 9w0BAQsFAAOCAQEAfQqp1Wh/ppDI7PsLN8Io3b22OYlImhCeSMCDrhYz2MNpWVwj F33wBtFEPQykw2yseVMOvWRR/+4ND+KnYNChJQwcTjoxeHucW0H7szSfj2ju8SDL SdEt/TNoNE1d2aVWJLdRMO/Q6jgJDNKVp/OXLs0kpg+FWxd+qMle6TBHxU9m2u8D E9S8gsZItKxHhsw85T92akhF1vSLBDuLAAFab0TdqzO1lUiEyNxPXye+/69lUF5K Lb81udtw2WO6KlK6i0njwfx/MO+TYeh+qBJanWbQwiCIe68GGAhM2yCK3E46x1wD f16DXizRr5lc7DNsjL31GXd5PIYZKKffqsA0BQ== -----END CERTIFICATE-----Generated at Fri Feb 21 11:15:37 2025 by rpki-client