$ rpki-client -vvf repo-rpki.idnic.net/repo/654607f0-1701-49b1-91ff-b1bed5cbded1/0/3130332e32322e3231362e302f32332d3233203d3e20313530323631.roa File: 3130332e32322e3231362e302f32332d3233203d3e20313530323631.roa (raw, json) Hash identifier: DAvm8lRIaAY0XIz4SwbtJvL9yWurm8Bc/AdxnRRoc6w= Subject key identifier: C4:58:5C:F0:8C:8D:4D:2E:C8:34:83:65:22:21:EF:92:54:55:96:62 Certificate issuer: /CN=755B61748263D4DD472C69CA7F1847254B03EBBC Certificate serial: 0AA02C0AE6C09555CCAFE8A50B2A24F5F71C6BBC Authority key identifier: 75:5B:61:74:82:63:D4:DD:47:2C:69:CA:7F:18:47:25:4B:03:EB:BC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/755B61748263D4DD472C69CA7F1847254B03EBBC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/654607f0-1701-49b1-91ff-b1bed5cbded1/0/3130332e32322e3231362e302f32332d3233203d3e20313530323631.roa Signing time: Fri 08 Nov 2024 03:02:25 +0000 ROA not before: Fri 08 Nov 2024 02:57:25 +0000 ROA not after: Fri 07 Nov 2025 03:02:25 +0000 asID: 150261 IP address blocks: 103.22.216.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/654607f0-1701-49b1-91ff-b1bed5cbded1/0/755B61748263D4DD472C69CA7F1847254B03EBBC.crl rsync://repo-rpki.idnic.net/repo/654607f0-1701-49b1-91ff-b1bed5cbded1/0/755B61748263D4DD472C69CA7F1847254B03EBBC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/755B61748263D4DD472C69CA7F1847254B03EBBC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Feb 2025 00:27:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:a0:2c:0a:e6:c0:95:55:cc:af:e8:a5:0b:2a:24:f5:f7:1c:6b:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=755B61748263D4DD472C69CA7F1847254B03EBBC Validity Not Before: Nov 8 02:57:25 2024 GMT Not After : Nov 7 03:02:25 2025 GMT Subject: CN=C4585CF08C8D4D2EC83483652221EF9254559662 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d8:85:fb:ca:4b:6c:9c:84:22:50:79:5c:18: ec:1a:64:32:e0:b9:e7:91:96:da:0e:68:8f:4c:1f: 8d:cc:0a:47:8c:fd:2d:35:56:73:59:ef:b1:49:9f: 04:62:4e:2a:c6:aa:83:28:77:13:79:9b:a5:ad:9b: ae:4d:d9:fd:55:d0:89:01:90:77:38:1a:4b:f5:2b: be:a6:96:6a:33:b4:9c:f6:e5:b8:99:90:69:28:c5: 15:5d:70:9a:ec:5b:aa:57:dc:05:52:fa:41:52:3f: 3b:70:d3:50:e2:30:0f:05:ed:5b:22:e5:42:e7:34: 0b:9b:9b:d4:ac:bb:86:e4:a9:4e:91:d6:c4:ee:fd: 69:d5:0a:32:3c:72:72:57:86:63:49:38:4a:86:1e: b6:40:7c:4f:7f:e1:f0:c7:0e:01:c1:6e:ec:12:99: e9:52:12:e0:b0:41:d6:2c:92:e6:b1:33:69:15:4a: d1:7a:64:be:90:f6:c9:cc:ef:07:82:22:aa:32:7e: 52:0e:7f:00:52:38:70:7d:6c:2e:c6:bb:a2:e9:46: 3b:2f:f2:99:dd:ff:c0:10:8d:42:42:3a:84:e8:93: b2:dc:92:85:13:4d:74:4a:57:99:3c:b0:8c:fd:82: 32:94:49:f3:65:6f:f5:66:16:c4:ba:90:a7:12:36: 40:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:58:5C:F0:8C:8D:4D:2E:C8:34:83:65:22:21:EF:92:54:55:96:62 X509v3 Authority Key Identifier: keyid:75:5B:61:74:82:63:D4:DD:47:2C:69:CA:7F:18:47:25:4B:03:EB:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/654607f0-1701-49b1-91ff-b1bed5cbded1/0/755B61748263D4DD472C69CA7F1847254B03EBBC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/755B61748263D4DD472C69CA7F1847254B03EBBC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/654607f0-1701-49b1-91ff-b1bed5cbded1/0/3130332e32322e3231362e302f32332d3233203d3e20313530323631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.22.216.0/23 Signature Algorithm: sha256WithRSAEncryption 22:e0:53:e5:65:2b:dc:4b:11:f6:5f:be:12:d4:0f:63:f1:de: aa:a3:76:f5:d8:83:b5:e0:6f:b1:ea:2e:d4:3d:ad:cb:04:12: fe:71:69:9d:b4:f8:5a:02:6b:34:4b:60:9b:fc:99:e0:0e:be: cd:8a:79:07:29:c8:2c:02:4e:ab:a4:43:f7:c4:0b:06:52:be: 28:33:87:7c:b7:15:7d:50:16:08:de:d4:f3:12:40:41:c1:6c: 7f:ee:e9:f6:59:ad:73:bf:4a:37:01:30:12:e1:8e:35:e8:6a: be:06:26:26:dc:bf:73:08:38:39:b0:dc:e6:ad:66:55:66:d3: a2:6f:64:57:8a:35:b6:ba:b2:a2:6d:d4:8d:b1:03:70:ad:28: 05:f6:5b:dd:b7:14:99:90:d1:3e:4f:7a:de:e8:93:67:ed:32: e3:2c:ab:8d:ab:cc:90:2a:c1:44:88:e4:ef:ff:12:f7:05:05: aa:a7:cf:4e:a8:dd:f0:08:50:cf:54:a4:ae:0a:87:5d:af:10: 87:07:9a:ff:51:74:f5:24:47:43:62:13:35:56:92:d7:d4:ef: 09:a3:b0:85:85:38:4d:56:85:9c:a6:a6:f6:56:7a:a1:3d:70: 23:5b:58:b6:90:40:fc:68:ab:b4:b4:f8:bb:a3:5f:d6:a6:b8: d9:34:08:a9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCqAsCubAlVXMr+ilCyok9fcca7wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzU1QjYxNzQ4MjYzRDRERDQ3MkM2OUNBN0YxODQ3MjU0 QjAzRUJCQzAeFw0yNDExMDgwMjU3MjVaFw0yNTExMDcwMzAyMjVaMDMxMTAvBgNV BAMTKEM0NTg1Q0YwOEM4RDREMkVDODM0ODM2NTIyMjFFRjkyNTQ1NTk2NjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC42IX7yktsnIQiUHlcGOwaZDLg ueeRltoOaI9MH43MCkeM/S01VnNZ77FJnwRiTirGqoModxN5m6Wtm65N2f1V0IkB kHc4Gkv1K76mlmoztJz25biZkGkoxRVdcJrsW6pX3AVS+kFSPztw01DiMA8F7Vsi 5ULnNAubm9Ssu4bkqU6R1sTu/WnVCjI8cnJXhmNJOEqGHrZAfE9/4fDHDgHBbuwS melSEuCwQdYskuaxM2kVStF6ZL6Q9snM7weCIqoyflIOfwBSOHB9bC7Gu6LpRjsv 8pnd/8AQjUJCOoTok7LckoUTTXRKV5k8sIz9gjKUSfNlb/VmFsS6kKcSNkAnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxFhc8IyNTS7ININlIiHvklRVlmIwHwYDVR0j BBgwFoAUdVthdIJj1N1HLGnKfxhHJUsD67wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NTQ2MDdmMC0xNzAxLTQ5YjEtOTFmZi1iMWJlZDVjYmRlZDEvMC83NTVCNjE3NDgy NjNENERENDcyQzY5Q0E3RjE4NDcyNTRCMDNFQkJDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzU1QjYxNzQ4MjYzRDRERDQ3MkM2OUNBN0YxODQ3MjU0QjAz RUJCQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1NDYwN2YwLTE3MDEtNDliMS05 MWZmLWIxYmVkNWNiZGVkMS8wLzMxMzAzMzJlMzIzMjJlMzIzMTM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMwMzIzNjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZxbYMA0GCSqG SIb3DQEBCwUAA4IBAQAi4FPlZSvcSxH2X74S1A9j8d6qo3b12IO14G+x6i7UPa3L BBL+cWmdtPhaAms0S2Cb/JngDr7NinkHKcgsAk6rpEP3xAsGUr4oM4d8txV9UBYI 3tTzEkBBwWx/7un2Wa1zv0o3ATAS4Y416Gq+BiYm3L9zCDg5sNzmrWZVZtOib2RX ijW2urKibdSNsQNwrSgF9lvdtxSZkNE+T3re6JNn7TLjLKuNq8yQKsFEiOTv/xL3 BQWqp89OqN3wCFDPVKSuCoddrxCHB5r/UXT1JEdDYhM1VpLX1O8Jo7CFhThNVoWc pqb2VnqhPXAjW1i2kED8aKu0tPi7o1/WprjZNAip -----END CERTIFICATE-----Generated at Fri Feb 21 11:11:17 2025 by rpki-client