$ rpki-client -vvf repo-rpki.idnic.net/repo/654607f0-1701-49b1-91ff-b1bed5cbded1/0/3130332e32322e3231362e302f32342d3234203d3e20313530323631.roa File: 3130332e32322e3231362e302f32342d3234203d3e20313530323631.roa (raw, json) Hash identifier: X1fxET2zqe42Jssm0L2zWkWMpofWKObR83jJ1RUDeIA= Subject key identifier: 08:6A:F4:3E:A1:B9:6B:87:59:02:9A:DB:19:A4:18:CE:94:CC:33:9D Certificate issuer: /CN=755B61748263D4DD472C69CA7F1847254B03EBBC Certificate serial: 200FEC7577C6F04F2467C06923E1A667FF4B4BB3 Authority key identifier: 75:5B:61:74:82:63:D4:DD:47:2C:69:CA:7F:18:47:25:4B:03:EB:BC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/755B61748263D4DD472C69CA7F1847254B03EBBC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/654607f0-1701-49b1-91ff-b1bed5cbded1/0/3130332e32322e3231362e302f32342d3234203d3e20313530323631.roa Signing time: Fri 08 Nov 2024 04:02:24 +0000 ROA not before: Fri 08 Nov 2024 03:57:24 +0000 ROA not after: Fri 07 Nov 2025 04:02:24 +0000 asID: 150261 IP address blocks: 103.22.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/654607f0-1701-49b1-91ff-b1bed5cbded1/0/755B61748263D4DD472C69CA7F1847254B03EBBC.crl rsync://repo-rpki.idnic.net/repo/654607f0-1701-49b1-91ff-b1bed5cbded1/0/755B61748263D4DD472C69CA7F1847254B03EBBC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/755B61748263D4DD472C69CA7F1847254B03EBBC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Feb 2025 00:27:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:0f:ec:75:77:c6:f0:4f:24:67:c0:69:23:e1:a6:67:ff:4b:4b:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=755B61748263D4DD472C69CA7F1847254B03EBBC Validity Not Before: Nov 8 03:57:24 2024 GMT Not After : Nov 7 04:02:24 2025 GMT Subject: CN=086AF43EA1B96B8759029ADB19A418CE94CC339D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ce:84:ac:ae:4b:fa:e5:f0:db:01:b7:ed:64: 04:ed:22:fd:40:50:ea:87:82:20:d6:53:ef:a2:84: ee:c2:d9:57:50:ef:6c:77:be:84:08:70:f7:a7:d0: a0:53:cc:9e:27:5a:d4:c8:80:fe:76:0a:63:a6:84: c3:df:a0:b5:c8:fe:d9:01:79:a2:bc:ab:e1:82:12: da:5f:84:e1:80:99:57:ad:b3:8b:71:c2:99:c9:b6: 95:df:3b:ce:eb:66:70:27:15:99:ff:0c:2f:b0:af: 9a:90:6c:0f:fd:d8:71:0a:bc:69:ef:d7:21:b9:f6: 60:2c:0b:f1:7b:08:44:7c:7e:a5:bf:19:d9:79:b9: 98:0e:12:c3:90:39:ca:84:31:37:55:91:9e:bb:0f: 13:40:71:a9:52:e4:8d:ea:cd:63:64:a2:18:9b:7d: e9:33:af:da:22:e4:2c:4b:ee:c5:cb:7d:91:ba:7a: 6b:d3:d7:a0:ee:2a:14:ed:1d:ec:1e:e6:0c:d9:eb: ec:90:da:6b:1d:d1:d0:4a:1f:20:42:42:e9:cf:d0: 78:29:76:cd:ad:e9:0a:38:42:29:ed:4a:e3:35:e1: 9f:09:3d:7d:43:5b:44:eb:f5:26:d6:dd:5f:98:e4: ae:27:7f:ac:10:71:1c:86:be:c2:bc:61:f9:4b:2e: f0:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:6A:F4:3E:A1:B9:6B:87:59:02:9A:DB:19:A4:18:CE:94:CC:33:9D X509v3 Authority Key Identifier: keyid:75:5B:61:74:82:63:D4:DD:47:2C:69:CA:7F:18:47:25:4B:03:EB:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/654607f0-1701-49b1-91ff-b1bed5cbded1/0/755B61748263D4DD472C69CA7F1847254B03EBBC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/755B61748263D4DD472C69CA7F1847254B03EBBC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/654607f0-1701-49b1-91ff-b1bed5cbded1/0/3130332e32322e3231362e302f32342d3234203d3e20313530323631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.22.216.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:a7:a9:12:9c:56:a9:ab:4c:7e:31:2f:7c:e2:d4:3e:fd:95: be:a0:93:ed:a5:f6:a7:40:66:89:2a:70:bf:06:a1:18:6e:a6: 8d:c1:fb:73:42:05:cd:20:ed:0b:1c:f6:58:20:79:76:5a:57: c1:c9:94:8f:5a:de:e7:fe:84:3c:80:c6:b0:52:f6:2b:e5:a0: 7d:4b:a8:79:5c:8f:aa:8c:62:f7:49:2f:57:3b:21:d9:d4:f3: 24:bf:77:85:0f:f7:39:62:a0:97:dc:af:dd:c2:60:ff:b0:57: 61:37:09:37:70:af:ff:a1:41:a4:73:ec:b5:fc:a9:2f:ff:38: 3d:2d:6f:8f:3d:6a:eb:34:b2:6a:f7:fe:4d:63:b0:6c:58:94: 43:ad:ce:70:fc:b3:25:b2:c3:c2:94:08:83:23:cc:06:ed:ec: d3:d8:04:90:4f:a3:0c:e5:28:6e:a5:53:36:4c:fb:e2:3f:fb: 60:58:0e:ac:ed:e5:ba:95:25:89:d8:29:93:d0:e8:c1:7a:fc: 5d:96:75:cc:63:42:17:ca:f3:85:ad:6b:c9:8c:2b:3d:d8:a3: be:5b:97:f3:da:64:cd:53:ee:d3:bf:5f:23:a6:42:79:b9:93: 95:e3:fb:58:8e:a7:95:01:bd:2c:cd:0d:47:9b:fc:e7:52:47: 04:63:7c:9a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIA/sdXfG8E8kZ8BpI+GmZ/9LS7MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzU1QjYxNzQ4MjYzRDRERDQ3MkM2OUNBN0YxODQ3MjU0 QjAzRUJCQzAeFw0yNDExMDgwMzU3MjRaFw0yNTExMDcwNDAyMjRaMDMxMTAvBgNV BAMTKDA4NkFGNDNFQTFCOTZCODc1OTAyOUFEQjE5QTQxOENFOTRDQzMzOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0zoSsrkv65fDbAbftZATtIv1A UOqHgiDWU++ihO7C2VdQ72x3voQIcPen0KBTzJ4nWtTIgP52CmOmhMPfoLXI/tkB eaK8q+GCEtpfhOGAmVets4txwpnJtpXfO87rZnAnFZn/DC+wr5qQbA/92HEKvGnv 1yG59mAsC/F7CER8fqW/Gdl5uZgOEsOQOcqEMTdVkZ67DxNAcalS5I3qzWNkohib fekzr9oi5CxL7sXLfZG6emvT16DuKhTtHewe5gzZ6+yQ2msd0dBKHyBCQunP0Hgp ds2t6Qo4QintSuM14Z8JPX1DW0Tr9SbW3V+Y5K4nf6wQcRyGvsK8YflLLvCPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCGr0PqG5a4dZAprbGaQYzpTMM50wHwYDVR0j BBgwFoAUdVthdIJj1N1HLGnKfxhHJUsD67wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NTQ2MDdmMC0xNzAxLTQ5YjEtOTFmZi1iMWJlZDVjYmRlZDEvMC83NTVCNjE3NDgy NjNENERENDcyQzY5Q0E3RjE4NDcyNTRCMDNFQkJDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzU1QjYxNzQ4MjYzRDRERDQ3MkM2OUNBN0YxODQ3MjU0QjAz RUJCQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1NDYwN2YwLTE3MDEtNDliMS05 MWZmLWIxYmVkNWNiZGVkMS8wLzMxMzAzMzJlMzIzMjJlMzIzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzIzNjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxbYMA0GCSqG SIb3DQEBCwUAA4IBAQB7p6kSnFapq0x+MS984tQ+/ZW+oJPtpfanQGaJKnC/BqEY bqaNwftzQgXNIO0LHPZYIHl2WlfByZSPWt7n/oQ8gMawUvYr5aB9S6h5XI+qjGL3 SS9XOyHZ1PMkv3eFD/c5YqCX3K/dwmD/sFdhNwk3cK//oUGkc+y1/Kkv/zg9LW+P PWrrNLJq9/5NY7BsWJRDrc5w/LMlssPClAiDI8wG7ezT2ASQT6MM5ShupVM2TPvi P/tgWA6s7eW6lSWJ2CmT0OjBevxdlnXMY0IXyvOFrWvJjCs92KO+W5fz2mTNU+7T v18jpkJ5uZOV4/tYjqeVAb0szQ1Hm/znUkcEY3ya -----END CERTIFICATE-----Generated at Fri Feb 21 13:24:35 2025 by rpki-client