$ rpki-client -vvf repo-rpki.idnic.net/repo/68466889-c1ef-4410-ad9c-306c09e1be06/0/3130332e36372e34392e302f32342d3234203d3e20313431363732.roa File: 3130332e36372e34392e302f32342d3234203d3e20313431363732.roa (raw, json) Hash identifier: SqLVtRzYDgsE8xtvHEkXfWSJ3eq3r1xvCOHzgU8XSVA= Subject key identifier: 67:10:E4:B8:A5:61:4C:C5:CC:82:9F:84:A8:57:2D:ED:BA:AD:64:9D Certificate issuer: /CN=FE47963FB6E13EFC318606E3CA31013421827343 Certificate serial: 5F0979E9C02837024E088D90831C14FB7F3E0DEA Authority key identifier: FE:47:96:3F:B6:E1:3E:FC:31:86:06:E3:CA:31:01:34:21:82:73:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE47963FB6E13EFC318606E3CA31013421827343.cer Subject info access: rsync://repo-rpki.idnic.net/repo/68466889-c1ef-4410-ad9c-306c09e1be06/0/3130332e36372e34392e302f32342d3234203d3e20313431363732.roa Signing time: Wed 27 Nov 2024 07:00:01 +0000 ROA not before: Wed 27 Nov 2024 06:55:01 +0000 ROA not after: Wed 26 Nov 2025 07:00:01 +0000 asID: 141672 IP address blocks: 103.67.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/68466889-c1ef-4410-ad9c-306c09e1be06/0/FE47963FB6E13EFC318606E3CA31013421827343.crl rsync://repo-rpki.idnic.net/repo/68466889-c1ef-4410-ad9c-306c09e1be06/0/FE47963FB6E13EFC318606E3CA31013421827343.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE47963FB6E13EFC318606E3CA31013421827343.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 12:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:09:79:e9:c0:28:37:02:4e:08:8d:90:83:1c:14:fb:7f:3e:0d:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FE47963FB6E13EFC318606E3CA31013421827343 Validity Not Before: Nov 27 06:55:01 2024 GMT Not After : Nov 26 07:00:01 2025 GMT Subject: CN=6710E4B8A5614CC5CC829F84A8572DEDBAAD649D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:6a:62:0b:f0:b6:37:dc:78:a1:c8:3a:99:00: fe:46:14:50:81:90:f0:81:9d:af:ca:ce:59:c0:2e: ff:de:01:74:0c:d7:5b:5a:83:40:71:55:0f:e5:31: b1:5d:6e:32:10:44:ed:89:7c:c0:83:a4:67:30:1d: 36:3c:e8:6d:ab:e0:d7:da:29:c2:b3:9f:98:26:3a: 7c:c3:e5:4f:90:ac:2a:47:ad:b3:f2:44:d6:a5:f5: 73:ea:76:80:14:c1:b0:21:e1:0c:82:52:6f:8b:4d: 7e:72:1c:9a:19:16:b0:0f:68:1b:11:b4:b2:9c:63: 26:10:cc:e9:4f:3a:7e:40:74:04:8a:dd:f2:1a:72: c9:18:37:59:0f:e3:ad:d4:26:19:bd:3e:f3:6e:eb: 26:11:6a:3d:e4:df:e0:50:a5:ad:b4:fb:b0:10:63: 45:3f:67:fe:7a:90:69:79:35:75:1a:d8:36:68:32: 6d:8d:2f:b2:e2:80:21:ed:fa:dd:0d:c9:38:1d:2a: fb:ee:23:ca:f1:87:19:2a:df:54:8d:02:2b:68:01: 4a:58:ff:1e:b8:88:72:75:a6:34:17:08:ef:66:1b: 76:62:01:77:f4:78:78:da:46:53:1d:f7:12:1d:35: 0e:3d:cd:2b:fd:0e:db:6a:da:41:49:4c:94:40:87: 29:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:10:E4:B8:A5:61:4C:C5:CC:82:9F:84:A8:57:2D:ED:BA:AD:64:9D X509v3 Authority Key Identifier: keyid:FE:47:96:3F:B6:E1:3E:FC:31:86:06:E3:CA:31:01:34:21:82:73:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/68466889-c1ef-4410-ad9c-306c09e1be06/0/FE47963FB6E13EFC318606E3CA31013421827343.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE47963FB6E13EFC318606E3CA31013421827343.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/68466889-c1ef-4410-ad9c-306c09e1be06/0/3130332e36372e34392e302f32342d3234203d3e20313431363732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.67.49.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:ea:06:a9:8b:40:15:8e:4b:76:ed:e8:2c:70:f9:19:78:21: 35:3a:54:22:9f:65:8a:6d:77:7b:4d:63:06:6e:89:70:4b:b8: 7a:f5:ca:92:cf:cd:21:8c:80:2a:96:d8:7c:d7:26:e0:22:48: d4:de:24:28:5c:f8:e2:af:ba:c8:3d:4e:e5:0e:6e:bd:34:01: fd:b9:e4:f2:b4:7d:c2:a2:d5:a7:54:d2:d8:d5:f2:47:40:6a: 99:5d:ca:1d:c3:65:b4:09:fc:d4:17:f7:e8:31:e8:7b:09:00: 8d:f6:fb:87:99:e8:4c:2b:74:33:83:f0:78:fe:99:9d:40:0d: d3:78:80:3e:71:ad:88:91:99:65:63:69:79:e2:d8:1d:37:6a: ec:0f:4d:c9:f5:cc:a1:11:75:24:fd:8b:b3:eb:e9:9d:f5:24: 04:01:4c:b4:8c:eb:43:32:72:f6:8b:bc:53:41:ab:3c:1a:f6: 7c:b9:28:be:7a:83:c1:63:42:b1:ae:f1:2b:8f:43:bb:a7:98: 53:87:5a:1f:9a:f6:03:7e:d1:d6:1b:d9:56:46:9c:d5:d8:53: 4e:8f:8e:38:ce:d6:4b:cd:ae:21:73:4c:1c:55:1d:5a:49:82: cd:cf:de:aa:59:68:c3:8a:8f:02:90:37:9c:11:a0:95:c9:a2: ba:1f:e4:6b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXwl56cAoNwJOCI2QgxwU+38+DeowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkU0Nzk2M0ZCNkUxM0VGQzMxODYwNkUzQ0EzMTAxMzQy MTgyNzM0MzAeFw0yNDExMjcwNjU1MDFaFw0yNTExMjYwNzAwMDFaMDMxMTAvBgNV BAMTKDY3MTBFNEI4QTU2MTRDQzVDQzgyOUY4NEE4NTcyREVEQkFBRDY0OUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmamIL8LY33HihyDqZAP5GFFCB kPCBna/KzlnALv/eAXQM11tag0BxVQ/lMbFdbjIQRO2JfMCDpGcwHTY86G2r4Nfa KcKzn5gmOnzD5U+QrCpHrbPyRNal9XPqdoAUwbAh4QyCUm+LTX5yHJoZFrAPaBsR tLKcYyYQzOlPOn5AdASK3fIacskYN1kP463UJhm9PvNu6yYRaj3k3+BQpa20+7AQ Y0U/Z/56kGl5NXUa2DZoMm2NL7LigCHt+t0NyTgdKvvuI8rxhxkq31SNAitoAUpY /x64iHJ1pjQXCO9mG3ZiAXf0eHjaRlMd9xIdNQ49zSv9Dttq2kFJTJRAhynrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZxDkuKVhTMXMgp+EqFct7bqtZJ0wHwYDVR0j BBgwFoAU/keWP7bhPvwxhgbjyjEBNCGCc0MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ODQ2Njg4OS1jMWVmLTQ0MTAtYWQ5Yy0zMDZjMDllMWJlMDYvMC9GRTQ3OTYzRkI2 RTEzRUZDMzE4NjA2RTNDQTMxMDEzNDIxODI3MzQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkU0Nzk2M0ZCNkUxM0VGQzMxODYwNkUzQ0EzMTAxMzQyMTgy NzM0My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY4NDY2ODg5LWMxZWYtNDQxMC1h ZDljLTMwNmMwOWUxYmUwNi8wLzMxMzAzMzJlMzYzNzJlMzQzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM2MzczMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdDMTANBgkqhkiG 9w0BAQsFAAOCAQEALuoGqYtAFY5Ldu3oLHD5GXghNTpUIp9lim13e01jBm6JcEu4 evXKks/NIYyAKpbYfNcm4CJI1N4kKFz44q+6yD1O5Q5uvTQB/bnk8rR9wqLVp1TS 2NXyR0BqmV3KHcNltAn81Bf36DHoewkAjfb7h5noTCt0M4PweP6ZnUAN03iAPnGt iJGZZWNpeeLYHTdq7A9NyfXMoRF1JP2Ls+vpnfUkBAFMtIzrQzJy9ou8U0GrPBr2 fLkovnqDwWNCsa7xK49Du6eYU4daH5r2A37R1hvZVkac1dhTTo+OOM7WS82uIXNM HFUdWkmCzc/eqllow4qPApA3nBGglcmiuh/kaw== -----END CERTIFICATE-----Generated at Fri Feb 21 11:09:10 2025 by rpki-client