$ rpki-client -vvf repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/3130332e3232302e32322e302f32342d3234203d3e20313431363037.roa File: 3130332e3232302e32322e302f32342d3234203d3e20313431363037.roa (raw, json) Hash identifier: DN3LfFZiZkFTfv0ow89vnLboqsNTK14mjnN189aXrDs= Subject key identifier: 6B:EE:F8:F1:B4:7F:59:64:B9:A9:CB:55:85:89:93:76:2C:39:E0:D9 Certificate issuer: /CN=771D0AB9C445B28C887FD7BA18DEC515D8BA3862 Certificate serial: 24BA8793F6F193FFEE18B8D84DA6042F3873CEB4 Authority key identifier: 77:1D:0A:B9:C4:45:B2:8C:88:7F:D7:BA:18:DE:C5:15:D8:BA:38:62 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/3130332e3232302e32322e302f32342d3234203d3e20313431363037.roa Signing time: Thu 03 Oct 2024 11:00:00 +0000 ROA not before: Thu 03 Oct 2024 10:55:00 +0000 ROA not after: Thu 02 Oct 2025 11:00:00 +0000 asID: 141607 IP address blocks: 103.220.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.crl rsync://repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 10:42:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:ba:87:93:f6:f1:93:ff:ee:18:b8:d8:4d:a6:04:2f:38:73:ce:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=771D0AB9C445B28C887FD7BA18DEC515D8BA3862 Validity Not Before: Oct 3 10:55:00 2024 GMT Not After : Oct 2 11:00:00 2025 GMT Subject: CN=6BEEF8F1B47F5964B9A9CB55858993762C39E0D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ab:b7:a2:d4:bc:66:b3:1e:44:9a:c3:24:18: 28:2b:b8:02:4b:06:71:07:8b:34:63:42:d4:cd:8a: f2:5b:11:9d:af:58:b9:f1:38:15:ca:f1:13:6b:39: 7b:11:c5:b0:78:db:15:3d:69:e7:a3:97:3d:74:31: a4:f4:de:a9:15:59:6f:18:26:ce:8b:76:5b:3c:fa: 09:33:99:72:9a:be:d3:66:b8:f8:c0:32:9d:73:b1: d3:28:09:1b:1c:86:e0:47:a3:30:54:9a:f7:55:ca: 14:7a:1d:ee:8c:5e:38:e4:08:b7:2c:17:23:e7:5e: 1f:26:cb:3f:0a:58:76:6e:1d:e9:d6:1a:41:46:fe: 3d:47:d4:2c:b8:41:99:b9:38:52:01:26:35:c8:33: 8f:4b:2f:8b:f4:a5:33:e4:7d:f3:28:a6:08:93:69: 9f:a8:e8:11:fd:a1:0d:b3:b8:79:62:ff:04:60:a1: 65:8b:43:e7:d7:fa:38:89:bc:5b:2d:ff:13:e1:b3: 80:4b:95:25:64:b2:16:97:c6:da:a9:12:a7:68:f5: aa:e1:08:c0:05:37:0f:64:7c:6f:b8:3c:e9:f1:65: 94:e8:85:62:c6:c6:04:53:a4:8c:92:d8:48:0c:14: 83:ba:a6:fd:27:76:74:28:2d:f4:af:a8:90:7f:c4: 90:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:EE:F8:F1:B4:7F:59:64:B9:A9:CB:55:85:89:93:76:2C:39:E0:D9 X509v3 Authority Key Identifier: keyid:77:1D:0A:B9:C4:45:B2:8C:88:7F:D7:BA:18:DE:C5:15:D8:BA:38:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/771D0AB9C445B28C887FD7BA18DEC515D8BA3862.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6aad6a3f-6ca0-4669-98f7-6f34837faa62/0/3130332e3232302e32322e302f32342d3234203d3e20313431363037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.220.22.0/24 Signature Algorithm: sha256WithRSAEncryption 67:f8:60:c2:4c:c2:65:02:87:08:26:cc:77:35:52:6a:81:4a: b1:3a:6b:d4:ec:2b:c6:5f:24:bc:dd:f6:2b:50:15:47:aa:82: 80:8a:d0:3b:24:c6:0a:b3:e1:51:13:86:02:66:2c:fa:07:4b: 85:89:ba:a6:43:36:1b:e1:e8:49:1c:cb:6a:7d:05:a4:85:89: d1:a7:21:ff:e8:a7:8f:8d:be:66:b1:02:fa:99:af:7c:3f:74: 80:4d:12:be:c0:8b:8e:10:9b:0f:4f:af:e4:e4:52:0c:10:49: 7e:6c:a5:20:7a:23:96:82:7c:d7:59:02:30:7d:e0:cc:38:59: c6:1b:aa:d1:54:b3:1a:73:a3:ca:99:53:8d:2c:cb:01:30:eb: a1:60:a3:ed:01:9d:cb:e3:81:77:20:cb:ab:68:82:73:7a:9a: 0f:43:f7:46:90:bc:2f:61:3c:94:5b:c6:59:b1:f0:84:a0:18: a9:86:15:b2:f6:f0:b4:f4:ba:5c:13:ce:b5:76:ee:49:cb:fe: df:46:b9:81:9e:fb:13:69:af:af:ef:24:b9:dc:70:02:a8:ff: 09:0d:e3:de:74:59:e2:fb:13:a6:c9:c8:87:5d:80:8f:46:10: d1:c0:cd:60:1c:fe:41:88:21:9c:3a:9c:df:1a:aa:94:71:59: 99:cb:7b:01 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJLqHk/bxk//uGLjYTaYELzhzzrQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzcxRDBBQjlDNDQ1QjI4Qzg4N0ZEN0JBMThERUM1MTVE OEJBMzg2MjAeFw0yNDEwMDMxMDU1MDBaFw0yNTEwMDIxMTAwMDBaMDMxMTAvBgNV BAMTKDZCRUVGOEYxQjQ3RjU5NjRCOUE5Q0I1NTg1ODk5Mzc2MkMzOUUwRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4q7ei1Lxmsx5EmsMkGCgruAJL BnEHizRjQtTNivJbEZ2vWLnxOBXK8RNrOXsRxbB42xU9aeejlz10MaT03qkVWW8Y Js6Ldls8+gkzmXKavtNmuPjAMp1zsdMoCRschuBHozBUmvdVyhR6He6MXjjkCLcs FyPnXh8myz8KWHZuHenWGkFG/j1H1Cy4QZm5OFIBJjXIM49LL4v0pTPkffMopgiT aZ+o6BH9oQ2zuHli/wRgoWWLQ+fX+jiJvFst/xPhs4BLlSVkshaXxtqpEqdo9arh CMAFNw9kfG+4POnxZZTohWLGxgRTpIyS2EgMFIO6pv0ndnQoLfSvqJB/xJCnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUa+748bR/WWS5qctVhYmTdiw54NkwHwYDVR0j BBgwFoAUdx0KucRFsoyIf9e6GN7FFdi6OGIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YWFkNmEzZi02Y2EwLTQ2NjktOThmNy02ZjM0ODM3ZmFhNjIvMC83NzFEMEFCOUM0 NDVCMjhDODg3RkQ3QkExOERFQzUxNUQ4QkEzODYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzcxRDBBQjlDNDQ1QjI4Qzg4N0ZEN0JBMThERUM1MTVEOEJB Mzg2Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZhYWQ2YTNmLTZjYTAtNDY2OS05 OGY3LTZmMzQ4MzdmYWE2Mi8wLzMxMzAzMzJlMzIzMjMwMmUzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9wWMA0GCSqG SIb3DQEBCwUAA4IBAQBn+GDCTMJlAocIJsx3NVJqgUqxOmvU7CvGXyS83fYrUBVH qoKAitA7JMYKs+FRE4YCZiz6B0uFibqmQzYb4ehJHMtqfQWkhYnRpyH/6KePjb5m sQL6ma98P3SATRK+wIuOEJsPT6/k5FIMEEl+bKUgeiOWgnzXWQIwfeDMOFnGG6rR VLMac6PKmVONLMsBMOuhYKPtAZ3L44F3IMuraIJzepoPQ/dGkLwvYTyUW8ZZsfCE oBiphhWy9vC09LpcE861du5Jy/7fRrmBnvsTaa+v7yS53HACqP8JDePedFni+xOm yciHXYCPRhDRwM1gHP5BiCGcOpzfGqqUcVmZy3sB -----END CERTIFICATE-----Generated at Tue Mar 11 05:01:08 2025 by rpki-client