$ rpki-client -vvf repo-rpki.idnic.net/repo/6c4574e2-3b94-4160-8eb8-8f09aad82c2c/0/3130332e3138352e35322e302f32332d3234203d3e20313339343536.roa File: 3130332e3138352e35322e302f32332d3234203d3e20313339343536.roa (raw, json) Hash identifier: haaSHQN0sWh09iak7Jfz/FWXF5gl4JL5L2Lm/giP904= Subject key identifier: 16:07:BE:3E:84:6D:27:ED:FF:E9:F3:F1:BD:FA:51:EE:3F:B7:B0:8C Certificate issuer: /CN=DFE92467290F9E190072585C1045251D6F8B05A3 Certificate serial: 3966B861BA6CFA8C4398BC081F70B037DD00D239 Authority key identifier: DF:E9:24:67:29:0F:9E:19:00:72:58:5C:10:45:25:1D:6F:8B:05:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DFE92467290F9E190072585C1045251D6F8B05A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6c4574e2-3b94-4160-8eb8-8f09aad82c2c/0/3130332e3138352e35322e302f32332d3234203d3e20313339343536.roa Signing time: Tue 07 Jan 2025 05:03:57 +0000 ROA not before: Tue 07 Jan 2025 04:58:57 +0000 ROA not after: Tue 06 Jan 2026 05:03:57 +0000 asID: 139456 IP address blocks: 103.185.52.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6c4574e2-3b94-4160-8eb8-8f09aad82c2c/0/DFE92467290F9E190072585C1045251D6F8B05A3.crl rsync://repo-rpki.idnic.net/repo/6c4574e2-3b94-4160-8eb8-8f09aad82c2c/0/DFE92467290F9E190072585C1045251D6F8B05A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DFE92467290F9E190072585C1045251D6F8B05A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 16:14:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:66:b8:61:ba:6c:fa:8c:43:98:bc:08:1f:70:b0:37:dd:00:d2:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFE92467290F9E190072585C1045251D6F8B05A3 Validity Not Before: Jan 7 04:58:57 2025 GMT Not After : Jan 6 05:03:57 2026 GMT Subject: CN=1607BE3E846D27EDFFE9F3F1BDFA51EE3FB7B08C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d1:65:fd:1d:cb:fd:e8:f9:d4:b3:7f:d1:a3: 1f:6e:80:3e:0b:5e:5e:ba:89:86:c9:dc:0b:36:21: ef:e3:4b:64:37:05:c9:48:07:ac:bd:5b:68:e5:5e: e3:33:51:ad:09:2f:80:63:ad:4e:a3:38:09:a0:af: a3:ac:ce:0c:d7:89:03:0a:b0:59:15:68:fb:07:38: 84:ff:65:5c:d0:c0:79:bc:b5:16:59:7e:bd:9f:07: b0:77:fd:c8:32:1b:04:f0:58:6e:64:51:f7:c7:19: ef:6e:92:8f:a6:82:4b:b6:0c:4e:15:09:19:39:9e: 9a:42:34:f6:c0:81:52:b3:37:2c:5a:e3:92:aa:d9: 4b:e9:ca:28:93:c0:ca:d2:39:a3:94:44:d6:14:45: 32:ef:fb:ee:e5:95:d9:cd:67:c7:dd:e6:3a:60:5d: 2c:36:c3:b9:50:32:67:f1:c7:fb:6c:33:f3:01:2b: ba:c2:de:29:4f:6e:e6:5e:2e:08:72:84:9b:68:8c: 62:45:d8:cc:56:cb:61:ca:79:46:f4:cc:6e:ea:14: 50:01:56:d4:6f:3b:46:0c:37:a0:76:5a:54:a6:1b: 8b:85:65:76:11:0f:f0:05:d6:31:16:4b:9b:b8:5c: b1:31:95:1c:1b:5d:f2:12:6f:db:0b:8b:78:8c:74: bc:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:07:BE:3E:84:6D:27:ED:FF:E9:F3:F1:BD:FA:51:EE:3F:B7:B0:8C X509v3 Authority Key Identifier: keyid:DF:E9:24:67:29:0F:9E:19:00:72:58:5C:10:45:25:1D:6F:8B:05:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6c4574e2-3b94-4160-8eb8-8f09aad82c2c/0/DFE92467290F9E190072585C1045251D6F8B05A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DFE92467290F9E190072585C1045251D6F8B05A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6c4574e2-3b94-4160-8eb8-8f09aad82c2c/0/3130332e3138352e35322e302f32332d3234203d3e20313339343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.185.52.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:4b:63:05:95:57:78:e5:a4:fd:6c:40:a6:db:5f:f5:da:fe: 90:45:86:89:ac:20:a6:b4:9d:26:49:82:c8:cd:b1:74:da:bd: 28:1a:27:67:90:fa:a2:ad:dc:21:e5:1d:f0:0e:a0:b9:7a:44: f0:c9:e6:42:ba:13:52:91:21:37:a7:55:a4:a6:4b:05:96:35: d1:9a:66:54:ca:00:5f:c0:57:1f:39:b8:88:fc:f6:4f:7a:f2: 4d:3e:9e:ec:25:72:68:b5:b9:70:48:8b:1e:37:e4:6a:ac:a7: 0d:fc:b8:9c:b9:1f:4c:5c:2c:f0:a5:6b:cd:1e:c4:e9:11:9e: 4d:ba:32:71:65:a1:52:fd:8f:33:e1:27:df:88:74:06:a1:8c: 6c:34:9f:e5:37:ad:23:fd:e3:54:4a:49:d0:35:29:d3:a6:48: 0c:31:79:60:3d:92:48:29:26:7b:cd:e5:03:91:8f:11:5a:74: 87:de:89:aa:a4:82:0f:9f:92:22:df:03:a5:a6:ba:fe:48:2e: 5c:fd:c8:81:20:47:f0:cc:40:ff:a0:c1:a3:f6:ce:b2:83:e5: b3:3b:d4:88:3a:f9:1e:58:ad:d6:18:16:dc:03:fd:e0:f0:13: 30:60:89:05:7d:f7:20:0d:5f:19:e7:bf:8a:56:69:d7:6a:a9: dc:52:a7:36 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOWa4Ybps+oxDmLwIH3CwN90A0jkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREZFOTI0NjcyOTBGOUUxOTAwNzI1ODVDMTA0NTI1MUQ2 RjhCMDVBMzAeFw0yNTAxMDcwNDU4NTdaFw0yNjAxMDYwNTAzNTdaMDMxMTAvBgNV BAMTKDE2MDdCRTNFODQ2RDI3RURGRkU5RjNGMUJERkE1MUVFM0ZCN0IwOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC40WX9Hcv96PnUs3/Rox9ugD4L Xl66iYbJ3As2Ie/jS2Q3BclIB6y9W2jlXuMzUa0JL4BjrU6jOAmgr6OszgzXiQMK sFkVaPsHOIT/ZVzQwHm8tRZZfr2fB7B3/cgyGwTwWG5kUffHGe9uko+mgku2DE4V CRk5nppCNPbAgVKzNyxa45Kq2UvpyiiTwMrSOaOURNYURTLv++7lldnNZ8fd5jpg XSw2w7lQMmfxx/tsM/MBK7rC3ilPbuZeLghyhJtojGJF2MxWy2HKeUb0zG7qFFAB VtRvO0YMN6B2WlSmG4uFZXYRD/AF1jEWS5u4XLExlRwbXfISb9sLi3iMdLwPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFge+PoRtJ+3/6fPxvfpR7j+3sIwwHwYDVR0j BBgwFoAU3+kkZykPnhkAclhcEEUlHW+LBaMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YzQ1NzRlMi0zYjk0LTQxNjAtOGViOC04ZjA5YWFkODJjMmMvMC9ERkU5MjQ2NzI5 MEY5RTE5MDA3MjU4NUMxMDQ1MjUxRDZGOEIwNUEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREZFOTI0NjcyOTBGOUUxOTAwNzI1ODVDMTA0NTI1MUQ2RjhC MDVBMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjNDU3NGUyLTNiOTQtNDE2MC04 ZWI4LThmMDlhYWQ4MmMyYy8wLzMxMzAzMzJlMzEzODM1MmUzNTMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7k0MA0GCSqG SIb3DQEBCwUAA4IBAQA6S2MFlVd45aT9bECm21/12v6QRYaJrCCmtJ0mSYLIzbF0 2r0oGidnkPqirdwh5R3wDqC5ekTwyeZCuhNSkSE3p1WkpksFljXRmmZUygBfwFcf ObiI/PZPevJNPp7sJXJotblwSIseN+RqrKcN/LicuR9MXCzwpWvNHsTpEZ5NujJx ZaFS/Y8z4SffiHQGoYxsNJ/lN60j/eNUSknQNSnTpkgMMXlgPZJIKSZ7zeUDkY8R WnSH3omqpIIPn5Ii3wOlprr+SC5c/ciBIEfwzED/oMGj9s6yg+WzO9SIOvkeWK3W GBbcA/3g8BMwYIkFffcgDV8Z57+KVmnXaqncUqc2 -----END CERTIFICATE-----Generated at Sun Apr 6 10:55:32 2025 by rpki-client