$ rpki-client -vvf repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3130332e3130392e3132372e302f32342d3234203d3e20313337333136.roa File: 3130332e3130392e3132372e302f32342d3234203d3e20313337333136.roa (raw, json) Hash identifier: WHQ4InzPEKwHEU3S2bTbYtsLTys6sVSh90qgLtCI8P8= Subject key identifier: 35:32:0F:D2:24:C3:08:83:46:AF:CB:9A:CE:A6:72:16:D5:D1:4A:DA Certificate issuer: /CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D Certificate serial: 71DBAA8B5BB321E78D11163E865B4EE7EE06D82C Authority key identifier: 7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3130332e3130392e3132372e302f32342d3234203d3e20313337333136.roa Signing time: Fri 16 Aug 2024 15:00:01 +0000 ROA not before: Fri 16 Aug 2024 14:55:01 +0000 ROA not after: Fri 15 Aug 2025 15:00:01 +0000 asID: 137316 IP address blocks: 103.109.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 00:31:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:db:aa:8b:5b:b3:21:e7:8d:11:16:3e:86:5b:4e:e7:ee:06:d8:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D Validity Not Before: Aug 16 14:55:01 2024 GMT Not After : Aug 15 15:00:01 2025 GMT Subject: CN=35320FD224C3088346AFCB9ACEA67216D5D14ADA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:22:65:74:96:9e:cf:2f:49:0e:17:24:f6:f6: 5d:e8:fe:db:04:d6:8c:74:88:ea:c5:2e:23:17:41: 5e:61:6d:80:57:6d:bd:b4:46:19:ea:fa:13:03:68: bd:2b:c3:57:3c:60:6c:36:4c:78:96:b0:26:d9:e6: 9c:1c:43:27:b8:47:fe:b0:a8:5d:6d:c2:2f:3d:c2: 8e:e6:e3:99:46:be:da:78:37:93:e4:b8:46:76:39: d8:88:3f:1f:29:8b:55:a4:51:1e:8e:ef:6b:7e:99: 52:67:db:0e:22:37:60:e0:58:77:6d:eb:39:ac:8d: 06:43:be:05:ea:8e:2e:20:d8:d1:7a:72:fa:f5:ec: 20:8e:f0:b6:e2:c0:64:bb:1b:61:06:8c:91:40:a1: ed:81:1c:3d:c5:b6:4f:9e:ed:58:82:d3:9d:06:f0: 73:b3:8f:de:65:d5:a1:77:79:0f:da:8e:14:2c:48: 6b:3d:54:64:34:75:45:32:b6:ff:c3:cb:62:f2:8f: f1:2a:26:25:ed:7d:f6:60:83:37:f1:85:7d:c5:35: e6:4f:04:4e:07:94:64:ca:30:ed:f7:52:8e:b1:33: 10:20:76:0c:f3:43:6b:c3:6d:b1:c8:15:ea:c5:7a: 1b:28:55:a9:8d:2c:03:b7:b4:d1:e4:f4:a0:fa:65: cb:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:32:0F:D2:24:C3:08:83:46:AF:CB:9A:CE:A6:72:16:D5:D1:4A:DA X509v3 Authority Key Identifier: keyid:7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3130332e3130392e3132372e302f32342d3234203d3e20313337333136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.109.127.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:52:94:6c:2e:00:0d:0b:c7:20:4c:5b:bc:41:3f:a6:01:02: 0e:d5:fe:1b:3f:51:28:d6:d3:c2:c2:af:70:18:34:7c:a1:96: d2:0c:a9:c6:ba:6d:40:f3:1b:cf:cc:68:8d:6e:f1:4a:5e:07: ac:20:f7:06:cc:1a:6b:5a:89:34:c6:67:9a:f7:f1:19:be:ec: a5:be:98:a8:fa:c3:56:68:28:dc:d6:1f:4b:47:12:b2:0f:2d: 31:71:6d:6f:8d:d9:11:fa:7c:72:34:1e:4a:60:b4:d2:39:14: 4a:fe:19:d5:b6:31:18:21:ca:67:73:33:cf:7b:90:32:bc:f9: c3:a0:f1:76:c0:30:d9:bb:fa:ae:c2:78:12:48:f8:69:f4:a4: 44:96:15:5c:66:90:ca:40:8a:3c:aa:fe:c6:17:2c:45:e3:26: 70:ea:cf:63:1d:36:25:98:d7:42:79:78:c0:25:35:ea:6d:a9: 8c:5f:76:b1:35:56:84:9a:98:fd:c7:bf:d2:66:dc:61:61:11: 06:8d:ec:94:97:03:85:0b:b2:85:64:8f:04:de:10:5d:5c:1e: 5a:c9:ad:5d:6e:17:f7:e3:8d:95:0c:9d:9a:14:c3:a8:ba:ec: 32:6d:47:12:13:be:3f:57:62:2d:fa:42:c5:b7:89:f9:9b:03: 76:75:a0:0f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcduqi1uzIeeNERY+hltO5+4G2CwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0IzNTgzNEE0NzA0QzdFRDg1RDYyMjEyRkM2MkM0NkZB NUEwNjY2RDAeFw0yNDA4MTYxNDU1MDFaFw0yNTA4MTUxNTAwMDFaMDMxMTAvBgNV BAMTKDM1MzIwRkQyMjRDMzA4ODM0NkFGQ0I5QUNFQTY3MjE2RDVEMTRBREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsImV0lp7PL0kOFyT29l3o/tsE 1ox0iOrFLiMXQV5hbYBXbb20Rhnq+hMDaL0rw1c8YGw2THiWsCbZ5pwcQye4R/6w qF1twi89wo7m45lGvtp4N5PkuEZ2OdiIPx8pi1WkUR6O72t+mVJn2w4iN2DgWHdt 6zmsjQZDvgXqji4g2NF6cvr17CCO8LbiwGS7G2EGjJFAoe2BHD3Ftk+e7ViC050G 8HOzj95l1aF3eQ/ajhQsSGs9VGQ0dUUytv/Dy2Lyj/EqJiXtffZggzfxhX3FNeZP BE4HlGTKMO33Uo6xMxAgdgzzQ2vDbbHIFerFehsoVamNLAO3tNHk9KD6ZctjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUNTIP0iTDCINGr8uazqZyFtXRStowHwYDVR0j BBgwFoAUezWDSkcEx+2F1iIS/GLEb6WgZm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 Y2M0NjJhNS04Zjc0LTQyYWYtODgzYi01ZTg5ZWU1ZjJkZjMvMC83QjM1ODM0QTQ3 MDRDN0VEODVENjIyMTJGQzYyQzQ2RkE1QTA2NjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0IzNTgzNEE0NzA0QzdFRDg1RDYyMjEyRkM2MkM0NkZBNUEw NjY2RC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjYzQ2MmE1LThmNzQtNDJhZi04 ODNiLTVlODllZTVmMmRmMy8wLzMxMzAzMzJlMzEzMDM5MmUzMTMyMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMxMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnbX8wDQYJ KoZIhvcNAQELBQADggEBAA9SlGwuAA0LxyBMW7xBP6YBAg7V/hs/USjW08LCr3AY NHyhltIMqca6bUDzG8/MaI1u8UpeB6wg9wbMGmtaiTTGZ5r38Rm+7KW+mKj6w1Zo KNzWH0tHErIPLTFxbW+N2RH6fHI0HkpgtNI5FEr+GdW2MRghymdzM897kDK8+cOg 8XbAMNm7+q7CeBJI+Gn0pESWFVxmkMpAijyq/sYXLEXjJnDqz2MdNiWY10J5eMAl NeptqYxfdrE1VoSamP3Hv9Jm3GFhEQaN7JSXA4ULsoVkjwTeEF1cHlrJrV1uF/fj jZUMnZoUw6i67DJtRxITvj9XYi36QsW3ifmbA3Z1oA8= -----END CERTIFICATE-----Generated at Tue Mar 11 05:05:39 2025 by rpki-client