$ rpki-client -vvf repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/3130332e3139312e3139362e302f32332d3234203d3e20313439393334.roa File: 3130332e3139312e3139362e302f32332d3234203d3e20313439393334.roa (raw, json) Hash identifier: 0P8RiV2EV8KtV2wVPDkhbbfmwCyYhPd1bfzDVq451ls= Subject key identifier: 52:09:81:E6:41:06:48:C9:AE:CD:B8:87:30:4B:EE:A8:CB:2D:3B:F7 Certificate issuer: /CN=604C441ACDF554F380D7FED8F68B2EC7FB780413 Certificate serial: 01F71C4FE6B405858DBE2E6EBB73F3BAEDEF6F78 Authority key identifier: 60:4C:44:1A:CD:F5:54:F3:80:D7:FE:D8:F6:8B:2E:C7:FB:78:04:13 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer Subject info access: rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/3130332e3139312e3139362e302f32332d3234203d3e20313439393334.roa Signing time: Fri 13 Sep 2024 03:01:25 +0000 ROA not before: Fri 13 Sep 2024 02:56:25 +0000 ROA not after: Fri 12 Sep 2025 03:01:25 +0000 asID: 149934 IP address blocks: 103.191.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.crl rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Feb 2025 10:29:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:f7:1c:4f:e6:b4:05:85:8d:be:2e:6e:bb:73:f3:ba:ed:ef:6f:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=604C441ACDF554F380D7FED8F68B2EC7FB780413 Validity Not Before: Sep 13 02:56:25 2024 GMT Not After : Sep 12 03:01:25 2025 GMT Subject: CN=520981E6410648C9AECDB887304BEEA8CB2D3BF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:5c:3b:34:60:cd:f2:e0:2b:48:c7:61:f7:c5: cf:39:27:36:74:3a:11:9a:7f:fa:db:90:61:a4:8c: e2:80:19:e1:af:61:61:b0:46:d1:68:04:dd:0c:c8: 49:d3:00:47:ac:df:9d:9a:2a:dd:71:bf:79:02:c3: c1:20:12:dc:a4:f9:9f:7f:d1:ca:8e:5d:47:41:ea: 87:e4:da:eb:98:a2:3a:5f:41:29:cd:54:a3:72:4b: d1:38:51:2b:34:c4:f9:9f:eb:93:c5:f0:1b:de:9c: 48:5b:93:bc:71:db:eb:72:21:d7:ce:99:7d:8d:cb: 85:50:83:cc:d9:fd:58:cf:ff:a9:20:47:58:42:75: a7:51:55:ad:a8:c5:45:d0:69:1c:af:21:77:d3:4a: eb:45:21:47:a4:31:d1:34:02:b7:42:17:d6:9c:98: a0:9b:9b:a4:f2:b7:d9:03:a1:f5:c5:b5:93:2c:70: 16:c8:e3:ed:f6:dc:9d:dc:a6:84:24:d1:fe:a1:46: 32:d9:68:da:70:2f:1b:47:83:37:c5:70:4c:90:c1: 47:c1:29:35:d8:d0:fd:16:53:de:e4:f7:42:c5:32: 16:bd:79:04:0f:96:37:79:6d:0f:56:ce:b7:27:58: 61:98:a4:ec:7c:f5:9c:97:fe:58:0a:eb:b8:d4:19: 72:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:09:81:E6:41:06:48:C9:AE:CD:B8:87:30:4B:EE:A8:CB:2D:3B:F7 X509v3 Authority Key Identifier: keyid:60:4C:44:1A:CD:F5:54:F3:80:D7:FE:D8:F6:8B:2E:C7:FB:78:04:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/3130332e3139312e3139362e302f32332d3234203d3e20313439393334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.196.0/23 Signature Algorithm: sha256WithRSAEncryption 53:85:9b:8e:86:04:e0:d3:c4:62:54:c2:27:82:ad:15:7e:ed: 8d:43:e7:e4:92:b6:57:d1:bf:59:81:04:8a:13:0f:9d:0b:f4: 6c:53:d5:84:8e:9d:c8:d7:7c:89:ec:0e:7c:93:ab:74:9a:68: bb:be:64:b8:de:83:82:51:41:9f:60:ac:69:3a:ae:4f:e5:ef: ed:74:8b:2d:75:d9:f0:ec:9b:11:bb:51:12:d6:f9:a1:7a:07: b2:96:c4:ed:84:9c:c5:6a:86:3c:0f:c9:0e:6a:aa:74:89:e7: 3c:a4:10:58:1c:ab:aa:9b:1a:84:3c:eb:10:a7:62:b7:81:45: 55:c5:4d:65:4a:b9:4c:3c:a4:88:c8:d7:e3:df:0c:1b:14:24: 5d:b5:ea:f5:a3:58:75:2b:0a:b8:5e:f2:80:93:ec:49:28:ee: e3:04:03:7f:45:6d:91:2a:9a:39:7c:93:28:e5:97:b5:ee:ee: 17:0f:2b:d7:f5:62:92:d6:b4:8d:fe:da:92:51:ba:cd:54:f6: e8:55:d0:ca:9d:70:d6:b7:4a:74:28:58:73:11:39:4a:5f:c2: 5e:eb:2c:c4:4b:80:fd:b9:7b:a1:ae:58:a5:e4:37:59:63:c0: 60:c7:fc:2c:4c:17:74:fe:27:c9:3c:ae:ac:4a:44:46:f1:a7: 20:24:a1:03 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAfccT+a0BYWNvi5uu3Pzuu3vb3gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjA0QzQ0MUFDREY1NTRGMzgwRDdGRUQ4RjY4QjJFQzdG Qjc4MDQxMzAeFw0yNDA5MTMwMjU2MjVaFw0yNTA5MTIwMzAxMjVaMDMxMTAvBgNV BAMTKDUyMDk4MUU2NDEwNjQ4QzlBRUNEQjg4NzMwNEJFRUE4Q0IyRDNCRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBXDs0YM3y4CtIx2H3xc85JzZ0 OhGaf/rbkGGkjOKAGeGvYWGwRtFoBN0MyEnTAEes352aKt1xv3kCw8EgEtyk+Z9/ 0cqOXUdB6ofk2uuYojpfQSnNVKNyS9E4USs0xPmf65PF8BvenEhbk7xx2+tyIdfO mX2Ny4VQg8zZ/VjP/6kgR1hCdadRVa2oxUXQaRyvIXfTSutFIUekMdE0ArdCF9ac mKCbm6Tyt9kDofXFtZMscBbI4+323J3cpoQk0f6hRjLZaNpwLxtHgzfFcEyQwUfB KTXY0P0WU97k90LFMha9eQQPljd5bQ9WzrcnWGGYpOx89ZyX/lgK67jUGXJvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUUgmB5kEGSMmuzbiHMEvuqMstO/cwHwYDVR0j BBgwFoAUYExEGs31VPOA1/7Y9osux/t4BBMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NWQ2ZWZmZi04NWIyLTRhZjQtODlhYi02ZDk4Yzk1MjdkYTQvMC82MDRDNDQxQUNE RjU1NEYzODBEN0ZFRDhGNjhCMkVDN0ZCNzgwNDEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjA0QzQ0MUFDREY1NTRGMzgwRDdGRUQ4RjY4QjJFQzdGQjc4 MDQxMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc1ZDZlZmZmLTg1YjItNGFmNC04 OWFiLTZkOThjOTUyN2RhNC8wLzMxMzAzMzJlMzEzOTMxMmUzMTM5MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzkzOTMzMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnv8QwDQYJ KoZIhvcNAQELBQADggEBAFOFm46GBODTxGJUwieCrRV+7Y1D5+SStlfRv1mBBIoT D50L9GxT1YSOncjXfInsDnyTq3SaaLu+ZLjeg4JRQZ9grGk6rk/l7+10iy112fDs mxG7URLW+aF6B7KWxO2EnMVqhjwPyQ5qqnSJ5zykEFgcq6qbGoQ86xCnYreBRVXF TWVKuUw8pIjI1+PfDBsUJF216vWjWHUrCrhe8oCT7Eko7uMEA39FbZEqmjl8kyjl l7Xu7hcPK9f1YpLWtI3+2pJRus1U9uhV0MqdcNa3SnQoWHMROUpfwl7rLMRLgP25 e6GuWKXkN1ljwGDH/CxMF3T+J8k8rqxKREbxpyAkoQM= -----END CERTIFICATE-----Generated at Fri Feb 21 11:18:52 2025 by rpki-client