$ rpki-client -vvf repo-rpki.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/3130332e3132392e32302e302f32332d3234203d3e20313335343738.roa File: 3130332e3132392e32302e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: YByKLIatw2VYf9uIqdHXeYjHhsev8w+x71A+omd++qw= Subject key identifier: BF:2A:23:D2:DE:40:F7:6E:68:91:49:AF:8E:13:BF:24:A4:29:21:7A Certificate issuer: /CN=5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297 Certificate serial: 09BC3D0F0EB0389DC915FA864DB8D6C00B04E0DD Authority key identifier: 51:97:E2:A7:8B:BA:1E:8C:9E:B8:08:E4:5A:99:DD:2B:E7:B4:12:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297.cer Subject info access: rsync://repo-rpki.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/3130332e3132392e32302e302f32332d3234203d3e20313335343738.roa Signing time: Wed 04 Dec 2024 10:00:00 +0000 ROA not before: Wed 04 Dec 2024 09:55:00 +0000 ROA not after: Wed 03 Dec 2025 10:00:00 +0000 asID: 135478 IP address blocks: 103.129.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297.crl rsync://repo-rpki.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 18:12:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:bc:3d:0f:0e:b0:38:9d:c9:15:fa:86:4d:b8:d6:c0:0b:04:e0:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297 Validity Not Before: Dec 4 09:55:00 2024 GMT Not After : Dec 3 10:00:00 2025 GMT Subject: CN=BF2A23D2DE40F76E689149AF8E13BF24A429217A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:3e:97:bd:e2:39:dd:46:92:6d:1e:d2:59:5f: d5:87:04:4f:43:31:fb:4e:5b:a8:8b:3c:49:7c:94: b6:53:89:79:e7:e6:5a:d3:e9:a0:34:f3:78:9f:33: e5:0e:8f:4c:5a:c4:55:b1:75:35:80:d1:bb:b1:76: 10:03:3e:46:1b:0a:ac:0b:f6:60:b1:e3:7e:61:c9: e7:d0:c2:c1:45:ff:de:45:98:29:3d:85:a9:f4:16: 50:e8:d4:fa:93:34:38:3e:06:6f:a1:50:6e:91:20: ea:5e:b8:ba:aa:a6:25:d2:78:3b:eb:dc:a3:2d:ed: 47:b7:bf:1d:b7:20:95:74:43:52:b7:e6:ed:32:58: 81:53:77:b9:06:49:1a:bd:2c:39:bc:3e:7b:80:26: df:10:01:e8:41:62:3e:79:36:b3:38:93:3c:33:78: 80:ee:c7:68:22:c5:27:68:96:d7:46:80:ea:d7:01: 32:b0:f5:ea:75:29:0c:d5:27:63:ae:cb:34:a6:ff: 9b:86:6f:3f:d7:fa:a7:99:64:67:13:88:87:9c:b7: 99:a2:ec:2b:5c:56:96:66:ea:18:5a:d3:0c:05:3b: b8:c5:08:4a:83:46:76:4f:6e:08:aa:11:65:30:bb: 83:da:74:99:c4:d0:6a:b8:a9:ef:28:19:fa:94:70: d0:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:2A:23:D2:DE:40:F7:6E:68:91:49:AF:8E:13:BF:24:A4:29:21:7A X509v3 Authority Key Identifier: keyid:51:97:E2:A7:8B:BA:1E:8C:9E:B8:08:E4:5A:99:DD:2B:E7:B4:12:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/3130332e3132392e32302e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.20.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:51:e8:4c:4c:d0:97:21:d1:4f:a3:66:9c:43:b2:47:4e:35: e6:6e:8a:93:47:2e:80:1b:49:1e:cb:38:84:95:c1:9a:6e:2a: 87:0e:95:f0:f8:ce:34:6c:ad:08:a4:99:bb:7d:a2:9c:4e:72: 2d:2e:88:15:d8:b5:91:81:80:8d:a8:7e:11:ea:81:f2:87:b4: 40:d8:e0:69:52:e8:79:94:58:81:f1:a8:e8:90:58:21:31:7f: 4d:6c:1b:29:5f:5f:ef:60:e9:6c:92:68:b7:c3:b4:dd:7e:85: 50:b0:f0:fa:20:e0:22:c4:40:30:ab:4b:eb:e2:dd:0c:84:cb: 8e:4a:bb:01:ba:6e:dc:8b:b2:83:4f:ca:83:90:22:c6:9b:80: ed:93:5c:10:c6:70:f0:3d:6e:06:07:d4:b5:4c:e0:2f:f4:c7: 86:d0:09:67:b6:16:97:f4:c4:73:63:97:c0:86:9d:5c:68:73: 21:b9:14:e1:85:d4:45:0a:11:eb:35:cb:9b:f5:14:63:e0:bb: fb:20:a1:c3:eb:e5:90:bf:29:c7:89:00:75:89:8d:50:b6:b4: 3f:d4:71:93:0b:53:98:6f:4a:62:2d:e2:d3:10:c8:8f:b1:83: 8a:0d:0f:22:f6:9f:03:92:5b:51:3a:7d:60:2a:12:0d:e7:ba: b5:3f:77:81 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCbw9Dw6wOJ3JFfqGTbjWwAsE4N0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTE5N0UyQTc4QkJBMUU4QzlFQjgwOEU0NUE5OUREMkJF N0I0MTI5NzAeFw0yNDEyMDQwOTU1MDBaFw0yNTEyMDMxMDAwMDBaMDMxMTAvBgNV BAMTKEJGMkEyM0QyREU0MEY3NkU2ODkxNDlBRjhFMTNCRjI0QTQyOTIxN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD7Ppe94jndRpJtHtJZX9WHBE9D MftOW6iLPEl8lLZTiXnn5lrT6aA083ifM+UOj0xaxFWxdTWA0buxdhADPkYbCqwL 9mCx435hyefQwsFF/95FmCk9han0FlDo1PqTNDg+Bm+hUG6RIOpeuLqqpiXSeDvr 3KMt7Ue3vx23IJV0Q1K35u0yWIFTd7kGSRq9LDm8PnuAJt8QAehBYj55NrM4kzwz eIDux2gixSdoltdGgOrXATKw9ep1KQzVJ2OuyzSm/5uGbz/X+qeZZGcTiIect5mi 7CtcVpZm6hha0wwFO7jFCEqDRnZPbgiqEWUwu4PadJnE0Gq4qe8oGfqUcNBZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvyoj0t5A925okUmvjhO/JKQpIXowHwYDVR0j BBgwFoAUUZfip4u6HoyeuAjkWpndK+e0EpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NjU0MjgzOS0yODU4LTQ5ZjAtYWNkZi1mYTdkM2FiOWM1NTgvMC81MTk3RTJBNzhC QkExRThDOUVCODA4RTQ1QTk5REQyQkU3QjQxMjk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTE5N0UyQTc4QkJBMUU4QzlFQjgwOEU0NUE5OUREMkJFN0I0 MTI5Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc2NTQyODM5LTI4NTgtNDlmMC1h Y2RmLWZhN2QzYWI5YzU1OC8wLzMxMzAzMzJlMzEzMjM5MmUzMjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4EUMA0GCSqG SIb3DQEBCwUAA4IBAQBsUehMTNCXIdFPo2acQ7JHTjXmboqTRy6AG0keyziElcGa biqHDpXw+M40bK0IpJm7faKcTnItLogV2LWRgYCNqH4R6oHyh7RA2OBpUuh5lFiB 8ajokFghMX9NbBspX1/vYOlskmi3w7TdfoVQsPD6IOAixEAwq0vr4t0MhMuOSrsB um7ci7KDT8qDkCLGm4Dtk1wQxnDwPW4GB9S1TOAv9MeG0AlnthaX9MRzY5fAhp1c aHMhuRThhdRFChHrNcub9RRj4Lv7IKHD6+WQvynHiQB1iY1QtrQ/1HGTC1OYb0pi LeLTEMiPsYOKDQ8i9p8DkltROn1gKhIN57q1P3eB -----END CERTIFICATE-----Generated at Sun Apr 6 23:35:26 2025 by rpki-client