$ rpki-client -vvf repo-rpki.idnic.net/repo/7776f2e5-dfbd-4f7f-8b3d-7b970d541b8f/0/3130332e3134372e3231392e302f32342d3234203d3e20313339393739.roa File: 3130332e3134372e3231392e302f32342d3234203d3e20313339393739.roa (raw, json) Hash identifier: mILgNsqQOC7ukAkdxDoanzwIWxBZqUVcAA8Xp+zkfbw= Subject key identifier: 01:C5:57:1F:E8:64:9B:F1:AF:E2:B7:12:EE:64:A9:5B:06:3A:DC:87 Certificate issuer: /CN=AEFE27D29E7A975983A240B53A6F71C785F7E9A6 Certificate serial: 01FB8FF9403AA12A579ECE872AD46CAA48ACB339 Authority key identifier: AE:FE:27:D2:9E:7A:97:59:83:A2:40:B5:3A:6F:71:C7:85:F7:E9:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEFE27D29E7A975983A240B53A6F71C785F7E9A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7776f2e5-dfbd-4f7f-8b3d-7b970d541b8f/0/3130332e3134372e3231392e302f32342d3234203d3e20313339393739.roa Signing time: Wed 11 Dec 2024 10:00:01 +0000 ROA not before: Wed 11 Dec 2024 09:55:01 +0000 ROA not after: Wed 10 Dec 2025 10:00:01 +0000 asID: 139979 IP address blocks: 103.147.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7776f2e5-dfbd-4f7f-8b3d-7b970d541b8f/0/AEFE27D29E7A975983A240B53A6F71C785F7E9A6.crl rsync://repo-rpki.idnic.net/repo/7776f2e5-dfbd-4f7f-8b3d-7b970d541b8f/0/AEFE27D29E7A975983A240B53A6F71C785F7E9A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEFE27D29E7A975983A240B53A6F71C785F7E9A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 01:13:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:fb:8f:f9:40:3a:a1:2a:57:9e:ce:87:2a:d4:6c:aa:48:ac:b3:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEFE27D29E7A975983A240B53A6F71C785F7E9A6 Validity Not Before: Dec 11 09:55:01 2024 GMT Not After : Dec 10 10:00:01 2025 GMT Subject: CN=01C5571FE8649BF1AFE2B712EE64A95B063ADC87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:8b:41:21:af:4e:16:d1:e4:4c:cb:21:2a:29: e8:1f:42:14:8a:9d:ac:aa:26:c1:0d:af:df:ca:cf: e0:5c:0a:46:28:41:2b:de:83:03:c9:4b:37:53:b3: b3:6b:ef:b7:26:9c:ec:ea:44:b9:bc:09:26:07:99: c7:a5:be:b4:4c:98:f9:c3:46:94:85:54:55:bd:f3: 1b:a5:97:c4:fe:48:b8:77:8c:1a:62:a2:af:30:2e: f6:40:9e:61:fa:ba:5e:1a:41:48:7d:18:12:aa:78: b7:e1:6e:86:16:10:67:f3:26:6b:25:83:42:de:8a: 8e:4d:3e:c5:82:85:60:dd:e1:29:e2:fc:60:9e:a9: 8a:17:a7:40:1b:68:a9:ee:40:85:53:c7:72:89:6c: 90:fe:cb:5b:74:94:c2:bd:67:f8:27:6c:3e:aa:4c: d1:5c:9e:2d:0f:06:71:42:c0:14:1a:54:da:96:43: 72:58:92:5f:c7:7c:75:49:41:d6:e0:d0:12:f8:f1: 26:3e:b3:d6:d4:43:05:ff:ac:73:28:c0:5e:07:8d: 2c:2d:72:57:48:ab:dd:4e:07:a6:e3:88:58:bc:90: 29:c3:17:d2:28:bb:63:97:4a:60:a0:d6:2d:5c:af: 79:1e:ce:2e:2c:27:07:15:8b:f3:4a:7f:23:68:2f: 9f:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:C5:57:1F:E8:64:9B:F1:AF:E2:B7:12:EE:64:A9:5B:06:3A:DC:87 X509v3 Authority Key Identifier: keyid:AE:FE:27:D2:9E:7A:97:59:83:A2:40:B5:3A:6F:71:C7:85:F7:E9:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7776f2e5-dfbd-4f7f-8b3d-7b970d541b8f/0/AEFE27D29E7A975983A240B53A6F71C785F7E9A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEFE27D29E7A975983A240B53A6F71C785F7E9A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7776f2e5-dfbd-4f7f-8b3d-7b970d541b8f/0/3130332e3134372e3231392e302f32342d3234203d3e20313339393739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.219.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:c9:e7:7e:90:66:dc:cb:fb:aa:d9:22:75:56:f2:fc:7f:fa: b7:17:a9:50:10:32:93:5d:2a:d5:16:dd:ff:20:8f:6f:d4:e4: f4:21:93:4f:6e:3a:e5:fc:f3:1d:6c:10:de:e0:1f:e2:3f:73: 3a:70:3d:66:f1:c1:13:59:83:3d:a5:45:82:2a:04:62:5d:75: 69:ff:69:d4:00:3e:6b:a9:18:23:d0:1d:4b:8c:f3:f5:7f:0a: 53:04:da:c4:f5:52:2b:c1:7b:f5:d8:5a:8e:2f:50:29:2e:3c: 52:64:bd:3f:e6:8a:65:17:42:2c:b5:6c:c2:92:0f:2d:b3:38: 26:ff:3e:c2:92:82:3c:89:17:85:24:19:f6:69:7a:d6:3a:32: b0:c9:58:89:0b:53:b2:94:ad:89:10:35:83:1c:73:be:ce:30: fe:28:eb:06:24:d6:61:db:df:3f:3d:a6:87:6d:40:6a:1f:ac: 34:bb:90:f7:ff:7f:d0:2a:2c:aa:ba:64:59:96:b0:a9:9e:cf: 7b:d3:64:70:7a:75:c2:2a:95:21:d3:3b:b2:73:db:ad:c2:92: 0a:0e:aa:84:4f:f7:29:7b:b4:1e:0b:53:95:eb:b8:c1:fa:3a: 2e:95:20:b5:34:e0:c8:13:c3:03:f5:0f:44:ab:36:0c:7f:ad: a3:14:c7:5e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAfuP+UA6oSpXns6HKtRsqkisszkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVGRTI3RDI5RTdBOTc1OTgzQTI0MEI1M0E2RjcxQzc4 NUY3RTlBNjAeFw0yNDEyMTEwOTU1MDFaFw0yNTEyMTAxMDAwMDFaMDMxMTAvBgNV BAMTKDAxQzU1NzFGRTg2NDlCRjFBRkUyQjcxMkVFNjRBOTVCMDYzQURDODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbi0Ehr04W0eRMyyEqKegfQhSK nayqJsENr9/Kz+BcCkYoQSvegwPJSzdTs7Nr77cmnOzqRLm8CSYHmcelvrRMmPnD RpSFVFW98xull8T+SLh3jBpioq8wLvZAnmH6ul4aQUh9GBKqeLfhboYWEGfzJmsl g0Leio5NPsWChWDd4Sni/GCeqYoXp0AbaKnuQIVTx3KJbJD+y1t0lMK9Z/gnbD6q TNFcni0PBnFCwBQaVNqWQ3JYkl/HfHVJQdbg0BL48SY+s9bUQwX/rHMowF4HjSwt cldIq91OB6bjiFi8kCnDF9Iou2OXSmCg1i1cr3kezi4sJwcVi/NKfyNoL5/3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUAcVXH+hkm/Gv4rcS7mSpWwY63IcwHwYDVR0j BBgwFoAUrv4n0p56l1mDokC1Om9xx4X36aYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 Nzc2ZjJlNS1kZmJkLTRmN2YtOGIzZC03Yjk3MGQ1NDFiOGYvMC9BRUZFMjdEMjlF N0E5NzU5ODNBMjQwQjUzQTZGNzFDNzg1RjdFOUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUVGRTI3RDI5RTdBOTc1OTgzQTI0MEI1M0E2RjcxQzc4NUY3 RTlBNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc3NzZmMmU1LWRmYmQtNGY3Zi04 YjNkLTdiOTcwZDU0MWI4Zi8wLzMxMzAzMzJlMzEzNDM3MmUzMjMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM3Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnk9swDQYJ KoZIhvcNAQELBQADggEBAB7J536QZtzL+6rZInVW8vx/+rcXqVAQMpNdKtUW3f8g j2/U5PQhk09uOuX88x1sEN7gH+I/czpwPWbxwRNZgz2lRYIqBGJddWn/adQAPmup GCPQHUuM8/V/ClME2sT1UivBe/XYWo4vUCkuPFJkvT/mimUXQiy1bMKSDy2zOCb/ PsKSgjyJF4UkGfZpetY6MrDJWIkLU7KUrYkQNYMcc77OMP4o6wYk1mHb3z89podt QGofrDS7kPf/f9AqLKq6ZFmWsKmez3vTZHB6dcIqlSHTO7Jz263CkgoOqoRP9yl7 tB4LU5XruMH6Oi6VILU04MgTwwP1D0SrNgx/raMUx14= -----END CERTIFICATE-----Generated at Mon Apr 7 16:47:00 2025 by rpki-client