$ rpki-client -vvf repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/3130332e3136382e3138342e302f32332d3233203d3e20313432333231.roa File: 3130332e3136382e3138342e302f32332d3233203d3e20313432333231.roa (raw, json) Hash identifier: WwW9nUa1rmjUn7BCAW+1oX9KPadjU43XCXkkj1toOfQ= Subject key identifier: D7:79:DC:9B:5F:1C:7D:D1:1A:C1:E8:05:77:2F:C3:04:9B:8C:BB:B6 Certificate issuer: /CN=B1D4F5495BE4F9D995EA9C1545469CA2B98334F1 Certificate serial: 6A148861786D8A2A9F16466C00552EF05BF051CA Authority key identifier: B1:D4:F5:49:5B:E4:F9:D9:95:EA:9C:15:45:46:9C:A2:B9:83:34:F1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/3130332e3136382e3138342e302f32332d3233203d3e20313432333231.roa Signing time: Fri 13 Dec 2024 03:01:17 +0000 ROA not before: Fri 13 Dec 2024 02:56:17 +0000 ROA not after: Fri 12 Dec 2025 03:01:17 +0000 asID: 142321 IP address blocks: 103.168.184.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.crl rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 02:14:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:14:88:61:78:6d:8a:2a:9f:16:46:6c:00:55:2e:f0:5b:f0:51:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B1D4F5495BE4F9D995EA9C1545469CA2B98334F1 Validity Not Before: Dec 13 02:56:17 2024 GMT Not After : Dec 12 03:01:17 2025 GMT Subject: CN=D779DC9B5F1C7DD11AC1E805772FC3049B8CBBB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9b:d1:89:fa:c5:35:44:9c:29:1c:93:77:44: 8f:10:1e:0b:03:d8:f9:9f:16:17:bc:5c:a5:2b:dd: 70:92:e4:2d:bf:ad:a5:a4:72:d9:ad:dd:2c:36:5d: 66:c8:4c:29:43:fe:2e:f0:85:b5:3a:3c:38:0e:de: 89:9c:b0:bd:55:5c:99:1c:f3:c3:5d:7b:77:dc:fe: ed:0c:8a:c3:cd:c6:d3:2b:00:21:a0:50:02:05:93: b1:d7:f3:d2:da:ab:13:77:d5:3f:38:50:a6:19:e7: 40:74:d2:db:f8:19:17:b4:4f:c7:43:3c:37:ad:b7: 6a:b6:84:44:17:a9:cc:d6:05:4a:f2:6f:ce:4c:83: f7:04:59:a1:87:0d:fa:63:2f:56:b1:b9:07:9e:6b: 8f:b5:f7:24:48:e0:37:fd:2b:79:2b:90:31:c5:b8: 78:13:ba:85:22:09:97:58:55:75:c3:52:04:18:d8: 4f:14:ed:a2:10:78:ee:89:95:86:1c:84:4e:5d:75: 80:5b:2b:d3:c0:27:92:4f:a3:a6:12:3b:7a:17:bd: 88:44:a5:63:d7:4c:9b:f9:b3:10:97:c6:72:0e:f2: 93:9f:d7:16:a5:8a:d3:c3:d1:13:2e:12:7b:a6:d2: d9:48:09:82:40:74:17:3d:fa:63:7c:19:b4:3a:5e: 79:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:79:DC:9B:5F:1C:7D:D1:1A:C1:E8:05:77:2F:C3:04:9B:8C:BB:B6 X509v3 Authority Key Identifier: keyid:B1:D4:F5:49:5B:E4:F9:D9:95:EA:9C:15:45:46:9C:A2:B9:83:34:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/3130332e3136382e3138342e302f32332d3233203d3e20313432333231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.184.0/23 Signature Algorithm: sha256WithRSAEncryption ec:25:18:43:09:2a:2a:2d:db:0d:0f:84:4a:18:4e:4e:f3:f5: 52:5a:32:aa:f1:12:23:4c:60:3b:3a:9d:39:bc:6a:84:d6:67: e4:35:f6:fb:1e:6d:af:27:1e:1d:73:fd:7c:51:80:82:d5:f9: 37:0f:28:25:4b:03:80:85:e7:90:ed:99:b1:20:e1:f2:fe:19: 8c:30:39:3e:5b:0d:ad:a2:0b:d9:8e:12:c3:e2:78:13:91:13: ce:bf:9c:7c:64:37:1d:9a:ce:cd:9d:c6:c5:07:1d:ef:80:06: fc:c9:48:ea:82:9f:f9:71:e6:7b:b8:6e:bc:69:af:72:7b:cb: 8a:09:1f:46:e0:74:af:f0:48:8f:10:02:98:55:80:44:78:36: 6e:c1:d7:da:e2:69:c3:3f:d8:50:e7:72:7c:3e:db:42:86:ef: 5d:d4:7b:e5:1e:6a:6d:ff:0d:f6:66:fb:2b:f4:9a:19:32:bd: 66:7f:86:21:29:f1:a0:04:75:83:05:5f:28:42:32:bb:15:94: 52:a2:bb:71:0a:7c:6f:6c:c6:a0:22:ee:d3:bd:05:28:c9:a8: 1f:54:3e:34:f7:a4:b5:fe:7e:1c:9b:01:4a:6e:6b:35:ab:ef: 90:47:f0:ba:f8:d1:59:ce:d1:9f:11:01:21:35:db:c5:21:09: 7c:e7:8f:a9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUahSIYXhtiiqfFkZsAFUu8FvwUcowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjFENEY1NDk1QkU0RjlEOTk1RUE5QzE1NDU0NjlDQTJC OTgzMzRGMTAeFw0yNDEyMTMwMjU2MTdaFw0yNTEyMTIwMzAxMTdaMDMxMTAvBgNV BAMTKEQ3NzlEQzlCNUYxQzdERDExQUMxRTgwNTc3MkZDMzA0OUI4Q0JCQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPm9GJ+sU1RJwpHJN3RI8QHgsD 2PmfFhe8XKUr3XCS5C2/raWkctmt3Sw2XWbITClD/i7whbU6PDgO3omcsL1VXJkc 88Nde3fc/u0MisPNxtMrACGgUAIFk7HX89LaqxN31T84UKYZ50B00tv4GRe0T8dD PDett2q2hEQXqczWBUryb85Mg/cEWaGHDfpjL1axuQeea4+19yRI4Df9K3krkDHF uHgTuoUiCZdYVXXDUgQY2E8U7aIQeO6JlYYchE5ddYBbK9PAJ5JPo6YSO3oXvYhE pWPXTJv5sxCXxnIO8pOf1xalitPD0RMuEnum0tlICYJAdBc9+mN8GbQ6XnnrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU13ncm18cfdEawegFdy/DBJuMu7YwHwYDVR0j BBgwFoAUsdT1SVvk+dmV6pwVRUacormDNPEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OGU3OGVlMC0wMDAyLTRhNjctYTczOS0zMDMzZDViNWJhNjEvMC9CMUQ0RjU0OTVC RTRGOUQ5OTVFQTlDMTU0NTQ2OUNBMkI5ODMzNEYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjFENEY1NDk1QkU0RjlEOTk1RUE5QzE1NDU0NjlDQTJCOTgz MzRGMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc4ZTc4ZWUwLTAwMDItNGE2Ny1h NzM5LTMwMzNkNWI1YmE2MS8wLzMxMzAzMzJlMzEzNjM4MmUzMTM4MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzIzMzMyMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqLgwDQYJ KoZIhvcNAQELBQADggEBAOwlGEMJKiot2w0PhEoYTk7z9VJaMqrxEiNMYDs6nTm8 aoTWZ+Q19vseba8nHh1z/XxRgILV+TcPKCVLA4CF55DtmbEg4fL+GYwwOT5bDa2i C9mOEsPieBORE86/nHxkNx2azs2dxsUHHe+ABvzJSOqCn/lx5nu4brxpr3J7y4oJ H0bgdK/wSI8QAphVgER4Nm7B19riacM/2FDncnw+20KG713Ue+Ueam3/DfZm+yv0 mhkyvWZ/hiEp8aAEdYMFXyhCMrsVlFKiu3EKfG9sxqAi7tO9BSjJqB9UPjT3pLX+ fhybAUpuazWr75BH8Lr40VnO0Z8RASE128UhCXznj6k= -----END CERTIFICATE-----Generated at Sun Apr 6 17:46:52 2025 by rpki-client