$ rpki-client -vvf repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/3130332e3136382e3138352e302f32342d3234203d3e20313432333231.roa File: 3130332e3136382e3138352e302f32342d3234203d3e20313432333231.roa (raw, json) Hash identifier: KAd16ldutYh48OLbDnroVNt1O/HTzAA/aCmbtAP1Odw= Subject key identifier: E9:F3:E6:F4:68:C8:35:CE:10:EF:50:86:EC:82:D2:C2:9F:9E:7C:39 Certificate issuer: /CN=B1D4F5495BE4F9D995EA9C1545469CA2B98334F1 Certificate serial: 7B270C3BDB40FC13158D10509041349F1B9B2AFA Authority key identifier: B1:D4:F5:49:5B:E4:F9:D9:95:EA:9C:15:45:46:9C:A2:B9:83:34:F1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/3130332e3136382e3138352e302f32342d3234203d3e20313432333231.roa Signing time: Fri 13 Dec 2024 03:01:17 +0000 ROA not before: Fri 13 Dec 2024 02:56:17 +0000 ROA not after: Fri 12 Dec 2025 03:01:17 +0000 asID: 142321 IP address blocks: 103.168.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.crl rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 02:14:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:27:0c:3b:db:40:fc:13:15:8d:10:50:90:41:34:9f:1b:9b:2a:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B1D4F5495BE4F9D995EA9C1545469CA2B98334F1 Validity Not Before: Dec 13 02:56:17 2024 GMT Not After : Dec 12 03:01:17 2025 GMT Subject: CN=E9F3E6F468C835CE10EF5086EC82D2C29F9E7C39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:66:ad:c6:f8:2d:c2:eb:86:ac:6d:e2:0f:cd: 51:9e:35:9f:97:46:41:2d:25:b2:ef:86:29:09:f7: 9e:8d:81:bb:e4:fd:d8:73:7c:b9:40:4d:df:2d:9b: 2b:b4:d8:22:e4:38:52:c2:5b:e0:05:13:af:1e:5f: 21:97:cd:8d:73:0d:98:4b:ed:0e:f0:38:29:09:fb: 81:39:a2:9b:42:81:27:00:51:e9:ad:41:52:d4:63: 52:43:45:b8:97:b9:a5:24:88:1e:b7:ce:bf:6a:d6: e6:4d:50:cb:52:0b:5e:95:66:bf:7c:7a:ee:fa:6e: 8d:0f:ce:d0:9a:b7:b2:d8:57:bb:35:37:6e:fa:c2: a8:db:35:91:95:e3:03:36:56:a1:91:d3:c4:d2:81: 70:69:5e:6a:15:85:f6:74:b1:04:c6:82:7a:4a:86: 3e:27:54:f0:9d:c5:e6:cd:2b:43:91:4c:58:dd:da: eb:f1:2e:a7:fd:93:11:fd:07:64:65:c6:bc:2b:bb: f6:06:2f:fc:eb:b2:c1:fe:71:20:b3:15:c3:d4:ee: 1c:70:9f:82:c3:e8:25:79:3f:21:f3:f6:92:e4:96: 15:03:7a:de:8a:73:30:c4:4d:e3:ae:36:1b:f1:36: 11:54:a8:51:3b:f1:6b:0c:43:59:cf:17:d0:21:a8: 60:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:F3:E6:F4:68:C8:35:CE:10:EF:50:86:EC:82:D2:C2:9F:9E:7C:39 X509v3 Authority Key Identifier: keyid:B1:D4:F5:49:5B:E4:F9:D9:95:EA:9C:15:45:46:9C:A2:B9:83:34:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B1D4F5495BE4F9D995EA9C1545469CA2B98334F1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/78e78ee0-0002-4a67-a739-3033d5b5ba61/0/3130332e3136382e3138352e302f32342d3234203d3e20313432333231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.185.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:24:46:fb:bb:5a:cc:ee:1a:2d:b0:fe:1b:38:c4:77:8d:bb: 28:bc:27:a8:45:99:06:35:64:ab:a0:9a:0c:c3:4f:94:f3:56: 40:0c:c7:54:48:6a:eb:74:e2:db:0f:8f:a7:fb:34:bd:ba:b9: bc:9a:a3:ef:0c:73:f7:36:58:73:ff:55:19:18:f1:fa:c3:3f: e5:42:a9:e1:f6:83:3f:ed:c9:e5:4e:ef:42:62:d7:d4:75:41: 5f:b5:c1:67:58:f2:3d:dc:68:c1:98:95:1d:82:fa:67:b0:bd: 86:1c:6a:31:96:f5:6e:a1:c4:a1:c2:d2:a5:95:e2:90:ad:95: 3f:1e:1a:21:01:de:26:7d:68:15:a5:75:32:5c:aa:6f:79:58: cd:57:2d:98:b0:10:04:e6:d6:5e:65:ba:f5:bb:d5:b6:44:2e: 38:6b:00:63:e8:d4:7c:ab:71:82:3e:18:2c:45:a3:45:03:d0: ac:f4:23:c9:10:a3:b3:e1:32:f2:b9:f2:5e:3f:d6:1d:15:d3: 85:34:5b:2c:b7:c9:3a:b0:ee:9d:66:84:dd:9a:7b:61:8e:a3: 79:12:f6:fb:58:e3:28:45:fc:27:27:6a:0b:81:5a:57:98:cd: 2f:a8:40:92:1d:4b:0a:b4:e8:d4:0c:21:36:cc:e8:7a:a9:bc: a6:31:d6:77 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeycMO9tA/BMVjRBQkEE0nxubKvowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjFENEY1NDk1QkU0RjlEOTk1RUE5QzE1NDU0NjlDQTJC OTgzMzRGMTAeFw0yNDEyMTMwMjU2MTdaFw0yNTEyMTIwMzAxMTdaMDMxMTAvBgNV BAMTKEU5RjNFNkY0NjhDODM1Q0UxMEVGNTA4NkVDODJEMkMyOUY5RTdDMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5Zq3G+C3C64asbeIPzVGeNZ+X RkEtJbLvhikJ956Ngbvk/dhzfLlATd8tmyu02CLkOFLCW+AFE68eXyGXzY1zDZhL 7Q7wOCkJ+4E5optCgScAUemtQVLUY1JDRbiXuaUkiB63zr9q1uZNUMtSC16VZr98 eu76bo0PztCat7LYV7s1N276wqjbNZGV4wM2VqGR08TSgXBpXmoVhfZ0sQTGgnpK hj4nVPCdxebNK0ORTFjd2uvxLqf9kxH9B2Rlxrwru/YGL/zrssH+cSCzFcPU7hxw n4LD6CV5PyHz9pLklhUDet6KczDETeOuNhvxNhFUqFE78WsMQ1nPF9AhqGDpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU6fPm9GjINc4Q71CG7ILSwp+efDkwHwYDVR0j BBgwFoAUsdT1SVvk+dmV6pwVRUacormDNPEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OGU3OGVlMC0wMDAyLTRhNjctYTczOS0zMDMzZDViNWJhNjEvMC9CMUQ0RjU0OTVC RTRGOUQ5OTVFQTlDMTU0NTQ2OUNBMkI5ODMzNEYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjFENEY1NDk1QkU0RjlEOTk1RUE5QzE1NDU0NjlDQTJCOTgz MzRGMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc4ZTc4ZWUwLTAwMDItNGE2Ny1h NzM5LTMwMzNkNWI1YmE2MS8wLzMxMzAzMzJlMzEzNjM4MmUzMTM4MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzMyMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqLkwDQYJ KoZIhvcNAQELBQADggEBAD8kRvu7WszuGi2w/hs4xHeNuyi8J6hFmQY1ZKugmgzD T5TzVkAMx1RIaut04tsPj6f7NL26ubyao+8Mc/c2WHP/VRkY8frDP+VCqeH2gz/t yeVO70Ji19R1QV+1wWdY8j3caMGYlR2C+mewvYYcajGW9W6hxKHC0qWV4pCtlT8e GiEB3iZ9aBWldTJcqm95WM1XLZiwEATm1l5luvW71bZELjhrAGPo1HyrcYI+GCxF o0UD0Kz0I8kQo7PhMvK58l4/1h0V04U0Wyy3yTqw7p1mhN2ae2GOo3kS9vtY4yhF /CcnaguBWleYzS+oQJIdSwq06NQMITbM6HqpvKYx1nc= -----END CERTIFICATE-----Generated at Sun Apr 6 17:51:47 2025 by rpki-client