$ rpki-client -vvf repo-rpki.idnic.net/repo/795ee8fc-6efe-415d-b6c1-0f0cccf26144/0/3130332e3132312e3234362e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3234362e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: Fa70W79FWJwGU7udTAwUgPXNTPP4kX8Q9MJvZfIXGU4= Subject key identifier: 57:C2:FA:71:43:E8:C6:FE:FC:05:CC:61:55:D2:91:E8:11:2A:5E:99 Certificate issuer: /CN=FCA55FE68BF147AE20F00C45DADCDF960C120CF8 Certificate serial: 34CE93867FC9FE14BE5E4C74E725D2416DDC0400 Authority key identifier: FC:A5:5F:E6:8B:F1:47:AE:20:F0:0C:45:DA:DC:DF:96:0C:12:0C:F8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCA55FE68BF147AE20F00C45DADCDF960C120CF8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/795ee8fc-6efe-415d-b6c1-0f0cccf26144/0/3130332e3132312e3234362e302f32332d3234203d3e20313335343738.roa Signing time: Wed 04 Dec 2024 09:03:10 +0000 ROA not before: Wed 04 Dec 2024 08:58:10 +0000 ROA not after: Wed 03 Dec 2025 09:03:10 +0000 asID: 135478 IP address blocks: 103.121.246.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/795ee8fc-6efe-415d-b6c1-0f0cccf26144/0/FCA55FE68BF147AE20F00C45DADCDF960C120CF8.crl rsync://repo-rpki.idnic.net/repo/795ee8fc-6efe-415d-b6c1-0f0cccf26144/0/FCA55FE68BF147AE20F00C45DADCDF960C120CF8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCA55FE68BF147AE20F00C45DADCDF960C120CF8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 04:03:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:ce:93:86:7f:c9:fe:14:be:5e:4c:74:e7:25:d2:41:6d:dc:04:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCA55FE68BF147AE20F00C45DADCDF960C120CF8 Validity Not Before: Dec 4 08:58:10 2024 GMT Not After : Dec 3 09:03:10 2025 GMT Subject: CN=57C2FA7143E8C6FEFC05CC6155D291E8112A5E99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b7:05:41:ea:32:f3:65:d0:ba:46:5e:46:94: 49:5c:4f:85:17:63:a9:a4:af:32:87:bb:7e:cc:1a: 25:6a:90:49:c3:75:cf:3e:7c:a1:62:15:a1:5c:e8: 77:ec:6b:39:66:22:f5:08:71:64:db:8d:c9:3f:cf: 4c:fd:1b:24:1d:7d:12:ce:1e:89:5b:83:cd:22:f0: 25:86:ef:f1:a8:4c:b7:e8:e8:5f:7d:70:b7:75:77: 76:81:97:43:20:c7:0f:19:e7:3f:fc:7c:a0:3f:69: 0b:9e:82:82:42:ce:f8:45:25:0a:ab:50:9f:dd:51: 40:81:d7:d1:19:a0:3b:3f:0a:97:d7:d5:dc:06:12: 6a:27:0b:dd:9e:49:a9:07:2e:83:68:a7:7e:b6:40: 37:a4:17:e4:24:03:12:4d:45:14:4e:96:06:3b:c0: 30:b5:4e:86:32:19:e1:c7:4e:84:07:95:82:6c:5f: 7a:c9:a4:a2:55:15:15:87:18:2d:d4:6b:34:12:6e: 47:cc:fe:27:8e:df:42:84:e6:99:4a:67:eb:f1:f6: 1e:e4:d8:2c:87:cc:bd:e2:97:5b:98:03:d8:99:f8: 96:63:3d:86:5e:25:a7:1a:ea:45:f9:b9:bf:b7:d0: de:e9:19:2f:6b:4a:c3:56:c1:b9:aa:34:b9:3c:36: 8d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:C2:FA:71:43:E8:C6:FE:FC:05:CC:61:55:D2:91:E8:11:2A:5E:99 X509v3 Authority Key Identifier: keyid:FC:A5:5F:E6:8B:F1:47:AE:20:F0:0C:45:DA:DC:DF:96:0C:12:0C:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/795ee8fc-6efe-415d-b6c1-0f0cccf26144/0/FCA55FE68BF147AE20F00C45DADCDF960C120CF8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCA55FE68BF147AE20F00C45DADCDF960C120CF8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/795ee8fc-6efe-415d-b6c1-0f0cccf26144/0/3130332e3132312e3234362e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.246.0/23 Signature Algorithm: sha256WithRSAEncryption 38:13:60:86:1c:48:06:53:2f:d0:8a:bb:cd:7a:22:e1:6d:ea: 75:35:01:90:84:7c:a2:7a:ad:0d:5e:0a:51:f0:14:d9:71:b5: 92:c9:0e:d1:b9:88:02:dc:34:5e:b5:0b:c1:fd:ca:2a:2e:f9: 39:89:03:a8:ec:07:74:f1:ad:fc:47:3e:c0:68:3c:41:6d:91: df:9c:79:a0:f7:74:97:2c:8c:3e:8b:2d:9b:29:42:bb:1f:1b: ff:ed:79:a5:13:11:4f:64:89:1b:a1:0b:6f:10:19:46:c6:77: 97:d2:20:72:2f:fb:e0:ce:e0:4c:6d:3a:60:00:5d:f8:ae:a8: b1:08:ae:59:6a:e4:08:ac:18:ae:a9:19:21:61:9a:43:c8:80: 3e:98:f9:3d:79:33:36:39:b3:d2:29:78:ef:06:e8:e8:80:1d: 3d:67:c2:24:72:df:f7:22:52:a5:71:37:04:5c:ae:10:f6:9f: 24:ec:53:3e:48:c4:9f:ca:ab:7c:16:57:35:d4:cf:61:66:88: 15:52:a8:d6:2d:6f:7a:1f:c3:25:2f:d2:9d:5e:ed:21:17:4d: d4:d3:a8:37:8f:39:03:ae:95:86:24:a7:8a:5a:95:54:4d:8a: 8c:2b:97:eb:c5:f9:fe:a5:a6:b8:fa:bf:e5:09:e5:18:e4:7c: 60:d1:67:57 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNM6Thn/J/hS+Xkx05yXSQW3cBAAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNBNTVGRTY4QkYxNDdBRTIwRjAwQzQ1REFEQ0RGOTYw QzEyMENGODAeFw0yNDEyMDQwODU4MTBaFw0yNTEyMDMwOTAzMTBaMDMxMTAvBgNV BAMTKDU3QzJGQTcxNDNFOEM2RkVGQzA1Q0M2MTU1RDI5MUU4MTEyQTVFOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHtwVB6jLzZdC6Rl5GlElcT4UX Y6mkrzKHu37MGiVqkEnDdc8+fKFiFaFc6HfsazlmIvUIcWTbjck/z0z9GyQdfRLO Holbg80i8CWG7/GoTLfo6F99cLd1d3aBl0Mgxw8Z5z/8fKA/aQuegoJCzvhFJQqr UJ/dUUCB19EZoDs/CpfX1dwGEmonC92eSakHLoNop362QDekF+QkAxJNRRROlgY7 wDC1ToYyGeHHToQHlYJsX3rJpKJVFRWHGC3UazQSbkfM/ieO30KE5plKZ+vx9h7k 2CyHzL3il1uYA9iZ+JZjPYZeJaca6kX5ub+30N7pGS9rSsNWwbmqNLk8No0BAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUV8L6cUPoxv78BcxhVdKR6BEqXpkwHwYDVR0j BBgwFoAU/KVf5ovxR64g8AxF2tzflgwSDPgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OTVlZThmYy02ZWZlLTQxNWQtYjZjMS0wZjBjY2NmMjYxNDQvMC9GQ0E1NUZFNjhC RjE0N0FFMjBGMDBDNDVEQURDREY5NjBDMTIwQ0Y4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNBNTVGRTY4QkYxNDdBRTIwRjAwQzQ1REFEQ0RGOTYwQzEy MENGOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc5NWVlOGZjLTZlZmUtNDE1ZC1i NmMxLTBmMGNjY2YyNjE0NC8wLzMxMzAzMzJlMzEzMjMxMmUzMjM0MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnefYwDQYJ KoZIhvcNAQELBQADggEBADgTYIYcSAZTL9CKu816IuFt6nU1AZCEfKJ6rQ1eClHw FNlxtZLJDtG5iALcNF61C8H9yiou+TmJA6jsB3TxrfxHPsBoPEFtkd+ceaD3dJcs jD6LLZspQrsfG//teaUTEU9kiRuhC28QGUbGd5fSIHIv++DO4ExtOmAAXfiuqLEI rllq5AisGK6pGSFhmkPIgD6Y+T15MzY5s9IpeO8G6OiAHT1nwiRy3/ciUqVxNwRc rhD2nyTsUz5IxJ/Kq3wWVzXUz2FmiBVSqNYtb3ofwyUv0p1e7SEXTdTTqDePOQOu lYYkp4palVRNiowrl+vF+f6lprj6v+UJ5RjkfGDRZ1c= -----END CERTIFICATE-----Generated at Sun Apr 6 20:55:51 2025 by rpki-client