$ rpki-client -vvf repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/3130332e39362e35322e302f32342d3234203d3e20313530393232.roa File: 3130332e39362e35322e302f32342d3234203d3e20313530393232.roa (raw, json) Hash identifier: RbJkotiAtcGAz/X/4fMxCRReBEYK6ZI39CQ4Uu7mC8E= Subject key identifier: 1C:F0:A5:D6:CC:1C:95:4F:86:8F:C7:77:BF:F0:20:65:AE:4D:AF:5A Certificate issuer: /CN=0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79 Certificate serial: 156621F7745EDC2696461079A5747AF980838B17 Authority key identifier: 03:21:C8:92:A6:AA:C0:A6:EA:4A:30:35:D8:8C:A6:BC:68:67:BF:79 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/3130332e39362e35322e302f32342d3234203d3e20313530393232.roa Signing time: Wed 08 Jan 2025 10:00:02 +0000 ROA not before: Wed 08 Jan 2025 09:55:02 +0000 ROA not after: Wed 07 Jan 2026 10:00:02 +0000 asID: 150922 IP address blocks: 103.96.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 01:12:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:66:21:f7:74:5e:dc:26:96:46:10:79:a5:74:7a:f9:80:83:8b:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79 Validity Not Before: Jan 8 09:55:02 2025 GMT Not After : Jan 7 10:00:02 2026 GMT Subject: CN=1CF0A5D6CC1C954F868FC777BFF02065AE4DAF5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:af:a0:06:16:fd:94:d4:64:93:07:45:f9:2a: d1:f6:bf:4b:79:ef:df:39:bd:44:db:d9:6c:9a:b8: 6a:85:c8:3a:a9:c2:d7:e2:ed:ac:2f:1c:1f:64:18: 3a:94:30:d8:2c:bd:d2:b1:5f:28:ea:b8:a6:25:48: e2:bf:56:95:29:fe:ce:18:3c:5f:d3:74:64:1e:fb: 5c:4c:f7:ef:ca:42:83:68:3f:18:4e:e8:b5:e0:6e: e7:fa:04:1a:31:84:b9:67:df:79:60:2e:1c:8a:27: 07:7e:61:93:b8:91:1b:dd:cb:69:7b:12:9b:9c:61: ce:d0:f7:39:ed:49:f1:12:d4:b4:c5:b2:64:2f:d6: c5:3c:3f:38:23:7f:81:39:04:1c:67:57:4d:4d:c9: e9:9f:2c:dc:7e:c1:3b:d5:80:fb:dd:c9:8e:6f:1d: 0f:8d:38:20:e8:ad:7f:f5:8b:65:47:85:d4:36:eb: 84:71:71:2a:43:80:82:76:a2:32:45:68:bf:a6:17: 7c:a6:81:97:5c:65:fa:d3:ad:00:b5:03:d8:32:fd: 69:03:0c:c7:d1:b2:87:ec:f7:0e:1b:10:95:ae:8d: a7:62:ba:fb:05:56:b5:a1:04:26:28:a9:ff:97:8a: 0b:02:17:db:c8:88:a9:2d:e5:1e:b5:a1:8e:1f:23: fc:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:F0:A5:D6:CC:1C:95:4F:86:8F:C7:77:BF:F0:20:65:AE:4D:AF:5A X509v3 Authority Key Identifier: keyid:03:21:C8:92:A6:AA:C0:A6:EA:4A:30:35:D8:8C:A6:BC:68:67:BF:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/3130332e39362e35322e302f32342d3234203d3e20313530393232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.96.52.0/24 Signature Algorithm: sha256WithRSAEncryption ac:50:3d:c4:90:a0:51:86:65:fd:3f:3c:dd:3a:68:63:c3:6b: b5:b3:52:c1:3c:50:77:9b:e7:9a:9c:90:f0:c4:77:7f:5b:eb: 11:62:8d:64:5d:0e:1a:32:d6:9f:f3:d0:9e:2e:82:f8:cd:95: a5:46:be:0c:cb:7a:11:cc:7f:3d:a4:f0:44:19:bc:c3:de:ce: 88:2f:1c:ac:b5:1a:40:6d:40:13:1c:b4:33:7b:a5:81:50:e1: 1f:d7:57:70:ce:bd:3e:8a:12:ac:59:c1:09:8e:13:39:82:7f: 85:36:90:52:0d:da:5f:27:b6:ce:43:ef:c4:fb:80:3c:30:2d: 78:86:73:9d:e6:db:b8:b4:75:12:15:58:7b:bd:f5:dd:fe:07: dc:94:83:fa:c5:cb:37:9c:d1:13:8e:5d:0a:b4:90:ff:3e:5e: a2:7a:4a:f3:ea:a2:c1:6f:05:bb:57:72:5f:7f:6a:27:37:20: 2a:19:63:04:e6:ab:80:76:db:27:83:e4:ea:bd:6b:3b:0d:6a: 66:8c:47:1e:e0:89:7c:05:9e:5b:36:eb:0f:9b:71:69:90:ab: f8:c0:ea:33:7f:90:d0:67:48:64:80:d3:b6:0b:47:83:85:29: 47:31:93:aa:ba:bd:b1:98:58:11:78:4e:7a:01:b7:1b:14:24: a4:72:34:45 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFWYh93Re3CaWRhB5pXR6+YCDixcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2QkM2 ODY3QkY3OTAeFw0yNTAxMDgwOTU1MDJaFw0yNjAxMDcxMDAwMDJaMDMxMTAvBgNV BAMTKDFDRjBBNUQ2Q0MxQzk1NEY4NjhGQzc3N0JGRjAyMDY1QUU0REFGNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbr6AGFv2U1GSTB0X5KtH2v0t5 7985vUTb2WyauGqFyDqpwtfi7awvHB9kGDqUMNgsvdKxXyjquKYlSOK/VpUp/s4Y PF/TdGQe+1xM9+/KQoNoPxhO6LXgbuf6BBoxhLln33lgLhyKJwd+YZO4kRvdy2l7 EpucYc7Q9zntSfES1LTFsmQv1sU8Pzgjf4E5BBxnV01NyemfLNx+wTvVgPvdyY5v HQ+NOCDorX/1i2VHhdQ264RxcSpDgIJ2ojJFaL+mF3ymgZdcZfrTrQC1A9gy/WkD DMfRsofs9w4bEJWujadiuvsFVrWhBCYoqf+XigsCF9vIiKkt5R61oY4fI/xZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUHPCl1swclU+Gj8d3v/AgZa5Nr1owHwYDVR0j BBgwFoAUAyHIkqaqwKbqSjA12IymvGhnv3kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTFjNGMxZi03MTQxLTQ3ZDYtYTdmOC1lMzVmZmUxMTc0MDQvMC8wMzIxQzg5MkE2 QUFDMEE2RUE0QTMwMzVEODhDQTZCQzY4NjdCRjc5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2QkM2ODY3 QkY3OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhMWM0YzFmLTcxNDEtNDdkNi1h N2Y4LWUzNWZmZTExNzQwNC8wLzMxMzAzMzJlMzkzNjJlMzUzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDM5MzIzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdgNDANBgkqhkiG 9w0BAQsFAAOCAQEArFA9xJCgUYZl/T883TpoY8NrtbNSwTxQd5vnmpyQ8MR3f1vr EWKNZF0OGjLWn/PQni6C+M2VpUa+DMt6Ecx/PaTwRBm8w97OiC8crLUaQG1AExy0 M3ulgVDhH9dXcM69PooSrFnBCY4TOYJ/hTaQUg3aXye2zkPvxPuAPDAteIZznebb uLR1EhVYe7313f4H3JSD+sXLN5zRE45dCrSQ/z5eonpK8+qiwW8Fu1dyX39qJzcg KhljBOargHbbJ4Pk6r1rOw1qZoxHHuCJfAWeWzbrD5txaZCr+MDqM3+Q0GdIZIDT tgtHg4UpRzGTqrq9sZhYEXhOegG3GxQkpHI0RQ== -----END CERTIFICATE-----Generated at Sun Apr 6 13:41:24 2025 by rpki-client