$ rpki-client -vvf repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/3130332e39362e35332e302f32342d3234203d3e20313530393232.roa File: 3130332e39362e35332e302f32342d3234203d3e20313530393232.roa (raw, json) Hash identifier: ZdMkDOnx4hNOB8b2y8v2461HT/U2gmm0V9h3DP50AsM= Subject key identifier: 28:02:38:58:F8:86:B5:05:B3:26:04:1C:B2:CE:0E:EB:5C:99:7F:36 Certificate issuer: /CN=0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79 Certificate serial: 1CB8E2B0A24837A963FF14C9BAACE501F47BE36A Authority key identifier: 03:21:C8:92:A6:AA:C0:A6:EA:4A:30:35:D8:8C:A6:BC:68:67:BF:79 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/3130332e39362e35332e302f32342d3234203d3e20313530393232.roa Signing time: Wed 08 Jan 2025 10:00:02 +0000 ROA not before: Wed 08 Jan 2025 09:55:02 +0000 ROA not after: Wed 07 Jan 2026 10:00:02 +0000 asID: 150922 IP address blocks: 103.96.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 01:12:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:b8:e2:b0:a2:48:37:a9:63:ff:14:c9:ba:ac:e5:01:f4:7b:e3:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79 Validity Not Before: Jan 8 09:55:02 2025 GMT Not After : Jan 7 10:00:02 2026 GMT Subject: CN=28023858F886B505B326041CB2CE0EEB5C997F36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c0:9f:cd:27:91:f5:d4:32:f5:e9:7b:1b:ae: 01:cb:6b:3b:96:2a:67:6f:ea:04:a3:de:0b:44:d8: 92:d5:8a:16:73:d1:16:d2:e9:71:92:bc:f4:56:7c: 33:60:20:10:16:ca:e6:96:2e:a7:77:47:24:28:8f: 95:b0:bb:22:0a:6c:67:56:d6:51:a6:76:be:e2:d7: 92:09:f7:0b:36:31:99:a4:89:81:33:92:39:c5:b3: 16:bf:d9:3c:b1:bf:b2:49:dd:24:08:86:d7:ee:aa: 23:9b:bc:a4:fc:e8:21:42:18:42:da:d6:c3:5e:82: 26:c7:20:03:0a:56:cc:d9:0a:7b:93:13:df:c2:52: 31:c6:f1:af:4e:31:c1:c5:ae:da:39:9c:a7:c0:bd: d8:c7:9f:e5:d4:30:bc:16:ab:9c:aa:92:5d:3e:0f: 64:96:61:f5:c9:02:c1:46:ee:58:67:58:78:cb:27: d5:4f:b9:70:15:78:e0:64:0b:b1:81:29:aa:7b:bf: 56:9c:2d:9e:70:32:5c:fb:9b:ef:c2:f5:c2:c1:a2: b8:d9:5f:ed:2a:e2:13:85:78:29:c9:eb:0c:17:72: a7:84:d7:b3:48:a9:28:0e:d6:3a:18:4d:72:e2:75: 73:34:c6:21:a3:7d:2e:02:7f:81:8b:13:be:82:9c: ab:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:02:38:58:F8:86:B5:05:B3:26:04:1C:B2:CE:0E:EB:5C:99:7F:36 X509v3 Authority Key Identifier: keyid:03:21:C8:92:A6:AA:C0:A6:EA:4A:30:35:D8:8C:A6:BC:68:67:BF:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/3130332e39362e35332e302f32342d3234203d3e20313530393232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.96.53.0/24 Signature Algorithm: sha256WithRSAEncryption 19:1a:01:ef:06:45:5f:49:17:44:40:a4:e7:fe:9f:7b:15:70: 7a:e1:4b:af:ba:40:ad:43:d6:e3:8b:b0:ec:f3:51:5f:9d:9e: 17:84:b9:3f:e5:d1:94:a7:e5:a8:73:dd:0a:99:14:64:d8:2e: 03:4c:f6:10:e4:4d:c4:15:19:83:c0:4c:f1:c1:7e:d1:5a:75: 39:1e:d8:74:be:93:2b:36:d4:7c:4c:1d:40:24:b5:9c:0e:e3: c1:a3:64:da:c1:3e:43:cc:82:aa:2c:c4:83:ae:bf:a8:a0:ee: 88:06:ef:68:54:d0:9d:b9:06:09:bd:5c:7d:a1:25:23:d8:89: a8:4d:83:6c:73:c9:e5:47:b0:06:15:30:a5:d4:1a:50:81:46: 09:c0:60:6d:23:8b:8f:ea:03:bb:40:e4:c9:c2:5e:a7:37:70: 2a:f4:bf:3d:eb:59:67:68:b2:3a:9f:d7:33:a2:e9:e5:3c:30: 82:c4:30:e3:06:e1:3d:7d:af:b7:98:78:73:37:29:1f:32:c0: f3:c1:9d:e4:df:43:c6:8c:51:b5:81:63:9c:7c:1d:25:b2:ed: a7:60:8b:89:4a:19:09:80:61:81:e5:26:cb:53:16:eb:72:08: 30:36:75:9b:96:13:35:f0:4b:54:49:1a:0e:9e:f2:a5:42:e4: 1b:43:b6:f4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHLjisKJIN6lj/xTJuqzlAfR742owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2QkM2 ODY3QkY3OTAeFw0yNTAxMDgwOTU1MDJaFw0yNjAxMDcxMDAwMDJaMDMxMTAvBgNV BAMTKDI4MDIzODU4Rjg4NkI1MDVCMzI2MDQxQ0IyQ0UwRUVCNUM5OTdGMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5wJ/NJ5H11DL16XsbrgHLazuW Kmdv6gSj3gtE2JLVihZz0RbS6XGSvPRWfDNgIBAWyuaWLqd3RyQoj5WwuyIKbGdW 1lGmdr7i15IJ9ws2MZmkiYEzkjnFsxa/2Tyxv7JJ3SQIhtfuqiObvKT86CFCGELa 1sNegibHIAMKVszZCnuTE9/CUjHG8a9OMcHFrto5nKfAvdjHn+XUMLwWq5yqkl0+ D2SWYfXJAsFG7lhnWHjLJ9VPuXAVeOBkC7GBKap7v1acLZ5wMlz7m+/C9cLBorjZ X+0q4hOFeCnJ6wwXcqeE17NIqSgO1joYTXLidXM0xiGjfS4Cf4GLE76CnKvpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUKAI4WPiGtQWzJgQcss4O61yZfzYwHwYDVR0j BBgwFoAUAyHIkqaqwKbqSjA12IymvGhnv3kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTFjNGMxZi03MTQxLTQ3ZDYtYTdmOC1lMzVmZmUxMTc0MDQvMC8wMzIxQzg5MkE2 QUFDMEE2RUE0QTMwMzVEODhDQTZCQzY4NjdCRjc5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2QkM2ODY3 QkY3OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhMWM0YzFmLTcxNDEtNDdkNi1h N2Y4LWUzNWZmZTExNzQwNC8wLzMxMzAzMzJlMzkzNjJlMzUzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDM5MzIzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdgNTANBgkqhkiG 9w0BAQsFAAOCAQEAGRoB7wZFX0kXRECk5/6fexVweuFLr7pArUPW44uw7PNRX52e F4S5P+XRlKflqHPdCpkUZNguA0z2EORNxBUZg8BM8cF+0Vp1OR7YdL6TKzbUfEwd QCS1nA7jwaNk2sE+Q8yCqizEg66/qKDuiAbvaFTQnbkGCb1cfaElI9iJqE2DbHPJ 5UewBhUwpdQaUIFGCcBgbSOLj+oDu0DkycJepzdwKvS/PetZZ2iyOp/XM6Lp5Tww gsQw4wbhPX2vt5h4czcpHzLA88Gd5N9DxoxRtYFjnHwdJbLtp2CLiUoZCYBhgeUm y1MW63IIMDZ1m5YTNfBLVEkaDp7ypULkG0O29A== -----END CERTIFICATE-----Generated at Sun Apr 6 13:41:15 2025 by rpki-client