$ rpki-client -vvf repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3234382e302f32342d3234203d3e203137343430.roa File: 3130332e3230392e3234382e302f32342d3234203d3e203137343430.roa (raw, json) Hash identifier: dznTYUq/hlOgzr7tq1QdOQNeZPsy/c8Pv0hfpBFl9Oo= Subject key identifier: 47:AC:64:EB:AC:35:A7:94:25:F8:9A:40:BC:01:37:3E:4D:DF:3D:DE Certificate issuer: /CN=66A6B60CE00F39D3D3C228024C87D2799BE570E7 Certificate serial: 379D0F8CC1E6E3952A312F261D17C5D70B6D0180 Authority key identifier: 66:A6:B6:0C:E0:0F:39:D3:D3:C2:28:02:4C:87:D2:79:9B:E5:70:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3234382e302f32342d3234203d3e203137343430.roa Signing time: Fri 14 Jun 2024 10:00:01 +0000 ROA not before: Fri 14 Jun 2024 09:55:01 +0000 ROA not after: Fri 13 Jun 2025 10:00:01 +0000 asID: 17440 IP address blocks: 103.209.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/66A6B60CE00F39D3D3C228024C87D2799BE570E7.crl rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/66A6B60CE00F39D3D3C228024C87D2799BE570E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 18:46:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:9d:0f:8c:c1:e6:e3:95:2a:31:2f:26:1d:17:c5:d7:0b:6d:01:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66A6B60CE00F39D3D3C228024C87D2799BE570E7 Validity Not Before: Jun 14 09:55:01 2024 GMT Not After : Jun 13 10:00:01 2025 GMT Subject: CN=47AC64EBAC35A79425F89A40BC01373E4DDF3DDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e2:6f:e0:38:8e:f6:f3:da:3a:d2:4e:1f:56: e0:da:62:97:dd:b2:25:c9:e0:e4:46:72:8b:e2:c2: 97:87:56:78:21:91:3c:4e:1d:6e:66:df:f7:3c:27: 20:80:6a:92:2c:9a:af:95:e1:a4:a3:d5:b1:34:b6: 20:1b:9a:e2:cc:cb:5f:b9:d5:c9:31:7b:1c:5a:76: 68:93:22:06:fa:0c:6e:83:50:37:ed:ec:4a:9c:81: 81:10:10:32:f6:7f:24:48:59:67:2a:e2:42:45:21: 80:dc:25:b2:c3:b9:a8:be:1f:18:92:2b:71:13:27: 5d:0d:e5:84:25:4d:b5:c7:ec:85:77:c1:f0:fd:c8: 95:98:6d:f7:4a:b4:f5:cc:ec:8c:c2:1c:6e:fa:48: 4b:a0:60:52:17:2f:a8:4b:37:9a:1f:f7:b2:22:7f: 86:65:66:cb:5f:d8:f5:17:b4:21:77:b4:fc:39:fa: 13:ee:72:07:55:02:ea:a0:17:b4:6f:45:25:f0:d1: 4a:99:4f:14:ea:71:89:83:53:5a:e5:36:09:74:0a: b9:ce:aa:26:6f:a3:0b:cc:8f:1c:96:79:70:99:f4: be:32:ca:ec:a4:5c:3c:dd:43:ff:82:de:9a:2a:29: e2:29:21:0e:db:e1:2b:1c:26:10:0c:81:a3:f9:32: bb:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:AC:64:EB:AC:35:A7:94:25:F8:9A:40:BC:01:37:3E:4D:DF:3D:DE X509v3 Authority Key Identifier: keyid:66:A6:B6:0C:E0:0F:39:D3:D3:C2:28:02:4C:87:D2:79:9B:E5:70:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/66A6B60CE00F39D3D3C228024C87D2799BE570E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3234382e302f32342d3234203d3e203137343430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.209.248.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:33:2f:7e:37:d8:1d:9f:b6:3e:7b:25:9d:e8:72:22:59:3e: d7:1a:77:8d:ef:3f:cd:8f:6d:4b:b3:70:be:43:ca:ee:01:99: f0:3a:f9:b0:01:c8:e5:50:34:8f:5c:9e:64:a2:8c:6c:02:01: 72:e7:04:44:72:4f:cc:d2:c6:d3:44:6f:6c:d7:ea:73:34:fb: 95:e4:c0:bf:17:31:85:c9:bf:d3:77:92:d6:d9:d8:2b:3b:cb: dc:81:58:4e:49:ae:49:83:73:65:ed:d0:9f:6d:21:e5:2d:e1: 63:05:03:22:19:6e:1d:6b:e2:20:5d:a5:c5:90:e0:4b:d9:45: 08:4e:13:6e:64:1e:c9:4c:94:09:70:59:bd:b1:22:5c:2b:c3: 47:b6:83:8d:4b:88:bb:e0:e8:b9:89:e2:65:3f:16:86:92:43: a1:01:ff:8f:79:07:92:20:30:4c:fc:2a:dc:cf:db:e8:67:e5: a1:ac:9d:e2:b4:a9:30:cd:42:ec:33:98:9b:e1:d2:1d:9a:de: 6e:c3:71:ee:37:08:db:85:63:8d:d8:19:0c:c9:26:df:fd:3b: d2:6f:a8:a0:fe:73:14:73:e8:ba:b3:89:56:69:58:9b:17:da: ec:ba:1b:3d:e9:ca:df:e5:41:7e:e6:3f:21:05:5e:c5:d7:44: 57:a6:0c:3f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUN50PjMHm45UqMS8mHRfF1wttAYAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjZBNkI2MENFMDBGMzlEM0QzQzIyODAyNEM4N0QyNzk5 QkU1NzBFNzAeFw0yNDA2MTQwOTU1MDFaFw0yNTA2MTMxMDAwMDFaMDMxMTAvBgNV BAMTKDQ3QUM2NEVCQUMzNUE3OTQyNUY4OUE0MEJDMDEzNzNFNERERjNEREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/4m/gOI7289o60k4fVuDaYpfd siXJ4ORGcoviwpeHVnghkTxOHW5m3/c8JyCAapIsmq+V4aSj1bE0tiAbmuLMy1+5 1ckxexxadmiTIgb6DG6DUDft7EqcgYEQEDL2fyRIWWcq4kJFIYDcJbLDuai+HxiS K3ETJ10N5YQlTbXH7IV3wfD9yJWYbfdKtPXM7IzCHG76SEugYFIXL6hLN5of97Ii f4ZlZstf2PUXtCF3tPw5+hPucgdVAuqgF7RvRSXw0UqZTxTqcYmDU1rlNgl0CrnO qiZvowvMjxyWeXCZ9L4yyuykXDzdQ/+C3poqKeIpIQ7b4SscJhAMgaP5MruhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUR6xk66w1p5Ql+JpAvAE3Pk3fPd4wHwYDVR0j BBgwFoAUZqa2DOAPOdPTwigCTIfSeZvlcOcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YzA3NGNkOC0yODMwLTRlYWItYmRkNC1hODA3ZWM1MTE1ZGEvMC82NkE2QjYwQ0Uw MEYzOUQzRDNDMjI4MDI0Qzg3RDI3OTlCRTU3MEU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjZBNkI2MENFMDBGMzlEM0QzQzIyODAyNEM4N0QyNzk5QkU1 NzBFNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjMDc0Y2Q4LTI4MzAtNGVhYi1i ZGQ0LWE4MDdlYzUxMTVkYS8wLzMxMzAzMzJlMzIzMDM5MmUzMjM0MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzQzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9H4MA0GCSqG SIb3DQEBCwUAA4IBAQBbMy9+N9gdn7Y+eyWd6HIiWT7XGneN7z/Nj21Ls3C+Q8ru AZnwOvmwAcjlUDSPXJ5kooxsAgFy5wREck/M0sbTRG9s1+pzNPuV5MC/FzGFyb/T d5LW2dgrO8vcgVhOSa5Jg3Nl7dCfbSHlLeFjBQMiGW4da+IgXaXFkOBL2UUIThNu ZB7JTJQJcFm9sSJcK8NHtoONS4i74Oi5ieJlPxaGkkOhAf+PeQeSIDBM/Crcz9vo Z+WhrJ3itKkwzULsM5ib4dIdmt5uw3HuNwjbhWON2BkMySbf/TvSb6ig/nMUc+i6 s4lWaVibF9rsuhs96crf5UF+5j8hBV7F10RXpgw/ -----END CERTIFICATE-----Generated at Fri Feb 21 11:09:12 2025 by rpki-client