$ rpki-client -vvf repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3234392e302f32342d3234203d3e203137343430.roa File: 3130332e3230392e3234392e302f32342d3234203d3e203137343430.roa (raw, json) Hash identifier: 0j/OnwOdFjaxB+FdHyREBb9GsfY0gUkr8uOJgHM40w0= Subject key identifier: 85:F4:68:1F:84:E9:7A:05:94:10:0C:73:44:98:6E:63:B4:E0:69:38 Certificate issuer: /CN=66A6B60CE00F39D3D3C228024C87D2799BE570E7 Certificate serial: 5C335B4897DB1AC48C201F3E89C25126775FB38F Authority key identifier: 66:A6:B6:0C:E0:0F:39:D3:D3:C2:28:02:4C:87:D2:79:9B:E5:70:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3234392e302f32342d3234203d3e203137343430.roa Signing time: Fri 14 Jun 2024 10:00:01 +0000 ROA not before: Fri 14 Jun 2024 09:55:01 +0000 ROA not after: Fri 13 Jun 2025 10:00:01 +0000 asID: 17440 IP address blocks: 103.209.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/66A6B60CE00F39D3D3C228024C87D2799BE570E7.crl rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/66A6B60CE00F39D3D3C228024C87D2799BE570E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 18:46:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:33:5b:48:97:db:1a:c4:8c:20:1f:3e:89:c2:51:26:77:5f:b3:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66A6B60CE00F39D3D3C228024C87D2799BE570E7 Validity Not Before: Jun 14 09:55:01 2024 GMT Not After : Jun 13 10:00:01 2025 GMT Subject: CN=85F4681F84E97A0594100C7344986E63B4E06938 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ad:1d:b2:7a:1a:e8:14:d0:56:bb:d0:01:5d: 88:ee:13:9d:85:5e:c2:07:45:ea:4d:57:f2:52:aa: 08:f9:8d:9d:08:1b:1c:65:b5:f3:cf:46:a3:47:b0: 44:a2:42:06:f7:48:da:46:6d:b0:42:13:6d:b5:33: 3b:62:71:2c:03:68:c1:78:fe:be:d7:3c:4f:64:59: 55:41:e5:58:45:32:13:01:63:f5:3a:a0:1d:44:b3: b6:84:eb:ec:4e:fd:8d:6d:29:81:a3:4d:b0:b5:4b: 82:02:74:14:79:d3:c6:15:29:ca:8d:54:df:71:3f: 86:e8:8d:ee:f5:5e:74:94:c9:57:c7:ce:98:a3:6a: c1:0f:e9:24:2c:f1:ba:04:52:cb:6a:91:0e:dc:33: 19:83:a7:1a:02:15:4f:7f:3f:a4:83:07:18:60:90: d2:7b:14:90:02:b9:fb:16:5b:48:79:bc:13:75:ee: 6b:4e:e8:10:28:1a:96:5e:fc:48:99:b7:4a:31:c7: be:f0:21:d5:7d:fa:3f:f4:df:25:36:24:e7:da:e3: 54:ea:c8:74:80:87:52:49:88:a9:ec:91:a7:b6:8d: 34:bc:31:de:d5:53:70:d8:0c:7e:2e:67:c4:73:d7: 28:3b:4d:01:87:db:ed:ae:7a:f4:ce:73:99:3d:cd: f5:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:F4:68:1F:84:E9:7A:05:94:10:0C:73:44:98:6E:63:B4:E0:69:38 X509v3 Authority Key Identifier: keyid:66:A6:B6:0C:E0:0F:39:D3:D3:C2:28:02:4C:87:D2:79:9B:E5:70:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/66A6B60CE00F39D3D3C228024C87D2799BE570E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66A6B60CE00F39D3D3C228024C87D2799BE570E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7c074cd8-2830-4eab-bdd4-a807ec5115da/0/3130332e3230392e3234392e302f32342d3234203d3e203137343430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.209.249.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:5e:81:97:73:5b:67:3a:90:48:e0:72:61:18:cb:b8:ad:eb: c5:b8:f5:c7:09:72:8d:d9:f9:56:ee:36:32:a5:c9:e6:da:03: 21:7a:a8:e3:b5:b2:de:96:86:b3:aa:51:4b:03:4e:8f:76:f6: 96:bc:a1:b6:4e:db:06:02:5b:ff:42:53:e2:59:e2:b8:32:86: d2:57:cd:63:e6:c0:f6:23:47:01:22:f6:87:09:93:77:68:a0: a1:e0:91:58:cd:2f:0a:ea:db:62:d0:6f:c4:d1:5a:b5:61:30: 2c:e9:7a:7a:59:2f:d6:fa:63:40:29:69:93:22:05:fa:f1:15: 60:f8:e4:a3:8d:47:b5:14:c8:b3:7f:5b:f5:c1:45:0b:29:ca: 03:d9:bf:4e:f4:ae:2c:1e:2f:c8:24:3b:14:4e:3e:d1:66:0c: a6:55:1a:4f:2f:f1:85:30:46:00:68:5f:25:73:14:b2:73:90: 17:4d:b0:18:7d:46:d7:73:0c:e1:0d:77:be:f8:66:5f:ef:e8: 59:9e:f5:0e:e7:4b:d7:60:52:5d:cf:cc:21:93:4d:25:d2:64: 37:5f:31:c4:3d:fd:71:f9:f0:eb:55:8e:6c:80:1a:c5:62:3c: 65:16:69:c9:33:62:55:bf:2f:6e:94:46:5f:09:89:8f:e4:cc: c9:bc:0e:2c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXDNbSJfbGsSMIB8+icJRJndfs48wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjZBNkI2MENFMDBGMzlEM0QzQzIyODAyNEM4N0QyNzk5 QkU1NzBFNzAeFw0yNDA2MTQwOTU1MDFaFw0yNTA2MTMxMDAwMDFaMDMxMTAvBgNV BAMTKDg1RjQ2ODFGODRFOTdBMDU5NDEwMEM3MzQ0OTg2RTYzQjRFMDY5MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkrR2yehroFNBWu9ABXYjuE52F XsIHRepNV/JSqgj5jZ0IGxxltfPPRqNHsESiQgb3SNpGbbBCE221MzticSwDaMF4 /r7XPE9kWVVB5VhFMhMBY/U6oB1Es7aE6+xO/Y1tKYGjTbC1S4ICdBR508YVKcqN VN9xP4boje71XnSUyVfHzpijasEP6SQs8boEUstqkQ7cMxmDpxoCFU9/P6SDBxhg kNJ7FJACufsWW0h5vBN17mtO6BAoGpZe/EiZt0oxx77wIdV9+j/03yU2JOfa41Tq yHSAh1JJiKnskae2jTS8Md7VU3DYDH4uZ8Rz1yg7TQGH2+2uevTOc5k9zfVVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhfRoH4TpegWUEAxzRJhuY7TgaTgwHwYDVR0j BBgwFoAUZqa2DOAPOdPTwigCTIfSeZvlcOcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YzA3NGNkOC0yODMwLTRlYWItYmRkNC1hODA3ZWM1MTE1ZGEvMC82NkE2QjYwQ0Uw MEYzOUQzRDNDMjI4MDI0Qzg3RDI3OTlCRTU3MEU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjZBNkI2MENFMDBGMzlEM0QzQzIyODAyNEM4N0QyNzk5QkU1 NzBFNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjMDc0Y2Q4LTI4MzAtNGVhYi1i ZGQ0LWE4MDdlYzUxMTVkYS8wLzMxMzAzMzJlMzIzMDM5MmUzMjM0MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzQzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9H5MA0GCSqG SIb3DQEBCwUAA4IBAQBeXoGXc1tnOpBI4HJhGMu4revFuPXHCXKN2flW7jYypcnm 2gMheqjjtbLeloazqlFLA06PdvaWvKG2TtsGAlv/QlPiWeK4MobSV81j5sD2I0cB IvaHCZN3aKCh4JFYzS8K6tti0G/E0Vq1YTAs6Xp6WS/W+mNAKWmTIgX68RVg+OSj jUe1FMizf1v1wUULKcoD2b9O9K4sHi/IJDsUTj7RZgymVRpPL/GFMEYAaF8lcxSy c5AXTbAYfUbXcwzhDXe++GZf7+hZnvUO50vXYFJdz8whk00l0mQ3XzHEPf1x+fDr VY5sgBrFYjxlFmnJM2JVvy9ulEZfCYmP5MzJvA4s -----END CERTIFICATE-----Generated at Fri Feb 21 11:04:08 2025 by rpki-client