$ rpki-client -vvf repo-rpki.idnic.net/repo/7d266511-639e-4c2b-9634-9cc1e22fa708/0/3130332e3136322e3231382e302f32332d3233203d3e20313331373433.roa File: 3130332e3136322e3231382e302f32332d3233203d3e20313331373433.roa (raw, json) Hash identifier: rN6d1jXWm1z/gjcEJrJ6azpXdwiJ6TxL4YRERmja/s8= Subject key identifier: C1:DD:EB:C9:FB:D8:FB:8B:CA:60:94:BA:AC:24:7F:84:32:89:65:87 Certificate issuer: /CN=6CDF5CD1FDDFF2C024C13A29264D70FA51F9587A Certificate serial: 0DBDB446A5DE7D92CFD71F0BF735D543789F3400 Authority key identifier: 6C:DF:5C:D1:FD:DF:F2:C0:24:C1:3A:29:26:4D:70:FA:51:F9:58:7A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6CDF5CD1FDDFF2C024C13A29264D70FA51F9587A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d266511-639e-4c2b-9634-9cc1e22fa708/0/3130332e3136322e3231382e302f32332d3233203d3e20313331373433.roa Signing time: Tue 26 Nov 2024 12:00:48 +0000 ROA not before: Tue 26 Nov 2024 11:55:48 +0000 ROA not after: Tue 25 Nov 2025 12:00:48 +0000 asID: 131743 IP address blocks: 103.162.218.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d266511-639e-4c2b-9634-9cc1e22fa708/0/6CDF5CD1FDDFF2C024C13A29264D70FA51F9587A.crl rsync://repo-rpki.idnic.net/repo/7d266511-639e-4c2b-9634-9cc1e22fa708/0/6CDF5CD1FDDFF2C024C13A29264D70FA51F9587A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6CDF5CD1FDDFF2C024C13A29264D70FA51F9587A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 09:33:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:bd:b4:46:a5:de:7d:92:cf:d7:1f:0b:f7:35:d5:43:78:9f:34:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6CDF5CD1FDDFF2C024C13A29264D70FA51F9587A Validity Not Before: Nov 26 11:55:48 2024 GMT Not After : Nov 25 12:00:48 2025 GMT Subject: CN=C1DDEBC9FBD8FB8BCA6094BAAC247F8432896587 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4a:f7:e3:fa:44:9d:62:22:b0:0b:43:7d:1a: e9:a1:2f:1b:d6:a2:9d:22:40:3f:20:24:11:d6:8e: b1:df:21:10:51:7a:91:96:e1:71:42:c4:66:3b:52: e2:27:11:e1:70:13:32:59:2d:80:81:61:3e:ae:f3: b3:aa:72:cb:52:78:da:bf:42:fe:83:54:07:3c:d1: 4b:f5:26:a2:78:6c:92:52:94:4f:f9:45:55:3c:42: 4a:d9:21:68:3e:d7:5d:cc:b0:a9:8c:84:36:14:83: 46:17:d5:c6:d6:c5:b2:c7:42:87:4c:b6:da:46:61: 16:05:e3:27:ee:32:c5:df:91:08:4f:fc:9b:5b:79: 59:40:b5:c3:62:c4:ad:7a:a3:63:72:87:9c:54:d9: 47:4d:77:b5:55:96:e2:91:49:f4:82:ab:00:0e:bd: 5e:08:4f:7f:df:61:f2:f1:db:e0:16:7e:f7:e9:fe: 33:80:3a:e8:38:ad:e6:22:3a:03:f9:7f:c8:37:e8: 4b:f9:1d:aa:c2:3a:98:0e:65:83:21:a3:48:0b:c6: 5d:9f:d1:30:41:7f:b9:5b:74:ea:b0:aa:0b:56:3e: 23:df:0b:e3:31:8e:b8:66:59:24:69:fa:4e:ff:2e: 73:a0:ea:95:18:85:34:60:f3:dd:4f:bd:81:44:2e: 35:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:DD:EB:C9:FB:D8:FB:8B:CA:60:94:BA:AC:24:7F:84:32:89:65:87 X509v3 Authority Key Identifier: keyid:6C:DF:5C:D1:FD:DF:F2:C0:24:C1:3A:29:26:4D:70:FA:51:F9:58:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d266511-639e-4c2b-9634-9cc1e22fa708/0/6CDF5CD1FDDFF2C024C13A29264D70FA51F9587A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6CDF5CD1FDDFF2C024C13A29264D70FA51F9587A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d266511-639e-4c2b-9634-9cc1e22fa708/0/3130332e3136322e3231382e302f32332d3233203d3e20313331373433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.218.0/23 Signature Algorithm: sha256WithRSAEncryption a5:80:6b:08:73:56:d3:ac:8b:c5:e9:38:31:b1:74:0d:14:55: d2:5a:19:46:51:ba:fd:0b:d3:29:c8:29:dd:cf:28:40:ec:ae: 3a:28:20:f3:92:94:2d:72:ec:5c:89:25:7a:58:85:47:b7:d0: 48:bb:10:76:14:2c:bf:7a:8d:1c:b3:0b:26:d6:fe:8a:be:11: 23:5b:bc:c3:b0:fe:2e:97:93:be:b8:49:f2:d7:3a:46:d2:d8: e3:12:82:12:32:77:28:cb:07:cd:29:5a:40:67:26:a1:9c:b9: 78:ac:bb:f2:5f:27:9b:29:36:ec:69:a0:e6:fe:b4:33:59:e0: 7b:4c:42:e5:fe:9c:44:fa:3c:9e:1c:db:1a:06:bb:ff:97:b7: f1:94:ec:b7:2b:1d:c1:fa:92:3d:97:f0:d3:ad:66:b4:8b:a8: f2:9f:8d:91:42:39:8f:f2:4a:b9:01:e1:b2:e7:33:1a:28:0f: 39:ff:aa:47:d2:23:b0:9f:44:61:b7:99:ae:79:3f:94:d1:8f: 27:b9:61:06:d6:a7:66:1b:fd:d2:28:10:15:2c:cc:52:63:c5: ec:dc:b1:78:18:6e:99:21:d6:2c:ce:9a:94:28:c6:7e:41:cf: d2:c0:6a:2c:a7:fc:e4:59:38:a2:f8:96:d4:84:8f:c4:68:f0: 37:06:62:44 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDb20RqXefZLP1x8L9zXVQ3ifNAAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkNERjVDRDFGRERGRjJDMDI0QzEzQTI5MjY0RDcwRkE1 MUY5NTg3QTAeFw0yNDExMjYxMTU1NDhaFw0yNTExMjUxMjAwNDhaMDMxMTAvBgNV BAMTKEMxRERFQkM5RkJEOEZCOEJDQTYwOTRCQUFDMjQ3Rjg0MzI4OTY1ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDISvfj+kSdYiKwC0N9GumhLxvW op0iQD8gJBHWjrHfIRBRepGW4XFCxGY7UuInEeFwEzJZLYCBYT6u87OqcstSeNq/ Qv6DVAc80Uv1JqJ4bJJSlE/5RVU8QkrZIWg+113MsKmMhDYUg0YX1cbWxbLHQodM ttpGYRYF4yfuMsXfkQhP/JtbeVlAtcNixK16o2Nyh5xU2UdNd7VVluKRSfSCqwAO vV4IT3/fYfLx2+AWfvfp/jOAOug4reYiOgP5f8g36Ev5HarCOpgOZYMho0gLxl2f 0TBBf7lbdOqwqgtWPiPfC+MxjrhmWSRp+k7/LnOg6pUYhTRg891PvYFELjU3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUwd3ryfvY+4vKYJS6rCR/hDKJZYcwHwYDVR0j BBgwFoAUbN9c0f3f8sAkwTopJk1w+lH5WHowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDI2NjUxMS02MzllLTRjMmItOTYzNC05Y2MxZTIyZmE3MDgvMC82Q0RGNUNEMUZE REZGMkMwMjRDMTNBMjkyNjRENzBGQTUxRjk1ODdBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkNERjVDRDFGRERGRjJDMDI0QzEzQTI5MjY0RDcwRkE1MUY5 NTg3QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkMjY2NTExLTYzOWUtNGMyYi05 NjM0LTljYzFlMjJmYTcwOC8wLzMxMzAzMzJlMzEzNjMyMmUzMjMxMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzEzNzM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnotowDQYJ KoZIhvcNAQELBQADggEBAKWAawhzVtOsi8XpODGxdA0UVdJaGUZRuv0L0ynIKd3P KEDsrjooIPOSlC1y7FyJJXpYhUe30Ei7EHYULL96jRyzCybW/oq+ESNbvMOw/i6X k764SfLXOkbS2OMSghIydyjLB80pWkBnJqGcuXisu/JfJ5spNuxpoOb+tDNZ4HtM QuX+nET6PJ4c2xoGu/+Xt/GU7LcrHcH6kj2X8NOtZrSLqPKfjZFCOY/ySrkB4bLn MxooDzn/qkfSI7CfRGG3ma55P5TRjye5YQbWp2Yb/dIoEBUszFJjxezcsXgYbpkh 1izOmpQoxn5Bz9LAaiyn/ORZOKL4ltSEj8Ro8DcGYkQ= -----END CERTIFICATE-----Generated at Sun Apr 6 10:57:48 2025 by rpki-client