$ rpki-client -vvf repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/3130332e3136372e3136382e302f32332d3233203d3e20313431393835.roa File: 3130332e3136372e3136382e302f32332d3233203d3e20313431393835.roa (raw, json) Hash identifier: 3J6hvxgEVqyD6OymkoX4wg6aPVnMQfStqRhmiYMuRiY= Subject key identifier: F8:3D:1A:CD:8B:B4:81:5E:00:11:1B:88:DC:EF:4F:84:A6:E7:0D:A0 Certificate issuer: /CN=357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B Certificate serial: 4EF293D18241163425DB8BAB093E77A195A06ADB Authority key identifier: 35:7D:EA:C5:E6:C1:1B:3C:3E:15:2D:5A:24:F8:D8:31:5E:A4:3E:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/3130332e3136372e3136382e302f32332d3233203d3e20313431393835.roa Signing time: Tue 16 Jul 2024 04:00:02 +0000 ROA not before: Tue 16 Jul 2024 03:55:02 +0000 ROA not after: Tue 15 Jul 2025 04:00:02 +0000 asID: 141985 IP address blocks: 103.167.168.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.crl rsync://repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Feb 2025 04:31:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:f2:93:d1:82:41:16:34:25:db:8b:ab:09:3e:77:a1:95:a0:6a:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B Validity Not Before: Jul 16 03:55:02 2024 GMT Not After : Jul 15 04:00:02 2025 GMT Subject: CN=F83D1ACD8BB4815E00111B88DCEF4F84A6E70DA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:47:df:b3:4b:88:55:d2:05:bf:48:f5:7d:20: c2:34:14:49:9e:6d:f9:7d:19:0c:65:7f:46:28:fa: 42:0a:f8:33:01:5f:10:a2:86:d9:3e:fd:65:01:c9: 42:ea:2d:0e:c1:5b:c4:6f:28:ad:5b:66:02:40:f9: a5:e5:13:ca:35:9a:6f:62:29:1d:7a:04:f3:94:dc: cc:57:80:42:d0:04:0c:45:09:8e:c2:0e:5f:d5:49: 9b:01:92:cd:f5:02:f3:d7:e4:22:86:76:d5:52:54: 20:04:01:06:70:ae:2e:de:96:94:3e:65:0e:da:21: 9d:cc:d2:b1:fb:6f:ad:35:53:86:4f:91:02:ff:29: e6:cc:ff:f1:46:92:c4:6d:20:62:bd:11:22:ed:75: 50:b3:fc:fc:0d:1a:7a:c7:67:9a:a1:9a:60:ac:5f: 0a:9d:45:fc:c1:81:0f:4b:10:98:a5:8e:63:cf:7f: fd:83:65:a0:47:2e:d2:d3:28:84:83:82:1f:c1:06: 4e:4e:d8:bd:2a:2b:4c:28:60:c2:a1:e0:f3:c8:ee: 65:4d:e4:b1:bb:fa:27:b8:9f:6b:21:77:dd:95:92: b8:27:c2:b5:97:3a:55:f0:82:32:0c:e1:28:b9:e6: 2d:84:3a:6f:20:92:6e:3e:cc:6b:55:a2:45:a9:92: 4b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:3D:1A:CD:8B:B4:81:5E:00:11:1B:88:DC:EF:4F:84:A6:E7:0D:A0 X509v3 Authority Key Identifier: keyid:35:7D:EA:C5:E6:C1:1B:3C:3E:15:2D:5A:24:F8:D8:31:5E:A4:3E:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/3130332e3136372e3136382e302f32332d3233203d3e20313431393835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.168.0/23 Signature Algorithm: sha256WithRSAEncryption 25:6f:a2:d9:8b:f3:03:79:63:b5:06:19:c3:a0:ae:e6:f2:fe: a4:33:ae:fa:86:6c:93:82:2f:e6:0a:b7:de:25:ee:f7:6e:9d: b2:22:f6:37:db:1d:e5:45:04:87:24:d8:d0:d4:58:0b:a6:eb: 1a:4c:1c:fd:45:f2:47:b2:85:03:c2:d3:18:d0:0c:42:06:f4: 1d:a5:ee:6a:00:dc:27:79:7e:57:43:84:ad:40:32:8b:b1:eb: ed:54:c4:f4:db:c7:c1:4a:ca:90:55:30:80:a0:1e:71:27:2f: 16:38:98:20:d5:96:65:e7:6d:dc:3c:d9:0e:82:34:31:aa:95: 28:40:8d:55:9f:8f:cb:26:fb:4b:30:00:b0:23:39:b0:fc:37: 48:1d:30:08:48:c0:84:e3:4f:e7:a6:c9:b5:d9:bc:d3:45:2e: 25:a7:53:7a:87:e4:dc:ed:82:44:fe:f1:06:a2:76:87:11:75: 8e:71:ff:c2:99:82:d4:32:7c:e6:69:0a:eb:00:10:f0:1e:3d: dd:49:cc:66:ec:7d:ac:f6:c6:31:4f:56:bc:d7:bb:fb:81:e5: a8:1f:10:0a:0e:fe:64:19:93:2f:aa:7d:66:f4:ec:bc:1f:40: 81:27:c4:a4:00:e1:ed:38:23:5c:44:e2:11:81:b9:d5:93:0a: 6e:d9:b8:fe -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTvKT0YJBFjQl24urCT53oZWgatswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzU3REVBQzVFNkMxMUIzQzNFMTUyRDVBMjRGOEQ4MzE1 RUE0M0UyQjAeFw0yNDA3MTYwMzU1MDJaFw0yNTA3MTUwNDAwMDJaMDMxMTAvBgNV BAMTKEY4M0QxQUNEOEJCNDgxNUUwMDExMUI4OERDRUY0Rjg0QTZFNzBEQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFR9+zS4hV0gW/SPV9IMI0FEme bfl9GQxlf0Yo+kIK+DMBXxCihtk+/WUByULqLQ7BW8RvKK1bZgJA+aXlE8o1mm9i KR16BPOU3MxXgELQBAxFCY7CDl/VSZsBks31AvPX5CKGdtVSVCAEAQZwri7elpQ+ ZQ7aIZ3M0rH7b601U4ZPkQL/KebM//FGksRtIGK9ESLtdVCz/PwNGnrHZ5qhmmCs XwqdRfzBgQ9LEJiljmPPf/2DZaBHLtLTKISDgh/BBk5O2L0qK0woYMKh4PPI7mVN 5LG7+ie4n2shd92VkrgnwrWXOlXwgjIM4Si55i2EOm8gkm4+zGtVokWpkkuZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU+D0azYu0gV4AERuI3O9PhKbnDaAwHwYDVR0j BBgwFoAUNX3qxebBGzw+FS1aJPjYMV6kPiswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDRiNjEyZi1mOTI0LTRlYzItYjFmMS1hMTMwNWQyM2Q1M2EvMC8zNTdERUFDNUU2 QzExQjNDM0UxNTJENUEyNEY4RDgzMTVFQTQzRTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzU3REVBQzVFNkMxMUIzQzNFMTUyRDVBMjRGOEQ4MzE1RUE0 M0UyQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkNGI2MTJmLWY5MjQtNGVjMi1i MWYxLWExMzA1ZDIzZDUzYS8wLzMxMzAzMzJlMzEzNjM3MmUzMTM2MzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzOTM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnp6gwDQYJ KoZIhvcNAQELBQADggEBACVvotmL8wN5Y7UGGcOgruby/qQzrvqGbJOCL+YKt94l 7vdunbIi9jfbHeVFBIck2NDUWAum6xpMHP1F8keyhQPC0xjQDEIG9B2l7moA3Cd5 fldDhK1AMoux6+1UxPTbx8FKypBVMICgHnEnLxY4mCDVlmXnbdw82Q6CNDGqlShA jVWfj8sm+0swALAjObD8N0gdMAhIwITjT+emybXZvNNFLiWnU3qH5NztgkT+8Qai docRdY5x/8KZgtQyfOZpCusAEPAePd1JzGbsfaz2xjFPVrzXu/uB5agfEAoO/mQZ ky+qfWb07LwfQIEnxKQA4e04I1xE4hGBudWTCm7ZuP4= -----END CERTIFICATE-----Generated at Fri Feb 21 11:12:01 2025 by rpki-client