$ rpki-client -vvf repo-rpki.idnic.net/repo/7e5c73cc-985e-4e92-ba69-cd8bffe4a53d/0/3130332e3136312e3133302e302f32342d3234203d3e20313431363133.roa File: 3130332e3136312e3133302e302f32342d3234203d3e20313431363133.roa (raw, json) Hash identifier: ZmtyjH4esGBpYxS6kg8mvGLf2n4U5Kw19ahenRHRz1U= Subject key identifier: A8:68:0F:4A:43:2F:7C:A2:6C:04:A3:78:87:36:70:2B:19:5C:61:81 Certificate issuer: /CN=F256ED0C68D48E70DDBE3473644FDBA420E82FBC Certificate serial: 40CE278801C23F707032FB3A007789D7953F899E Authority key identifier: F2:56:ED:0C:68:D4:8E:70:DD:BE:34:73:64:4F:DB:A4:20:E8:2F:BC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F256ED0C68D48E70DDBE3473644FDBA420E82FBC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e5c73cc-985e-4e92-ba69-cd8bffe4a53d/0/3130332e3136312e3133302e302f32342d3234203d3e20313431363133.roa Signing time: Tue 26 Nov 2024 12:00:00 +0000 ROA not before: Tue 26 Nov 2024 11:55:00 +0000 ROA not after: Tue 25 Nov 2025 12:00:00 +0000 asID: 141613 IP address blocks: 103.161.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e5c73cc-985e-4e92-ba69-cd8bffe4a53d/0/F256ED0C68D48E70DDBE3473644FDBA420E82FBC.crl rsync://repo-rpki.idnic.net/repo/7e5c73cc-985e-4e92-ba69-cd8bffe4a53d/0/F256ED0C68D48E70DDBE3473644FDBA420E82FBC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F256ED0C68D48E70DDBE3473644FDBA420E82FBC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 17:42:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:ce:27:88:01:c2:3f:70:70:32:fb:3a:00:77:89:d7:95:3f:89:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F256ED0C68D48E70DDBE3473644FDBA420E82FBC Validity Not Before: Nov 26 11:55:00 2024 GMT Not After : Nov 25 12:00:00 2025 GMT Subject: CN=A8680F4A432F7CA26C04A3788736702B195C6181 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:5c:e9:07:cd:8f:4e:28:8a:91:e7:f8:a2:c3: dd:27:1b:67:98:06:c7:7a:a4:8f:5f:2a:11:bf:5d: 8c:13:3b:85:2b:04:be:b9:9f:b9:b7:a3:a9:ee:1f: 4b:c2:ba:00:03:1f:19:16:02:fc:c6:48:8a:f9:e1: b6:a5:77:8b:1d:8e:b9:3d:d3:7e:8f:66:98:b2:48: c8:d4:1e:ff:c8:10:29:a8:9a:23:b6:60:93:8f:fa: 75:19:d9:96:8c:af:11:75:f2:89:55:c0:bc:59:03: 4b:44:0b:be:bc:74:1e:d0:f8:01:08:06:f4:7c:9d: 8a:28:9f:3e:80:01:c2:4b:bb:06:d9:70:7e:e3:db: 97:22:1e:7a:86:89:da:6a:8b:6d:8b:41:56:25:3f: 97:ef:08:f7:30:14:a6:95:9d:53:94:3f:8f:79:6a: b9:30:a6:16:61:b9:0c:ae:f3:15:e4:e7:ea:ca:13: 57:4d:f1:20:00:a6:92:4b:19:f2:66:dc:a2:fd:db: 1a:a7:e4:63:37:39:bb:7d:7e:0b:de:0f:f0:3e:ed: 91:0e:2e:5e:20:6c:2f:f7:d6:f4:9c:31:90:89:fc: 47:ec:93:f9:31:9d:0d:3a:de:f2:03:27:48:eb:c7: 2a:16:72:4c:b0:41:95:50:8f:c3:86:02:71:a4:40: 63:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:68:0F:4A:43:2F:7C:A2:6C:04:A3:78:87:36:70:2B:19:5C:61:81 X509v3 Authority Key Identifier: keyid:F2:56:ED:0C:68:D4:8E:70:DD:BE:34:73:64:4F:DB:A4:20:E8:2F:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e5c73cc-985e-4e92-ba69-cd8bffe4a53d/0/F256ED0C68D48E70DDBE3473644FDBA420E82FBC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F256ED0C68D48E70DDBE3473644FDBA420E82FBC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e5c73cc-985e-4e92-ba69-cd8bffe4a53d/0/3130332e3136312e3133302e302f32342d3234203d3e20313431363133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.130.0/24 Signature Algorithm: sha256WithRSAEncryption 68:5b:78:81:ff:0b:b6:53:40:73:c5:99:d2:f5:2d:b0:87:8c: 88:ec:90:bb:14:3c:5f:0e:18:6a:ee:21:c4:f5:78:3d:e5:1f: 47:85:9c:64:6e:81:d7:c5:5c:ab:f5:ca:00:7b:c9:99:c1:89: 26:e2:de:52:79:d8:ac:90:75:de:8f:cb:c3:0f:79:c9:32:87: d9:2d:6d:69:20:d8:25:24:29:3c:b5:d2:f6:d5:80:a0:b7:f4: f6:de:e8:bd:6a:6a:f5:21:a5:fa:ab:49:f5:27:8c:af:0d:4c: b0:e0:e1:c5:e6:5c:d5:b7:5e:0a:00:80:7a:db:fe:78:59:8f: d5:f8:a3:f2:e1:72:8c:51:41:aa:d6:a2:b5:a9:d2:90:c3:b9: 13:e2:0b:ec:3a:a1:0e:2e:fa:f2:9f:00:81:7b:60:c3:6a:9e: 4e:52:c3:42:5a:62:c4:e6:26:6c:92:db:c7:d6:31:7e:72:77: c9:ac:ac:02:34:18:59:7a:81:ae:d7:e9:7f:36:03:db:33:8c: a6:80:75:cf:a7:a2:38:9f:d3:4b:5b:9b:f8:9f:f7:c3:ea:8c: 85:cc:15:a7:0d:25:f0:dc:d8:cc:b6:65:b5:8e:64:ec:7c:1c: 24:89:05:69:75:75:86:1a:54:d3:cd:08:1c:97:0c:d4:50:4c: 20:a9:d3:f8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQM4niAHCP3BwMvs6AHeJ15U/iZ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjI1NkVEMEM2OEQ0OEU3MEREQkUzNDczNjQ0RkRCQTQy MEU4MkZCQzAeFw0yNDExMjYxMTU1MDBaFw0yNTExMjUxMjAwMDBaMDMxMTAvBgNV BAMTKEE4NjgwRjRBNDMyRjdDQTI2QzA0QTM3ODg3MzY3MDJCMTk1QzYxODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVXOkHzY9OKIqR5/iiw90nG2eY Bsd6pI9fKhG/XYwTO4UrBL65n7m3o6nuH0vCugADHxkWAvzGSIr54bald4sdjrk9 036PZpiySMjUHv/IECmomiO2YJOP+nUZ2ZaMrxF18olVwLxZA0tEC768dB7Q+AEI BvR8nYoonz6AAcJLuwbZcH7j25ciHnqGidpqi22LQVYlP5fvCPcwFKaVnVOUP495 arkwphZhuQyu8xXk5+rKE1dN8SAAppJLGfJm3KL92xqn5GM3Obt9fgveD/A+7ZEO Ll4gbC/31vScMZCJ/Efsk/kxnQ063vIDJ0jrxyoWckywQZVQj8OGAnGkQGNHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUqGgPSkMvfKJsBKN4hzZwKxlcYYEwHwYDVR0j BBgwFoAU8lbtDGjUjnDdvjRzZE/bpCDoL7wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTVjNzNjYy05ODVlLTRlOTItYmE2OS1jZDhiZmZlNGE1M2QvMC9GMjU2RUQwQzY4 RDQ4RTcwRERCRTM0NzM2NDRGREJBNDIwRTgyRkJDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjI1NkVEMEM2OEQ0OEU3MEREQkUzNDczNjQ0RkRCQTQyMEU4 MkZCQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNWM3M2NjLTk4NWUtNGU5Mi1i YTY5LWNkOGJmZmU0YTUzZC8wLzMxMzAzMzJlMzEzNjMxMmUzMTMzMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoYIwDQYJ KoZIhvcNAQELBQADggEBAGhbeIH/C7ZTQHPFmdL1LbCHjIjskLsUPF8OGGruIcT1 eD3lH0eFnGRugdfFXKv1ygB7yZnBiSbi3lJ52KyQdd6Py8MPeckyh9ktbWkg2CUk KTy10vbVgKC39Pbe6L1qavUhpfqrSfUnjK8NTLDg4cXmXNW3XgoAgHrb/nhZj9X4 o/LhcoxRQarWorWp0pDDuRPiC+w6oQ4u+vKfAIF7YMNqnk5Sw0JaYsTmJmyS28fW MX5yd8msrAI0GFl6ga7X6X82A9szjKaAdc+nojif00tbm/if98PqjIXMFacNJfDc 2My2ZbWOZOx8HCSJBWl1dYYaVNPNCByXDNRQTCCp0/g= -----END CERTIFICATE-----Generated at Sun Apr 6 14:38:54 2025 by rpki-client