$ rpki-client -vvf repo-rpki.idnic.net/repo/7e6bff9d-fb13-47b9-9cc0-dd6a0730a1c6/0/3130332e3132392e34382e302f32332d3234203d3e20313335343738.roa File: 3130332e3132392e34382e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: nuG2thm0oiOwKnakW1lHLkXwPbpo6Y7ruJlmvamdekA= Subject key identifier: 06:7B:B7:99:B8:A6:09:69:10:56:D7:52:C7:02:4B:FE:EE:25:0B:01 Certificate issuer: /CN=2AA6E65B86E4423AEC7D02D85B43BA008012D29D Certificate serial: 39091FABFF26B67CEC51F700D76986D0287936B8 Authority key identifier: 2A:A6:E6:5B:86:E4:42:3A:EC:7D:02:D8:5B:43:BA:00:80:12:D2:9D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AA6E65B86E4423AEC7D02D85B43BA008012D29D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e6bff9d-fb13-47b9-9cc0-dd6a0730a1c6/0/3130332e3132392e34382e302f32332d3234203d3e20313335343738.roa Signing time: Wed 04 Dec 2024 09:03:12 +0000 ROA not before: Wed 04 Dec 2024 08:58:12 +0000 ROA not after: Wed 03 Dec 2025 09:03:12 +0000 asID: 135478 IP address blocks: 103.129.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e6bff9d-fb13-47b9-9cc0-dd6a0730a1c6/0/2AA6E65B86E4423AEC7D02D85B43BA008012D29D.crl rsync://repo-rpki.idnic.net/repo/7e6bff9d-fb13-47b9-9cc0-dd6a0730a1c6/0/2AA6E65B86E4423AEC7D02D85B43BA008012D29D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AA6E65B86E4423AEC7D02D85B43BA008012D29D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 00:03:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:09:1f:ab:ff:26:b6:7c:ec:51:f7:00:d7:69:86:d0:28:79:36:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2AA6E65B86E4423AEC7D02D85B43BA008012D29D Validity Not Before: Dec 4 08:58:12 2024 GMT Not After : Dec 3 09:03:12 2025 GMT Subject: CN=067BB799B8A609691056D752C7024BFEEE250B01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a0:db:e5:62:f9:dd:53:34:26:2e:33:97:83: 42:1a:6d:e5:1a:80:4d:6a:03:7c:9a:c6:09:ab:ee: 24:47:05:6a:b3:1e:6d:e3:fd:26:31:66:f2:22:31: 81:71:40:93:c9:d4:4c:28:f2:41:e9:44:e1:32:de: 0a:15:a6:e1:c5:6c:41:8c:c0:53:ba:81:7d:22:33: ac:b5:61:1c:f4:81:64:36:d2:f7:c1:4f:7e:11:c5: d3:79:ec:3c:4e:6a:f4:d4:8f:2d:fb:79:13:6d:97: 0a:29:be:1a:3b:de:2e:04:89:89:ce:74:5c:e9:4b: 25:c5:a3:20:63:89:5c:f4:37:c9:3d:64:e0:e6:4b: b3:a1:56:e8:42:55:f0:24:bd:9a:88:1c:fb:a5:aa: bd:10:02:74:96:f9:1a:22:90:e1:2a:26:df:59:51: 0f:27:52:89:8d:62:d5:9b:23:e7:40:11:e5:ef:35: 07:85:73:3b:f3:7e:54:09:07:6c:d9:4c:29:0b:96: 08:5f:c9:22:fd:46:71:0f:e8:96:e9:cc:28:33:77: 6c:78:b8:93:ec:3a:74:17:30:bc:f8:25:68:43:b4: 64:9d:c4:2b:f2:00:10:29:9f:fc:6d:86:9e:77:f9: 42:71:1e:60:b5:2d:2f:4d:88:34:4e:46:20:e4:ca: 60:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:7B:B7:99:B8:A6:09:69:10:56:D7:52:C7:02:4B:FE:EE:25:0B:01 X509v3 Authority Key Identifier: keyid:2A:A6:E6:5B:86:E4:42:3A:EC:7D:02:D8:5B:43:BA:00:80:12:D2:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e6bff9d-fb13-47b9-9cc0-dd6a0730a1c6/0/2AA6E65B86E4423AEC7D02D85B43BA008012D29D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AA6E65B86E4423AEC7D02D85B43BA008012D29D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e6bff9d-fb13-47b9-9cc0-dd6a0730a1c6/0/3130332e3132392e34382e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.48.0/23 Signature Algorithm: sha256WithRSAEncryption 6b:8f:3b:b5:bf:74:df:c0:02:61:2a:d1:37:2e:fa:a6:bb:54: 65:8f:0c:a8:f3:70:c0:5c:62:7f:87:46:bb:83:4a:ad:72:4e: 52:e0:a5:47:a9:2c:7f:2d:06:6e:b4:e7:22:b8:ec:2d:75:90: 74:7f:45:36:93:50:45:84:ab:a1:d0:b0:52:a5:cd:d4:94:c8: 43:f5:28:58:b5:4f:ee:12:ab:08:35:64:76:78:b2:f3:1f:99: 6f:ac:a5:7f:c0:ec:82:9e:f0:29:06:93:fd:3c:1a:62:c7:9e: b8:51:d2:e7:00:f8:70:63:92:77:6d:50:83:a1:7a:36:c3:ff: 8c:c5:68:34:18:5b:a0:14:6b:d3:88:c2:9d:1e:f4:22:c0:a0: f0:6e:b8:c0:12:78:b3:45:2e:b2:71:f9:c0:6f:be:2a:de:0f: cd:3d:92:63:16:4a:86:db:c0:ea:d6:da:05:10:49:9d:87:6c: 09:38:69:05:99:8d:d3:32:aa:31:47:34:24:e0:d3:59:2b:63: 26:53:3d:d0:e0:75:ce:72:63:00:4d:64:3d:5d:7e:f9:31:15: 9b:aa:77:e1:05:e0:2f:e2:f6:b7:72:cb:5b:64:c5:ba:cb:ba: 69:02:e6:9a:93:9f:16:10:46:bc:08:06:af:f6:b3:5c:f5:8e: e1:19:c9:50 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOQkfq/8mtnzsUfcA12mG0Ch5NrgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFBNkU2NUI4NkU0NDIzQUVDN0QwMkQ4NUI0M0JBMDA4 MDEyRDI5RDAeFw0yNDEyMDQwODU4MTJaFw0yNTEyMDMwOTAzMTJaMDMxMTAvBgNV BAMTKDA2N0JCNzk5QjhBNjA5NjkxMDU2RDc1MkM3MDI0QkZFRUUyNTBCMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8oNvlYvndUzQmLjOXg0IabeUa gE1qA3yaxgmr7iRHBWqzHm3j/SYxZvIiMYFxQJPJ1Ewo8kHpROEy3goVpuHFbEGM wFO6gX0iM6y1YRz0gWQ20vfBT34RxdN57DxOavTUjy37eRNtlwopvho73i4EiYnO dFzpSyXFoyBjiVz0N8k9ZODmS7OhVuhCVfAkvZqIHPulqr0QAnSW+RoikOEqJt9Z UQ8nUomNYtWbI+dAEeXvNQeFczvzflQJB2zZTCkLlghfySL9RnEP6JbpzCgzd2x4 uJPsOnQXMLz4JWhDtGSdxCvyABApn/xthp53+UJxHmC1LS9NiDRORiDkymDzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBnu3mbimCWkQVtdSxwJL/u4lCwEwHwYDVR0j BBgwFoAUKqbmW4bkQjrsfQLYW0O6AIAS0p0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTZiZmY5ZC1mYjEzLTQ3YjktOWNjMC1kZDZhMDczMGExYzYvMC8yQUE2RTY1Qjg2 RTQ0MjNBRUM3RDAyRDg1QjQzQkEwMDgwMTJEMjlELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkFBNkU2NUI4NkU0NDIzQUVDN0QwMkQ4NUI0M0JBMDA4MDEy RDI5RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNmJmZjlkLWZiMTMtNDdiOS05 Y2MwLWRkNmEwNzMwYTFjNi8wLzMxMzAzMzJlMzEzMjM5MmUzNDM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4EwMA0GCSqG SIb3DQEBCwUAA4IBAQBrjzu1v3TfwAJhKtE3Lvqmu1Rljwyo83DAXGJ/h0a7g0qt ck5S4KVHqSx/LQZutOciuOwtdZB0f0U2k1BFhKuh0LBSpc3UlMhD9ShYtU/uEqsI NWR2eLLzH5lvrKV/wOyCnvApBpP9PBpix564UdLnAPhwY5J3bVCDoXo2w/+MxWg0 GFugFGvTiMKdHvQiwKDwbrjAEnizRS6ycfnAb74q3g/NPZJjFkqG28Dq1toFEEmd h2wJOGkFmY3TMqoxRzQk4NNZK2MmUz3Q4HXOcmMATWQ9XX75MRWbqnfhBeAv4va3 cstbZMW6y7ppAuaak58WEEa8CAav9rNc9Y7hGclQ -----END CERTIFICATE-----Generated at Tue Mar 11 04:58:24 2025 by rpki-client