$ rpki-client -vvf repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/3130332e38382e39302e302f32342d3234203d3e20313530323232.roa File: 3130332e38382e39302e302f32342d3234203d3e20313530323232.roa (raw, json) Hash identifier: MYQMONKpGPj3bOstGyVvXnBKB1cjxaxprR+RC7x3cvc= Subject key identifier: 37:6E:76:0B:22:8F:A3:2D:A0:75:17:03:2D:17:C7:E4:5B:C1:FA:E4 Certificate issuer: /CN=04EE3BC3691732E069DF0D9D29DE360611CCF0DB Certificate serial: 3A5F81AC43FE3104CDFE7E437FCF2E84356C0B92 Authority key identifier: 04:EE:3B:C3:69:17:32:E0:69:DF:0D:9D:29:DE:36:06:11:CC:F0:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/3130332e38382e39302e302f32342d3234203d3e20313530323232.roa Signing time: Mon 12 Aug 2024 15:00:01 +0000 ROA not before: Mon 12 Aug 2024 14:55:01 +0000 ROA not after: Mon 11 Aug 2025 15:00:01 +0000 asID: 150222 IP address blocks: 103.88.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.crl rsync://repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 08:41:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:5f:81:ac:43:fe:31:04:cd:fe:7e:43:7f:cf:2e:84:35:6c:0b:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04EE3BC3691732E069DF0D9D29DE360611CCF0DB Validity Not Before: Aug 12 14:55:01 2024 GMT Not After : Aug 11 15:00:01 2025 GMT Subject: CN=376E760B228FA32DA07517032D17C7E45BC1FAE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:93:de:3c:fc:23:8d:45:0f:11:a0:ee:ae:74: ce:bc:7c:e1:27:4f:f8:66:66:2e:ee:13:a9:37:f4: 66:d5:9c:94:f0:bf:09:c4:00:7e:7d:82:d8:35:99: f2:c1:dc:f0:41:6f:ff:5c:8e:a0:f4:a3:3b:d3:9d: 09:f5:c1:fa:23:c8:cc:a9:4d:35:95:95:a8:50:35: f9:f6:4f:61:42:7a:d6:9c:9d:39:8b:c7:3f:49:ac: 4b:98:b2:34:ae:0e:08:b5:25:4b:71:cb:82:83:4b: db:09:14:8d:4f:d8:df:d6:6a:a4:fe:6d:a7:5a:84: 0b:8d:ea:52:3b:1e:bf:68:e1:70:78:25:7e:fc:50: 53:fc:98:96:5a:c0:37:b6:70:7e:fd:87:e6:f9:26: d1:fe:f9:62:41:2f:41:3b:28:60:53:03:d5:9b:93: 54:a7:10:20:42:52:45:56:53:53:05:fb:29:2c:02: f7:44:61:aa:a7:66:71:f2:57:76:f5:33:ba:7e:c6: a6:18:0e:e6:d1:aa:ac:b1:55:79:a9:ab:47:e6:fc: e2:95:59:f5:aa:ab:f0:e0:76:fe:87:d1:4a:55:ee: 93:dd:9f:88:7c:16:e5:40:bd:6f:58:cb:bb:5c:ff: d4:1e:2b:bb:b2:f2:34:ec:5e:32:dc:4e:12:e7:73: 1d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:6E:76:0B:22:8F:A3:2D:A0:75:17:03:2D:17:C7:E4:5B:C1:FA:E4 X509v3 Authority Key Identifier: keyid:04:EE:3B:C3:69:17:32:E0:69:DF:0D:9D:29:DE:36:06:11:CC:F0:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/04EE3BC3691732E069DF0D9D29DE360611CCF0DB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e91809e-dd49-4c52-b11f-2a518c3aa856/0/3130332e38382e39302e302f32342d3234203d3e20313530323232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.88.90.0/24 Signature Algorithm: sha256WithRSAEncryption 65:66:1b:01:7b:ee:5a:f0:dd:3a:9b:00:2e:59:e5:85:9d:0f: de:9d:08:21:0d:af:70:64:b7:0b:a2:b8:42:02:3c:38:c8:81: ac:67:3f:9a:75:8e:d2:56:85:0b:53:14:09:ca:c0:32:ab:b0: 54:6f:f2:0d:0c:76:89:00:9c:59:1e:23:fb:ba:95:c2:9b:ac: cb:b7:e4:27:f7:eb:74:be:65:49:c1:7c:dd:97:44:75:9c:1e: 28:b3:ed:13:35:88:40:ca:25:56:c1:b8:75:d9:b5:a9:e9:97: 33:41:13:67:78:44:88:af:7b:d9:b6:1e:17:93:aa:6f:c5:41: 2f:55:98:e3:17:cd:3b:43:34:a7:6f:a3:fd:dc:ec:d4:2d:42: 5e:cf:2b:dc:6c:f2:4d:83:c9:05:a8:e2:db:6d:22:61:4e:f9: ea:b1:7b:8b:ba:5a:ac:64:89:e5:56:2f:98:26:3a:30:74:14: 93:d4:f2:55:4f:b4:26:63:80:34:10:e3:4f:66:4e:aa:77:77: 4b:15:57:9d:09:4c:d0:bc:22:0b:f9:7c:a0:82:32:14:c7:69: 5e:81:10:49:ea:7c:a5:b6:d2:ca:8c:0c:80:79:ae:4b:ff:ce: 9e:2a:1a:3a:df:06:f3:ec:e0:1a:90:1f:7c:0f:3c:3e:f2:df: ef:ec:ae:51 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOl+BrEP+MQTN/n5Df88uhDVsC5IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDRFRTNCQzM2OTE3MzJFMDY5REYwRDlEMjlERTM2MDYx MUNDRjBEQjAeFw0yNDA4MTIxNDU1MDFaFw0yNTA4MTExNTAwMDFaMDMxMTAvBgNV BAMTKDM3NkU3NjBCMjI4RkEzMkRBMDc1MTcwMzJEMTdDN0U0NUJDMUZBRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD3k948/CONRQ8RoO6udM68fOEn T/hmZi7uE6k39GbVnJTwvwnEAH59gtg1mfLB3PBBb/9cjqD0ozvTnQn1wfojyMyp TTWVlahQNfn2T2FCetacnTmLxz9JrEuYsjSuDgi1JUtxy4KDS9sJFI1P2N/WaqT+ badahAuN6lI7Hr9o4XB4JX78UFP8mJZawDe2cH79h+b5JtH++WJBL0E7KGBTA9Wb k1SnECBCUkVWU1MF+yksAvdEYaqnZnHyV3b1M7p+xqYYDubRqqyxVXmpq0fm/OKV WfWqq/Dgdv6H0UpV7pPdn4h8FuVAvW9Yy7tc/9QeK7uy8jTsXjLcThLncx33AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUN252CyKPoy2gdRcDLRfH5FvB+uQwHwYDVR0j BBgwFoAUBO47w2kXMuBp3w2dKd42BhHM8NswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTkxODA5ZS1kZDQ5LTRjNTItYjExZi0yYTUxOGMzYWE4NTYvMC8wNEVFM0JDMzY5 MTczMkUwNjlERjBEOUQyOURFMzYwNjExQ0NGMERCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDRFRTNCQzM2OTE3MzJFMDY5REYwRDlEMjlERTM2MDYxMUND RjBEQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlOTE4MDllLWRkNDktNGM1Mi1i MTFmLTJhNTE4YzNhYTg1Ni8wLzMxMzAzMzJlMzgzODJlMzkzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzIzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdYWjANBgkqhkiG 9w0BAQsFAAOCAQEAZWYbAXvuWvDdOpsALlnlhZ0P3p0IIQ2vcGS3C6K4QgI8OMiB rGc/mnWO0laFC1MUCcrAMquwVG/yDQx2iQCcWR4j+7qVwpusy7fkJ/frdL5lScF8 3ZdEdZweKLPtEzWIQMolVsG4ddm1qemXM0ETZ3hEiK972bYeF5Oqb8VBL1WY4xfN O0M0p2+j/dzs1C1CXs8r3GzyTYPJBaji220iYU756rF7i7parGSJ5VYvmCY6MHQU k9TyVU+0JmOANBDjT2ZOqnd3SxVXnQlM0LwiC/l8oIIyFMdpXoEQSep8pbbSyowM gHmuS//OnioaOt8G8+zgGpAffA88PvLf7+yuUQ== -----END CERTIFICATE-----Generated at Tue Mar 11 05:03:10 2025 by rpki-client