$ rpki-client -vvf repo-rpki.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/3130332e3132362e3233382e302f32342d3234203d3e20313530353033.roa File: 3130332e3132362e3233382e302f32342d3234203d3e20313530353033.roa (raw, json) Hash identifier: oxyDXrOoZ/zCFS3Gztc4WC6OS30QoAhbYVI4h5EBUSY= Subject key identifier: E9:6C:1E:52:51:79:74:6C:51:4C:C6:48:23:BF:47:ED:DD:3E:A4:79 Certificate issuer: /CN=D175BDC5A6414CEBAB472DF9159CBD32BCCF91EA Certificate serial: 04C7056DCBC9375394E5C543CEFB06277939FBEB Authority key identifier: D1:75:BD:C5:A6:41:4C:EB:AB:47:2D:F9:15:9C:BD:32:BC:CF:91:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D175BDC5A6414CEBAB472DF9159CBD32BCCF91EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/3130332e3132362e3233382e302f32342d3234203d3e20313530353033.roa Signing time: Mon 02 Dec 2024 05:03:05 +0000 ROA not before: Mon 02 Dec 2024 04:58:05 +0000 ROA not after: Mon 01 Dec 2025 05:03:05 +0000 asID: 150503 IP address blocks: 103.126.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/D175BDC5A6414CEBAB472DF9159CBD32BCCF91EA.crl rsync://repo-rpki.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/D175BDC5A6414CEBAB472DF9159CBD32BCCF91EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D175BDC5A6414CEBAB472DF9159CBD32BCCF91EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:c7:05:6d:cb:c9:37:53:94:e5:c5:43:ce:fb:06:27:79:39:fb:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D175BDC5A6414CEBAB472DF9159CBD32BCCF91EA Validity Not Before: Dec 2 04:58:05 2024 GMT Not After : Dec 1 05:03:05 2025 GMT Subject: CN=E96C1E525179746C514CC64823BF47EDDD3EA479 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:31:75:7b:4f:1c:56:3e:61:65:73:34:35:ac: 5d:61:52:25:e0:a7:95:a7:e1:bb:d0:f8:d3:f1:e9: b0:31:9f:41:96:b6:b4:28:53:eb:ad:55:0f:3b:2b: 1e:be:df:ec:53:94:42:88:e9:52:6e:f9:e1:48:4d: c6:9a:6f:d4:c1:cc:76:20:4f:eb:93:3c:12:2c:56: dc:b1:de:a8:c0:f3:f3:56:08:16:11:5c:16:77:82: 8c:c7:1e:76:55:0d:3b:6e:31:3b:ff:36:1d:9c:b1: 05:49:16:64:a5:bf:e8:02:f9:7d:82:11:50:0f:a3: d3:07:ad:42:55:ef:f4:c8:81:28:e7:26:51:c6:99: a8:41:4c:66:c2:44:bb:b0:45:9d:40:72:d7:82:1c: 8d:54:7c:f1:5e:c4:58:f8:3b:98:ed:45:d2:5b:d9: 95:49:97:08:f5:06:97:11:9e:d2:99:17:f6:3d:35: d7:68:d8:b6:c1:50:45:ce:ab:ea:3a:6c:f9:26:88: d7:79:0c:0f:05:31:37:cd:8c:f5:4c:3d:01:4c:2d: 22:65:53:cb:59:72:85:a4:cf:a5:71:9e:dc:1f:e0: b6:3a:5c:8d:bc:7b:4b:8d:b6:e5:76:96:03:49:06: ad:73:fc:4a:0d:6f:51:9d:6c:37:22:b2:ef:e8:3f: 9c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:6C:1E:52:51:79:74:6C:51:4C:C6:48:23:BF:47:ED:DD:3E:A4:79 X509v3 Authority Key Identifier: keyid:D1:75:BD:C5:A6:41:4C:EB:AB:47:2D:F9:15:9C:BD:32:BC:CF:91:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/D175BDC5A6414CEBAB472DF9159CBD32BCCF91EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D175BDC5A6414CEBAB472DF9159CBD32BCCF91EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/862d4d74-6295-4496-823a-1e8a3d5bbb6c/0/3130332e3132362e3233382e302f32342d3234203d3e20313530353033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.126.238.0/24 Signature Algorithm: sha256WithRSAEncryption 97:14:2d:e8:22:a6:2e:44:9f:3b:9c:0e:cf:d5:44:84:af:4d: a3:67:94:58:b8:0f:9c:01:f3:3e:03:62:a7:0f:d0:bd:bb:8c: e2:2a:d2:a6:1c:a3:85:5d:76:83:c8:ea:d5:9e:a5:f6:51:c8: b6:90:44:95:09:58:8c:70:36:15:24:a2:48:7b:38:9b:bb:41: f8:65:b1:ae:60:4a:e5:b7:30:a9:78:9a:88:31:27:f0:be:50: 03:14:7b:4a:6b:c8:db:42:8d:d8:cc:5f:54:cf:78:64:06:6d: 96:34:e9:f3:a3:5b:c6:28:a1:e8:53:6a:1b:a0:ab:6b:9e:de: a2:90:6d:8d:2e:0a:52:30:81:8d:8a:56:d3:07:7b:44:24:65: 9f:ad:77:50:0f:f6:af:3b:f9:69:43:b3:fb:1c:b1:84:89:53: 0b:ff:29:24:3a:03:99:2f:4b:77:64:3a:78:ce:38:2a:68:c5: 24:f9:13:4f:99:4a:52:53:4a:8f:ec:e7:a1:96:ac:11:4d:16: 3a:d4:ed:2a:96:bc:21:a5:50:a7:ee:37:61:e0:bd:6c:97:70: 16:dc:b5:31:d3:85:40:45:0d:43:1f:96:ab:87:60:76:0a:56: d6:76:4a:35:98:c8:dd:3c:2f:69:05:b4:71:c1:88:c6:98:9b: 8b:08:a4:ec -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBMcFbcvJN1OU5cVDzvsGJ3k5++swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE3NUJEQzVBNjQxNENFQkFCNDcyREY5MTU5Q0JEMzJC Q0NGOTFFQTAeFw0yNDEyMDIwNDU4MDVaFw0yNTEyMDEwNTAzMDVaMDMxMTAvBgNV BAMTKEU5NkMxRTUyNTE3OTc0NkM1MTRDQzY0ODIzQkY0N0VEREQzRUE0NzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2MXV7TxxWPmFlczQ1rF1hUiXg p5Wn4bvQ+NPx6bAxn0GWtrQoU+utVQ87Kx6+3+xTlEKI6VJu+eFITcaab9TBzHYg T+uTPBIsVtyx3qjA8/NWCBYRXBZ3gozHHnZVDTtuMTv/Nh2csQVJFmSlv+gC+X2C EVAPo9MHrUJV7/TIgSjnJlHGmahBTGbCRLuwRZ1ActeCHI1UfPFexFj4O5jtRdJb 2ZVJlwj1BpcRntKZF/Y9Nddo2LbBUEXOq+o6bPkmiNd5DA8FMTfNjPVMPQFMLSJl U8tZcoWkz6Vxntwf4LY6XI28e0uNtuV2lgNJBq1z/EoNb1GdbDcisu/oP5wxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU6WweUlF5dGxRTMZII79H7d0+pHkwHwYDVR0j BBgwFoAU0XW9xaZBTOurRy35FZy9MrzPkeowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NjJkNGQ3NC02Mjk1LTQ0OTYtODIzYS0xZThhM2Q1YmJiNmMvMC9EMTc1QkRDNUE2 NDE0Q0VCQUI0NzJERjkxNTlDQkQzMkJDQ0Y5MUVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDE3NUJEQzVBNjQxNENFQkFCNDcyREY5MTU5Q0JEMzJCQ0NG OTFFQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg2MmQ0ZDc0LTYyOTUtNDQ5Ni04 MjNhLTFlOGEzZDViYmI2Yy8wLzMxMzAzMzJlMzEzMjM2MmUzMjMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzNTMwMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfu4wDQYJ KoZIhvcNAQELBQADggEBAJcULegipi5EnzucDs/VRISvTaNnlFi4D5wB8z4DYqcP 0L27jOIq0qYco4VddoPI6tWepfZRyLaQRJUJWIxwNhUkokh7OJu7Qfhlsa5gSuW3 MKl4mogxJ/C+UAMUe0pryNtCjdjMX1TPeGQGbZY06fOjW8YooehTahugq2ue3qKQ bY0uClIwgY2KVtMHe0QkZZ+td1AP9q87+WlDs/scsYSJUwv/KSQ6A5kvS3dkOnjO OCpoxST5E0+ZSlJTSo/s56GWrBFNFjrU7SqWvCGlUKfuN2HgvWyXcBbctTHThUBF DUMflquHYHYKVtZ2SjWYyN08L2kFtHHBiMaYm4sIpOw= -----END CERTIFICATE-----Generated at Mon Apr 7 15:45:48 2025 by rpki-client