$ rpki-client -vvf repo-rpki.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0/3130332e35382e3130342e302f32322d3234203d3e20313333383334.roa File: 3130332e35382e3130342e302f32322d3234203d3e20313333383334.roa (raw, json) Hash identifier: 50H8I9ev+6h3z0JMqGqieFay02FbZ2ohx0kZUlhDVNI= Subject key identifier: 84:E3:38:52:BE:C5:AA:4E:85:56:A7:A8:5B:86:0E:0F:86:93:61:26 Certificate issuer: /CN=007C91B049F735F71F2BE8CF92AEAA538D6B1F0B Certificate serial: 49E853A056C9015ED9356E295ADC9D42DB8EFDC0 Authority key identifier: 00:7C:91:B0:49:F7:35:F7:1F:2B:E8:CF:92:AE:AA:53:8D:6B:1F:0B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/007C91B049F735F71F2BE8CF92AEAA538D6B1F0B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0/3130332e35382e3130342e302f32322d3234203d3e20313333383334.roa Signing time: Mon 07 Oct 2024 09:00:01 +0000 ROA not before: Mon 07 Oct 2024 08:55:01 +0000 ROA not after: Mon 06 Oct 2025 09:00:01 +0000 asID: 133834 IP address blocks: 103.58.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0/007C91B049F735F71F2BE8CF92AEAA538D6B1F0B.crl rsync://repo-rpki.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0/007C91B049F735F71F2BE8CF92AEAA538D6B1F0B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/007C91B049F735F71F2BE8CF92AEAA538D6B1F0B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 10:31:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:e8:53:a0:56:c9:01:5e:d9:35:6e:29:5a:dc:9d:42:db:8e:fd:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=007C91B049F735F71F2BE8CF92AEAA538D6B1F0B Validity Not Before: Oct 7 08:55:01 2024 GMT Not After : Oct 6 09:00:01 2025 GMT Subject: CN=84E33852BEC5AA4E8556A7A85B860E0F86936126 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ea:aa:6b:19:e8:e3:a2:f6:7f:a4:a6:99:1c: 5f:3a:70:f7:54:bc:f3:19:db:dd:89:7e:ef:b3:56: 33:b1:60:72:04:dd:28:7b:2c:ae:56:7a:2c:6c:35: be:12:f7:06:f0:ca:cc:98:c3:bc:b0:3a:ee:51:d9: 2c:a1:3a:b6:e7:43:f4:d5:ee:8b:e2:f3:63:3a:89: 59:c4:55:2c:f9:d0:23:c2:a1:e1:c9:46:fb:85:06: dc:fe:bf:a0:96:51:d4:5e:ae:e3:e7:1f:18:93:b0: 2a:17:b0:7a:e9:d9:9d:6e:f7:a2:6d:58:68:6a:95: 64:52:98:79:e1:b1:a2:6d:75:01:65:56:72:39:60: 4c:fe:02:d9:19:49:0e:e5:98:2c:92:f7:a0:9c:83: ea:f6:e7:c7:9c:00:4c:0c:d3:f1:ef:60:4b:88:f2: 57:4f:21:39:20:bb:34:11:24:dd:38:01:16:01:d6: a6:fb:34:ca:56:b7:bb:35:1c:fe:04:43:0e:6b:3c: 22:ae:69:8c:be:94:f7:6b:1c:83:5f:35:c7:2b:66: 9f:9b:0d:fb:3f:08:d5:26:11:fb:9f:d8:36:73:e2: 05:c1:c0:98:19:b1:1a:9d:9f:fd:c7:7e:68:92:b8: cd:65:c4:ad:34:bb:40:11:c3:2f:d4:18:86:8b:ea: 22:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:E3:38:52:BE:C5:AA:4E:85:56:A7:A8:5B:86:0E:0F:86:93:61:26 X509v3 Authority Key Identifier: keyid:00:7C:91:B0:49:F7:35:F7:1F:2B:E8:CF:92:AE:AA:53:8D:6B:1F:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0/007C91B049F735F71F2BE8CF92AEAA538D6B1F0B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/007C91B049F735F71F2BE8CF92AEAA538D6B1F0B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0/3130332e35382e3130342e302f32322d3234203d3e20313333383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.58.104.0/22 Signature Algorithm: sha256WithRSAEncryption 43:cf:84:30:d3:66:2f:a2:17:64:80:4f:64:eb:87:ea:ef:e0: fb:10:49:f4:8a:7c:eb:1e:51:a3:ba:a3:c8:c5:bc:c1:c8:95: 07:f6:19:d2:fe:16:c2:02:af:7a:27:73:4f:96:c7:fc:e1:df: 5f:91:29:82:61:4b:79:0a:11:d9:cd:7b:3f:45:15:22:f5:60: 7a:f7:48:fd:50:74:f9:c2:52:e7:74:5b:89:a9:c8:dd:d3:63: 15:42:f1:3d:d2:ee:9e:c0:3c:59:6e:7b:05:7b:d9:6e:f3:54: 0d:8c:e1:7b:8b:12:27:63:e6:ce:39:15:81:1e:f5:6f:86:3a: e8:88:35:62:fa:f9:6f:7a:72:0b:e4:72:9c:aa:12:0f:d9:1c: 61:27:22:ff:b2:07:08:f2:c0:a2:56:c5:fa:6c:db:b1:5d:5a: 4e:c4:44:71:e6:29:40:a7:cd:f4:ee:68:b1:bb:67:ef:cc:1c: 5e:56:cc:8f:88:c6:8d:5c:0a:d4:38:c5:e4:98:2e:71:d4:bb: d8:29:5d:bd:79:f7:e2:7f:e0:2a:d6:cb:2d:4e:c3:df:91:b2: 3b:9e:e8:f0:de:d3:66:bb:34:67:8d:de:31:73:36:a8:a2:f3: 4d:0d:1f:1e:74:d2:86:f3:a0:0d:e4:91:3b:cf:d3:5d:d8:ba: 73:18:ac:a4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSehToFbJAV7ZNW4pWtydQtuO/cAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDA3QzkxQjA0OUY3MzVGNzFGMkJFOENGOTJBRUFBNTM4 RDZCMUYwQjAeFw0yNDEwMDcwODU1MDFaFw0yNTEwMDYwOTAwMDFaMDMxMTAvBgNV BAMTKDg0RTMzODUyQkVDNUFBNEU4NTU2QTdBODVCODYwRTBGODY5MzYxMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC66qprGejjovZ/pKaZHF86cPdU vPMZ292Jfu+zVjOxYHIE3Sh7LK5WeixsNb4S9wbwysyYw7ywOu5R2SyhOrbnQ/TV 7ovi82M6iVnEVSz50CPCoeHJRvuFBtz+v6CWUdReruPnHxiTsCoXsHrp2Z1u96Jt WGhqlWRSmHnhsaJtdQFlVnI5YEz+AtkZSQ7lmCyS96Ccg+r258ecAEwM0/HvYEuI 8ldPITkguzQRJN04ARYB1qb7NMpWt7s1HP4EQw5rPCKuaYy+lPdrHINfNccrZp+b Dfs/CNUmEfuf2DZz4gXBwJgZsRqdn/3HfmiSuM1lxK00u0ARwy/UGIaL6iIbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhOM4Ur7Fqk6FVqeoW4YOD4aTYSYwHwYDVR0j BBgwFoAUAHyRsEn3NfcfK+jPkq6qU41rHwswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NzFhZGE5ZS1lMmE5LTQwMGUtOGRmZi05YmU0ODFhYmE1ODMvMC8wMDdDOTFCMDQ5 RjczNUY3MUYyQkU4Q0Y5MkFFQUE1MzhENkIxRjBCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDA3QzkxQjA0OUY3MzVGNzFGMkJFOENGOTJBRUFBNTM4RDZC MUYwQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3MWFkYTllLWUyYTktNDAwZS04 ZGZmLTliZTQ4MWFiYTU4My8wLzMxMzAzMzJlMzUzODJlMzEzMDM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZzpoMA0GCSqG SIb3DQEBCwUAA4IBAQBDz4Qw02YvohdkgE9k64fq7+D7EEn0inzrHlGjuqPIxbzB yJUH9hnS/hbCAq96J3NPlsf84d9fkSmCYUt5ChHZzXs/RRUi9WB690j9UHT5wlLn dFuJqcjd02MVQvE90u6ewDxZbnsFe9lu81QNjOF7ixInY+bOORWBHvVvhjroiDVi +vlvenIL5HKcqhIP2RxhJyL/sgcI8sCiVsX6bNuxXVpOxERx5ilAp8307mixu2fv zBxeVsyPiMaNXArUOMXkmC5x1LvYKV29effif+Aq1sstTsPfkbI7nujw3tNmuzRn jd4xczaoovNNDR8edNKG86AN5JE7z9Nd2LpzGKyk -----END CERTIFICATE-----Generated at Fri Feb 21 11:17:11 2025 by rpki-client