$ rpki-client -vvf repo-rpki.idnic.net/repo/89718f6b-b516-43ae-b589-83a25faa30be/0/3130332e38362e3131372e302f32342d3234203d3e20313530353532.roa File: 3130332e38362e3131372e302f32342d3234203d3e20313530353532.roa (raw, json) Hash identifier: jLdTwnwuZ2oNm7k6y9AMJvKWkqS7oKk99hplqsfZVHE= Subject key identifier: 2C:23:F9:05:4A:74:95:21:5C:65:68:C7:07:BC:A9:43:3A:76:7D:6E Certificate issuer: /CN=1160709118182E564A6D9E250FF5000EFA5166A5 Certificate serial: 45574007B00BDB1754F5C3813C121DD40EF8C825 Authority key identifier: 11:60:70:91:18:18:2E:56:4A:6D:9E:25:0F:F5:00:0E:FA:51:66:A5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1160709118182E564A6D9E250FF5000EFA5166A5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/89718f6b-b516-43ae-b589-83a25faa30be/0/3130332e38362e3131372e302f32342d3234203d3e20313530353532.roa Signing time: Tue 28 Jan 2025 03:00:02 +0000 ROA not before: Tue 28 Jan 2025 02:55:02 +0000 ROA not after: Tue 27 Jan 2026 03:00:02 +0000 asID: 150552 IP address blocks: 103.86.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/89718f6b-b516-43ae-b589-83a25faa30be/0/1160709118182E564A6D9E250FF5000EFA5166A5.crl rsync://repo-rpki.idnic.net/repo/89718f6b-b516-43ae-b589-83a25faa30be/0/1160709118182E564A6D9E250FF5000EFA5166A5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1160709118182E564A6D9E250FF5000EFA5166A5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 20:43:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:57:40:07:b0:0b:db:17:54:f5:c3:81:3c:12:1d:d4:0e:f8:c8:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1160709118182E564A6D9E250FF5000EFA5166A5 Validity Not Before: Jan 28 02:55:02 2025 GMT Not After : Jan 27 03:00:02 2026 GMT Subject: CN=2C23F9054A7495215C6568C707BCA9433A767D6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:28:cf:b6:b9:ce:51:45:d8:fd:cd:e7:f0:0f: f7:61:07:f3:5a:cb:ba:69:af:2c:a4:ad:6f:23:47: cf:2a:18:2d:b9:9f:1c:93:d7:88:68:e1:c2:cc:5d: 1a:08:fd:85:23:59:3b:8f:45:f4:e0:0a:13:35:00: 14:fc:f4:e6:f2:73:49:90:02:31:9f:d7:62:b0:95: 3d:d7:a8:c2:30:dc:de:af:17:ff:fe:8e:b0:41:07: 95:3c:32:5a:b6:c2:62:2f:33:ae:ca:cb:6a:39:62: ba:a1:93:02:5b:27:35:04:a0:ef:0e:34:95:96:b0: d0:37:6c:17:05:c0:55:3d:a8:bf:06:d1:bc:0e:71: 1d:2c:18:fb:28:9c:bb:05:78:ff:e8:0d:ec:73:35: b7:31:d3:58:6b:45:00:70:cf:4b:71:66:13:da:91: 5a:ba:91:0a:03:84:9e:c9:0d:fc:e1:f4:2a:40:cc: cd:43:26:84:45:e3:23:d8:eb:bf:dc:bc:e7:1c:97: f9:42:46:0e:75:4d:41:bf:d6:a0:1e:01:bf:23:27: a8:06:b8:d2:3a:67:ad:2d:88:6d:c5:63:36:88:4f: 72:e9:bd:21:56:af:dc:cf:c7:e2:56:fc:ad:f0:f0: 28:5d:62:48:e9:ed:84:90:50:1b:78:a5:53:1a:c5: 30:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:23:F9:05:4A:74:95:21:5C:65:68:C7:07:BC:A9:43:3A:76:7D:6E X509v3 Authority Key Identifier: keyid:11:60:70:91:18:18:2E:56:4A:6D:9E:25:0F:F5:00:0E:FA:51:66:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/89718f6b-b516-43ae-b589-83a25faa30be/0/1160709118182E564A6D9E250FF5000EFA5166A5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1160709118182E564A6D9E250FF5000EFA5166A5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/89718f6b-b516-43ae-b589-83a25faa30be/0/3130332e38362e3131372e302f32342d3234203d3e20313530353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.86.117.0/24 Signature Algorithm: sha256WithRSAEncryption 88:22:ad:cb:50:46:4b:47:19:58:05:7b:52:a0:44:84:f6:bd: 36:b3:6a:89:a8:32:1d:3b:37:13:05:4b:60:f7:da:3c:3d:02: f3:5d:d9:d6:2f:34:2c:e7:fc:7b:c4:67:98:c8:a4:17:d0:88: 87:34:b0:95:54:e2:d2:78:3e:7b:3a:be:ea:ad:3f:fe:b9:91: df:76:58:d9:ac:36:e7:46:6f:f0:2d:af:0f:30:7e:5e:fb:d6: f0:36:11:bf:30:e6:32:60:4f:9a:c1:08:d5:1a:96:d5:39:08: 00:25:78:a8:ae:9b:6e:b0:2e:54:85:8f:88:3e:63:da:d8:52: c8:70:e6:46:d8:be:ff:eb:d5:e1:79:f9:cd:c0:e1:72:90:67: cc:e8:5c:13:d9:7b:a6:e0:ca:06:5a:c3:91:d0:82:d3:0f:70: 36:56:71:7d:d7:b0:8b:88:18:f8:46:89:19:86:8e:4d:9b:86: a2:b7:cb:bc:b5:64:01:14:e7:da:d8:d8:cb:7e:70:e6:22:1a: de:21:3f:a0:3d:5a:f9:f5:15:5d:6a:57:7b:46:7d:fb:77:a5: 97:3c:91:46:e2:29:2f:b3:37:ac:0d:6d:9f:7e:f8:3c:86:62: 4b:ed:6a:d3:c7:1e:07:96:63:9a:75:a8:53:0d:f7:83:a5:5b: 51:6c:f1:ce -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURVdAB7AL2xdU9cOBPBId1A74yCUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTE2MDcwOTExODE4MkU1NjRBNkQ5RTI1MEZGNTAwMEVG QTUxNjZBNTAeFw0yNTAxMjgwMjU1MDJaFw0yNjAxMjcwMzAwMDJaMDMxMTAvBgNV BAMTKDJDMjNGOTA1NEE3NDk1MjE1QzY1NjhDNzA3QkNBOTQzM0E3NjdENkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPKM+2uc5RRdj9zefwD/dhB/Na y7ppryykrW8jR88qGC25nxyT14ho4cLMXRoI/YUjWTuPRfTgChM1ABT89Obyc0mQ AjGf12KwlT3XqMIw3N6vF//+jrBBB5U8Mlq2wmIvM67Ky2o5YrqhkwJbJzUEoO8O NJWWsNA3bBcFwFU9qL8G0bwOcR0sGPsonLsFeP/oDexzNbcx01hrRQBwz0txZhPa kVq6kQoDhJ7JDfzh9CpAzM1DJoRF4yPY67/cvOccl/lCRg51TUG/1qAeAb8jJ6gG uNI6Z60tiG3FYzaIT3LpvSFWr9zPx+JW/K3w8ChdYkjp7YSQUBt4pVMaxTD7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQULCP5BUp0lSFcZWjHB7ypQzp2fW4wHwYDVR0j BBgwFoAUEWBwkRgYLlZKbZ4lD/UADvpRZqUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OTcxOGY2Yi1iNTE2LTQzYWUtYjU4OS04M2EyNWZhYTMwYmUvMC8xMTYwNzA5MTE4 MTgyRTU2NEE2RDlFMjUwRkY1MDAwRUZBNTE2NkE1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTE2MDcwOTExODE4MkU1NjRBNkQ5RTI1MEZGNTAwMEVGQTUx NjZBNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg5NzE4ZjZiLWI1MTYtNDNhZS1i NTg5LTgzYTI1ZmFhMzBiZS8wLzMxMzAzMzJlMzgzNjJlMzEzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzUzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1Z1MA0GCSqG SIb3DQEBCwUAA4IBAQCIIq3LUEZLRxlYBXtSoESE9r02s2qJqDIdOzcTBUtg99o8 PQLzXdnWLzQs5/x7xGeYyKQX0IiHNLCVVOLSeD57Or7qrT/+uZHfdljZrDbnRm/w La8PMH5e+9bwNhG/MOYyYE+awQjVGpbVOQgAJXiorptusC5UhY+IPmPa2FLIcOZG 2L7/69XhefnNwOFykGfM6FwT2Xum4MoGWsOR0ILTD3A2VnF917CLiBj4RokZho5N m4ait8u8tWQBFOfa2NjLfnDmIhreIT+gPVr59RVdald7Rn37d6WXPJFG4ikvszes DW2ffvg8hmJL7WrTxx4HlmOadahTDfeDpVtRbPHO -----END CERTIFICATE-----Generated at Sun Apr 6 06:05:26 2025 by rpki-client