$ rpki-client -vvf repo-rpki.idnic.net/repo/89b8604f-395a-42be-b997-e80fc1df90f9/0/3130332e3137372e39322e302f32332d3233203d3e20313437313435.roa File: 3130332e3137372e39322e302f32332d3233203d3e20313437313435.roa (raw, json) Hash identifier: WfXT/rfuqOQCtkSuVOvx3HMgMVWsirCiP4VcVNJi+gw= Subject key identifier: C0:58:05:0C:A0:43:AF:B8:7D:30:8C:25:9E:FC:BF:EA:EB:23:EB:FF Certificate issuer: /CN=0D05EF7BA71D640B784F72C7D8F0F4DCD285029E Certificate serial: 452931E6BCC32F4322116C7371C51D916AA4007E Authority key identifier: 0D:05:EF:7B:A7:1D:64:0B:78:4F:72:C7:D8:F0:F4:DC:D2:85:02:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D05EF7BA71D640B784F72C7D8F0F4DCD285029E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/89b8604f-395a-42be-b997-e80fc1df90f9/0/3130332e3137372e39322e302f32332d3233203d3e20313437313435.roa Signing time: Tue 03 Dec 2024 19:00:01 +0000 ROA not before: Tue 03 Dec 2024 18:55:01 +0000 ROA not after: Tue 02 Dec 2025 19:00:01 +0000 asID: 147145 IP address blocks: 103.177.92.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/89b8604f-395a-42be-b997-e80fc1df90f9/0/0D05EF7BA71D640B784F72C7D8F0F4DCD285029E.crl rsync://repo-rpki.idnic.net/repo/89b8604f-395a-42be-b997-e80fc1df90f9/0/0D05EF7BA71D640B784F72C7D8F0F4DCD285029E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D05EF7BA71D640B784F72C7D8F0F4DCD285029E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 09:38:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:29:31:e6:bc:c3:2f:43:22:11:6c:73:71:c5:1d:91:6a:a4:00:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D05EF7BA71D640B784F72C7D8F0F4DCD285029E Validity Not Before: Dec 3 18:55:01 2024 GMT Not After : Dec 2 19:00:01 2025 GMT Subject: CN=C058050CA043AFB87D308C259EFCBFEAEB23EBFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:5f:9c:68:68:f0:cd:0e:85:cd:38:1a:af:6a: 52:9c:55:b1:c0:81:a7:a8:1b:f3:3f:05:11:10:a1: 3a:75:15:4d:ee:66:3b:2e:1c:32:b8:70:a9:d1:3e: ed:71:f9:37:66:5d:49:ca:1d:50:b5:39:ce:96:50: 8a:a1:8b:b4:65:74:d8:f2:2b:c2:c0:79:a8:30:77: 64:c7:d9:94:2b:1c:b0:34:78:60:dc:a4:56:1b:e4: 1f:fc:e7:17:7d:e2:75:94:2f:f0:95:4e:2d:d1:c7: 04:64:d2:bb:64:83:35:48:d8:b1:a9:5e:a4:2a:2a: 50:b6:5f:9a:47:f4:c8:e3:bb:92:1b:5a:31:9d:0c: 24:97:99:9e:08:49:47:a8:4d:42:60:ce:bb:19:94: 64:47:04:e5:82:93:98:b1:3e:9c:57:7e:73:ff:0f: 8e:3b:fc:61:fa:40:08:ba:63:5e:4f:1a:ec:7c:76: 6f:37:3c:98:b6:d5:31:0f:5c:4f:6b:13:84:82:ad: bc:66:9d:dd:bd:70:44:b2:9f:80:5f:67:0f:e3:c5: 2d:a2:0c:c5:24:06:29:e2:aa:8f:7e:0f:44:36:9e: 01:2e:89:49:bb:ec:f0:a5:9f:6d:82:11:e4:b3:c7: 3f:f0:69:16:95:44:ab:82:a0:2f:34:50:bd:40:a5: 5a:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:58:05:0C:A0:43:AF:B8:7D:30:8C:25:9E:FC:BF:EA:EB:23:EB:FF X509v3 Authority Key Identifier: keyid:0D:05:EF:7B:A7:1D:64:0B:78:4F:72:C7:D8:F0:F4:DC:D2:85:02:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/89b8604f-395a-42be-b997-e80fc1df90f9/0/0D05EF7BA71D640B784F72C7D8F0F4DCD285029E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D05EF7BA71D640B784F72C7D8F0F4DCD285029E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/89b8604f-395a-42be-b997-e80fc1df90f9/0/3130332e3137372e39322e302f32332d3233203d3e20313437313435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.92.0/23 Signature Algorithm: sha256WithRSAEncryption 66:81:6c:66:87:93:db:43:fe:2c:9d:8b:be:10:58:d9:14:16: 25:e3:27:2b:a8:b7:39:ed:a8:17:1f:7f:64:63:ce:fd:e0:79: 57:38:ee:c8:6a:85:8f:05:83:1d:8c:78:c6:50:f7:57:5f:47: 76:e6:53:81:1e:2e:79:2f:30:b4:79:63:f3:d1:99:06:d8:c9: 95:da:1a:d4:31:b9:c8:41:fb:f3:fe:a9:42:96:1e:45:65:81: 73:32:eb:e6:b5:a5:5b:9d:0c:95:7d:56:3d:65:34:e2:5b:bf: f2:45:68:38:68:24:c0:f7:32:3e:20:29:2f:3e:9b:d9:64:d4: 40:24:6d:e9:88:c2:82:3d:57:58:ef:96:a1:99:99:a1:a9:6d: de:24:52:19:7d:7c:eb:1a:d2:b7:4a:5b:33:1a:95:d4:a1:ed: 83:6e:22:6d:47:91:9b:44:20:29:5e:4d:ef:d5:7c:ee:38:b5: 70:e7:0c:55:fd:05:f3:9f:10:d1:c6:3e:79:4b:e3:91:52:7e: 30:a6:5a:af:99:61:df:0c:f2:01:57:2a:ab:f2:55:3c:0d:f1: 25:a2:21:f2:eb:bc:bb:fd:e1:1b:79:93:8d:89:e4:0a:13:12: 3e:cf:cd:ff:45:a1:da:0c:38:78:66:04:18:40:c0:b1:6d:b2: ce:3b:61:9a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURSkx5rzDL0MiEWxzccUdkWqkAH4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEQwNUVGN0JBNzFENjQwQjc4NEY3MkM3RDhGMEY0RENE Mjg1MDI5RTAeFw0yNDEyMDMxODU1MDFaFw0yNTEyMDIxOTAwMDFaMDMxMTAvBgNV BAMTKEMwNTgwNTBDQTA0M0FGQjg3RDMwOEMyNTlFRkNCRkVBRUIyM0VCRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLX5xoaPDNDoXNOBqvalKcVbHA gaeoG/M/BREQoTp1FU3uZjsuHDK4cKnRPu1x+TdmXUnKHVC1Oc6WUIqhi7RldNjy K8LAeagwd2TH2ZQrHLA0eGDcpFYb5B/85xd94nWUL/CVTi3RxwRk0rtkgzVI2LGp XqQqKlC2X5pH9Mjju5IbWjGdDCSXmZ4ISUeoTUJgzrsZlGRHBOWCk5ixPpxXfnP/ D447/GH6QAi6Y15PGux8dm83PJi21TEPXE9rE4SCrbxmnd29cESyn4BfZw/jxS2i DMUkBiniqo9+D0Q2ngEuiUm77PCln22CEeSzxz/waRaVRKuCoC80UL1ApVpfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwFgFDKBDr7h9MIwlnvy/6usj6/8wHwYDVR0j BBgwFoAUDQXve6cdZAt4T3LH2PD03NKFAp4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OWI4NjA0Zi0zOTVhLTQyYmUtYjk5Ny1lODBmYzFkZjkwZjkvMC8wRDA1RUY3QkE3 MUQ2NDBCNzg0RjcyQzdEOEYwRjREQ0QyODUwMjlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEQwNUVGN0JBNzFENjQwQjc4NEY3MkM3RDhGMEY0RENEMjg1 MDI5RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg5Yjg2MDRmLTM5NWEtNDJiZS1i OTk3LWU4MGZjMWRmOTBmOS8wLzMxMzAzMzJlMzEzNzM3MmUzOTMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDM3MzEzNDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7FcMA0GCSqG SIb3DQEBCwUAA4IBAQBmgWxmh5PbQ/4snYu+EFjZFBYl4ycrqLc57agXH39kY879 4HlXOO7IaoWPBYMdjHjGUPdXX0d25lOBHi55LzC0eWPz0ZkG2MmV2hrUMbnIQfvz /qlClh5FZYFzMuvmtaVbnQyVfVY9ZTTiW7/yRWg4aCTA9zI+ICkvPpvZZNRAJG3p iMKCPVdY75ahmZmhqW3eJFIZfXzrGtK3SlszGpXUoe2DbiJtR5GbRCApXk3v1Xzu OLVw5wxV/QXznxDRxj55S+ORUn4wplqvmWHfDPIBVyqr8lU8DfEloiHy67y7/eEb eZONieQKExI+z83/RaHaDDh4ZgQYQMCxbbLOO2Ga -----END CERTIFICATE-----Generated at Sun Apr 6 13:49:02 2025 by rpki-client