$ rpki-client -vvf repo-rpki.idnic.net/repo/8a493be1-f064-49e6-949a-cb3ecbfc8f46/0/3130332e3233312e38302e302f32342d3234203d3e20313331373335.roa File: 3130332e3233312e38302e302f32342d3234203d3e20313331373335.roa (raw, json) Hash identifier: etlEVL/G6ecv5pikZQs/QfSTGNp1Hz5OKi7d2dSKjks= Subject key identifier: 91:52:91:B3:1D:33:C1:C3:4A:07:BD:AB:F2:AB:3B:1C:D3:A2:DA:63 Certificate issuer: /CN=2BB13827423575141DA0F1C57B33E7DE5D7A63A6 Certificate serial: 41264618028DC362C9A1B9FAFC640254B513EC1B Authority key identifier: 2B:B1:38:27:42:35:75:14:1D:A0:F1:C5:7B:33:E7:DE:5D:7A:63:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2BB13827423575141DA0F1C57B33E7DE5D7A63A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8a493be1-f064-49e6-949a-cb3ecbfc8f46/0/3130332e3233312e38302e302f32342d3234203d3e20313331373335.roa Signing time: Fri 03 Jan 2025 08:00:01 +0000 ROA not before: Fri 03 Jan 2025 07:55:01 +0000 ROA not after: Fri 02 Jan 2026 08:00:01 +0000 asID: 131735 IP address blocks: 103.231.80.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8a493be1-f064-49e6-949a-cb3ecbfc8f46/0/2BB13827423575141DA0F1C57B33E7DE5D7A63A6.crl rsync://repo-rpki.idnic.net/repo/8a493be1-f064-49e6-949a-cb3ecbfc8f46/0/2BB13827423575141DA0F1C57B33E7DE5D7A63A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2BB13827423575141DA0F1C57B33E7DE5D7A63A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 05:06:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:26:46:18:02:8d:c3:62:c9:a1:b9:fa:fc:64:02:54:b5:13:ec:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2BB13827423575141DA0F1C57B33E7DE5D7A63A6 Validity Not Before: Jan 3 07:55:01 2025 GMT Not After : Jan 2 08:00:01 2026 GMT Subject: CN=915291B31D33C1C34A07BDABF2AB3B1CD3A2DA63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:59:a0:a3:78:62:2e:cf:1b:eb:ff:9f:20:60: 2b:d2:b1:72:aa:8e:51:e1:b4:02:fb:48:19:48:0d: f0:87:01:17:16:84:da:d0:36:ef:e0:ee:cb:a3:90: e3:9e:30:75:41:49:73:40:eb:16:5c:e4:02:5d:61: d6:a9:91:12:63:47:b2:f6:5f:5a:68:e1:65:f7:0c: 1d:bb:8e:d4:92:05:b7:4b:b1:f5:ff:9d:d9:3f:14: ce:e5:f5:f4:60:09:57:cb:6b:6a:ea:4d:01:be:fb: 55:31:2e:1a:74:c7:52:ec:98:bd:fb:4f:eb:c8:4e: f0:e8:62:c2:1d:b1:e4:bb:57:3e:76:77:4c:b2:7e: 48:2d:d7:03:10:a6:92:18:cc:87:50:e8:b0:11:c7: 56:2e:02:87:56:ef:b8:cc:3e:99:5f:bd:ab:fe:39: 15:c3:3e:99:ac:bd:ca:fc:22:4a:a9:de:74:f6:04: 05:37:cf:dd:85:fe:e8:60:7f:4b:a1:90:ae:aa:db: 9d:68:87:09:52:1a:a1:45:04:cf:7f:70:e4:20:34: e2:40:ac:1b:f2:65:bb:6f:1c:e5:9c:2f:ff:d6:86: 85:41:cd:1f:e3:da:66:80:a2:48:fb:91:29:6e:16: 59:51:77:f1:72:09:b6:1c:95:c3:47:73:0c:c8:25: 27:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:52:91:B3:1D:33:C1:C3:4A:07:BD:AB:F2:AB:3B:1C:D3:A2:DA:63 X509v3 Authority Key Identifier: keyid:2B:B1:38:27:42:35:75:14:1D:A0:F1:C5:7B:33:E7:DE:5D:7A:63:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8a493be1-f064-49e6-949a-cb3ecbfc8f46/0/2BB13827423575141DA0F1C57B33E7DE5D7A63A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2BB13827423575141DA0F1C57B33E7DE5D7A63A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8a493be1-f064-49e6-949a-cb3ecbfc8f46/0/3130332e3233312e38302e302f32342d3234203d3e20313331373335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.231.80.0/24 Signature Algorithm: sha256WithRSAEncryption 08:2d:12:71:3c:0b:7a:1a:0e:d6:15:37:80:61:38:ac:46:e4: b1:d8:5f:90:0b:09:fa:fa:94:3c:ee:92:eb:aa:87:f6:92:36: ea:26:52:c2:6f:2f:4c:fa:9f:d7:ff:57:a1:5a:58:c4:b8:04: d2:cd:08:6c:c8:e3:d2:80:fe:e6:69:dc:5b:ad:82:c5:92:cb: 5a:48:89:18:8a:84:74:50:aa:bf:fe:9e:f7:45:05:57:cc:d3: 15:90:6f:2e:c6:61:5d:56:bb:f5:5a:06:e0:d2:8c:23:bd:64: aa:88:b2:4e:70:37:ef:45:1f:af:5d:10:60:6d:12:71:5b:d7: 2a:33:f8:96:a3:09:b6:43:73:30:90:7a:0e:03:77:ff:3f:b2: 97:d8:c5:a7:9b:e2:2b:0c:34:a1:07:09:c0:03:6e:38:e3:4a: 73:81:67:bc:97:d9:44:7c:60:a1:c3:22:a0:40:45:c1:a0:8c: e2:bb:28:52:9b:00:71:43:a2:ea:e1:bf:5f:d5:6d:bc:04:bb: 41:62:38:46:17:25:0c:b0:a7:4f:7f:84:c3:17:fb:46:d6:fd: c1:b8:01:e6:bf:38:46:22:70:88:9f:db:a7:11:e7:7b:0d:fc: 26:f1:35:43:3c:c0:69:e6:e5:f0:53:a8:46:5d:2c:b2:99:01: 17:3e:64:86 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQSZGGAKNw2LJobn6/GQCVLUT7BswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkJCMTM4Mjc0MjM1NzUxNDFEQTBGMUM1N0IzM0U3REU1 RDdBNjNBNjAeFw0yNTAxMDMwNzU1MDFaFw0yNjAxMDIwODAwMDFaMDMxMTAvBgNV BAMTKDkxNTI5MUIzMUQzM0MxQzM0QTA3QkRBQkYyQUIzQjFDRDNBMkRBNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgWaCjeGIuzxvr/58gYCvSsXKq jlHhtAL7SBlIDfCHARcWhNrQNu/g7sujkOOeMHVBSXNA6xZc5AJdYdapkRJjR7L2 X1po4WX3DB27jtSSBbdLsfX/ndk/FM7l9fRgCVfLa2rqTQG++1UxLhp0x1LsmL37 T+vITvDoYsIdseS7Vz52d0yyfkgt1wMQppIYzIdQ6LARx1YuAodW77jMPplfvav+ ORXDPpmsvcr8Ikqp3nT2BAU3z92F/uhgf0uhkK6q251ohwlSGqFFBM9/cOQgNOJA rBvyZbtvHOWcL//WhoVBzR/j2maAokj7kSluFllRd/FyCbYclcNHcwzIJSfHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkVKRsx0zwcNKB72r8qs7HNOi2mMwHwYDVR0j BBgwFoAUK7E4J0I1dRQdoPHFezPn3l16Y6YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YTQ5M2JlMS1mMDY0LTQ5ZTYtOTQ5YS1jYjNlY2JmYzhmNDYvMC8yQkIxMzgyNzQy MzU3NTE0MURBMEYxQzU3QjMzRTdERTVEN0E2M0E2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkJCMTM4Mjc0MjM1NzUxNDFEQTBGMUM1N0IzM0U3REU1RDdB NjNBNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhhNDkzYmUxLWYwNjQtNDllNi05 NDlhLWNiM2VjYmZjOGY0Ni8wLzMxMzAzMzJlMzIzMzMxMmUzODMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+dQMA0GCSqG SIb3DQEBCwUAA4IBAQAILRJxPAt6Gg7WFTeAYTisRuSx2F+QCwn6+pQ87pLrqof2 kjbqJlLCby9M+p/X/1ehWljEuATSzQhsyOPSgP7madxbrYLFkstaSIkYioR0UKq/ /p73RQVXzNMVkG8uxmFdVrv1Wgbg0owjvWSqiLJOcDfvRR+vXRBgbRJxW9cqM/iW owm2Q3MwkHoOA3f/P7KX2MWnm+IrDDShBwnAA24440pzgWe8l9lEfGChwyKgQEXB oIziuyhSmwBxQ6Lq4b9f1W28BLtBYjhGFyUMsKdPf4TDF/tG1v3BuAHmvzhGInCI n9unEed7Dfwm8TVDPMBp5uXwU6hGXSyymQEXPmSG -----END CERTIFICATE-----Generated at Thu Apr 17 23:51:13 2025 by rpki-client