$ rpki-client -vvf repo-rpki.idnic.net/repo/8cd08eb3-937d-4304-9167-463d7c58d5e4/0/3130332e3131322e3134342e302f32342d3234203d3e20313337333334.roa File: 3130332e3131322e3134342e302f32342d3234203d3e20313337333334.roa (raw, json) Hash identifier: y3nVZBm+qtxgwP44vcU3kA0cMy/EmmCFhUt7zZudlQo= Subject key identifier: BC:2C:89:EA:A7:15:80:13:7A:FB:D9:6A:73:4A:BD:67:02:51:C1:60 Certificate issuer: /CN=094D556CA0B55AF4A636873A1B1E7032B2C9813C Certificate serial: 2ACC0DFBD6B90185015D60C482411B3A445824E9 Authority key identifier: 09:4D:55:6C:A0:B5:5A:F4:A6:36:87:3A:1B:1E:70:32:B2:C9:81:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/094D556CA0B55AF4A636873A1B1E7032B2C9813C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cd08eb3-937d-4304-9167-463d7c58d5e4/0/3130332e3131322e3134342e302f32342d3234203d3e20313337333334.roa Signing time: Tue 26 Nov 2024 13:00:03 +0000 ROA not before: Tue 26 Nov 2024 12:55:03 +0000 ROA not after: Tue 25 Nov 2025 13:00:03 +0000 asID: 137334 IP address blocks: 103.112.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cd08eb3-937d-4304-9167-463d7c58d5e4/0/094D556CA0B55AF4A636873A1B1E7032B2C9813C.crl rsync://repo-rpki.idnic.net/repo/8cd08eb3-937d-4304-9167-463d7c58d5e4/0/094D556CA0B55AF4A636873A1B1E7032B2C9813C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/094D556CA0B55AF4A636873A1B1E7032B2C9813C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 22:03:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:cc:0d:fb:d6:b9:01:85:01:5d:60:c4:82:41:1b:3a:44:58:24:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=094D556CA0B55AF4A636873A1B1E7032B2C9813C Validity Not Before: Nov 26 12:55:03 2024 GMT Not After : Nov 25 13:00:03 2025 GMT Subject: CN=BC2C89EAA71580137AFBD96A734ABD670251C160 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:18:01:8a:06:a5:8c:c2:ad:cf:46:85:cf:84: a3:cd:a7:2d:eb:4d:0d:91:bb:74:a7:05:0e:f7:aa: 75:3f:eb:a1:49:b6:7d:ef:a7:19:f9:77:d2:9b:5d: 08:fb:52:95:ba:11:54:0b:a6:6c:7c:14:03:cc:40: 81:15:f1:c0:64:cd:e8:a0:9d:e9:4a:d8:29:3d:dc: 5a:4e:17:ff:05:3b:53:6d:bb:8b:19:5c:8f:7c:16: 29:51:a4:1c:7d:0c:25:fa:20:f0:02:bd:38:eb:e3: 6d:47:1d:04:a5:67:c0:d5:4e:ae:67:48:4b:f0:9f: 2c:36:d8:63:78:90:44:b3:80:0a:42:91:43:90:a6: ed:5f:73:e5:2b:87:dd:d3:aa:af:77:96:39:de:17: 6b:fc:22:6b:9c:b5:53:56:07:f5:b6:12:0d:74:73: 7c:00:9b:2c:c3:e9:84:51:04:35:59:14:ba:85:4c: 6c:68:7b:1b:b9:35:61:05:ad:f9:e7:b2:57:92:12: 9c:a2:64:2c:fb:90:28:82:31:90:79:e6:7b:fe:2e: 47:07:60:e8:2a:f5:f8:b6:43:40:37:bd:6b:cd:ea: 59:39:72:d2:fa:03:57:21:c5:15:c2:f5:f5:6d:b0: 0a:d1:48:9e:71:0e:4a:b5:53:33:10:a8:bd:c8:c7: ef:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:2C:89:EA:A7:15:80:13:7A:FB:D9:6A:73:4A:BD:67:02:51:C1:60 X509v3 Authority Key Identifier: keyid:09:4D:55:6C:A0:B5:5A:F4:A6:36:87:3A:1B:1E:70:32:B2:C9:81:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cd08eb3-937d-4304-9167-463d7c58d5e4/0/094D556CA0B55AF4A636873A1B1E7032B2C9813C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/094D556CA0B55AF4A636873A1B1E7032B2C9813C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cd08eb3-937d-4304-9167-463d7c58d5e4/0/3130332e3131322e3134342e302f32342d3234203d3e20313337333334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.144.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:ca:f2:65:a3:08:be:66:dc:f6:c6:b4:f6:f5:bc:e9:a6:90: 36:f3:9f:1f:1f:86:dd:9b:d6:42:40:d4:5b:df:7e:ba:4e:0b: ad:2d:2c:5b:0f:ec:85:c6:95:c4:c2:dd:df:f3:8a:d2:0d:1c: 41:76:31:ce:4f:ae:83:4f:7b:5d:3d:ba:d2:6b:15:db:3d:37: 8a:8c:c8:e1:a5:de:8f:70:b5:8b:78:3e:cc:78:66:08:ec:43: 51:b2:78:f0:7d:e7:31:8c:09:e0:a7:fc:f2:af:a6:cb:94:b2: 6e:65:c7:40:64:a4:60:16:47:53:af:51:4d:2b:eb:66:13:59: 3d:78:95:96:ce:4e:b9:8f:99:d9:67:0e:b9:3e:72:ad:e2:79: 07:b3:c4:f3:a6:34:3c:06:42:04:87:57:c3:25:a3:f8:f2:40: e3:66:16:41:cd:f7:16:78:3a:5b:45:ca:08:68:06:94:f1:42: ea:c1:c9:a9:b7:d0:92:b1:07:b1:70:8a:11:a7:2d:48:56:57: 47:14:79:ea:a1:5b:fd:75:0a:31:70:39:d6:bb:ee:bb:73:36: 15:82:5f:9b:1f:d1:9f:bc:7a:66:9c:12:0c:e2:c7:62:eb:43: fa:49:da:18:69:0d:a5:d7:1c:d3:c5:19:02:9d:f7:fc:93:71: 43:48:f1:e9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKswN+9a5AYUBXWDEgkEbOkRYJOkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDk0RDU1NkNBMEI1NUFGNEE2MzY4NzNBMUIxRTcwMzJC MkM5ODEzQzAeFw0yNDExMjYxMjU1MDNaFw0yNTExMjUxMzAwMDNaMDMxMTAvBgNV BAMTKEJDMkM4OUVBQTcxNTgwMTM3QUZCRDk2QTczNEFCRDY3MDI1MUMxNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDGAGKBqWMwq3PRoXPhKPNpy3r TQ2Ru3SnBQ73qnU/66FJtn3vpxn5d9KbXQj7UpW6EVQLpmx8FAPMQIEV8cBkzeig nelK2Ck93FpOF/8FO1Ntu4sZXI98FilRpBx9DCX6IPACvTjr421HHQSlZ8DVTq5n SEvwnyw22GN4kESzgApCkUOQpu1fc+Urh93Tqq93ljneF2v8ImuctVNWB/W2Eg10 c3wAmyzD6YRRBDVZFLqFTGxoexu5NWEFrfnnsleSEpyiZCz7kCiCMZB55nv+LkcH YOgq9fi2Q0A3vWvN6lk5ctL6A1chxRXC9fVtsArRSJ5xDkq1UzMQqL3Ix+/BAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUvCyJ6qcVgBN6+9lqc0q9ZwJRwWAwHwYDVR0j BBgwFoAUCU1VbKC1WvSmNoc6Gx5wMrLJgTwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2QwOGViMy05MzdkLTQzMDQtOTE2Ny00NjNkN2M1OGQ1ZTQvMC8wOTRENTU2Q0Ew QjU1QUY0QTYzNjg3M0ExQjFFNzAzMkIyQzk4MTNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDk0RDU1NkNBMEI1NUFGNEE2MzY4NzNBMUIxRTcwMzJCMkM5 ODEzQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZDA4ZWIzLTkzN2QtNDMwNC05 MTY3LTQ2M2Q3YzU4ZDVlNC8wLzMxMzAzMzJlMzEzMTMyMmUzMTM0MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMzMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABncJAwDQYJ KoZIhvcNAQELBQADggEBAHrK8mWjCL5m3PbGtPb1vOmmkDbznx8fht2b1kJA1Fvf frpOC60tLFsP7IXGlcTC3d/zitINHEF2Mc5ProNPe109utJrFds9N4qMyOGl3o9w tYt4Psx4ZgjsQ1GyePB95zGMCeCn/PKvpsuUsm5lx0BkpGAWR1OvUU0r62YTWT14 lZbOTrmPmdlnDrk+cq3ieQezxPOmNDwGQgSHV8Mlo/jyQONmFkHN9xZ4OltFygho BpTxQurByam30JKxB7FwihGnLUhWV0cUeeqhW/11CjFwOda77rtzNhWCX5sf0Z+8 emacEgzix2LrQ/pJ2hhpDaXXHNPFGQKd9/yTcUNI8ek= -----END CERTIFICATE-----Generated at Sun Apr 6 13:43:34 2025 by rpki-client