$ rpki-client -vvf repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131372e302f32342d3234203d3e20313338313032.roa File: 3130332e3132352e3131372e302f32342d3234203d3e20313338313032.roa (raw, json) Hash identifier: ZMeuRsHtVSwXmTeOlP2EBAn6yOUfUCueHpz1hHvcg+E= Subject key identifier: CD:4E:FD:6A:CB:40:C2:60:E2:CA:F0:7D:39:6A:66:DC:ED:E5:7D:7D Certificate issuer: /CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Certificate serial: 6817DF5C6F111F4D864D2BB177325BC663F70649 Authority key identifier: 4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131372e302f32342d3234203d3e20313338313032.roa Signing time: Sun 29 Dec 2024 08:00:47 +0000 ROA not before: Sun 29 Dec 2024 07:55:47 +0000 ROA not after: Sun 28 Dec 2025 08:00:47 +0000 asID: 138102 IP address blocks: 103.125.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:17:df:5c:6f:11:1f:4d:86:4d:2b:b1:77:32:5b:c6:63:f7:06:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Validity Not Before: Dec 29 07:55:47 2024 GMT Not After : Dec 28 08:00:47 2025 GMT Subject: CN=CD4EFD6ACB40C260E2CAF07D396A66DCEDE57D7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f5:7e:9a:99:e2:ea:87:84:9f:d3:51:0f:2a: 29:11:c5:08:24:79:a5:34:7a:8c:82:0a:b2:d1:9b: f8:02:50:3f:c7:4c:ad:87:86:d1:2b:d9:01:67:2f: 7e:67:73:d5:e2:97:e2:68:3f:c1:66:d0:0b:98:fb: 1d:92:36:2f:f0:b2:66:b8:a8:d4:9f:27:72:b9:57: 2e:71:07:ad:5f:0f:76:81:d0:aa:50:54:cb:89:39: 87:4c:55:e5:77:7e:3e:ae:e1:27:15:ec:74:1a:ad: e2:f6:ae:34:7a:c6:8a:d0:6e:e3:34:a7:f1:3f:2a: ad:46:51:cc:9b:5d:9d:30:1b:f9:7a:2f:09:db:9c: 3f:e4:10:10:bd:54:30:08:9e:ac:1c:6a:5a:4b:d4: 44:40:08:8d:ab:ac:a8:24:9f:97:ff:e5:1f:6b:43: 65:e1:f1:a9:88:2c:97:94:70:da:fb:12:d5:fc:fd: 0d:c4:21:13:48:82:39:eb:ef:7a:8a:45:c7:e3:d5: ae:9e:3b:24:03:44:86:67:32:8b:29:56:9f:4a:7d: 1c:cd:e6:3d:a9:df:dc:39:8e:8c:e2:49:bb:6e:da: f5:ca:55:0c:c2:6d:83:fb:1e:2c:58:8e:89:60:7b: 55:6a:93:c6:19:84:45:ff:08:79:9c:bd:f3:c4:f0: d4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:4E:FD:6A:CB:40:C2:60:E2:CA:F0:7D:39:6A:66:DC:ED:E5:7D:7D X509v3 Authority Key Identifier: keyid:4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131372e302f32342d3234203d3e20313338313032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.117.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:69:55:71:2a:f7:63:42:75:e8:d4:ee:b9:0e:a8:31:fc:7e: 67:db:d5:ee:f2:71:08:24:30:6d:f4:a4:32:20:b4:73:9e:39: 8d:4f:eb:90:43:bf:39:b8:eb:38:df:9c:0e:2b:e0:c6:1c:0c: b3:5a:7e:df:ef:89:83:87:a6:36:19:15:ea:ea:34:e0:8a:c0: bb:10:55:34:af:5c:d4:7f:5d:66:b2:c2:68:a0:e7:4a:dc:7a: 85:6d:67:a1:4a:8c:b6:89:92:29:7f:ad:af:3e:f4:a0:64:cf: e0:68:aa:42:a1:a6:c9:1c:e5:ab:f3:64:64:24:a5:76:53:a4: 9e:76:ec:dd:4c:64:26:39:10:9b:b8:cb:55:18:6d:77:b5:9f: 76:38:61:be:ef:8b:10:b3:c9:78:5a:09:df:30:2f:b4:0f:7a: 84:fd:07:72:45:be:b3:95:84:2e:01:06:e9:0a:fe:30:b5:5f: 6a:2c:d0:bb:72:df:13:26:19:18:14:61:b0:33:92:1e:87:0d: 88:af:c1:0f:f9:80:73:5f:b2:3e:dd:f1:2c:b1:95:55:14:e0: 6e:4b:97:7a:f2:a5:41:73:17:31:44:3e:06:37:b9:84:d3:7a: 7d:76:e9:f1:4a:b6:07:b5:11:98:b5:99:7b:c4:83:79:37:dd: 08:a6:a8:b2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUaBffXG8RH02GTSuxdzJbxmP3BkkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNF RTZBRDFGOTAeFw0yNDEyMjkwNzU1NDdaFw0yNTEyMjgwODAwNDdaMDMxMTAvBgNV BAMTKENENEVGRDZBQ0I0MEMyNjBFMkNBRjA3RDM5NkE2NkRDRURFNTdEN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN9X6ameLqh4Sf01EPKikRxQgk eaU0eoyCCrLRm/gCUD/HTK2HhtEr2QFnL35nc9Xil+JoP8Fm0AuY+x2SNi/wsma4 qNSfJ3K5Vy5xB61fD3aB0KpQVMuJOYdMVeV3fj6u4ScV7HQareL2rjR6xorQbuM0 p/E/Kq1GUcybXZ0wG/l6LwnbnD/kEBC9VDAInqwcalpL1ERACI2rrKgkn5f/5R9r Q2Xh8amILJeUcNr7EtX8/Q3EIRNIgjnr73qKRcfj1a6eOyQDRIZnMospVp9KfRzN 5j2p39w5joziSbtu2vXKVQzCbYP7HixYjolge1Vqk8YZhEX/CHmcvfPE8NS3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUzU79astAwmDiyvB9OWpm3O3lfX0wHwYDVR0j BBgwFoAUTe+92YVL6NHij3MwoLgCw+5q0fkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MGRlMjMxZi1mYjhhLTQyN2EtYWEzNi0wYTNmYzk3MjMyOGQvMC80REVGQkREOTg1 NEJFOEQxRTI4RjczMzBBMEI4MDJDM0VFNkFEMUY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNFRTZB RDFGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwZGUyMzFmLWZiOGEtNDI3YS1h YTM2LTBhM2ZjOTcyMzI4ZC8wLzMxMzAzMzJlMzEzMjM1MmUzMTMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMwMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfXUwDQYJ KoZIhvcNAQELBQADggEBAG5pVXEq92NCdejU7rkOqDH8fmfb1e7ycQgkMG30pDIg tHOeOY1P65BDvzm46zjfnA4r4MYcDLNaft/viYOHpjYZFerqNOCKwLsQVTSvXNR/ XWaywmig50rceoVtZ6FKjLaJkil/ra8+9KBkz+BoqkKhpskc5avzZGQkpXZTpJ52 7N1MZCY5EJu4y1UYbXe1n3Y4Yb7vixCzyXhaCd8wL7QPeoT9B3JFvrOVhC4BBukK /jC1X2os0Lty3xMmGRgUYbAzkh6HDYivwQ/5gHNfsj7d8SyxlVUU4G5Ll3rypUFz FzFEPgY3uYTTen126fFKtge1EZi1mXvEg3k33QimqLI= -----END CERTIFICATE-----Generated at Thu Apr 10 11:22:14 2025 by rpki-client