$ rpki-client -vvf repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131392e302f32342d3234203d3e20313338313032.roa File: 3130332e3132352e3131392e302f32342d3234203d3e20313338313032.roa (raw, json) Hash identifier: 8llNfwrUTFXUaOZxOG2FdVdGooONQqY0triO7boP8ZE= Subject key identifier: 17:51:9F:78:6B:04:38:FE:35:95:17:C9:2D:DD:F1:63:56:64:6B:4F Certificate issuer: /CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Certificate serial: 73781138C1582054BAD6E2EC59D0A6EA63188FED Authority key identifier: 4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131392e302f32342d3234203d3e20313338313032.roa Signing time: Sun 29 Dec 2024 08:00:47 +0000 ROA not before: Sun 29 Dec 2024 07:55:47 +0000 ROA not after: Sun 28 Dec 2025 08:00:47 +0000 asID: 138102 IP address blocks: 103.125.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 14:13:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:78:11:38:c1:58:20:54:ba:d6:e2:ec:59:d0:a6:ea:63:18:8f:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Validity Not Before: Dec 29 07:55:47 2024 GMT Not After : Dec 28 08:00:47 2025 GMT Subject: CN=17519F786B0438FE359517C92DDDF16356646B4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ed:a9:5a:a4:2b:50:9a:7c:70:66:1c:59:44: 37:a4:03:59:6c:e0:cb:9c:c8:6d:38:fd:b2:50:9d: 74:67:a7:0e:c4:80:1f:f8:59:94:15:8c:65:60:06: c3:ce:d7:e4:bf:af:0f:c9:6a:1c:c9:6b:95:55:41: e1:de:e2:ad:62:8e:59:22:4d:33:61:3a:d9:bd:07: b4:8b:32:1a:f9:bc:e7:ee:d7:2b:b3:a5:01:74:b5: 7d:c5:1b:25:13:42:68:3b:03:56:e7:7a:dc:1c:06: a0:47:2c:6a:09:d0:3f:bc:de:0a:9d:24:91:7b:73: 1c:77:a3:26:d6:a1:bc:c1:47:1d:c7:37:86:34:c0: c7:45:e0:67:a6:70:ae:e4:d7:0b:8e:78:00:aa:35: 9a:e2:02:ce:d8:32:43:a2:1a:6a:10:d9:56:73:db: 25:f7:57:8d:07:a8:e5:a6:c8:5d:81:87:13:d5:0a: 52:fd:54:36:7c:e1:c0:61:85:1a:5b:e2:79:f5:b6: 0c:15:bb:8b:65:8d:0c:93:a2:eb:81:8d:7a:ca:90: 21:1c:cd:39:91:9f:1e:c4:c5:97:c3:21:5b:a6:a6: 0b:05:1a:73:ab:32:8c:e9:54:44:3a:99:63:69:7d: ee:98:9d:c9:aa:f1:ee:44:73:8f:bd:ce:6f:44:c8: e5:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:51:9F:78:6B:04:38:FE:35:95:17:C9:2D:DD:F1:63:56:64:6B:4F X509v3 Authority Key Identifier: keyid:4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131392e302f32342d3234203d3e20313338313032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.119.0/24 Signature Algorithm: sha256WithRSAEncryption 98:62:fe:64:3b:66:90:69:de:77:dc:b7:8e:c7:4a:38:7d:37: 36:01:e2:1f:db:44:2e:0a:b5:79:3b:51:f9:44:0c:99:01:76: 84:2b:c3:26:bc:5f:99:5c:24:2d:3f:51:48:73:d9:9a:fe:b6: 14:17:73:2e:8e:66:17:59:cc:d3:80:a3:a6:49:24:17:a9:d6: b0:66:09:9b:1a:32:21:ec:32:f8:60:50:ef:97:73:ca:76:73: a6:df:4f:0e:10:65:61:98:60:7f:b5:3e:58:79:2e:44:a2:f3: 44:43:da:d1:e3:4a:df:18:8c:4a:38:c6:a1:e7:72:53:9c:15: 4a:d3:08:8c:31:28:12:82:4a:b2:a0:7d:82:a1:94:6b:47:4a: 21:39:19:fe:84:a8:d3:98:bc:56:35:d9:43:63:c1:f9:6c:18: 80:e7:70:80:8f:2a:2b:2c:d1:6e:3e:72:45:43:d7:35:4d:56: 09:47:b8:6d:53:a6:bc:0d:51:64:bd:5f:58:88:ed:84:e7:16: c2:2f:fc:5f:e2:c5:5d:75:cc:0f:fd:50:98:30:f2:d4:67:32: 18:56:14:56:ca:07:1c:79:7c:06:6a:4e:2a:46:84:87:76:08: 59:68:9e:80:02:de:ee:b3:8a:14:bb:ad:a2:b3:ff:1c:dc:3b: 88:b1:5d:a6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUc3gROMFYIFS61uLsWdCm6mMYj+0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNF RTZBRDFGOTAeFw0yNDEyMjkwNzU1NDdaFw0yNTEyMjgwODAwNDdaMDMxMTAvBgNV BAMTKDE3NTE5Rjc4NkIwNDM4RkUzNTk1MTdDOTJERERGMTYzNTY2NDZCNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDk7alapCtQmnxwZhxZRDekA1ls 4MucyG04/bJQnXRnpw7EgB/4WZQVjGVgBsPO1+S/rw/JahzJa5VVQeHe4q1ijlki TTNhOtm9B7SLMhr5vOfu1yuzpQF0tX3FGyUTQmg7A1bnetwcBqBHLGoJ0D+83gqd JJF7cxx3oybWobzBRx3HN4Y0wMdF4GemcK7k1wuOeACqNZriAs7YMkOiGmoQ2VZz 2yX3V40HqOWmyF2BhxPVClL9VDZ84cBhhRpb4nn1tgwVu4tljQyTouuBjXrKkCEc zTmRnx7ExZfDIVumpgsFGnOrMozpVEQ6mWNpfe6Yncmq8e5Ec4+9zm9EyOWBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUF1GfeGsEOP41lRfJLd3xY1Zka08wHwYDVR0j BBgwFoAUTe+92YVL6NHij3MwoLgCw+5q0fkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MGRlMjMxZi1mYjhhLTQyN2EtYWEzNi0wYTNmYzk3MjMyOGQvMC80REVGQkREOTg1 NEJFOEQxRTI4RjczMzBBMEI4MDJDM0VFNkFEMUY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNFRTZB RDFGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwZGUyMzFmLWZiOGEtNDI3YS1h YTM2LTBhM2ZjOTcyMzI4ZC8wLzMxMzAzMzJlMzEzMjM1MmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMwMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfXcwDQYJ KoZIhvcNAQELBQADggEBAJhi/mQ7ZpBp3nfct47HSjh9NzYB4h/bRC4KtXk7UflE DJkBdoQrwya8X5lcJC0/UUhz2Zr+thQXcy6OZhdZzNOAo6ZJJBep1rBmCZsaMiHs MvhgUO+Xc8p2c6bfTw4QZWGYYH+1Plh5LkSi80RD2tHjSt8YjEo4xqHnclOcFUrT CIwxKBKCSrKgfYKhlGtHSiE5Gf6EqNOYvFY12UNjwflsGIDncICPKiss0W4+ckVD 1zVNVglHuG1TprwNUWS9X1iI7YTnFsIv/F/ixV11zA/9UJgw8tRnMhhWFFbKBxx5 fAZqTipGhId2CFlonoAC3u6zihS7raKz/xzcO4ixXaY= -----END CERTIFICATE-----Generated at Sun Apr 6 13:54:22 2025 by rpki-client