$ rpki-client -vvf repo-rpki.idnic.net/repo/925e88bd-75e2-45df-8867-45402fc7c4b1/0/3130332e36302e3233322e302f32342d3234203d3e20313530353034.roa File: 3130332e36302e3233322e302f32342d3234203d3e20313530353034.roa (raw, json) Hash identifier: mAaFNkz4VS/8CUTW6nLj8oCW6VaOOiFXLJeViPHtvE4= Subject key identifier: 91:DD:76:17:6D:93:0B:35:75:B3:72:EE:81:83:CF:53:2A:9E:2B:FB Certificate issuer: /CN=6862B9697E607C0C4861E56917A18D87AC33A721 Certificate serial: 12C21855D0FB0D6F94A153F58FAE14058CDCC00A Authority key identifier: 68:62:B9:69:7E:60:7C:0C:48:61:E5:69:17:A1:8D:87:AC:33:A7:21 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6862B9697E607C0C4861E56917A18D87AC33A721.cer Subject info access: rsync://repo-rpki.idnic.net/repo/925e88bd-75e2-45df-8867-45402fc7c4b1/0/3130332e36302e3233322e302f32342d3234203d3e20313530353034.roa Signing time: Sun 15 Dec 2024 13:00:00 +0000 ROA not before: Sun 15 Dec 2024 12:55:00 +0000 ROA not after: Sun 14 Dec 2025 13:00:00 +0000 asID: 150504 IP address blocks: 103.60.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/925e88bd-75e2-45df-8867-45402fc7c4b1/0/6862B9697E607C0C4861E56917A18D87AC33A721.crl rsync://repo-rpki.idnic.net/repo/925e88bd-75e2-45df-8867-45402fc7c4b1/0/6862B9697E607C0C4861E56917A18D87AC33A721.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6862B9697E607C0C4861E56917A18D87AC33A721.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 23:24:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:c2:18:55:d0:fb:0d:6f:94:a1:53:f5:8f:ae:14:05:8c:dc:c0:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6862B9697E607C0C4861E56917A18D87AC33A721 Validity Not Before: Dec 15 12:55:00 2024 GMT Not After : Dec 14 13:00:00 2025 GMT Subject: CN=91DD76176D930B3575B372EE8183CF532A9E2BFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:40:2a:b3:e3:6a:5a:67:fd:a1:b3:1c:3e:da: 11:6d:78:2e:ec:20:c1:37:8a:3a:0a:26:01:1b:c4: 76:2f:9f:ad:00:92:42:8b:88:07:47:af:ed:30:5d: 28:a8:0b:9d:5a:87:08:33:25:6b:37:14:7c:41:34: f7:cb:a6:81:39:71:98:ed:34:f0:91:d6:61:78:f6: 6c:26:8e:7e:64:c3:d4:72:dd:bf:2a:9f:51:d1:8c: 2e:c1:df:58:09:de:ce:73:f7:64:db:c2:64:52:2c: c6:8d:6d:58:21:ca:3e:5e:ae:e0:cf:aa:fb:57:d5: ab:da:f9:fb:5f:4a:c4:13:4c:b8:b9:7f:98:c5:b9: 69:34:28:bb:24:0d:2b:ce:39:a9:da:b3:b3:88:07: 02:82:56:11:81:81:cf:53:1a:31:0c:68:f5:8f:66: 1e:25:28:45:56:66:58:cd:b4:17:84:24:ed:62:79: 83:b6:1d:6f:9b:ba:51:58:aa:67:c5:1d:47:d4:53: 97:5d:9f:f1:c5:3e:2b:2d:06:16:bc:ad:6b:4c:06: 8c:f4:a1:b0:49:4f:3c:73:f3:0e:09:f3:da:0a:12: c6:c1:23:c5:9a:34:b6:b5:6d:e2:4b:39:28:5f:5a: 57:22:3d:ff:34:4d:b7:c0:49:ec:5e:87:56:cd:bb: c2:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:DD:76:17:6D:93:0B:35:75:B3:72:EE:81:83:CF:53:2A:9E:2B:FB X509v3 Authority Key Identifier: keyid:68:62:B9:69:7E:60:7C:0C:48:61:E5:69:17:A1:8D:87:AC:33:A7:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/925e88bd-75e2-45df-8867-45402fc7c4b1/0/6862B9697E607C0C4861E56917A18D87AC33A721.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6862B9697E607C0C4861E56917A18D87AC33A721.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/925e88bd-75e2-45df-8867-45402fc7c4b1/0/3130332e36302e3233322e302f32342d3234203d3e20313530353034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.60.232.0/24 Signature Algorithm: sha256WithRSAEncryption 03:a1:bc:36:5a:af:8b:82:a2:b1:ad:13:72:bb:4e:a6:6b:c2: fc:1c:cc:94:a3:0c:bf:49:2d:be:71:3b:ea:88:a7:39:10:3f: 52:b3:5f:e6:d7:6b:f0:7c:a7:57:42:18:2b:48:bf:bf:54:51: 20:7f:eb:c7:10:b2:41:69:33:e3:c4:51:22:45:52:43:1b:91: 97:96:b2:67:cc:64:26:2a:46:cd:83:6b:00:da:29:1c:e9:2c: bc:a1:93:15:4d:6b:12:2c:5d:85:5b:a7:63:b9:37:91:dd:a4: 86:b3:e1:47:d4:b7:f8:d2:15:40:d2:93:27:9a:93:26:99:ad: 3f:57:f0:37:d3:83:82:43:99:0b:cd:b3:79:2a:77:53:da:d9: 01:54:70:e2:18:42:90:a6:19:d4:2f:e9:65:ef:25:33:16:64: 18:a5:87:cc:c9:00:63:ca:45:6e:b7:23:6f:2a:50:29:df:30: fd:bb:92:cf:68:3a:9d:53:ae:47:ed:8d:39:d7:2e:8f:0b:f1: fb:9d:3e:3a:0c:b7:5c:cb:75:2d:f4:de:72:df:f7:3a:55:08: 23:89:4e:f7:eb:2a:28:d6:af:f6:86:96:b6:bc:43:d7:b9:e7: ac:d5:ca:6a:74:0d:c5:f0:b9:18:e2:25:13:21:46:3e:bc:cf: 19:d6:1a:ed -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEsIYVdD7DW+UoVP1j64UBYzcwAowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjg2MkI5Njk3RTYwN0MwQzQ4NjFFNTY5MTdBMThEODdB QzMzQTcyMTAeFw0yNDEyMTUxMjU1MDBaFw0yNTEyMTQxMzAwMDBaMDMxMTAvBgNV BAMTKDkxREQ3NjE3NkQ5MzBCMzU3NUIzNzJFRTgxODNDRjUzMkE5RTJCRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjQCqz42paZ/2hsxw+2hFteC7s IME3ijoKJgEbxHYvn60AkkKLiAdHr+0wXSioC51ahwgzJWs3FHxBNPfLpoE5cZjt NPCR1mF49mwmjn5kw9Ry3b8qn1HRjC7B31gJ3s5z92TbwmRSLMaNbVghyj5eruDP qvtX1ava+ftfSsQTTLi5f5jFuWk0KLskDSvOOanas7OIBwKCVhGBgc9TGjEMaPWP Zh4lKEVWZljNtBeEJO1ieYO2HW+bulFYqmfFHUfUU5ddn/HFPistBha8rWtMBoz0 obBJTzxz8w4J89oKEsbBI8WaNLa1beJLOShfWlciPf80TbfASexeh1bNu8IfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkd12F22TCzV1s3LugYPPUyqeK/swHwYDVR0j BBgwFoAUaGK5aX5gfAxIYeVpF6GNh6wzpyEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjVlODhiZC03NWUyLTQ1ZGYtODg2Ny00NTQwMmZjN2M0YjEvMC82ODYyQjk2OTdF NjA3QzBDNDg2MUU1NjkxN0ExOEQ4N0FDMzNBNzIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjg2MkI5Njk3RTYwN0MwQzQ4NjFFNTY5MTdBMThEODdBQzMz QTcyMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyNWU4OGJkLTc1ZTItNDVkZi04 ODY3LTQ1NDAyZmM3YzRiMS8wLzMxMzAzMzJlMzYzMDJlMzIzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzUzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzzoMA0GCSqG SIb3DQEBCwUAA4IBAQADobw2Wq+LgqKxrRNyu06ma8L8HMyUowy/SS2+cTvqiKc5 ED9Ss1/m12vwfKdXQhgrSL+/VFEgf+vHELJBaTPjxFEiRVJDG5GXlrJnzGQmKkbN g2sA2ikc6Sy8oZMVTWsSLF2FW6djuTeR3aSGs+FH1Lf40hVA0pMnmpMmma0/V/A3 04OCQ5kLzbN5KndT2tkBVHDiGEKQphnUL+ll7yUzFmQYpYfMyQBjykVutyNvKlAp 3zD9u5LPaDqdU65H7Y051y6PC/H7nT46DLdcy3Ut9N5y3/c6VQgjiU736yoo1q/2 hpa2vEPXuees1cpqdA3F8LkY4iUTIUY+vM8Z1hrt -----END CERTIFICATE-----Generated at Sun Apr 6 20:32:58 2025 by rpki-client