$ rpki-client -vvf repo-rpki.idnic.net/repo/925e88bd-75e2-45df-8867-45402fc7c4b1/0/3130332e36302e3233332e302f32342d3234203d3e20313530353034.roa File: 3130332e36302e3233332e302f32342d3234203d3e20313530353034.roa (raw, json) Hash identifier: dF+8Wtg6B9yArRChkZjRjTgsTdgcRkNXBMlkqZFq73s= Subject key identifier: EC:79:92:1A:DA:12:C5:C2:63:0E:B1:4A:6E:33:E7:8D:0D:F0:27:F9 Certificate issuer: /CN=6862B9697E607C0C4861E56917A18D87AC33A721 Certificate serial: 3789E02EFE437F550E5025CA2D303A8B05EE9FDE Authority key identifier: 68:62:B9:69:7E:60:7C:0C:48:61:E5:69:17:A1:8D:87:AC:33:A7:21 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6862B9697E607C0C4861E56917A18D87AC33A721.cer Subject info access: rsync://repo-rpki.idnic.net/repo/925e88bd-75e2-45df-8867-45402fc7c4b1/0/3130332e36302e3233332e302f32342d3234203d3e20313530353034.roa Signing time: Sun 15 Dec 2024 13:00:00 +0000 ROA not before: Sun 15 Dec 2024 12:55:00 +0000 ROA not after: Sun 14 Dec 2025 13:00:00 +0000 asID: 150504 IP address blocks: 103.60.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/925e88bd-75e2-45df-8867-45402fc7c4b1/0/6862B9697E607C0C4861E56917A18D87AC33A721.crl rsync://repo-rpki.idnic.net/repo/925e88bd-75e2-45df-8867-45402fc7c4b1/0/6862B9697E607C0C4861E56917A18D87AC33A721.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6862B9697E607C0C4861E56917A18D87AC33A721.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 23:24:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:89:e0:2e:fe:43:7f:55:0e:50:25:ca:2d:30:3a:8b:05:ee:9f:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6862B9697E607C0C4861E56917A18D87AC33A721 Validity Not Before: Dec 15 12:55:00 2024 GMT Not After : Dec 14 13:00:00 2025 GMT Subject: CN=EC79921ADA12C5C2630EB14A6E33E78D0DF027F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9e:27:17:9b:7e:c8:04:0e:2e:57:ac:80:d9: 58:82:c0:10:e8:f9:0c:a5:34:6a:66:74:fb:17:15: c9:70:f3:db:cb:87:e7:7e:99:ff:0d:9e:61:4b:17: 26:c4:00:e6:dd:97:35:10:54:30:0c:69:df:f4:3b: bf:04:b3:c9:90:a0:57:11:17:2f:2a:38:16:ec:2c: 6d:b1:01:98:ee:8e:e0:50:3b:96:a4:48:b0:5f:13: d6:3f:26:4e:b3:b1:98:76:18:c4:7e:bd:de:11:df: de:41:f0:77:59:1b:73:24:5a:88:be:cc:6e:92:52: 37:73:f3:6c:e7:aa:0d:89:1c:91:4e:c1:b3:d0:46: 1f:53:50:25:71:d7:b9:5c:67:77:45:8c:73:54:f3: 0b:a4:0e:89:5b:b3:af:a5:cc:44:46:7d:10:fd:7a: 22:ae:2b:4f:fd:00:4f:6e:3f:6a:07:b7:a1:4f:47: 85:93:ca:3c:99:65:1a:08:18:9f:d1:9f:ea:90:f0: b6:53:42:5c:68:6d:45:99:08:56:a3:4f:26:61:b4: 00:bf:35:bc:83:81:e9:e2:de:51:71:db:e0:b3:78: 7b:72:da:30:b2:5c:d0:d3:32:c8:21:30:3a:72:40: b1:69:a8:fe:db:87:ca:b7:74:77:3c:6d:7f:05:8f: 85:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:79:92:1A:DA:12:C5:C2:63:0E:B1:4A:6E:33:E7:8D:0D:F0:27:F9 X509v3 Authority Key Identifier: keyid:68:62:B9:69:7E:60:7C:0C:48:61:E5:69:17:A1:8D:87:AC:33:A7:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/925e88bd-75e2-45df-8867-45402fc7c4b1/0/6862B9697E607C0C4861E56917A18D87AC33A721.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6862B9697E607C0C4861E56917A18D87AC33A721.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/925e88bd-75e2-45df-8867-45402fc7c4b1/0/3130332e36302e3233332e302f32342d3234203d3e20313530353034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.60.233.0/24 Signature Algorithm: sha256WithRSAEncryption 65:d1:f6:f4:9b:22:a5:5d:01:95:5a:de:d2:13:f4:6b:57:ef: c2:c8:c5:40:a3:e3:f5:60:a2:ac:0f:39:50:2e:5f:d7:b6:82: 93:e8:0d:e2:d7:a9:41:14:04:96:e4:38:99:1c:f9:9f:bb:00: cd:4a:8b:aa:31:85:dd:b6:b8:3c:c4:c6:b9:0a:83:b1:ad:f2: e6:d0:b1:e0:ea:54:c7:7b:b3:bf:a7:28:be:58:2e:1f:b1:97: a1:57:59:fa:bf:e9:9d:4d:5d:5a:fb:d1:dd:e2:6a:fe:47:d9: 70:2a:e5:a7:94:e9:be:af:ba:3e:0a:b7:9c:1a:dd:a1:47:fb: b9:e7:c0:78:2a:b6:4e:82:12:15:b2:a5:19:1e:8f:e8:25:d1: 39:a6:b1:e6:84:72:9d:f2:89:b8:da:66:e1:15:c8:6c:86:69: c7:05:67:c4:26:df:aa:92:48:65:d4:59:6a:92:e2:60:bc:cf: e4:b5:6b:1e:aa:39:76:d6:75:31:be:69:04:fe:e9:3a:80:72: ff:39:37:92:95:c9:81:5f:10:80:17:a7:5b:00:80:86:7f:81: b9:b9:84:a4:48:01:9b:c0:ab:16:52:77:a7:8f:2b:a5:ec:1e: d2:1c:dc:02:65:19:b9:7c:43:43:ce:a9:3d:94:02:a3:fd:29: fc:c3:1d:29 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUN4ngLv5Df1UOUCXKLTA6iwXun94wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjg2MkI5Njk3RTYwN0MwQzQ4NjFFNTY5MTdBMThEODdB QzMzQTcyMTAeFw0yNDEyMTUxMjU1MDBaFw0yNTEyMTQxMzAwMDBaMDMxMTAvBgNV BAMTKEVDNzk5MjFBREExMkM1QzI2MzBFQjE0QTZFMzNFNzhEMERGMDI3RjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4nicXm37IBA4uV6yA2ViCwBDo +QylNGpmdPsXFclw89vLh+d+mf8NnmFLFybEAObdlzUQVDAMad/0O78Es8mQoFcR Fy8qOBbsLG2xAZjujuBQO5akSLBfE9Y/Jk6zsZh2GMR+vd4R395B8HdZG3MkWoi+ zG6SUjdz82znqg2JHJFOwbPQRh9TUCVx17lcZ3dFjHNU8wukDolbs6+lzERGfRD9 eiKuK0/9AE9uP2oHt6FPR4WTyjyZZRoIGJ/Rn+qQ8LZTQlxobUWZCFajTyZhtAC/ NbyDgeni3lFx2+CzeHty2jCyXNDTMsghMDpyQLFpqP7bh8q3dHc8bX8Fj4XlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7HmSGtoSxcJjDrFKbjPnjQ3wJ/kwHwYDVR0j BBgwFoAUaGK5aX5gfAxIYeVpF6GNh6wzpyEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjVlODhiZC03NWUyLTQ1ZGYtODg2Ny00NTQwMmZjN2M0YjEvMC82ODYyQjk2OTdF NjA3QzBDNDg2MUU1NjkxN0ExOEQ4N0FDMzNBNzIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjg2MkI5Njk3RTYwN0MwQzQ4NjFFNTY5MTdBMThEODdBQzMz QTcyMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyNWU4OGJkLTc1ZTItNDVkZi04 ODY3LTQ1NDAyZmM3YzRiMS8wLzMxMzAzMzJlMzYzMDJlMzIzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzUzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzzpMA0GCSqG SIb3DQEBCwUAA4IBAQBl0fb0myKlXQGVWt7SE/RrV+/CyMVAo+P1YKKsDzlQLl/X toKT6A3i16lBFASW5DiZHPmfuwDNSouqMYXdtrg8xMa5CoOxrfLm0LHg6lTHe7O/ pyi+WC4fsZehV1n6v+mdTV1a+9Hd4mr+R9lwKuWnlOm+r7o+CrecGt2hR/u558B4 KrZOghIVsqUZHo/oJdE5prHmhHKd8om42mbhFchshmnHBWfEJt+qkkhl1FlqkuJg vM/ktWseqjl21nUxvmkE/uk6gHL/OTeSlcmBXxCAF6dbAICGf4G5uYSkSAGbwKsW Unenjyul7B7SHNwCZRm5fENDzqk9lAKj/Sn8wx0p -----END CERTIFICATE-----Generated at Sun Apr 6 20:36:57 2025 by rpki-client