$ rpki-client -vvf repo-rpki.idnic.net/repo/94ee2bd3-0f66-4d43-a9e7-965d33f12852/0/3130332e3133392e3131322e302f32342d3234203d3e20313338383933.roa File: 3130332e3133392e3131322e302f32342d3234203d3e20313338383933.roa (raw, json) Hash identifier: AsMeUOteqEXHlEkIekpGYqBMNAoMYPpcU5LYFAHddbA= Subject key identifier: 42:94:70:52:6F:E5:70:DE:CB:1F:A2:93:8D:85:88:D4:69:D1:63:B8 Certificate issuer: /CN=F5A5DFAFD47F54DC54D56683E91A5C1722CBA6AD Certificate serial: 34CA7CCAFDEA41EBEFC86274F8D08590217F47F7 Authority key identifier: F5:A5:DF:AF:D4:7F:54:DC:54:D5:66:83:E9:1A:5C:17:22:CB:A6:AD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F5A5DFAFD47F54DC54D56683E91A5C1722CBA6AD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/94ee2bd3-0f66-4d43-a9e7-965d33f12852/0/3130332e3133392e3131322e302f32342d3234203d3e20313338383933.roa Signing time: Fri 13 Dec 2024 12:00:00 +0000 ROA not before: Fri 13 Dec 2024 11:55:00 +0000 ROA not after: Fri 12 Dec 2025 12:00:00 +0000 asID: 138893 IP address blocks: 103.139.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/94ee2bd3-0f66-4d43-a9e7-965d33f12852/0/F5A5DFAFD47F54DC54D56683E91A5C1722CBA6AD.crl rsync://repo-rpki.idnic.net/repo/94ee2bd3-0f66-4d43-a9e7-965d33f12852/0/F5A5DFAFD47F54DC54D56683E91A5C1722CBA6AD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F5A5DFAFD47F54DC54D56683E91A5C1722CBA6AD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 07:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:ca:7c:ca:fd:ea:41:eb:ef:c8:62:74:f8:d0:85:90:21:7f:47:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F5A5DFAFD47F54DC54D56683E91A5C1722CBA6AD Validity Not Before: Dec 13 11:55:00 2024 GMT Not After : Dec 12 12:00:00 2025 GMT Subject: CN=429470526FE570DECB1FA2938D8588D469D163B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4e:9d:64:1c:56:8c:c2:da:35:1a:3c:02:c6: 1d:a9:ee:29:df:d1:78:e7:da:e4:b4:25:39:d4:c2: bd:03:54:94:0e:36:13:80:89:2d:91:24:2e:6b:e1: 7f:19:a2:71:36:31:64:bc:e3:03:18:92:ec:5d:e5: 25:93:f1:80:6d:ea:30:8d:7d:66:01:03:a5:72:7e: 1d:4a:42:3d:5f:55:b6:94:bd:91:18:bf:75:fa:e5: b5:c2:d0:b6:6a:1a:a0:d2:f3:3f:71:33:b2:f8:7a: ab:7b:25:f1:c1:29:aa:1f:af:bc:bf:c9:79:19:85: 6b:84:c8:24:14:be:11:8b:1f:2b:a9:89:98:dc:31: b3:f0:a7:34:7c:6b:f3:ba:67:ca:98:3a:81:c7:3a: 5f:76:6e:34:7c:0a:75:00:b7:e5:49:a8:03:90:cb: 4e:6f:70:ca:d7:7e:b9:c4:1e:70:a7:c3:b1:21:16: 67:20:3e:6a:7c:b7:e9:e3:c6:58:dc:30:60:42:24: e1:0c:6d:6c:89:1b:e6:e8:71:af:14:37:26:c1:db: 10:89:05:2f:26:21:e8:65:95:ac:af:21:10:58:2c: 68:d9:f6:9d:1d:f9:0d:17:17:33:0a:58:84:0e:0e: 21:60:2c:93:81:4a:16:7f:77:fc:67:ae:8c:f6:2d: 9c:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:94:70:52:6F:E5:70:DE:CB:1F:A2:93:8D:85:88:D4:69:D1:63:B8 X509v3 Authority Key Identifier: keyid:F5:A5:DF:AF:D4:7F:54:DC:54:D5:66:83:E9:1A:5C:17:22:CB:A6:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/94ee2bd3-0f66-4d43-a9e7-965d33f12852/0/F5A5DFAFD47F54DC54D56683E91A5C1722CBA6AD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F5A5DFAFD47F54DC54D56683E91A5C1722CBA6AD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/94ee2bd3-0f66-4d43-a9e7-965d33f12852/0/3130332e3133392e3131322e302f32342d3234203d3e20313338383933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.112.0/24 Signature Algorithm: sha256WithRSAEncryption 45:b4:f8:9a:72:85:0c:35:99:94:05:17:7d:3d:ef:4f:0a:d0: 15:4d:cd:ea:38:71:c4:b3:29:eb:7d:d9:0c:a3:b6:99:ba:b9: 67:bd:b1:b7:72:19:cf:55:40:d2:df:fa:2a:ec:80:fb:b4:d0: 2c:30:9b:6f:db:87:4d:3a:d8:29:0e:76:e1:ea:39:39:6e:95: 4e:b8:2f:29:94:57:69:4d:a4:46:f0:e8:1b:c9:a0:a1:a0:07: a8:de:ba:f4:19:b0:a7:28:b8:ed:33:c8:61:44:31:3d:be:ed: 09:0d:3e:3e:b3:03:72:c1:60:19:21:37:0e:2d:1e:a3:b6:b3: 28:9b:5f:47:b9:c7:82:6b:04:2c:97:21:82:67:bc:77:aa:5c: 19:34:82:7d:7c:34:97:82:31:f5:c0:58:c6:17:b4:66:ca:3e: 7e:40:7c:44:86:55:65:db:52:74:e8:3c:ff:30:1c:e9:3c:15: 70:c6:52:ed:3d:28:ef:99:a6:bc:bd:f9:69:23:9f:6e:c6:76: 9e:f3:02:df:a6:f9:06:3c:d4:63:c7:4a:f0:42:52:ad:91:d8: 77:e5:15:10:f3:d7:43:ac:eb:e1:47:79:fd:66:d5:40:e2:04: 06:6b:72:cc:2b:be:66:66:29:4f:93:6c:ba:e6:63:f7:5f:26: 8f:31:4f:34 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNMp8yv3qQevvyGJ0+NCFkCF/R/cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjVBNURGQUZENDdGNTREQzU0RDU2NjgzRTkxQTVDMTcy MkNCQTZBRDAeFw0yNDEyMTMxMTU1MDBaFw0yNTEyMTIxMjAwMDBaMDMxMTAvBgNV BAMTKDQyOTQ3MDUyNkZFNTcwREVDQjFGQTI5MzhEODU4OEQ0NjlEMTYzQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+Tp1kHFaMwto1GjwCxh2p7inf 0Xjn2uS0JTnUwr0DVJQONhOAiS2RJC5r4X8ZonE2MWS84wMYkuxd5SWT8YBt6jCN fWYBA6Vyfh1KQj1fVbaUvZEYv3X65bXC0LZqGqDS8z9xM7L4eqt7JfHBKaofr7y/ yXkZhWuEyCQUvhGLHyupiZjcMbPwpzR8a/O6Z8qYOoHHOl92bjR8CnUAt+VJqAOQ y05vcMrXfrnEHnCnw7EhFmcgPmp8t+njxljcMGBCJOEMbWyJG+boca8UNybB2xCJ BS8mIehllayvIRBYLGjZ9p0d+Q0XFzMKWIQODiFgLJOBShZ/d/xnroz2LZzLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUQpRwUm/lcN7LH6KTjYWI1GnRY7gwHwYDVR0j BBgwFoAU9aXfr9R/VNxU1WaD6RpcFyLLpq0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NGVlMmJkMy0wZjY2LTRkNDMtYTllNy05NjVkMzNmMTI4NTIvMC9GNUE1REZBRkQ0 N0Y1NERDNTRENTY2ODNFOTFBNUMxNzIyQ0JBNkFELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjVBNURGQUZENDdGNTREQzU0RDU2NjgzRTkxQTVDMTcyMkNC QTZBRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0ZWUyYmQzLTBmNjYtNGQ0My1h OWU3LTk2NWQzM2YxMjg1Mi8wLzMxMzAzMzJlMzEzMzM5MmUzMTMxMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzODM5MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABni3AwDQYJ KoZIhvcNAQELBQADggEBAEW0+JpyhQw1mZQFF309708K0BVNzeo4ccSzKet92Qyj tpm6uWe9sbdyGc9VQNLf+irsgPu00Cwwm2/bh0062CkOduHqOTlulU64LymUV2lN pEbw6BvJoKGgB6jeuvQZsKcouO0zyGFEMT2+7QkNPj6zA3LBYBkhNw4tHqO2syib X0e5x4JrBCyXIYJnvHeqXBk0gn18NJeCMfXAWMYXtGbKPn5AfESGVWXbUnToPP8w HOk8FXDGUu09KO+Zpry9+Wkjn27Gdp7zAt+m+QY81GPHSvBCUq2R2HflFRDz10Os 6+FHef1m1UDiBAZrcswrvmZmKU+TbLrmY/dfJo8xTzQ= -----END CERTIFICATE-----Generated at Sun Apr 6 13:38:53 2025 by rpki-client