$ rpki-client -vvf repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/3130332e3132362e3131372e302f32342d3234203d3e20313338313136.roa File: 3130332e3132362e3131372e302f32342d3234203d3e20313338313136.roa (raw, json) Hash identifier: jIRxROaY+ZsyLOueu1pqPluvRpe9DT1746X5+JI8kKs= Subject key identifier: F0:12:EA:37:7E:FB:C6:13:D4:7B:AC:10:1A:81:1E:B4:54:D4:5C:4A Certificate issuer: /CN=6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8 Certificate serial: 1F4F0B5E9B19155CC1D28C58C64EC96A6FFBF9F7 Authority key identifier: 6D:F8:A8:73:B7:0B:A8:CC:AD:A3:1A:AD:D8:21:5F:F7:D0:2F:47:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/3130332e3132362e3131372e302f32342d3234203d3e20313338313136.roa Signing time: Sat 12 Oct 2024 06:02:02 +0000 ROA not before: Sat 12 Oct 2024 05:57:02 +0000 ROA not after: Sat 11 Oct 2025 06:02:02 +0000 asID: 138116 IP address blocks: 103.126.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.crl rsync://repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 17:58:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:4f:0b:5e:9b:19:15:5c:c1:d2:8c:58:c6:4e:c9:6a:6f:fb:f9:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8 Validity Not Before: Oct 12 05:57:02 2024 GMT Not After : Oct 11 06:02:02 2025 GMT Subject: CN=F012EA377EFBC613D47BAC101A811EB454D45C4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4a:cb:cd:c0:10:f1:6e:81:a1:a6:b9:53:60: 4a:44:4d:0a:d8:cd:8a:5a:1b:3b:f0:43:92:ca:0d: 1a:74:11:4e:55:27:64:3f:78:75:fb:ee:d1:ce:1f: 4a:20:75:6e:e6:61:58:e8:c3:ac:15:53:6a:c9:67: 01:77:9c:8b:e5:29:46:22:1d:74:2c:64:a8:3b:04: 54:90:0d:3c:47:5d:3d:10:a9:f9:ec:4d:7f:fb:5c: 23:0e:71:36:a0:ee:a1:df:88:77:f3:7b:8e:01:61: 6d:b5:38:f7:4d:6b:90:25:4e:87:99:e8:fe:10:5b: 2d:0a:07:6e:fa:71:f8:26:53:03:1d:a9:a0:29:0d: 0c:2f:fd:40:57:39:8e:85:53:a8:7b:c6:8f:3c:43: c9:c9:d8:ca:0c:af:97:2b:fe:1f:0a:30:ad:74:49: fd:9e:6d:9e:f3:c1:ef:b5:42:a0:f0:62:a7:e9:7a: 44:b8:63:ed:1a:ad:2b:a8:27:f0:4b:3c:2f:eb:ff: d6:2e:63:24:49:d9:ef:2b:72:23:5e:9d:ef:2d:1f: b3:00:d1:c9:d8:ce:5e:13:53:f8:72:83:6d:e6:69: f9:e0:dd:ac:73:8a:5b:ff:0b:66:1b:14:53:bc:9d: c0:f3:9c:d0:06:62:e2:16:d3:e0:67:91:9f:ac:60: 2b:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:12:EA:37:7E:FB:C6:13:D4:7B:AC:10:1A:81:1E:B4:54:D4:5C:4A X509v3 Authority Key Identifier: keyid:6D:F8:A8:73:B7:0B:A8:CC:AD:A3:1A:AD:D8:21:5F:F7:D0:2F:47:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/3130332e3132362e3131372e302f32342d3234203d3e20313338313136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.126.117.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:15:cd:5a:ad:df:8a:af:fe:2e:1b:12:60:c9:18:57:3b:6f: 60:f4:36:48:cd:a6:05:33:1c:6a:0e:00:0f:1e:b6:63:3c:f6: 60:f8:19:bb:bf:52:87:cd:66:39:64:af:66:ac:ac:7a:0c:c8: 54:dd:bb:1e:97:da:0d:a7:b9:50:23:a9:d1:1b:49:2b:18:da: c0:d9:64:ec:12:32:be:89:75:be:9a:57:a9:99:d2:37:69:d0: 4d:03:51:6f:9f:d0:51:e8:20:5b:04:88:37:d8:3e:4a:68:7b: 89:84:41:92:32:b9:3f:4b:61:14:aa:56:bf:76:27:f7:1f:b7: b1:43:d4:67:f3:66:96:63:32:8d:57:ac:16:c1:42:de:cd:8c: aa:53:9b:db:5c:40:d5:58:53:74:a1:93:27:48:4b:6a:ea:84: c4:91:be:4d:d0:22:31:8d:42:12:f0:f0:16:64:f4:11:a0:9d: 53:96:7d:3f:d9:8e:98:42:a1:30:57:47:0e:34:c3:59:76:e1: e7:e4:c6:d1:e9:cc:fe:54:5d:93:fe:b4:5c:5b:62:cc:2d:34: 58:ef:0b:18:82:c7:c0:d6:40:77:1d:c9:01:5e:42:81:99:05: c6:0f:c0:08:37:f4:d8:fe:3f:96:8b:31:f2:47:93:03:d0:9f: 55:81:f0:1c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUH08LXpsZFVzB0oxYxk7Jam/7+fcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRGOEE4NzNCNzBCQThDQ0FEQTMxQUFERDgyMTVGRjdE MDJGNDdFODAeFw0yNDEwMTIwNTU3MDJaFw0yNTEwMTEwNjAyMDJaMDMxMTAvBgNV BAMTKEYwMTJFQTM3N0VGQkM2MTNENDdCQUMxMDFBODExRUI0NTRENDVDNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7SsvNwBDxboGhprlTYEpETQrY zYpaGzvwQ5LKDRp0EU5VJ2Q/eHX77tHOH0ogdW7mYVjow6wVU2rJZwF3nIvlKUYi HXQsZKg7BFSQDTxHXT0QqfnsTX/7XCMOcTag7qHfiHfze44BYW21OPdNa5AlToeZ 6P4QWy0KB276cfgmUwMdqaApDQwv/UBXOY6FU6h7xo88Q8nJ2MoMr5cr/h8KMK10 Sf2ebZ7zwe+1QqDwYqfpekS4Y+0arSuoJ/BLPC/r/9YuYyRJ2e8rciNene8tH7MA 0cnYzl4TU/hyg23mafng3axzilv/C2YbFFO8ncDznNAGYuIW0+BnkZ+sYCtfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU8BLqN377xhPUe6wQGoEetFTUXEowHwYDVR0j BBgwFoAUbfioc7cLqMytoxqt2CFf99AvR+gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 N2QyNmRlMC02OGNmLTQyOWMtOGIwZS04ZDY0Yjc2MmY4MjQvMC82REY4QTg3M0I3 MEJBOENDQURBMzFBQUREODIxNUZGN0QwMkY0N0U4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkRGOEE4NzNCNzBCQThDQ0FEQTMxQUFERDgyMTVGRjdEMDJG NDdFOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk3ZDI2ZGUwLTY4Y2YtNDI5Yy04 YjBlLThkNjRiNzYyZjgyNC8wLzMxMzAzMzJlMzEzMjM2MmUzMTMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMxMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfnUwDQYJ KoZIhvcNAQELBQADggEBAD4VzVqt34qv/i4bEmDJGFc7b2D0NkjNpgUzHGoOAA8e tmM89mD4Gbu/UofNZjlkr2asrHoMyFTdux6X2g2nuVAjqdEbSSsY2sDZZOwSMr6J db6aV6mZ0jdp0E0DUW+f0FHoIFsEiDfYPkpoe4mEQZIyuT9LYRSqVr92J/cft7FD 1GfzZpZjMo1XrBbBQt7NjKpTm9tcQNVYU3ShkydIS2rqhMSRvk3QIjGNQhLw8BZk 9BGgnVOWfT/ZjphCoTBXRw40w1l24efkxtHpzP5UXZP+tFxbYswtNFjvCxiCx8DW QHcdyQFeQoGZBcYPwAg39Nj+P5aLMfJHkwPQn1WB8Bw= -----END CERTIFICATE-----Generated at Tue Mar 11 05:04:33 2025 by rpki-client