$ rpki-client -vvf repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/3130332e3132362e3131392e302f32342d3234203d3e20313339393732.roa File: 3130332e3132362e3131392e302f32342d3234203d3e20313339393732.roa (raw, json) Hash identifier: nPlUaL9yF2n402rwq54ga4y4IA8tmh1JYztdhgr/yzQ= Subject key identifier: 11:A9:8D:65:77:A4:F8:96:6E:36:A1:C6:6E:C4:CB:98:AD:5C:45:D4 Certificate issuer: /CN=6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8 Certificate serial: 1980EAA163FB7F856759B2DF3229ABF306CC2613 Authority key identifier: 6D:F8:A8:73:B7:0B:A8:CC:AD:A3:1A:AD:D8:21:5F:F7:D0:2F:47:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/3130332e3132362e3131392e302f32342d3234203d3e20313339393732.roa Signing time: Tue 26 Nov 2024 04:13:51 +0000 ROA not before: Tue 26 Nov 2024 04:08:51 +0000 ROA not after: Tue 25 Nov 2025 04:13:51 +0000 asID: 139972 IP address blocks: 103.126.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.crl rsync://repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 16:07:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:80:ea:a1:63:fb:7f:85:67:59:b2:df:32:29:ab:f3:06:cc:26:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8 Validity Not Before: Nov 26 04:08:51 2024 GMT Not After : Nov 25 04:13:51 2025 GMT Subject: CN=11A98D6577A4F8966E36A1C66EC4CB98AD5C45D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:97:53:19:83:63:3d:d5:4d:7a:93:e0:f7:ba: 4d:66:ba:e6:a5:68:43:99:a2:c2:e6:0f:c5:ea:cb: a1:17:4f:71:35:d8:2a:16:54:8a:e9:88:51:b7:bb: dd:03:ca:1f:e4:84:ad:2b:3d:ce:8f:10:ad:0b:79: 6c:a1:86:4f:a3:dd:37:70:21:90:b9:50:c6:03:95: c6:b6:42:90:75:fb:64:f7:17:04:a5:c8:8d:2a:08: 9a:67:66:1c:f3:1e:31:57:0f:cd:ff:3d:28:63:ef: 8c:ed:43:44:4e:70:5d:62:fe:69:a4:c6:db:bd:79: e2:8f:f7:8a:e7:b7:f0:4a:05:ca:aa:e6:90:86:6b: c6:8a:a3:d4:b0:21:ba:98:ed:dc:e3:b6:a3:33:12: eb:65:75:19:ab:c0:fc:56:94:96:ea:6e:9d:ac:86: dd:e0:49:fe:6e:05:08:64:e6:ec:13:4d:18:7e:af: e5:97:c7:93:c1:c9:83:d1:f1:39:c1:a9:7c:a3:cc: c9:7e:77:03:5f:68:45:fb:4f:dd:74:ff:0f:57:c9: 94:ca:57:5f:6c:d1:de:ae:06:a9:10:f5:8b:9a:4c: f2:78:40:41:74:fc:c9:28:8a:39:fa:13:97:d3:1c: cd:be:c5:e7:d3:40:f3:a1:72:1d:08:66:e6:91:46: ad:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:A9:8D:65:77:A4:F8:96:6E:36:A1:C6:6E:C4:CB:98:AD:5C:45:D4 X509v3 Authority Key Identifier: keyid:6D:F8:A8:73:B7:0B:A8:CC:AD:A3:1A:AD:D8:21:5F:F7:D0:2F:47:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/3130332e3132362e3131392e302f32342d3234203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.126.119.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:c9:35:ea:a9:90:db:d7:f9:8d:7c:74:d8:fd:b9:05:22:ec: e6:5e:7d:8a:31:3c:c7:c8:a0:1f:51:f2:5c:28:d6:14:20:08: c5:46:a6:ac:e3:f9:57:83:9b:f3:f4:67:a7:6c:57:16:bf:c7: f9:51:99:5e:d2:83:e4:fb:e6:4b:0f:e2:44:34:97:5e:a0:ed: 0e:7e:75:f9:6d:f0:da:d4:30:e9:c0:0e:bb:49:dc:9b:cc:91: 4d:c4:6b:3b:34:6d:86:a9:30:74:69:a3:10:7b:49:59:e5:32: 0d:30:cd:61:ed:78:29:42:be:1e:5e:d8:68:f0:65:b5:f0:74: 36:a7:d6:6c:2a:17:cb:37:c0:ee:a4:e2:6f:91:30:0e:e8:1a: ed:26:45:19:9f:a0:83:0b:3d:39:76:8b:1c:4e:63:57:c4:2e: b3:2a:e9:a9:b9:48:67:ef:cc:88:1e:6d:30:01:c3:ee:66:6b: 6b:ad:1f:45:c2:3b:61:3e:c8:31:44:64:c0:af:4d:5a:cd:11: 8c:ab:c1:00:46:3e:7f:af:bd:2a:e0:64:ac:a9:ec:f4:36:76: 4a:c6:cc:12:2b:7f:48:78:56:be:36:0c:c5:e5:c3:25:fe:77: d9:3b:0c:04:7c:6f:2b:9a:49:b2:0d:16:b4:a5:e0:1e:60:63: c5:7f:4e:ce -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGYDqoWP7f4VnWbLfMimr8wbMJhMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRGOEE4NzNCNzBCQThDQ0FEQTMxQUFERDgyMTVGRjdE MDJGNDdFODAeFw0yNDExMjYwNDA4NTFaFw0yNTExMjUwNDEzNTFaMDMxMTAvBgNV BAMTKDExQTk4RDY1NzdBNEY4OTY2RTM2QTFDNjZFQzRDQjk4QUQ1QzQ1RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMl1MZg2M91U16k+D3uk1muual aEOZosLmD8Xqy6EXT3E12CoWVIrpiFG3u90Dyh/khK0rPc6PEK0LeWyhhk+j3Tdw IZC5UMYDlca2QpB1+2T3FwSlyI0qCJpnZhzzHjFXD83/PShj74ztQ0ROcF1i/mmk xtu9eeKP94rnt/BKBcqq5pCGa8aKo9SwIbqY7dzjtqMzEutldRmrwPxWlJbqbp2s ht3gSf5uBQhk5uwTTRh+r+WXx5PByYPR8TnBqXyjzMl+dwNfaEX7T910/w9XyZTK V19s0d6uBqkQ9YuaTPJ4QEF0/Mkoijn6E5fTHM2+xefTQPOhch0IZuaRRq2HAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUEamNZXek+JZuNqHGbsTLmK1cRdQwHwYDVR0j BBgwFoAUbfioc7cLqMytoxqt2CFf99AvR+gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 N2QyNmRlMC02OGNmLTQyOWMtOGIwZS04ZDY0Yjc2MmY4MjQvMC82REY4QTg3M0I3 MEJBOENDQURBMzFBQUREODIxNUZGN0QwMkY0N0U4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkRGOEE4NzNCNzBCQThDQ0FEQTMxQUFERDgyMTVGRjdEMDJG NDdFOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk3ZDI2ZGUwLTY4Y2YtNDI5Yy04 YjBlLThkNjRiNzYyZjgyNC8wLzMxMzAzMzJlMzEzMjM2MmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfncwDQYJ KoZIhvcNAQELBQADggEBAF7JNeqpkNvX+Y18dNj9uQUi7OZefYoxPMfIoB9R8lwo 1hQgCMVGpqzj+VeDm/P0Z6dsVxa/x/lRmV7Sg+T75ksP4kQ0l16g7Q5+dflt8NrU MOnADrtJ3JvMkU3Eazs0bYapMHRpoxB7SVnlMg0wzWHteClCvh5e2GjwZbXwdDan 1mwqF8s3wO6k4m+RMA7oGu0mRRmfoIMLPTl2ixxOY1fELrMq6am5SGfvzIgebTAB w+5ma2utH0XCO2E+yDFEZMCvTVrNEYyrwQBGPn+vvSrgZKyp7PQ2dkrGzBIrf0h4 Vr42DMXlwyX+d9k7DAR8byuaSbINFrSl4B5gY8V/Ts4= -----END CERTIFICATE-----Generated at Sat Apr 12 15:07:11 2025 by rpki-client