$ rpki-client -vvf repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/3130332e36312e3233342e302f32342d3234203d3e20313530353130.roa File: 3130332e36312e3233342e302f32342d3234203d3e20313530353130.roa (raw, json) Hash identifier: VvIxYiO1vpW4N2M0c206efZBd+dmDTRrTwPYKqia/UQ= Subject key identifier: 28:77:8D:34:12:4B:BD:BE:15:91:71:0F:6F:9A:19:B7:17:3B:52:55 Certificate issuer: /CN=4F022459BA46CF30700E070671C752B44729E249 Certificate serial: 289C59422A3DEA51552D7D4FA6F025A7FD6D5BC2 Authority key identifier: 4F:02:24:59:BA:46:CF:30:70:0E:07:06:71:C7:52:B4:47:29:E2:49 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F022459BA46CF30700E070671C752B44729E249.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/3130332e36312e3233342e302f32342d3234203d3e20313530353130.roa Signing time: Mon 02 Dec 2024 10:00:00 +0000 ROA not before: Mon 02 Dec 2024 09:55:00 +0000 ROA not after: Mon 01 Dec 2025 10:00:00 +0000 asID: 150510 IP address blocks: 103.61.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/4F022459BA46CF30700E070671C752B44729E249.crl rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/4F022459BA46CF30700E070671C752B44729E249.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F022459BA46CF30700E070671C752B44729E249.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 07:07:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:9c:59:42:2a:3d:ea:51:55:2d:7d:4f:a6:f0:25:a7:fd:6d:5b:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F022459BA46CF30700E070671C752B44729E249 Validity Not Before: Dec 2 09:55:00 2024 GMT Not After : Dec 1 10:00:00 2025 GMT Subject: CN=28778D34124BBDBE1591710F6F9A19B7173B5255 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:bd:58:97:83:37:2c:ff:79:73:98:0a:9a:3c: 8d:e7:49:69:e4:b1:59:dc:fc:2a:14:cb:92:2b:1d: 72:2b:0d:a6:25:a8:42:4e:51:d7:ad:94:00:c6:a3: 0a:ea:e6:1f:60:c3:a0:18:79:1e:45:db:12:86:04: 32:97:a8:f2:4a:3d:2e:4a:17:17:7a:82:8b:3b:3a: 4f:ee:cb:a6:7f:51:6c:8a:28:9f:f2:27:46:41:d9: 1e:49:c0:b5:c8:42:26:d3:8c:2e:2d:89:5c:83:2c: 93:8e:13:84:df:7e:13:2d:fd:b7:06:b7:2b:38:58: 6f:0d:a4:3a:39:94:01:75:52:4f:5d:e6:c5:21:a5: 39:e5:a1:3b:20:1e:0f:63:ab:4b:2b:0d:b4:7d:d5: 77:f9:9d:22:a0:07:a2:37:b0:ce:de:69:41:ea:d3: 69:62:43:c3:df:fe:49:e4:e5:28:3f:a5:93:82:ff: 6e:89:cd:96:21:a8:45:fc:62:ce:d6:9f:d8:a2:54: ba:a2:a1:00:1f:aa:cb:2f:00:64:c4:f7:70:7c:4c: 02:3d:22:34:46:aa:d7:50:fd:80:93:41:d7:7d:87: 41:02:09:da:08:32:d2:70:aa:c3:6f:bf:d7:db:ca: 26:ea:f9:2a:d8:0a:ef:4a:f5:a2:72:fc:9e:c2:80: 82:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:77:8D:34:12:4B:BD:BE:15:91:71:0F:6F:9A:19:B7:17:3B:52:55 X509v3 Authority Key Identifier: keyid:4F:02:24:59:BA:46:CF:30:70:0E:07:06:71:C7:52:B4:47:29:E2:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/4F022459BA46CF30700E070671C752B44729E249.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F022459BA46CF30700E070671C752B44729E249.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/3130332e36312e3233342e302f32342d3234203d3e20313530353130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.61.234.0/24 Signature Algorithm: sha256WithRSAEncryption cd:49:f4:4d:d8:75:ec:de:26:3d:36:16:8e:22:15:7f:a3:28: 66:d6:48:2a:61:52:59:20:f2:d1:b1:72:5d:0d:86:2a:f2:ab: c1:f7:66:26:b0:84:2b:f9:f5:90:1a:03:52:3f:9e:f0:64:51: b6:d2:83:6b:7f:e5:07:60:ba:51:1a:8c:cf:7a:d8:2c:c6:65: 3d:75:88:58:56:97:7d:01:53:7a:90:67:18:01:4b:d1:8d:e7: 21:3b:63:47:15:5f:e1:56:7d:fb:75:ed:be:eb:0a:10:7f:8b: ef:9a:9e:34:8d:99:cb:cc:dd:68:fb:d3:d7:b8:18:de:29:36: 0b:6c:f4:17:b3:8a:3c:6f:5c:61:e9:e6:65:f4:01:82:90:56: 20:5e:3e:a5:8e:a4:cc:96:78:46:85:cc:79:31:8b:6e:8e:eb: 56:06:97:5a:b0:b3:3e:c5:b3:e8:75:bd:86:24:34:1b:1f:23: 1c:42:c3:24:5b:60:7d:89:4c:f9:57:65:30:89:d2:d3:a5:22: d5:18:23:21:56:c6:0e:1e:6b:a9:0b:35:b5:86:e5:f4:69:2b: 86:0f:c9:23:e3:da:dc:63:63:6b:3b:48:8b:4f:2a:b2:94:6d: 50:83:89:96:a8:df:1e:2a:82:c6:e8:b2:94:d7:53:7e:80:bf: 7a:22:f9:8d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKJxZQio96lFVLX1PpvAlp/1tW8IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEYwMjI0NTlCQTQ2Q0YzMDcwMEUwNzA2NzFDNzUyQjQ0 NzI5RTI0OTAeFw0yNDEyMDIwOTU1MDBaFw0yNTEyMDExMDAwMDBaMDMxMTAvBgNV BAMTKDI4Nzc4RDM0MTI0QkJEQkUxNTkxNzEwRjZGOUExOUI3MTczQjUyNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSvViXgzcs/3lzmAqaPI3nSWnk sVnc/CoUy5IrHXIrDaYlqEJOUdetlADGowrq5h9gw6AYeR5F2xKGBDKXqPJKPS5K Fxd6gos7Ok/uy6Z/UWyKKJ/yJ0ZB2R5JwLXIQibTjC4tiVyDLJOOE4TffhMt/bcG tys4WG8NpDo5lAF1Uk9d5sUhpTnloTsgHg9jq0srDbR91Xf5nSKgB6I3sM7eaUHq 02liQ8Pf/knk5Sg/pZOC/26JzZYhqEX8Ys7Wn9iiVLqioQAfqssvAGTE93B8TAI9 IjRGqtdQ/YCTQdd9h0ECCdoIMtJwqsNvv9fbyibq+SrYCu9K9aJy/J7CgIJzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKHeNNBJLvb4VkXEPb5oZtxc7UlUwHwYDVR0j BBgwFoAUTwIkWbpGzzBwDgcGccdStEcp4kkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YTJiZmU5YS0zODIzLTQ0ZTktOTdjMC0yMTkxYTU2YmFmZDMvMC80RjAyMjQ1OUJB NDZDRjMwNzAwRTA3MDY3MUM3NTJCNDQ3MjlFMjQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEYwMjI0NTlCQTQ2Q0YzMDcwMEUwNzA2NzFDNzUyQjQ0NzI5 RTI0OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhMmJmZTlhLTM4MjMtNDRlOS05 N2MwLTIxOTFhNTZiYWZkMy8wLzMxMzAzMzJlMzYzMTJlMzIzMzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzUzMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZz3qMA0GCSqG SIb3DQEBCwUAA4IBAQDNSfRN2HXs3iY9NhaOIhV/oyhm1kgqYVJZIPLRsXJdDYYq 8qvB92YmsIQr+fWQGgNSP57wZFG20oNrf+UHYLpRGozPetgsxmU9dYhYVpd9AVN6 kGcYAUvRjechO2NHFV/hVn37de2+6woQf4vvmp40jZnLzN1o+9PXuBjeKTYLbPQX s4o8b1xh6eZl9AGCkFYgXj6ljqTMlnhGhcx5MYtujutWBpdasLM+xbPodb2GJDQb HyMcQsMkW2B9iUz5V2UwidLTpSLVGCMhVsYOHmupCzW1huX0aSuGD8kj49rcY2Nr O0iLTyqylG1Qg4mWqN8eKoLG6LKU11N+gL96IvmN -----END CERTIFICATE-----Generated at Sun Apr 6 13:36:45 2025 by rpki-client