$ rpki-client -vvf repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/3130332e3132312e3133322e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3133322e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: GNOF8brVgXz3bvHl24vTCw4VN2iGlFmFeZUMDJKeFZw= Subject key identifier: 1C:15:3A:4E:C5:76:F7:8F:F1:AC:4B:6C:66:CF:52:C8:AD:1C:DF:F1 Certificate issuer: /CN=FF75AEDDC6059E8A2B830E487D72BE77E330BEEF Certificate serial: 2796F6571DCA87DA3C131D6F49F18C77B2BF4D20 Authority key identifier: FF:75:AE:DD:C6:05:9E:8A:2B:83:0E:48:7D:72:BE:77:E3:30:BE:EF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/3130332e3132312e3133322e302f32332d3234203d3e20313335343738.roa Signing time: Wed 04 Dec 2024 07:01:41 +0000 ROA not before: Wed 04 Dec 2024 06:56:41 +0000 ROA not after: Wed 03 Dec 2025 07:01:41 +0000 asID: 135478 IP address blocks: 103.121.132.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.crl rsync://repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 10:55:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:96:f6:57:1d:ca:87:da:3c:13:1d:6f:49:f1:8c:77:b2:bf:4d:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF75AEDDC6059E8A2B830E487D72BE77E330BEEF Validity Not Before: Dec 4 06:56:41 2024 GMT Not After : Dec 3 07:01:41 2025 GMT Subject: CN=1C153A4EC576F78FF1AC4B6C66CF52C8AD1CDFF1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:55:57:60:1d:08:5d:8f:7a:8f:5b:b2:3d:70: 8f:18:71:5a:5e:f8:45:c7:e1:4f:ba:03:15:93:d5: 43:c1:5a:73:49:a2:a3:a5:50:7e:7f:8f:5a:fa:41: 81:a4:9f:7f:51:22:b6:d7:23:d1:28:30:d1:ed:70: ed:c8:d3:51:e1:eb:02:80:22:97:05:54:ff:ce:70: 11:82:c1:75:ca:e4:dc:03:b6:7a:e2:c4:52:23:25: 79:6d:f2:35:38:4d:e3:06:3d:96:f8:82:a1:be:6e: 0f:48:6b:56:28:9f:c7:e5:be:ea:34:57:a6:e5:c5: d6:ea:0e:b4:29:2f:26:bf:79:dd:77:43:ae:08:54: fd:cf:90:35:86:60:97:3b:77:2d:28:49:ae:7d:aa: a9:88:7e:29:c7:04:37:bd:16:d2:56:83:07:64:7d: 48:3a:0e:2b:c4:0d:f8:b7:6b:b1:d4:6e:02:cc:35: 48:c8:ff:35:1e:76:e6:96:85:3f:3e:6d:c5:d7:d5: c1:41:8a:5e:a8:31:76:65:0a:22:ea:a6:c6:1a:04: 72:6c:bf:e9:d4:05:1b:25:a2:fd:6b:88:b4:fd:07: 52:43:3b:3d:e4:fa:9d:a3:fb:a3:2a:19:bc:57:7b: a1:d6:4a:ca:34:43:8a:01:31:8b:da:f7:5d:e0:30: 4f:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:15:3A:4E:C5:76:F7:8F:F1:AC:4B:6C:66:CF:52:C8:AD:1C:DF:F1 X509v3 Authority Key Identifier: keyid:FF:75:AE:DD:C6:05:9E:8A:2B:83:0E:48:7D:72:BE:77:E3:30:BE:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/3130332e3132312e3133322e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.132.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:b3:38:34:40:30:81:0c:9b:b6:84:1b:ba:71:64:17:6c:9e: c4:d6:d1:3f:1e:d6:c3:1b:51:5b:8e:b6:ce:ab:91:f3:6d:c3: 4d:aa:f8:46:1d:2c:d8:63:ef:a5:7e:ce:58:05:e9:7b:08:06: d7:5b:e1:d7:7f:20:06:29:64:68:bf:1f:05:7b:4b:b2:67:50: d6:ef:1c:77:69:41:2d:42:20:76:7e:28:1d:0c:7c:0f:ee:b7: 3c:56:bf:f2:f4:86:90:45:6a:e4:e0:9d:68:f1:07:00:f6:0e: f6:73:61:1a:6c:ee:d0:68:46:ca:97:ea:e7:de:cb:85:0f:54: e8:5c:e8:ff:4e:5a:94:3b:4e:6f:e4:a9:44:5b:f3:66:ef:e6: 38:88:62:ec:83:6b:4f:51:4a:e8:6e:a0:f3:16:ab:b0:33:31: 73:50:de:8a:f6:86:06:33:ae:34:a2:9a:c4:11:8e:a0:ac:9e: 62:96:b6:61:b0:6f:e2:62:64:87:e3:0e:44:03:54:69:6e:17: 9b:c3:ee:07:ca:3d:50:3f:fe:5d:0e:cd:4d:10:ce:7c:ac:87: 37:28:d9:75:24:b7:55:c4:a2:d1:40:aa:4e:6a:1d:e9:94:56: f4:45:94:61:69:ba:71:27:20:ff:b6:69:8a:40:c2:de:1a:1f: 6e:80:e1:d8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJ5b2Vx3Kh9o8Ex1vSfGMd7K/TSAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkY3NUFFRERDNjA1OUU4QTJCODMwRTQ4N0Q3MkJFNzdF MzMwQkVFRjAeFw0yNDEyMDQwNjU2NDFaFw0yNTEyMDMwNzAxNDFaMDMxMTAvBgNV BAMTKDFDMTUzQTRFQzU3NkY3OEZGMUFDNEI2QzY2Q0Y1MkM4QUQxQ0RGRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuVVdgHQhdj3qPW7I9cI8YcVpe +EXH4U+6AxWT1UPBWnNJoqOlUH5/j1r6QYGkn39RIrbXI9EoMNHtcO3I01Hh6wKA IpcFVP/OcBGCwXXK5NwDtnrixFIjJXlt8jU4TeMGPZb4gqG+bg9Ia1Yon8flvuo0 V6blxdbqDrQpLya/ed13Q64IVP3PkDWGYJc7dy0oSa59qqmIfinHBDe9FtJWgwdk fUg6DivEDfi3a7HUbgLMNUjI/zUeduaWhT8+bcXX1cFBil6oMXZlCiLqpsYaBHJs v+nUBRslov1riLT9B1JDOz3k+p2j+6MqGbxXe6HWSso0Q4oBMYva913gME8PAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUHBU6TsV294/xrEtsZs9SyK0c3/EwHwYDVR0j BBgwFoAU/3Wu3cYFnoorgw5IfXK+d+Mwvu8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YjM3ODRmZS1mOWZlLTRjYmUtODc2OC0yNjNhNzY5ODZhM2EvMC9GRjc1QUVEREM2 MDU5RThBMkI4MzBFNDg3RDcyQkU3N0UzMzBCRUVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkY3NUFFRERDNjA1OUU4QTJCODMwRTQ4N0Q3MkJFNzdFMzMw QkVFRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzliMzc4NGZlLWY5ZmUtNGNiZS04 NzY4LTI2M2E3Njk4NmEzYS8wLzMxMzAzMzJlMzEzMjMxMmUzMTMzMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneYQwDQYJ KoZIhvcNAQELBQADggEBAC6zODRAMIEMm7aEG7pxZBdsnsTW0T8e1sMbUVuOts6r kfNtw02q+EYdLNhj76V+zlgF6XsIBtdb4dd/IAYpZGi/HwV7S7JnUNbvHHdpQS1C IHZ+KB0MfA/utzxWv/L0hpBFauTgnWjxBwD2DvZzYRps7tBoRsqX6ufey4UPVOhc 6P9OWpQ7Tm/kqURb82bv5jiIYuyDa09RSuhuoPMWq7AzMXNQ3or2hgYzrjSimsQR jqCsnmKWtmGwb+JiZIfjDkQDVGluF5vD7gfKPVA//l0OzU0Qznyshzco2XUkt1XE otFAqk5qHemUVvRFlGFpunEnIP+2aYpAwt4aH26A4dg= -----END CERTIFICATE-----Generated at Sun Apr 6 19:12:46 2025 by rpki-client