$ rpki-client -vvf repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/3130332e3137342e31342e302f32332d3234203d3e20313439333532.roa File: 3130332e3137342e31342e302f32332d3234203d3e20313439333532.roa (raw, json) Hash identifier: cJjmG0CdhjaR+QAVA5ZLIDFXiWwjI5yTIKuxLgCeRRg= Subject key identifier: 2F:AD:CA:B4:F3:E7:E1:5C:42:63:D1:F7:D1:75:D0:40:0F:B9:53:B0 Certificate issuer: /CN=4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623 Certificate serial: 78A87A8B5355757C43DEDC80E0D52920587FBD2D Authority key identifier: 4E:2A:A9:ED:35:DB:0F:27:6A:5F:F0:D4:02:0D:BE:A1:3E:04:C6:23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/3130332e3137342e31342e302f32332d3234203d3e20313439333532.roa Signing time: Thu 19 Dec 2024 09:00:01 +0000 ROA not before: Thu 19 Dec 2024 08:55:01 +0000 ROA not after: Thu 18 Dec 2025 09:00:01 +0000 asID: 149352 IP address blocks: 103.174.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.crl rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 21:42:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:a8:7a:8b:53:55:75:7c:43:de:dc:80:e0:d5:29:20:58:7f:bd:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623 Validity Not Before: Dec 19 08:55:01 2024 GMT Not After : Dec 18 09:00:01 2025 GMT Subject: CN=2FADCAB4F3E7E15C4263D1F7D175D0400FB953B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a2:5a:2e:17:9c:04:c0:ca:66:9e:af:6d:79: 2d:d3:39:06:74:9f:94:e2:7a:aa:6c:09:b0:2a:4a: 4b:6a:d3:60:c0:be:1f:7c:5f:1b:c7:79:8d:ce:7d: 89:97:93:7b:32:7f:f0:b8:b2:6e:5a:6b:6d:0f:7f: c2:fa:58:e3:83:06:64:c3:e2:2f:e6:56:3b:55:3b: a3:5e:5f:35:eb:af:07:9a:ca:bf:a6:0f:ea:54:80: 01:35:98:b6:df:ba:ff:95:e1:e3:5b:36:4a:f6:a0: 12:ed:3c:e0:49:8b:96:19:89:56:ab:ca:52:94:66: 90:ff:ae:89:c0:dd:cc:c4:6e:b5:26:a0:eb:27:ca: 99:92:e4:bf:6e:1d:b9:8c:f9:ca:21:db:af:0a:95: 83:27:31:62:3f:41:93:4f:5c:d3:52:74:b2:e5:7c: 75:f4:d9:69:b3:ef:1b:af:42:7e:e9:03:dd:2d:35: ff:76:fa:1e:f7:7b:6c:94:9a:7b:99:11:ed:b7:e1: 3b:ea:9e:54:93:a4:58:b8:63:32:77:88:f2:2a:bb: 50:45:ce:0e:02:e6:53:cc:f3:96:4e:ef:c1:72:d5: 2e:97:72:fa:9f:54:ac:1d:ba:63:ec:e5:25:9a:b5: bf:af:c9:d6:91:d8:42:68:d1:46:74:f3:ef:f3:82: 31:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:AD:CA:B4:F3:E7:E1:5C:42:63:D1:F7:D1:75:D0:40:0F:B9:53:B0 X509v3 Authority Key Identifier: keyid:4E:2A:A9:ED:35:DB:0F:27:6A:5F:F0:D4:02:0D:BE:A1:3E:04:C6:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/3130332e3137342e31342e302f32332d3234203d3e20313439333532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.14.0/23 Signature Algorithm: sha256WithRSAEncryption 38:0d:b4:eb:c4:cc:8e:dd:30:63:d6:7c:89:21:b8:dd:e4:a5: a4:f3:b6:27:f1:9b:78:12:db:35:6f:d4:e1:3f:9f:b0:38:55: d2:5a:c4:d1:6a:3c:78:0e:ce:b3:6c:13:93:b8:76:1a:bc:b8: 69:c4:09:1f:9f:01:99:2f:1b:6b:a9:ee:b2:b4:db:61:fd:8b: d0:2e:f0:5a:0f:ca:35:f8:95:04:3e:c6:33:62:08:c6:c5:77: 02:c4:2b:a9:2e:d7:24:1f:e0:8f:88:35:59:c4:d3:29:87:46: 4a:12:89:f4:83:cc:95:62:ff:a5:5c:78:a0:72:b5:e8:1b:9e: eb:bd:f9:3a:ce:ce:ab:f9:41:ca:27:ce:df:be:e6:60:be:fa: 32:48:94:d5:7f:0d:86:ef:0b:74:ab:83:65:43:45:7b:98:48: 75:75:30:44:e0:69:8e:3d:f6:c4:8f:48:57:c8:8d:ee:05:53: 76:a7:ee:23:a5:cd:76:5c:e9:fd:ce:d9:fd:53:52:b0:a7:7f: 93:36:5c:06:f4:06:4f:3e:fa:8c:70:dd:5c:c8:c0:70:24:08: db:b5:2c:a4:ed:0d:a5:6a:41:07:3d:35:4f:d4:ed:07:3f:a4: 76:5d:22:86:2a:ad:97:ab:ff:8e:58:e7:f7:7c:13:b3:25:ba: 0b:e2:e2:1c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeKh6i1NVdXxD3tyA4NUpIFh/vS0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEUyQUE5RUQzNURCMEYyNzZBNUZGMEQ0MDIwREJFQTEz RTA0QzYyMzAeFw0yNDEyMTkwODU1MDFaFw0yNTEyMTgwOTAwMDFaMDMxMTAvBgNV BAMTKDJGQURDQUI0RjNFN0UxNUM0MjYzRDFGN0QxNzVEMDQwMEZCOTUzQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+olouF5wEwMpmnq9teS3TOQZ0 n5TieqpsCbAqSktq02DAvh98XxvHeY3OfYmXk3syf/C4sm5aa20Pf8L6WOODBmTD 4i/mVjtVO6NeXzXrrweayr+mD+pUgAE1mLbfuv+V4eNbNkr2oBLtPOBJi5YZiVar ylKUZpD/ronA3czEbrUmoOsnypmS5L9uHbmM+coh268KlYMnMWI/QZNPXNNSdLLl fHX02Wmz7xuvQn7pA90tNf92+h73e2yUmnuZEe234TvqnlSTpFi4YzJ3iPIqu1BF zg4C5lPM85ZO78Fy1S6XcvqfVKwdumPs5SWatb+vydaR2EJo0UZ08+/zgjF3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUL63KtPPn4VxCY9H30XXQQA+5U7AwHwYDVR0j BBgwFoAUTiqp7TXbDydqX/DUAg2+oT4ExiMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZWFiMGEwMS04ZWU0LTQ4MjUtODQwZC0xMTJkYWVmMGFjYTgvMC80RTJBQTlFRDM1 REIwRjI3NkE1RkYwRDQwMjBEQkVBMTNFMDRDNjIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEUyQUE5RUQzNURCMEYyNzZBNUZGMEQ0MDIwREJFQTEzRTA0 QzYyMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzllYWIwYTAxLThlZTQtNDgyNS04 NDBkLTExMmRhZWYwYWNhOC8wLzMxMzAzMzJlMzEzNzM0MmUzMTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM5MzMzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ64OMA0GCSqG SIb3DQEBCwUAA4IBAQA4DbTrxMyO3TBj1nyJIbjd5KWk87Yn8Zt4Ets1b9ThP5+w OFXSWsTRajx4Ds6zbBOTuHYavLhpxAkfnwGZLxtrqe6ytNth/YvQLvBaD8o1+JUE PsYzYgjGxXcCxCupLtckH+CPiDVZxNMph0ZKEon0g8yVYv+lXHigcrXoG57rvfk6 zs6r+UHKJ87fvuZgvvoySJTVfw2G7wt0q4NlQ0V7mEh1dTBE4GmOPfbEj0hXyI3u BVN2p+4jpc12XOn9ztn9U1Kwp3+TNlwG9AZPPvqMcN1cyMBwJAjbtSyk7Q2lakEH PTVP1O0HP6R2XSKGKq2Xq/+OWOf3fBOzJboL4uIc -----END CERTIFICATE-----Generated at Sun Apr 6 17:10:23 2025 by rpki-client