$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e39302e32342e302f32342d3234203d3e20313332363733.roa File: 3130332e39302e32342e302f32342d3234203d3e20313332363733.roa (raw, json) Hash identifier: NoI2hxLozc+zAYu2UCPaDjAcF21N5OCkedkngEdg1Jc= Subject key identifier: 8F:C5:5D:CB:E9:45:15:90:9A:59:CD:2B:7F:BA:D3:44:33:F6:2B:4E Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 4C8396C70B9DDC6AA7E3E785C0D3D949CC1ED39A Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e39302e32342e302f32342d3234203d3e20313332363733.roa Signing time: Sat 19 Oct 2024 09:00:01 +0000 ROA not before: Sat 19 Oct 2024 08:55:01 +0000 ROA not after: Sat 18 Oct 2025 09:00:01 +0000 asID: 132673 IP address blocks: 103.90.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Mar 2025 05:19:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:83:96:c7:0b:9d:dc:6a:a7:e3:e7:85:c0:d3:d9:49:cc:1e:d3:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Oct 19 08:55:01 2024 GMT Not After : Oct 18 09:00:01 2025 GMT Subject: CN=8FC55DCBE94515909A59CD2B7FBAD34433F62B4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d3:2e:79:90:57:cc:42:bc:d7:d4:35:09:4f: 07:6b:8d:ec:5f:ac:c8:e2:95:c1:24:e2:9a:86:95: 23:fb:15:5e:c3:1d:bf:83:8e:7e:e2:cd:be:4e:fd: 64:13:28:94:f9:79:83:7b:f1:a6:a3:43:0b:a2:36: ef:85:ac:b7:39:24:59:c1:80:bd:7e:4b:70:6a:57: cf:8e:35:4d:34:e5:77:59:b8:21:b9:70:e0:3b:19: 8d:b3:7a:77:ff:24:0a:ed:3d:9c:e3:8a:5a:aa:6a: 3c:06:0e:20:4e:71:c0:bf:08:5c:67:91:18:52:50: ac:8d:1e:d6:ce:7e:4e:b2:0e:79:7f:35:88:dd:50: bb:54:bd:8a:34:2c:16:df:0a:95:67:24:7b:1e:7d: 4e:ed:3e:4b:77:2a:2f:1a:f2:3e:6b:eb:b9:cc:a2: 40:cc:9f:e0:02:98:1b:17:31:21:ad:63:10:f7:ca: 7f:da:b3:20:e2:ab:71:21:ff:2e:8c:eb:32:da:8c: 5b:f6:9d:91:a6:5e:81:b1:a6:6f:ac:70:f9:13:a1: 8f:bf:5d:b0:7f:a7:00:ce:4a:37:0e:66:fd:b1:fd: 01:bf:2f:5d:3d:17:16:fd:80:45:44:35:f9:2a:71: 0c:1f:15:f9:3b:64:6e:41:0d:5d:ce:45:13:81:76: 38:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:C5:5D:CB:E9:45:15:90:9A:59:CD:2B:7F:BA:D3:44:33:F6:2B:4E X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e39302e32342e302f32342d3234203d3e20313332363733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.90.24.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:bf:c8:90:04:8d:08:b4:df:34:fa:9f:3c:32:9c:1c:06:eb: 0c:e4:c6:d6:48:88:19:ff:34:d4:ab:94:b7:45:2e:7c:41:1c: 72:91:1c:87:67:9a:93:b4:2b:0f:66:77:53:2c:88:6c:85:55: 57:63:36:59:5a:fc:cc:44:8a:21:fc:a8:7d:4a:c8:17:96:0b: f9:fe:99:ae:37:2f:c0:04:e7:d3:9a:c5:aa:ee:34:8e:7a:79: 92:3b:e4:ba:14:ea:d3:d2:fc:56:69:cf:ed:81:ee:77:26:77: 39:3f:ef:d5:68:df:3a:62:50:c0:ad:7a:d7:cb:af:52:87:fc: ae:28:06:21:a0:54:50:33:df:74:2b:6f:68:0e:e3:26:24:ef: 08:74:4b:47:05:65:d3:b7:ef:e7:7b:5a:e1:de:a1:b8:bb:cc: b8:2e:0d:e1:95:44:a7:61:84:3e:d3:b5:8a:26:83:7e:39:11: 12:c8:12:9d:35:69:f0:a2:4b:a5:1f:66:38:3c:c1:ad:d3:92: 5a:71:cf:94:a7:0d:c4:fa:75:20:d7:3e:e1:13:4d:c7:92:72: db:cc:29:9d:30:ce:7a:32:bf:8e:98:40:ed:e3:95:18:bb:21: a3:cf:6b:58:1d:96:08:d8:2e:21:87:3d:f8:0a:ae:ca:b6:f7: 6f:de:c4:0b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTIOWxwud3Gqn4+eFwNPZScwe05owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNDEwMTkwODU1MDFaFw0yNTEwMTgwOTAwMDFaMDMxMTAvBgNV BAMTKDhGQzU1RENCRTk0NTE1OTA5QTU5Q0QyQjdGQkFEMzQ0MzNGNjJCNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ0y55kFfMQrzX1DUJTwdrjexf rMjilcEk4pqGlSP7FV7DHb+Djn7izb5O/WQTKJT5eYN78aajQwuiNu+FrLc5JFnB gL1+S3BqV8+ONU005XdZuCG5cOA7GY2zenf/JArtPZzjilqqajwGDiBOccC/CFxn kRhSUKyNHtbOfk6yDnl/NYjdULtUvYo0LBbfCpVnJHsefU7tPkt3Ki8a8j5r67nM okDMn+ACmBsXMSGtYxD3yn/asyDiq3Eh/y6M6zLajFv2nZGmXoGxpm+scPkToY+/ XbB/pwDOSjcOZv2x/QG/L109Fxb9gEVENfkqcQwfFfk7ZG5BDV3ORROBdjhzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUj8Vdy+lFFZCaWc0rf7rTRDP2K04wHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExNjMzYjhlLTBkZjktNDRhYy05 Y2FlLWQ2ZjY3NjVhNTJjOS8wLzMxMzAzMzJlMzkzMDJlMzIzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMjM2MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdaGDANBgkqhkiG 9w0BAQsFAAOCAQEATb/IkASNCLTfNPqfPDKcHAbrDOTG1kiIGf801KuUt0UufEEc cpEch2eak7QrD2Z3UyyIbIVVV2M2WVr8zESKIfyofUrIF5YL+f6ZrjcvwATn05rF qu40jnp5kjvkuhTq09L8VmnP7YHudyZ3OT/v1WjfOmJQwK1618uvUof8rigGIaBU UDPfdCtvaA7jJiTvCHRLRwVl07fv53ta4d6huLvMuC4N4ZVEp2GEPtO1iiaDfjkR EsgSnTVp8KJLpR9mODzBrdOSWnHPlKcNxPp1INc+4RNNx5Jy28wpnTDOejK/jphA 7eOVGLsho89rWB2WCNguIYc9+Aquyrb3b97ECw== -----END CERTIFICATE-----Generated at Tue Mar 11 05:03:38 2025 by rpki-client