$ rpki-client -vvf repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e37302e302f32342d3234203d3e20313333383430.roa File: 3130332e36362e37302e302f32342d3234203d3e20313333383430.roa (raw, json) Hash identifier: 5gR9+ixbVg1LP1uDXjaATazbJrEAK+uCvp7GyKYBWRI= Subject key identifier: 54:0F:9A:1D:60:10:AE:38:1B:E9:90:CD:2F:72:0F:9E:93:CA:75:B7 Certificate issuer: /CN=8458BC369C80A76B2875FC97DBE5D1A09B6AF317 Certificate serial: 691C02D42DF8353B39A81199F5BAFD289148E8EB Authority key identifier: 84:58:BC:36:9C:80:A7:6B:28:75:FC:97:DB:E5:D1:A0:9B:6A:F3:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e37302e302f32342d3234203d3e20313333383430.roa Signing time: Mon 01 Jul 2024 01:04:08 +0000 ROA not before: Mon 01 Jul 2024 00:59:08 +0000 ROA not after: Mon 30 Jun 2025 01:04:08 +0000 asID: 133840 IP address blocks: 103.66.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.crl rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 22:26:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:1c:02:d4:2d:f8:35:3b:39:a8:11:99:f5:ba:fd:28:91:48:e8:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8458BC369C80A76B2875FC97DBE5D1A09B6AF317 Validity Not Before: Jul 1 00:59:08 2024 GMT Not After : Jun 30 01:04:08 2025 GMT Subject: CN=540F9A1D6010AE381BE990CD2F720F9E93CA75B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:8a:88:a2:74:ba:c8:25:19:f2:f9:e3:5b:9b: 69:c9:c3:ff:78:d5:f4:16:64:b5:20:30:36:aa:55: d8:cd:28:48:38:8f:69:0f:61:73:4e:29:34:6a:e5: 41:2b:df:d5:a1:ca:28:07:01:a6:40:5c:f1:9a:a3: e3:bf:5e:8c:3a:2c:94:a8:c5:6e:35:85:08:b3:8b: 41:68:46:46:4f:f5:4a:aa:fb:b3:fa:9c:2b:6b:52: 2b:cb:bf:65:a3:05:9f:77:4b:5e:30:1f:6c:6a:ed: e2:5b:6b:3d:ec:9d:58:89:3a:c2:c1:d7:d4:cb:12: 8d:e0:b6:ab:77:64:31:dc:06:6b:c3:44:27:14:e1: 9b:99:82:93:09:a7:e6:f3:e6:89:56:73:ee:95:f7: e8:4c:34:d4:92:29:64:2d:c7:82:90:97:25:12:57: 1d:5d:96:23:38:6e:3f:3c:74:22:d5:cc:35:2f:f3: 94:21:66:c4:b2:06:f3:fb:03:16:8f:ba:32:68:58: f1:99:42:89:7a:ed:cc:46:5d:c1:72:8c:0d:01:ae: 6b:99:74:8d:2d:e5:55:0c:84:03:8c:e8:0a:0f:2a: d6:76:89:aa:d2:6e:0c:35:f4:e6:2c:33:2f:fa:b8: e1:c7:78:4c:ae:93:9c:a1:27:75:f5:42:69:a1:92: ae:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:0F:9A:1D:60:10:AE:38:1B:E9:90:CD:2F:72:0F:9E:93:CA:75:B7 X509v3 Authority Key Identifier: keyid:84:58:BC:36:9C:80:A7:6B:28:75:FC:97:DB:E5:D1:A0:9B:6A:F3:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e37302e302f32342d3234203d3e20313333383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.66.70.0/24 Signature Algorithm: sha256WithRSAEncryption c5:3f:f8:92:1f:2e:11:11:dc:63:00:cc:db:8c:a7:cf:47:c3: af:bd:e0:81:20:34:fd:01:51:c3:9d:1b:07:d4:60:6a:2a:ce: cd:38:d9:ac:df:1e:e8:64:72:a1:45:a3:01:81:e4:40:3f:6e: bd:a0:3b:fb:be:d8:96:50:bf:a3:15:f8:74:00:51:f2:df:b7: ca:43:99:44:0c:d4:33:04:b7:d6:c6:ca:56:9a:b9:87:55:a2: 9d:84:5b:59:5a:48:78:30:32:68:b9:60:55:cc:af:0f:67:4b: 05:5e:04:81:22:f3:81:bb:d2:da:d6:56:5d:9a:81:4e:f3:95: 74:09:26:80:06:51:13:a1:20:44:81:34:b7:fc:54:49:a3:25: 09:d2:19:69:4a:cb:60:a0:b1:2b:b7:30:f4:05:b8:c5:35:45: 6f:0a:39:55:17:27:04:dc:3e:06:85:37:43:f9:91:3c:13:46: 07:f7:2f:97:e0:1f:35:e7:e5:ca:32:bb:88:b1:79:5d:c3:00: 1e:f3:cf:88:84:ce:2b:1c:75:ba:ea:64:b0:09:ca:9d:fd:53: 7b:84:7c:cb:66:06:e2:08:fe:f0:b6:6c:a5:88:28:6d:97:ca: 14:d1:24:b4:ca:6a:07:ab:69:0a:d0:68:03:e4:fd:70:0b:ee: bb:88:c5:5b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaRwC1C34NTs5qBGZ9br9KJFI6OswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ1OEJDMzY5QzgwQTc2QjI4NzVGQzk3REJFNUQxQTA5 QjZBRjMxNzAeFw0yNDA3MDEwMDU5MDhaFw0yNTA2MzAwMTA0MDhaMDMxMTAvBgNV BAMTKDU0MEY5QTFENjAxMEFFMzgxQkU5OTBDRDJGNzIwRjlFOTNDQTc1QjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1ioiidLrIJRny+eNbm2nJw/94 1fQWZLUgMDaqVdjNKEg4j2kPYXNOKTRq5UEr39WhyigHAaZAXPGao+O/Xow6LJSo xW41hQizi0FoRkZP9Uqq+7P6nCtrUivLv2WjBZ93S14wH2xq7eJbaz3snViJOsLB 19TLEo3gtqt3ZDHcBmvDRCcU4ZuZgpMJp+bz5olWc+6V9+hMNNSSKWQtx4KQlyUS Vx1dliM4bj88dCLVzDUv85QhZsSyBvP7AxaPujJoWPGZQol67cxGXcFyjA0BrmuZ dI0t5VUMhAOM6AoPKtZ2iarSbgw19OYsMy/6uOHHeEyuk5yhJ3X1Qmmhkq7pAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUVA+aHWAQrjgb6ZDNL3IPnpPKdbcwHwYDVR0j BBgwFoAUhFi8NpyAp2sodfyX2+XRoJtq8xcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MmFhMTZlYS0yYWVjLTQ5NWQtYTlhMy02OTI1NzMwZDVlMGYvMC84NDU4QkMzNjlD ODBBNzZCMjg3NUZDOTdEQkU1RDFBMDlCNkFGMzE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ1OEJDMzY5QzgwQTc2QjI4NzVGQzk3REJFNUQxQTA5QjZB RjMxNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EyYWExNmVhLTJhZWMtNDk1ZC1h OWEzLTY5MjU3MzBkNWUwZi8wLzMxMzAzMzJlMzYzNjJlMzczMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMzM4MzQzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdCRjANBgkqhkiG 9w0BAQsFAAOCAQEAxT/4kh8uERHcYwDM24ynz0fDr73ggSA0/QFRw50bB9RgairO zTjZrN8e6GRyoUWjAYHkQD9uvaA7+77YllC/oxX4dABR8t+3ykOZRAzUMwS31sbK Vpq5h1WinYRbWVpIeDAyaLlgVcyvD2dLBV4EgSLzgbvS2tZWXZqBTvOVdAkmgAZR E6EgRIE0t/xUSaMlCdIZaUrLYKCxK7cw9AW4xTVFbwo5VRcnBNw+BoU3Q/mRPBNG B/cvl+AfNeflyjK7iLF5XcMAHvPPiITOKxx1uupksAnKnf1Te4R8y2YG4gj+8LZs pYgobZfKFNEktMpqB6tpCtBoA+T9cAvuu4jFWw== -----END CERTIFICATE-----Generated at Thu Apr 10 05:09:35 2025 by rpki-client