$ rpki-client -vvf repo-rpki.idnic.net/repo/a39c5484-2e37-48f9-8eba-0af4ef62947d/0/3130332e38372e36382e302f32342d3234203d3e20313530323439.roa File: 3130332e38372e36382e302f32342d3234203d3e20313530323439.roa (raw, json) Hash identifier: wVJ7U3kO7lcUuZMqWok4kQ4i6Qz99jUT+kR0YLkpW1o= Subject key identifier: 53:0E:AB:BE:2A:F3:66:62:4D:39:F5:C7:9A:F3:5A:A2:3A:D8:60:89 Certificate issuer: /CN=968A6FAD637E47068D2FBC547FBF2C1C12F8C588 Certificate serial: 3D0527D5BF1E12FD5A49028FB369FC6B7FFA076D Authority key identifier: 96:8A:6F:AD:63:7E:47:06:8D:2F:BC:54:7F:BF:2C:1C:12:F8:C5:88 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/968A6FAD637E47068D2FBC547FBF2C1C12F8C588.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a39c5484-2e37-48f9-8eba-0af4ef62947d/0/3130332e38372e36382e302f32342d3234203d3e20313530323439.roa Signing time: Fri 07 Feb 2025 08:47:18 +0000 ROA not before: Fri 07 Feb 2025 08:42:18 +0000 ROA not after: Fri 06 Feb 2026 08:47:18 +0000 asID: 150249 IP address blocks: 103.87.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a39c5484-2e37-48f9-8eba-0af4ef62947d/0/968A6FAD637E47068D2FBC547FBF2C1C12F8C588.crl rsync://repo-rpki.idnic.net/repo/a39c5484-2e37-48f9-8eba-0af4ef62947d/0/968A6FAD637E47068D2FBC547FBF2C1C12F8C588.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/968A6FAD637E47068D2FBC547FBF2C1C12F8C588.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 08:07:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:05:27:d5:bf:1e:12:fd:5a:49:02:8f:b3:69:fc:6b:7f:fa:07:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=968A6FAD637E47068D2FBC547FBF2C1C12F8C588 Validity Not Before: Feb 7 08:42:18 2025 GMT Not After : Feb 6 08:47:18 2026 GMT Subject: CN=530EABBE2AF366624D39F5C79AF35AA23AD86089 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:15:ae:8f:12:87:3b:f6:91:6a:36:f2:16:88: d2:ad:94:42:b2:56:35:74:9c:95:82:b2:01:af:9b: db:9d:6b:f2:89:fc:76:a6:ce:01:46:d0:be:2e:de: 85:9a:bf:5d:ec:4f:1c:03:73:2f:98:a7:2f:67:e2: f1:04:27:63:50:94:a0:c7:d4:76:1d:1c:c9:e0:ad: 9c:b3:34:4a:9e:18:91:3f:62:7b:e4:21:bb:b1:93: 4e:0e:97:75:a5:01:7c:6a:02:e8:68:4d:98:22:97: d0:38:d5:00:4d:7e:20:cc:e9:79:46:d8:32:7d:cd: e2:23:d8:b8:13:4f:7c:9e:ea:bb:82:5a:54:ea:e7: 7d:62:81:ec:ac:41:5b:05:de:38:7a:ea:85:c0:b9: 0e:67:55:97:a4:8a:36:21:91:62:4b:0a:12:5a:e0: fe:d8:80:da:2e:bc:a9:38:ef:34:c7:00:1a:4f:61: 88:0b:ac:61:bd:4b:a8:2d:e8:ea:82:d7:a9:33:fc: 96:96:13:b2:4f:15:b1:fa:4f:99:cc:bf:f9:ae:82: 84:0d:89:96:24:92:96:4f:41:81:4f:c1:ba:bb:d7: 1f:c5:ff:d1:61:77:4c:1e:20:60:b3:17:04:31:b9: 3d:00:39:ae:44:4a:b7:49:cd:06:21:93:6d:1d:7b: 70:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:0E:AB:BE:2A:F3:66:62:4D:39:F5:C7:9A:F3:5A:A2:3A:D8:60:89 X509v3 Authority Key Identifier: keyid:96:8A:6F:AD:63:7E:47:06:8D:2F:BC:54:7F:BF:2C:1C:12:F8:C5:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a39c5484-2e37-48f9-8eba-0af4ef62947d/0/968A6FAD637E47068D2FBC547FBF2C1C12F8C588.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/968A6FAD637E47068D2FBC547FBF2C1C12F8C588.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a39c5484-2e37-48f9-8eba-0af4ef62947d/0/3130332e38372e36382e302f32342d3234203d3e20313530323439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.87.68.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:f9:f0:37:76:35:e8:13:c4:28:be:e3:80:24:db:2f:8f:64: 79:ab:1e:f9:02:63:f7:ef:68:bd:fd:47:3b:d9:c8:5b:8d:86: b1:01:1d:36:3e:a9:9c:48:d1:bb:90:82:9f:86:1a:4f:e0:32: 7f:d1:e4:e3:ad:f5:38:f0:ac:03:c1:01:2b:c5:bf:90:bf:0e: 36:2f:47:38:31:05:a7:89:db:4b:8e:90:13:d9:ac:74:61:77: 86:9f:46:21:d7:6f:0f:f1:f8:a2:7a:7e:2a:37:09:3f:51:27: 2c:69:fa:b6:01:45:00:42:c6:43:2a:2d:9c:9a:02:62:17:b5: 19:9c:58:e8:0b:02:32:38:a3:37:c3:e9:49:ce:4e:26:f8:b8: be:83:54:df:d8:0e:24:f6:13:d2:c8:af:6c:43:44:bc:4c:37: 6f:70:36:d7:55:38:52:9a:04:fa:bf:3d:1c:46:f6:6b:bd:09: f7:7f:59:c8:47:45:db:2d:6e:11:9c:ba:e1:56:61:2c:6f:42: 61:ee:f3:22:a3:e1:7c:e0:15:ef:de:e8:c1:56:60:94:1d:66: 46:6f:f5:cc:80:1f:61:42:02:2f:4c:39:f6:27:06:9f:c1:fb: 70:b6:42:a8:f0:c7:07:07:64:46:6c:2d:a8:4f:dd:98:6a:08: c6:54:ff:b0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPQUn1b8eEv1aSQKPs2n8a3/6B20wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTY4QTZGQUQ2MzdFNDcwNjhEMkZCQzU0N0ZCRjJDMUMx MkY4QzU4ODAeFw0yNTAyMDcwODQyMThaFw0yNjAyMDYwODQ3MThaMDMxMTAvBgNV BAMTKDUzMEVBQkJFMkFGMzY2NjI0RDM5RjVDNzlBRjM1QUEyM0FEODYwODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1Fa6PEoc79pFqNvIWiNKtlEKy VjV0nJWCsgGvm9uda/KJ/HamzgFG0L4u3oWav13sTxwDcy+Ypy9n4vEEJ2NQlKDH 1HYdHMngrZyzNEqeGJE/YnvkIbuxk04Ol3WlAXxqAuhoTZgil9A41QBNfiDM6XlG 2DJ9zeIj2LgTT3ye6ruCWlTq531igeysQVsF3jh66oXAuQ5nVZekijYhkWJLChJa 4P7YgNouvKk47zTHABpPYYgLrGG9S6gt6OqC16kz/JaWE7JPFbH6T5nMv/mugoQN iZYkkpZPQYFPwbq71x/F/9Fhd0weIGCzFwQxuT0AOa5ESrdJzQYhk20de3BPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUUw6rvirzZmJNOfXHmvNaojrYYIkwHwYDVR0j BBgwFoAUlopvrWN+RwaNL7xUf78sHBL4xYgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MzljNTQ4NC0yZTM3LTQ4ZjktOGViYS0wYWY0ZWY2Mjk0N2QvMC85NjhBNkZBRDYz N0U0NzA2OEQyRkJDNTQ3RkJGMkMxQzEyRjhDNTg4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTY4QTZGQUQ2MzdFNDcwNjhEMkZCQzU0N0ZCRjJDMUMxMkY4 QzU4OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzOWM1NDg0LTJlMzctNDhmOS04 ZWJhLTBhZjRlZjYyOTQ3ZC8wLzMxMzAzMzJlMzgzNzJlMzYzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzQzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdXRDANBgkqhkiG 9w0BAQsFAAOCAQEAHvnwN3Y16BPEKL7jgCTbL49kease+QJj9+9ovf1HO9nIW42G sQEdNj6pnEjRu5CCn4YaT+Ayf9Hk4631OPCsA8EBK8W/kL8ONi9HODEFp4nbS46Q E9msdGF3hp9GIddvD/H4onp+KjcJP1EnLGn6tgFFAELGQyotnJoCYhe1GZxY6AsC MjijN8PpSc5OJvi4voNU39gOJPYT0sivbENEvEw3b3A211U4UpoE+r89HEb2a70J 939ZyEdF2y1uEZy64VZhLG9CYe7zIqPhfOAV797owVZglB1mRm/1zIAfYUICL0w5 9icGn8H7cLZCqPDHBwdkRmwtqE/dmGoIxlT/sA== -----END CERTIFICATE-----Generated at Sun Apr 6 07:20:22 2025 by rpki-client