$ rpki-client -vvf repo-rpki.idnic.net/repo/a3a26bfb-675f-444f-90c9-5d3a9b18c34c/0/3130332e3132302e3233332e302f32342d3234203d3e203138303539.roa File: 3130332e3132302e3233332e302f32342d3234203d3e203138303539.roa (raw, json) Hash identifier: 29FTCQnuC21Ap5vakoRZNLBbApxQn5AAoQOxBARKH6Q= Subject key identifier: EF:A0:95:49:BA:82:49:B1:CD:97:AF:CA:47:4A:D2:56:DE:20:24:AA Certificate issuer: /CN=3366CD5573BB4B11694DBCF0F1502CE2B46BFD51 Certificate serial: 57B5F1DDB3D59EAB7CD39DC2F8C48A2C7CB3AA0E Authority key identifier: 33:66:CD:55:73:BB:4B:11:69:4D:BC:F0:F1:50:2C:E2:B4:6B:FD:51 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3366CD5573BB4B11694DBCF0F1502CE2B46BFD51.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a3a26bfb-675f-444f-90c9-5d3a9b18c34c/0/3130332e3132302e3233332e302f32342d3234203d3e203138303539.roa Signing time: Fri 21 Feb 2025 06:24:16 +0000 ROA not before: Fri 21 Feb 2025 06:19:16 +0000 ROA not after: Fri 20 Feb 2026 06:24:16 +0000 asID: 18059 IP address blocks: 103.120.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a3a26bfb-675f-444f-90c9-5d3a9b18c34c/0/3366CD5573BB4B11694DBCF0F1502CE2B46BFD51.crl rsync://repo-rpki.idnic.net/repo/a3a26bfb-675f-444f-90c9-5d3a9b18c34c/0/3366CD5573BB4B11694DBCF0F1502CE2B46BFD51.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3366CD5573BB4B11694DBCF0F1502CE2B46BFD51.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 01:42:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:b5:f1:dd:b3:d5:9e:ab:7c:d3:9d:c2:f8:c4:8a:2c:7c:b3:aa:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3366CD5573BB4B11694DBCF0F1502CE2B46BFD51 Validity Not Before: Feb 21 06:19:16 2025 GMT Not After : Feb 20 06:24:16 2026 GMT Subject: CN=EFA09549BA8249B1CD97AFCA474AD256DE2024AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:a0:eb:0b:51:32:64:65:e4:c0:35:14:c4:e2: 87:7f:ed:19:21:ae:a2:a0:99:f1:cb:38:86:a9:08: 9c:0e:e6:d9:12:4f:8f:7b:8d:05:5d:ba:62:75:b5: 6f:65:bb:08:78:0f:58:23:96:64:7a:42:90:9e:22: 76:1b:36:a4:76:f5:c9:48:f8:07:c7:7c:bf:04:b1: 76:97:79:77:e6:71:c9:92:7b:20:f5:c8:fc:aa:3d: a0:fc:b1:ef:65:12:c4:9f:38:81:6c:6e:61:d4:26: 41:8e:d7:9b:99:94:1d:29:99:7b:13:32:77:d4:ae: 8b:59:34:89:bd:ad:57:85:d3:b2:fb:32:e5:4e:f6: b7:68:99:b6:21:f7:70:73:08:69:be:ff:ff:b6:23: f8:c2:7c:bf:62:cc:d3:d5:58:d7:ec:81:77:a3:e4: a1:a8:04:1f:8c:fb:96:29:b5:18:d9:af:cb:0c:99: 06:7b:32:a3:bb:cb:aa:08:b9:7f:69:69:3c:5f:41: c1:e9:2f:11:5a:da:5c:01:df:ed:61:d5:e6:91:da: 60:4b:97:04:10:d4:08:af:1a:5c:b5:60:39:eb:ab: c0:8e:86:80:21:10:85:13:5f:44:d2:ed:a9:f1:fe: 25:08:e6:b1:a7:f2:eb:74:4e:32:80:18:64:9e:55: 3c:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:A0:95:49:BA:82:49:B1:CD:97:AF:CA:47:4A:D2:56:DE:20:24:AA X509v3 Authority Key Identifier: keyid:33:66:CD:55:73:BB:4B:11:69:4D:BC:F0:F1:50:2C:E2:B4:6B:FD:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a3a26bfb-675f-444f-90c9-5d3a9b18c34c/0/3366CD5573BB4B11694DBCF0F1502CE2B46BFD51.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3366CD5573BB4B11694DBCF0F1502CE2B46BFD51.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a3a26bfb-675f-444f-90c9-5d3a9b18c34c/0/3130332e3132302e3233332e302f32342d3234203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.233.0/24 Signature Algorithm: sha256WithRSAEncryption 85:c2:d9:b5:d8:dd:03:25:f2:a4:7f:52:5c:2a:97:90:07:69: 88:42:ad:5e:e4:f4:6f:6f:28:ad:3b:ce:c4:e7:7b:9a:af:93: 0c:e5:d8:5b:a2:a2:b9:1c:95:be:c5:12:dd:e0:f3:1a:ec:aa: ac:f6:13:e6:1f:67:60:61:78:07:e1:4f:55:45:0d:75:e8:5b: ef:6d:91:3b:a6:84:c8:26:d6:f0:5c:89:12:ba:11:e4:19:60: 1f:1d:9a:15:e9:f7:63:ed:a3:86:ff:7e:9c:33:b4:83:30:be: 6b:f1:7f:ce:30:a9:97:da:d2:49:a2:34:54:35:60:4e:ee:38: 80:8b:14:79:4d:80:dd:0c:e0:80:15:23:ec:2c:d0:a5:c8:ea: ab:a4:b4:42:4a:29:ce:0a:b8:34:f4:ba:98:b6:4f:97:d3:a4: db:51:e7:ed:ee:ec:17:cc:95:9e:f8:af:a2:e2:cf:25:bf:01: 79:c7:53:2a:de:89:e6:3a:14:5b:7f:4e:a2:52:81:9a:ac:c3: ec:b9:f4:3d:26:23:bc:72:0c:77:f4:39:a6:59:27:9b:90:27: f5:53:a3:1a:1b:9a:44:4c:f0:3a:19:53:9c:b5:0d:8b:6e:92: 33:10:4f:36:8d:2f:63:a0:44:5b:c4:8d:fc:10:3a:ef:c0:a7: e0:b3:a4:ea -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUV7Xx3bPVnqt8053C+MSKLHyzqg4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzM2NkNENTU3M0JCNEIxMTY5NERCQ0YwRjE1MDJDRTJC NDZCRkQ1MTAeFw0yNTAyMjEwNjE5MTZaFw0yNjAyMjAwNjI0MTZaMDMxMTAvBgNV BAMTKEVGQTA5NTQ5QkE4MjQ5QjFDRDk3QUZDQTQ3NEFEMjU2REUyMDI0QUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYoOsLUTJkZeTANRTE4od/7Rkh rqKgmfHLOIapCJwO5tkST497jQVdumJ1tW9luwh4D1gjlmR6QpCeInYbNqR29clI +AfHfL8EsXaXeXfmccmSeyD1yPyqPaD8se9lEsSfOIFsbmHUJkGO15uZlB0pmXsT MnfUrotZNIm9rVeF07L7MuVO9rdombYh93BzCGm+//+2I/jCfL9izNPVWNfsgXej 5KGoBB+M+5YptRjZr8sMmQZ7MqO7y6oIuX9paTxfQcHpLxFa2lwB3+1h1eaR2mBL lwQQ1AivGly1YDnrq8COhoAhEIUTX0TS7anx/iUI5rGn8ut0TjKAGGSeVTzhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU76CVSbqCSbHNl6/KR0rSVt4gJKowHwYDVR0j BBgwFoAUM2bNVXO7SxFpTbzw8VAs4rRr/VEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h M2EyNmJmYi02NzVmLTQ0NGYtOTBjOS01ZDNhOWIxOGMzNGMvMC8zMzY2Q0Q1NTcz QkI0QjExNjk0REJDRjBGMTUwMkNFMkI0NkJGRDUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzM2NkNENTU3M0JCNEIxMTY5NERCQ0YwRjE1MDJDRTJCNDZC RkQ1MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzYTI2YmZiLTY3NWYtNDQ0Zi05 MGM5LTVkM2E5YjE4YzM0Yy8wLzMxMzAzMzJlMzEzMjMwMmUzMjMzMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM4MzAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3jpMA0GCSqG SIb3DQEBCwUAA4IBAQCFwtm12N0DJfKkf1JcKpeQB2mIQq1e5PRvbyitO87E53ua r5MM5dhboqK5HJW+xRLd4PMa7Kqs9hPmH2dgYXgH4U9VRQ116FvvbZE7poTIJtbw XIkSuhHkGWAfHZoV6fdj7aOG/36cM7SDML5r8X/OMKmX2tJJojRUNWBO7jiAixR5 TYDdDOCAFSPsLNClyOqrpLRCSinOCrg09LqYtk+X06TbUeft7uwXzJWe+K+i4s8l vwF5x1Mq3onmOhRbf06iUoGarMPsufQ9JiO8cgx39DmmWSebkCf1U6MaG5pETPA6 GVOctQ2LbpIzEE82jS9joERbxI38EDrvwKfgs6Tq -----END CERTIFICATE-----Generated at Sun Apr 6 17:45:38 2025 by rpki-client