$ rpki-client -vvf repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/3130332e3135382e32302e302f32332d3234203d3e20313431353833.roa File: 3130332e3135382e32302e302f32332d3234203d3e20313431353833.roa (raw, json) Hash identifier: IfhhVFH3PrLXhWjFzuTapS5Iq5sRD6WA4e1zrAIjak8= Subject key identifier: 8C:47:B4:68:99:DD:39:FB:60:90:F1:4A:28:64:5F:99:C4:F9:B9:F6 Certificate issuer: /CN=BE82B469998A9E829F882655C99A5A05535A1AD4 Certificate serial: 5A59B7A3D2FB915E22F8D8AC0E835ED1298225E0 Authority key identifier: BE:82:B4:69:99:8A:9E:82:9F:88:26:55:C9:9A:5A:05:53:5A:1A:D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE82B469998A9E829F882655C99A5A05535A1AD4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/3130332e3135382e32302e302f32332d3234203d3e20313431353833.roa Signing time: Fri 27 Sep 2024 06:00:00 +0000 ROA not before: Fri 27 Sep 2024 05:55:00 +0000 ROA not after: Fri 26 Sep 2025 06:00:00 +0000 asID: 141583 IP address blocks: 103.158.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/BE82B469998A9E829F882655C99A5A05535A1AD4.crl rsync://repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/BE82B469998A9E829F882655C99A5A05535A1AD4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE82B469998A9E829F882655C99A5A05535A1AD4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Feb 2025 22:22:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:59:b7:a3:d2:fb:91:5e:22:f8:d8:ac:0e:83:5e:d1:29:82:25:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE82B469998A9E829F882655C99A5A05535A1AD4 Validity Not Before: Sep 27 05:55:00 2024 GMT Not After : Sep 26 06:00:00 2025 GMT Subject: CN=8C47B46899DD39FB6090F14A28645F99C4F9B9F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:3e:1a:a5:f7:ef:8c:6b:af:fa:1f:6e:d8:1c: 57:bf:b6:fe:52:47:72:3d:db:2f:ff:40:9a:2b:3e: f7:31:e8:ab:50:ae:8d:a1:88:f3:6b:87:7a:02:e3: a5:00:63:6c:78:f5:c3:6a:db:9d:b9:92:aa:4d:72: 2d:2f:ce:e5:9d:e1:02:05:3e:1e:7d:2a:db:f7:46: 32:da:82:16:1c:a3:b0:b9:66:cb:8f:d1:1d:f1:d0: f5:b9:76:75:1c:48:dd:fa:28:ea:6a:4c:2f:ce:18: 3b:4e:25:07:71:ae:f5:24:98:bf:1d:aa:89:3d:c9: 2e:2b:a5:76:f2:cf:96:ee:52:49:d7:17:47:3c:75: b3:cb:57:82:99:52:45:0f:99:8b:ad:cc:24:c3:bf: cb:71:6a:11:e7:7a:cd:9e:2d:68:fd:f7:50:a2:5e: 34:bd:30:5c:68:e5:df:bd:5f:15:f1:a8:67:3c:65: 85:e0:4e:09:6e:46:77:fd:4c:09:51:c5:85:68:b7: 97:7b:f9:f0:f0:31:ee:3f:1d:2b:30:97:49:ac:f5: 30:5c:e5:79:ba:33:b8:21:10:57:7c:69:8e:53:15: ba:4d:77:95:50:d9:ad:5f:f0:73:85:30:d3:fb:40: aa:97:17:e6:68:b2:86:83:98:05:46:ea:46:28:35: c5:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:47:B4:68:99:DD:39:FB:60:90:F1:4A:28:64:5F:99:C4:F9:B9:F6 X509v3 Authority Key Identifier: keyid:BE:82:B4:69:99:8A:9E:82:9F:88:26:55:C9:9A:5A:05:53:5A:1A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/BE82B469998A9E829F882655C99A5A05535A1AD4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE82B469998A9E829F882655C99A5A05535A1AD4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a481ac01-f302-46ed-9e1b-6593456f2d59/0/3130332e3135382e32302e302f32332d3234203d3e20313431353833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.20.0/23 Signature Algorithm: sha256WithRSAEncryption 46:07:df:0f:ec:7a:71:cc:1d:bc:44:49:ae:2a:46:aa:5f:23: 07:79:f0:46:d2:7c:cb:42:06:08:a7:4a:13:be:6d:a2:44:0b: 8a:93:d5:3e:34:bc:b9:be:3d:89:09:e8:86:3b:6f:10:d0:8c: db:d7:5d:b9:9b:b6:8c:01:fb:6a:2a:55:e3:46:ba:3a:0e:9f: 65:77:5e:dd:6f:67:4e:a0:3d:8f:89:cc:18:d6:12:15:f1:42: b9:87:80:5d:e7:5c:2b:00:5a:fd:75:ef:76:a9:62:25:08:ac: 79:9f:95:ad:20:07:21:b2:15:15:5d:6e:e1:4b:aa:f9:35:68: 3f:3e:30:99:c9:8d:f8:12:21:f2:a5:37:f0:88:71:2e:9c:d8: ee:63:60:ce:41:d9:3f:ea:2d:5c:b3:52:cc:97:8c:e9:ce:05: c1:d0:cb:35:9a:b0:a7:60:e5:1b:63:ac:30:60:5b:16:a5:50: 58:81:22:3e:2f:85:b1:88:5e:1b:36:00:7c:2b:2e:74:c7:55: 42:6f:68:4a:ec:eb:e4:99:e5:1e:4c:4d:83:e8:98:fb:91:5c: ff:ce:aa:d9:89:16:2a:8b:0b:ac:7a:97:93:c6:3a:14:dc:0f: 4b:1a:e6:db:3b:b1:e0:20:05:ca:8f:1b:7e:b1:6d:e1:af:9f: ba:7e:75:c2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWlm3o9L7kV4i+NisDoNe0SmCJeAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU4MkI0Njk5OThBOUU4MjlGODgyNjU1Qzk5QTVBMDU1 MzVBMUFENDAeFw0yNDA5MjcwNTU1MDBaFw0yNTA5MjYwNjAwMDBaMDMxMTAvBgNV BAMTKDhDNDdCNDY4OTlERDM5RkI2MDkwRjE0QTI4NjQ1Rjk5QzRGOUI5RjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPPhql9++Ma6/6H27YHFe/tv5S R3I92y//QJorPvcx6KtQro2hiPNrh3oC46UAY2x49cNq2525kqpNci0vzuWd4QIF Ph59Ktv3RjLaghYco7C5ZsuP0R3x0PW5dnUcSN36KOpqTC/OGDtOJQdxrvUkmL8d qok9yS4rpXbyz5buUknXF0c8dbPLV4KZUkUPmYutzCTDv8txahHnes2eLWj991Ci XjS9MFxo5d+9XxXxqGc8ZYXgTgluRnf9TAlRxYVot5d7+fDwMe4/HSswl0ms9TBc 5Xm6M7ghEFd8aY5TFbpNd5VQ2a1f8HOFMNP7QKqXF+ZosoaDmAVG6kYoNcXdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjEe0aJndOftgkPFKKGRfmcT5ufYwHwYDVR0j BBgwFoAUvoK0aZmKnoKfiCZVyZpaBVNaGtQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NDgxYWMwMS1mMzAyLTQ2ZWQtOWUxYi02NTkzNDU2ZjJkNTkvMC9CRTgyQjQ2OTk5 OEE5RTgyOUY4ODI2NTVDOTlBNUEwNTUzNUExQUQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU4MkI0Njk5OThBOUU4MjlGODgyNjU1Qzk5QTVBMDU1MzVB MUFENC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E0ODFhYzAxLWYzMDItNDZlZC05 ZTFiLTY1OTM0NTZmMmQ1OS8wLzMxMzAzMzJlMzEzNTM4MmUzMjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMxMzUzODMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ54UMA0GCSqG SIb3DQEBCwUAA4IBAQBGB98P7HpxzB28REmuKkaqXyMHefBG0nzLQgYIp0oTvm2i RAuKk9U+NLy5vj2JCeiGO28Q0Izb1125m7aMAftqKlXjRro6Dp9ld17db2dOoD2P icwY1hIV8UK5h4Bd51wrAFr9de92qWIlCKx5n5WtIAchshUVXW7hS6r5NWg/PjCZ yY34EiHypTfwiHEunNjuY2DOQdk/6i1cs1LMl4zpzgXB0Ms1mrCnYOUbY6wwYFsW pVBYgSI+L4WxiF4bNgB8Ky50x1VCb2hK7OvkmeUeTE2D6Jj7kVz/zqrZiRYqiwus epeTxjoU3A9LGubbO7HgIAXKjxt+sW3hr5+6fnXC -----END CERTIFICATE-----Generated at Wed Feb 19 22:27:10 2025 by rpki-client