$ rpki-client -vvf repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/3130332e3130322e3131322e302f32332d3233203d3e20313336383536.roa File: 3130332e3130322e3131322e302f32332d3233203d3e20313336383536.roa (raw, json) Hash identifier: m+smJFgQDts16c5oEQ+5mQQd2jCWdjsIJsNUoSqe8t0= Subject key identifier: A6:60:2D:90:DD:87:E4:16:EC:36:80:27:17:9F:F0:C1:13:A7:7A:0B Certificate issuer: /CN=A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63 Certificate serial: 25675D81CE43C92AD21D8CC131B9BE1C9578E03B Authority key identifier: A0:0D:BC:78:CB:2F:CD:6D:A9:4D:C1:E0:7D:FA:66:68:02:7D:1B:63 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/3130332e3130322e3131322e302f32332d3233203d3e20313336383536.roa Signing time: Sat 13 Jul 2024 12:00:02 +0000 ROA not before: Sat 13 Jul 2024 11:55:02 +0000 ROA not after: Sat 12 Jul 2025 12:00:02 +0000 asID: 136856 IP address blocks: 103.102.112.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.crl rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 12:22:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:67:5d:81:ce:43:c9:2a:d2:1d:8c:c1:31:b9:be:1c:95:78:e0:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63 Validity Not Before: Jul 13 11:55:02 2024 GMT Not After : Jul 12 12:00:02 2025 GMT Subject: CN=A6602D90DD87E416EC368027179FF0C113A77A0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:65:76:a0:5a:b0:18:26:7d:a4:2d:e3:30:83: 63:c0:58:8c:78:6a:a8:b1:9a:22:72:6a:0a:70:fc: ea:1f:7a:34:1b:17:e5:6b:f4:61:be:c6:23:fd:48: 40:cb:03:9e:60:27:d8:a3:b9:61:4b:09:fc:15:17: 89:28:c8:66:d1:86:56:54:42:a3:10:ed:38:38:9f: ac:1e:a7:ef:a3:14:46:18:59:ff:80:96:61:f4:04: 39:19:d5:26:8a:90:78:1a:02:6d:d3:3a:c3:ea:f5: b3:94:6b:1d:7c:e2:aa:dc:84:bc:40:67:91:f0:ef: e0:d4:71:e4:75:74:50:37:55:f0:c5:5e:c0:e6:5f: 97:34:ff:ad:96:0a:c9:a3:de:16:f2:a6:42:0f:3f: 55:d3:6b:ac:b9:f3:f5:2d:33:18:71:49:53:ae:9c: 79:d4:cc:c3:00:b5:3f:5f:d1:fd:63:7d:58:11:7d: af:ac:5c:47:ed:46:5e:c1:27:95:8d:b1:32:c9:83: d0:a7:cd:fd:fa:27:c6:a3:57:bf:46:d2:84:82:64: 33:7a:b0:05:bb:b1:f0:e8:66:67:5b:61:8c:aa:ca: 46:8f:90:51:e9:c8:8f:22:38:b0:e8:e0:86:60:c1: 4d:dc:b8:91:70:c8:87:93:19:fc:54:09:f7:91:40: 40:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:60:2D:90:DD:87:E4:16:EC:36:80:27:17:9F:F0:C1:13:A7:7A:0B X509v3 Authority Key Identifier: keyid:A0:0D:BC:78:CB:2F:CD:6D:A9:4D:C1:E0:7D:FA:66:68:02:7D:1B:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A00DBC78CB2FCD6DA94DC1E07DFA6668027D1B63.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a5c7a404-eb3f-4cf1-99f9-827961661f31/0/3130332e3130322e3131322e302f32332d3233203d3e20313336383536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.112.0/23 Signature Algorithm: sha256WithRSAEncryption 33:9f:97:4e:c5:ae:0f:db:1b:ae:29:65:b5:ae:32:03:27:d4: 22:0b:a2:47:a9:71:fa:c0:8f:ce:06:f1:99:ad:f5:05:60:80: e9:6d:6d:7e:7d:ae:ac:6d:81:67:75:4b:5a:95:80:fe:a3:27: c4:b4:71:ff:63:cf:9c:0b:da:a2:30:0b:b7:40:09:e8:75:d8: 4e:01:62:c9:00:e2:79:89:81:b6:06:01:35:74:e1:c1:3a:5e: 1e:b6:85:10:8d:3a:6b:29:71:19:3b:d4:66:16:1e:91:f1:c3: fc:f2:7e:46:14:19:b4:aa:28:a6:cf:c5:d8:d8:ff:3d:8c:a0: c0:99:a8:87:e8:e7:0c:c3:79:0a:e2:f2:c0:3e:ba:61:e6:0d: 2c:5d:ac:bf:b4:81:80:ef:73:71:a2:1d:7b:d2:fc:88:7b:c1: 31:23:a5:e7:3d:59:83:f6:3d:0b:e8:71:da:49:b0:8a:9d:e3: d2:b8:f6:1f:6d:61:9c:ee:6e:03:20:05:18:f8:fb:5a:d4:32: 71:86:37:b8:03:b1:f6:d4:9d:a5:29:08:82:a7:c7:3f:24:10: 6a:f0:23:53:b8:ba:52:c3:62:7e:b9:bd:a0:50:c5:1e:42:71: f9:7e:de:99:f3:88:20:bc:64:99:a0:b8:59:99:2b:ab:96:7b: e9:70:c0:61 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJWddgc5DySrSHYzBMbm+HJV44DswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTAwREJDNzhDQjJGQ0Q2REE5NERDMUUwN0RGQTY2Njgw MjdEMUI2MzAeFw0yNDA3MTMxMTU1MDJaFw0yNTA3MTIxMjAwMDJaMDMxMTAvBgNV BAMTKEE2NjAyRDkwREQ4N0U0MTZFQzM2ODAyNzE3OUZGMEMxMTNBNzdBMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIZXagWrAYJn2kLeMwg2PAWIx4 aqixmiJyagpw/OofejQbF+Vr9GG+xiP9SEDLA55gJ9ijuWFLCfwVF4koyGbRhlZU QqMQ7Tg4n6wep++jFEYYWf+AlmH0BDkZ1SaKkHgaAm3TOsPq9bOUax184qrchLxA Z5Hw7+DUceR1dFA3VfDFXsDmX5c0/62WCsmj3hbypkIPP1XTa6y58/UtMxhxSVOu nHnUzMMAtT9f0f1jfVgRfa+sXEftRl7BJ5WNsTLJg9Cnzf36J8ajV79G0oSCZDN6 sAW7sfDoZmdbYYyqykaPkFHpyI8iOLDo4IZgwU3cuJFwyIeTGfxUCfeRQED3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUpmAtkN2H5BbsNoAnF5/wwROnegswHwYDVR0j BBgwFoAUoA28eMsvzW2pTcHgffpmaAJ9G2MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NWM3YTQwNC1lYjNmLTRjZjEtOTlmOS04Mjc5NjE2NjFmMzEvMC9BMDBEQkM3OENC MkZDRDZEQTk0REMxRTA3REZBNjY2ODAyN0QxQjYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTAwREJDNzhDQjJGQ0Q2REE5NERDMUUwN0RGQTY2NjgwMjdE MUI2My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1YzdhNDA0LWViM2YtNGNmMS05 OWY5LTgyNzk2MTY2MWYzMS8wLzMxMzAzMzJlMzEzMDMyMmUzMTMxMzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzYzODM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnZnAwDQYJ KoZIhvcNAQELBQADggEBADOfl07Frg/bG64pZbWuMgMn1CILokepcfrAj84G8Zmt 9QVggOltbX59rqxtgWd1S1qVgP6jJ8S0cf9jz5wL2qIwC7dACeh12E4BYskA4nmJ gbYGATV04cE6Xh62hRCNOmspcRk71GYWHpHxw/zyfkYUGbSqKKbPxdjY/z2MoMCZ qIfo5wzDeQri8sA+umHmDSxdrL+0gYDvc3GiHXvS/Ih7wTEjpec9WYP2PQvocdpJ sIqd49K49h9tYZzubgMgBRj4+1rUMnGGN7gDsfbUnaUpCIKnxz8kEGrwI1O4ulLD Yn65vaBQxR5Ccfl+3pnziCC8ZJmguFmZK6uWe+lwwGE= -----END CERTIFICATE-----Generated at Fri Feb 21 11:05:01 2025 by rpki-client