$ rpki-client -vvf repo-rpki.idnic.net/repo/a6358dda-0ff1-4f6a-bb66-60f4ca04c490/0/3130332e372e3232372e302f32342d3234203d3e203539313335.roa File: 3130332e372e3232372e302f32342d3234203d3e203539313335.roa (raw, json) Hash identifier: hKOsZmZYjU+WD+18E9UM9iWVv7em54RfKZekQBf+kf4= Subject key identifier: 74:C0:45:C5:EB:2C:4C:90:38:47:BE:6E:58:EF:43:79:46:A9:4E:35 Certificate issuer: /CN=754AE571E3432B20E78045BE7B2C99E39E0F1873 Certificate serial: 47C78D9DF48BC55846C9295589D9A1A2A3258DDC Authority key identifier: 75:4A:E5:71:E3:43:2B:20:E7:80:45:BE:7B:2C:99:E3:9E:0F:18:73 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/754AE571E3432B20E78045BE7B2C99E39E0F1873.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a6358dda-0ff1-4f6a-bb66-60f4ca04c490/0/3130332e372e3232372e302f32342d3234203d3e203539313335.roa Signing time: Fri 23 Aug 2024 09:00:01 +0000 ROA not before: Fri 23 Aug 2024 08:55:01 +0000 ROA not after: Fri 22 Aug 2025 09:00:01 +0000 asID: 59135 IP address blocks: 103.7.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a6358dda-0ff1-4f6a-bb66-60f4ca04c490/0/754AE571E3432B20E78045BE7B2C99E39E0F1873.crl rsync://repo-rpki.idnic.net/repo/a6358dda-0ff1-4f6a-bb66-60f4ca04c490/0/754AE571E3432B20E78045BE7B2C99E39E0F1873.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/754AE571E3432B20E78045BE7B2C99E39E0F1873.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 21:18:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:c7:8d:9d:f4:8b:c5:58:46:c9:29:55:89:d9:a1:a2:a3:25:8d:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=754AE571E3432B20E78045BE7B2C99E39E0F1873 Validity Not Before: Aug 23 08:55:01 2024 GMT Not After : Aug 22 09:00:01 2025 GMT Subject: CN=74C045C5EB2C4C903847BE6E58EF437946A94E35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:46:00:ee:30:02:3f:8d:ef:7c:ce:85:b1:93: 12:54:1e:87:e0:5d:35:02:36:d7:1a:39:dd:34:91: e4:d4:c6:3f:15:83:59:6b:d1:98:ec:d4:1a:24:2b: ff:80:d2:fb:61:2f:88:04:98:5c:e3:10:80:9e:a1: 77:b0:ab:e4:f3:4c:ac:cf:6b:ac:62:4b:1e:c8:b4: 15:bb:34:c1:e0:9f:f6:e9:e0:5d:6c:de:94:a8:f0: ba:85:40:45:48:69:2a:d9:80:66:75:aa:3c:b3:7d: 79:9c:85:a7:28:13:ae:14:31:f7:fb:9a:ef:2a:d3: 21:41:f7:fe:36:c1:ba:75:18:01:96:6d:e7:5f:43: 97:74:72:16:a8:cc:6a:3f:39:b7:b9:c2:fe:51:b3: 50:70:8e:0f:8e:03:4f:59:38:ee:7b:d3:76:25:e3: 91:15:ea:14:75:f6:07:8d:94:6f:68:13:5a:fa:f1: 61:7a:2b:e0:bb:65:8f:cb:c9:8a:32:43:c5:2c:de: b2:06:2c:c5:bc:30:cb:87:ee:95:eb:ee:b5:97:5e: e3:d6:37:0d:42:09:f3:24:42:7a:9a:ef:da:dd:ef: 3a:31:63:21:2f:e3:92:0c:17:fd:d2:69:4e:20:0e: fd:c8:60:82:a9:65:89:b0:7e:68:e5:75:5a:38:89: 7b:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:C0:45:C5:EB:2C:4C:90:38:47:BE:6E:58:EF:43:79:46:A9:4E:35 X509v3 Authority Key Identifier: keyid:75:4A:E5:71:E3:43:2B:20:E7:80:45:BE:7B:2C:99:E3:9E:0F:18:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a6358dda-0ff1-4f6a-bb66-60f4ca04c490/0/754AE571E3432B20E78045BE7B2C99E39E0F1873.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/754AE571E3432B20E78045BE7B2C99E39E0F1873.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a6358dda-0ff1-4f6a-bb66-60f4ca04c490/0/3130332e372e3232372e302f32342d3234203d3e203539313335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.7.227.0/24 Signature Algorithm: sha256WithRSAEncryption 67:22:4e:a9:82:a8:ab:09:b9:6a:88:2c:b0:fb:64:ec:b9:9b: 35:fc:ce:cd:6b:b0:79:62:ed:cb:84:a1:06:ac:6a:88:03:e5: 0c:d2:13:62:38:f6:0e:b5:fe:81:4c:26:45:8d:9c:32:91:b8: 22:fe:ea:5e:74:ba:46:bd:93:1f:1a:5b:48:10:48:57:e5:06: d7:62:60:1b:39:ce:e9:ab:a1:14:b4:4e:fe:94:eb:ef:fb:c3: 7e:8b:30:f9:93:28:9d:3c:3b:87:9a:67:70:1b:f8:cc:a1:18: d4:97:3a:b4:24:96:4e:ad:d6:d6:92:b1:c3:d0:4e:a3:6d:cd: 77:af:b7:d5:27:f4:a7:f2:71:0d:9d:42:0b:76:52:b7:47:d3: 50:57:80:7d:5d:dc:03:0d:38:8f:94:f7:b1:e0:8d:4d:f7:8e: 63:2c:88:f1:b8:a8:f1:b7:bc:54:2b:ab:69:50:f3:a5:4f:62: 69:35:b9:c7:4e:73:b2:91:c9:2a:a4:e1:0e:93:6d:6f:ae:b7: b2:dd:07:88:0e:c0:4d:f7:0d:4f:97:d3:d7:2b:29:1b:db:fb: 9b:b3:25:4a:05:a2:fc:2f:a0:8e:5f:60:dc:18:f2:9e:14:e6: ff:f8:e2:d1:83:06:96:54:e4:58:35:31:95:64:a7:87:c0:48: d3:f7:a8:dc -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUR8eNnfSLxVhGySlVidmhoqMljdwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzU0QUU1NzFFMzQzMkIyMEU3ODA0NUJFN0IyQzk5RTM5 RTBGMTg3MzAeFw0yNDA4MjMwODU1MDFaFw0yNTA4MjIwOTAwMDFaMDMxMTAvBgNV BAMTKDc0QzA0NUM1RUIyQzRDOTAzODQ3QkU2RTU4RUY0Mzc5NDZBOTRFMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmRgDuMAI/je98zoWxkxJUHofg XTUCNtcaOd00keTUxj8Vg1lr0Zjs1BokK/+A0vthL4gEmFzjEICeoXewq+TzTKzP a6xiSx7ItBW7NMHgn/bp4F1s3pSo8LqFQEVIaSrZgGZ1qjyzfXmchacoE64UMff7 mu8q0yFB9/42wbp1GAGWbedfQ5d0chaozGo/Obe5wv5Rs1Bwjg+OA09ZOO5703Yl 45EV6hR19geNlG9oE1r68WF6K+C7ZY/LyYoyQ8Us3rIGLMW8MMuH7pXr7rWXXuPW Nw1CCfMkQnqa79rd7zoxYyEv45IMF/3SaU4gDv3IYIKpZYmwfmjldVo4iXvZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUdMBFxessTJA4R75uWO9DeUapTjUwHwYDVR0j BBgwFoAUdUrlceNDKyDngEW+eyyZ454PGHMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjM1OGRkYS0wZmYxLTRmNmEtYmI2Ni02MGY0Y2EwNGM0OTAvMC83NTRBRTU3MUUz NDMyQjIwRTc4MDQ1QkU3QjJDOTlFMzlFMEYxODczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzU0QUU1NzFFMzQzMkIyMEU3ODA0NUJFN0IyQzk5RTM5RTBG MTg3My5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2MzU4ZGRhLTBmZjEtNGY2YS1i YjY2LTYwZjRjYTA0YzQ5MC8wLzMxMzAzMzJlMzcyZTMyMzIzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzkzMTMzMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnB+MwDQYJKoZIhvcN AQELBQADggEBAGciTqmCqKsJuWqILLD7ZOy5mzX8zs1rsHli7cuEoQasaogD5QzS E2I49g61/oFMJkWNnDKRuCL+6l50uka9kx8aW0gQSFflBtdiYBs5zumroRS0Tv6U 6+/7w36LMPmTKJ08O4eaZ3Ab+MyhGNSXOrQklk6t1taSscPQTqNtzXevt9Un9Kfy cQ2dQgt2UrdH01BXgH1d3AMNOI+U97HgjU33jmMsiPG4qPG3vFQrq2lQ86VPYmk1 ucdOc7KRySqk4Q6TbW+ut7LdB4gOwE33DU+X09crKRvb+5uzJUoFovwvoI5fYNwY 8p4U5v/44tGDBpZU5Fg1MZVkp4fASNP3qNw= -----END CERTIFICATE-----Generated at Fri Feb 21 11:10:19 2025 by rpki-client