$ rpki-client -vvf repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134352e302f32342d3234203d3e20313338383834.roa File: 3130332e39362e3134352e302f32342d3234203d3e20313338383834.roa (raw, json) Hash identifier: 5w42C5j8nFPLQ8/TklJq72CWwX+rLT7sVOkbeuIVTnI= Subject key identifier: 6A:63:46:84:5E:58:67:C6:66:49:C8:76:08:D7:84:01:B4:96:43:96 Certificate issuer: /CN=3FFB3838E6BD431731306308CFEC299A86723365 Certificate serial: 42879E05283B92C9961CE0EE87836FB64E9EADE4 Authority key identifier: 3F:FB:38:38:E6:BD:43:17:31:30:63:08:CF:EC:29:9A:86:72:33:65 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134352e302f32342d3234203d3e20313338383834.roa Signing time: Thu 05 Dec 2024 07:00:01 +0000 ROA not before: Thu 05 Dec 2024 06:55:01 +0000 ROA not after: Thu 04 Dec 2025 07:00:01 +0000 asID: 138884 IP address blocks: 103.96.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.crl rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:87:9e:05:28:3b:92:c9:96:1c:e0:ee:87:83:6f:b6:4e:9e:ad:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3FFB3838E6BD431731306308CFEC299A86723365 Validity Not Before: Dec 5 06:55:01 2024 GMT Not After : Dec 4 07:00:01 2025 GMT Subject: CN=6A6346845E5867C66649C87608D78401B4964396 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:84:23:b5:43:af:7d:99:c8:26:3c:9b:68:fb: ee:81:00:99:8d:a6:78:30:2a:bd:4d:f0:83:43:c8: a5:1f:5e:9a:56:94:1d:7b:65:0e:d4:48:46:d8:27: 43:f4:2e:64:2f:fb:9c:0a:24:80:8e:42:e1:9a:a5: 2f:69:09:a8:62:0d:29:3c:ab:87:02:6a:05:28:9c: 28:a1:b0:14:6a:21:3c:dc:09:f8:d8:8d:2a:d3:3d: 29:33:66:28:43:69:67:88:69:24:cf:49:4e:5d:4d: 1a:97:66:80:1b:3c:1c:f4:eb:31:55:42:49:5e:5b: 6c:74:61:f5:ab:ef:98:7a:de:b5:68:22:72:45:a8: 78:02:1d:b4:ca:8e:10:91:8b:70:75:e9:ca:d5:f1: 98:db:7b:d7:51:2a:f4:cc:80:3a:24:a4:14:9f:e4: 46:44:7f:30:2e:6b:d2:e1:a2:cd:c7:b3:03:73:dc: 63:4a:6e:35:2a:8f:6f:07:a9:07:79:7f:38:69:66: da:86:26:8c:93:a8:5b:af:16:df:87:56:46:92:d6: 41:43:b4:75:0e:de:3f:a2:8e:3d:47:08:1c:fa:d9: 7a:6d:cf:12:34:e7:0f:28:3a:4d:c0:ef:1a:8d:10: 13:2a:65:df:a5:14:d3:e1:83:6c:11:87:dd:7a:66: 03:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:63:46:84:5E:58:67:C6:66:49:C8:76:08:D7:84:01:B4:96:43:96 X509v3 Authority Key Identifier: keyid:3F:FB:38:38:E6:BD:43:17:31:30:63:08:CF:EC:29:9A:86:72:33:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3FFB3838E6BD431731306308CFEC299A86723365.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFB3838E6BD431731306308CFEC299A86723365.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8261c37-59a5-4369-91e5-4b1366010c6d/0/3130332e39362e3134352e302f32342d3234203d3e20313338383834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.96.145.0/24 Signature Algorithm: sha256WithRSAEncryption 45:47:b5:c7:d2:57:65:f6:c2:a7:c6:00:b7:90:8d:88:6e:de: bd:64:18:99:77:93:56:8b:d7:26:50:91:d6:09:c6:cd:f1:7c: 8d:21:e0:42:ed:bb:13:00:58:d6:48:93:5e:59:e0:3e:4a:c5: 8c:5d:3c:1a:03:a2:3d:f1:a1:c4:76:dd:d2:af:b4:68:78:6b: 92:ca:73:a9:94:1f:71:40:f6:6c:98:57:75:7f:f0:af:fb:62: ca:9e:80:40:08:bc:c2:75:bd:b7:81:67:97:76:ac:f6:6a:7f: 3b:22:46:3d:bf:b3:79:a4:5e:1d:64:a3:33:4f:f6:05:0e:a6: dc:95:11:16:3b:8d:b3:71:c1:78:e4:49:9f:a8:20:32:12:d2: 02:39:fe:bb:71:35:03:4a:4f:fd:9f:df:c8:85:d4:f7:4a:58: 3e:9b:6e:45:8e:4a:be:95:f7:eb:cb:b7:61:d8:bd:74:f4:fc: 90:fc:ca:de:1b:3b:d6:8f:a9:1e:af:0e:e2:fe:99:e7:30:79: 87:49:e1:a1:3c:38:12:8d:9e:02:3e:17:0d:68:17:37:8b:71: a1:0b:77:ef:a1:08:90:fd:70:92:63:ad:ed:93:bd:c4:4c:05: f0:95:23:9c:72:bc:5d:b2:86:e2:7f:71:48:51:d7:38:44:78: 20:49:90:e9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQoeeBSg7ksmWHODuh4Nvtk6ereQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0ZGQjM4MzhFNkJENDMxNzMxMzA2MzA4Q0ZFQzI5OUE4 NjcyMzM2NTAeFw0yNDEyMDUwNjU1MDFaFw0yNTEyMDQwNzAwMDFaMDMxMTAvBgNV BAMTKDZBNjM0Njg0NUU1ODY3QzY2NjQ5Qzg3NjA4RDc4NDAxQjQ5NjQzOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2hCO1Q699mcgmPJto++6BAJmN pngwKr1N8INDyKUfXppWlB17ZQ7USEbYJ0P0LmQv+5wKJICOQuGapS9pCahiDSk8 q4cCagUonCihsBRqITzcCfjYjSrTPSkzZihDaWeIaSTPSU5dTRqXZoAbPBz06zFV QkleW2x0YfWr75h63rVoInJFqHgCHbTKjhCRi3B16crV8Zjbe9dRKvTMgDokpBSf 5EZEfzAua9Lhos3HswNz3GNKbjUqj28HqQd5fzhpZtqGJoyTqFuvFt+HVkaS1kFD tHUO3j+ijj1HCBz62XptzxI05w8oOk3A7xqNEBMqZd+lFNPhg2wRh916ZgMdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUamNGhF5YZ8ZmSch2CNeEAbSWQ5YwHwYDVR0j BBgwFoAUP/s4OOa9QxcxMGMIz+wpmoZyM2UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ODI2MWMzNy01OWE1LTQzNjktOTFlNS00YjEzNjYwMTBjNmQvMC8zRkZCMzgzOEU2 QkQ0MzE3MzEzMDYzMDhDRkVDMjk5QTg2NzIzMzY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0ZGQjM4MzhFNkJENDMxNzMxMzA2MzA4Q0ZFQzI5OUE4Njcy MzM2NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4MjYxYzM3LTU5YTUtNDM2OS05 MWU1LTRiMTM2NjAxMGM2ZC8wLzMxMzAzMzJlMzkzNjJlMzEzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzODM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2CRMA0GCSqG SIb3DQEBCwUAA4IBAQBFR7XH0ldl9sKnxgC3kI2Ibt69ZBiZd5NWi9cmUJHWCcbN 8XyNIeBC7bsTAFjWSJNeWeA+SsWMXTwaA6I98aHEdt3Sr7RoeGuSynOplB9xQPZs mFd1f/Cv+2LKnoBACLzCdb23gWeXdqz2an87IkY9v7N5pF4dZKMzT/YFDqbclREW O42zccF45EmfqCAyEtICOf67cTUDSk/9n9/IhdT3Slg+m25Fjkq+lffry7dh2L10 9PyQ/MreGzvWj6kerw7i/pnnMHmHSeGhPDgSjZ4CPhcNaBc3i3GhC3fvoQiQ/XCS Y63tk73ETAXwlSOccrxdsobif3FIUdc4RHggSZDp -----END CERTIFICATE-----Generated at Wed Apr 9 19:55:37 2025 by rpki-client