$ rpki-client -vvf repo-rpki.idnic.net/repo/a990da49-9862-41de-833e-b304f0c1ae57/0/3130332e3132392e34302e302f32332d3234203d3e20313335343738.roa File: 3130332e3132392e34302e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: b+1ENA1CQV0UHypRXPMfHhHTGiVgtOzzvTXY/wFcyPw= Subject key identifier: 50:F9:6D:A8:64:52:6A:F4:25:29:6A:51:A0:8D:82:20:DC:E5:99:87 Certificate issuer: /CN=B70932ED6C688D58897E32E1D5C990B20910FF02 Certificate serial: 5EC0855E74F0C4300A374D1DA26AD56DC39A557A Authority key identifier: B7:09:32:ED:6C:68:8D:58:89:7E:32:E1:D5:C9:90:B2:09:10:FF:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B70932ED6C688D58897E32E1D5C990B20910FF02.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a990da49-9862-41de-833e-b304f0c1ae57/0/3130332e3132392e34302e302f32332d3234203d3e20313335343738.roa Signing time: Wed 04 Dec 2024 09:03:10 +0000 ROA not before: Wed 04 Dec 2024 08:58:10 +0000 ROA not after: Wed 03 Dec 2025 09:03:10 +0000 asID: 135478 IP address blocks: 103.129.40.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a990da49-9862-41de-833e-b304f0c1ae57/0/B70932ED6C688D58897E32E1D5C990B20910FF02.crl rsync://repo-rpki.idnic.net/repo/a990da49-9862-41de-833e-b304f0c1ae57/0/B70932ED6C688D58897E32E1D5C990B20910FF02.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B70932ED6C688D58897E32E1D5C990B20910FF02.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 07:04:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:c0:85:5e:74:f0:c4:30:0a:37:4d:1d:a2:6a:d5:6d:c3:9a:55:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B70932ED6C688D58897E32E1D5C990B20910FF02 Validity Not Before: Dec 4 08:58:10 2024 GMT Not After : Dec 3 09:03:10 2025 GMT Subject: CN=50F96DA864526AF425296A51A08D8220DCE59987 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:32:2e:92:56:81:d0:e2:36:f5:85:54:67:ce: fc:8b:ed:ca:12:5d:8e:8c:b1:c0:2f:f0:02:2c:43: 54:5f:e4:2c:79:fe:7f:36:1b:24:6d:07:bf:3c:84: af:de:01:a4:60:25:bc:60:ce:ab:f5:6e:f1:2a:11: f2:62:3c:18:9d:b2:75:98:f2:4c:b3:04:ea:dc:0f: e9:9d:ea:33:5e:42:f7:ab:b9:25:1a:6d:aa:3c:ae: 17:50:43:df:79:96:e9:73:48:85:5b:9b:3e:34:1e: ee:7a:ca:e7:f7:77:34:a1:09:c8:27:81:4e:5b:d8: e6:80:57:26:66:06:8b:7d:01:6d:8e:0f:c3:66:17: 3d:51:45:7d:76:84:eb:18:9d:43:ca:6d:c9:bf:4d: 46:22:21:f8:55:a1:40:e3:7b:d5:e3:c1:23:c8:ae: a9:30:ff:4f:4e:4e:42:b9:7f:13:66:ce:19:98:c4: 08:24:eb:50:ba:6c:94:95:35:31:51:83:8d:38:2e: ac:77:c6:b8:d3:9f:26:3d:a5:7c:81:58:24:07:ef: e8:d1:3b:51:3e:3e:a9:d9:da:6f:be:13:bb:58:51: 4d:99:36:ca:3a:30:e7:8c:9e:31:5a:51:c3:e0:ea: fb:d7:b7:51:ef:e8:a0:e3:74:69:b5:66:a6:25:4e: 69:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:F9:6D:A8:64:52:6A:F4:25:29:6A:51:A0:8D:82:20:DC:E5:99:87 X509v3 Authority Key Identifier: keyid:B7:09:32:ED:6C:68:8D:58:89:7E:32:E1:D5:C9:90:B2:09:10:FF:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a990da49-9862-41de-833e-b304f0c1ae57/0/B70932ED6C688D58897E32E1D5C990B20910FF02.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B70932ED6C688D58897E32E1D5C990B20910FF02.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a990da49-9862-41de-833e-b304f0c1ae57/0/3130332e3132392e34302e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.40.0/23 Signature Algorithm: sha256WithRSAEncryption 45:b9:75:e6:7f:d9:ec:1a:16:30:c3:8d:f1:51:6d:40:d4:d9: 9b:b2:1e:5d:71:44:3d:ae:0b:18:11:e7:93:e9:a8:af:a8:d3: 55:b7:c9:67:a3:cf:fa:d1:3a:a6:91:b2:2f:f4:38:54:c5:35: ea:e2:e1:7f:6a:eb:71:ce:81:1e:33:07:aa:cf:26:f0:90:71: 35:8c:8e:ac:5f:05:a0:ca:ee:ea:db:8f:90:da:20:02:6c:5c: 16:06:37:94:a7:36:42:db:33:c7:5b:a9:8e:59:73:3e:4a:21: 5a:ed:1c:a5:72:d6:43:00:8d:81:e8:7c:0a:14:4b:0b:46:b4: 52:f4:ac:76:9a:4b:88:37:0d:57:e6:fb:b8:cd:c9:74:8d:e3: 52:8e:7c:1e:94:88:e8:43:e8:fc:2c:a3:88:50:31:35:a7:81: d4:1a:61:71:2d:89:e6:40:06:ca:72:ec:37:cd:a9:8e:8c:ec: 45:89:19:24:9c:78:19:71:25:61:65:ef:5a:a5:3f:d2:96:d1: 8e:e5:c1:da:0f:6b:43:b3:73:f5:e1:d2:2f:0a:b6:db:af:c4: f4:99:c2:40:5a:cc:e6:8c:b0:ea:fe:8b:ed:5a:62:b3:85:b9: 9f:77:64:70:c8:59:c1:f3:7d:ef:56:22:c9:67:6f:77:2b:f4: 9e:fc:97:ff -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXsCFXnTwxDAKN00domrVbcOaVXowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjcwOTMyRUQ2QzY4OEQ1ODg5N0UzMkUxRDVDOTkwQjIw OTEwRkYwMjAeFw0yNDEyMDQwODU4MTBaFw0yNTEyMDMwOTAzMTBaMDMxMTAvBgNV BAMTKDUwRjk2REE4NjQ1MjZBRjQyNTI5NkE1MUEwOEQ4MjIwRENFNTk5ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqMi6SVoHQ4jb1hVRnzvyL7coS XY6MscAv8AIsQ1Rf5Cx5/n82GyRtB788hK/eAaRgJbxgzqv1bvEqEfJiPBidsnWY 8kyzBOrcD+md6jNeQveruSUabao8rhdQQ995lulzSIVbmz40Hu56yuf3dzShCcgn gU5b2OaAVyZmBot9AW2OD8NmFz1RRX12hOsYnUPKbcm/TUYiIfhVoUDje9XjwSPI rqkw/09OTkK5fxNmzhmYxAgk61C6bJSVNTFRg404Lqx3xrjTnyY9pXyBWCQH7+jR O1E+PqnZ2m++E7tYUU2ZNso6MOeMnjFaUcPg6vvXt1Hv6KDjdGm1ZqYlTmkNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUPltqGRSavQlKWpRoI2CINzlmYcwHwYDVR0j BBgwFoAUtwky7WxojViJfjLh1cmQsgkQ/wIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OTkwZGE0OS05ODYyLTQxZGUtODMzZS1iMzA0ZjBjMWFlNTcvMC9CNzA5MzJFRDZD Njg4RDU4ODk3RTMyRTFENUM5OTBCMjA5MTBGRjAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjcwOTMyRUQ2QzY4OEQ1ODg5N0UzMkUxRDVDOTkwQjIwOTEw RkYwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E5OTBkYTQ5LTk4NjItNDFkZS04 MzNlLWIzMDRmMGMxYWU1Ny8wLzMxMzAzMzJlMzEzMjM5MmUzNDMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4EoMA0GCSqG SIb3DQEBCwUAA4IBAQBFuXXmf9nsGhYww43xUW1A1Nmbsh5dcUQ9rgsYEeeT6aiv qNNVt8lno8/60TqmkbIv9DhUxTXq4uF/autxzoEeMweqzybwkHE1jI6sXwWgyu7q 24+Q2iACbFwWBjeUpzZC2zPHW6mOWXM+SiFa7RylctZDAI2B6HwKFEsLRrRS9Kx2 mkuINw1X5vu4zcl0jeNSjnwelIjoQ+j8LKOIUDE1p4HUGmFxLYnmQAbKcuw3zamO jOxFiRkknHgZcSVhZe9apT/SltGO5cHaD2tDs3P14dIvCrbbr8T0mcJAWszmjLDq /ovtWmKzhbmfd2RwyFnB833vViLJZ293K/Se/Jf/ -----END CERTIFICATE-----Generated at Sun Apr 6 23:35:28 2025 by rpki-client