$ rpki-client -vvf repo-rpki.idnic.net/repo/addf181f-1e89-4022-82f8-e0dba859ee2e/0/3130332e3130372e37312e302f32342d3234203d3e20313336383739.roa File: 3130332e3130372e37312e302f32342d3234203d3e20313336383739.roa (raw, json) Hash identifier: aBaXrY9Ll+l6kmyDnJxBGG3OusTyC5H42thpgN1QrVw= Subject key identifier: 27:CC:BB:67:80:B0:5B:B7:C6:17:D9:9D:87:5C:0A:18:4E:BD:C0:75 Certificate issuer: /CN=2247520F1208C8D9AC33B3035016DC4EC62CDEB1 Certificate serial: 12F7A65C232106858E94C4723C0D804B9974DBB8 Authority key identifier: 22:47:52:0F:12:08:C8:D9:AC:33:B3:03:50:16:DC:4E:C6:2C:DE:B1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2247520F1208C8D9AC33B3035016DC4EC62CDEB1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/addf181f-1e89-4022-82f8-e0dba859ee2e/0/3130332e3130372e37312e302f32342d3234203d3e20313336383739.roa Signing time: Mon 01 Jul 2024 01:05:02 +0000 ROA not before: Mon 01 Jul 2024 01:00:02 +0000 ROA not after: Mon 30 Jun 2025 01:05:02 +0000 asID: 136879 IP address blocks: 103.107.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/addf181f-1e89-4022-82f8-e0dba859ee2e/0/2247520F1208C8D9AC33B3035016DC4EC62CDEB1.crl rsync://repo-rpki.idnic.net/repo/addf181f-1e89-4022-82f8-e0dba859ee2e/0/2247520F1208C8D9AC33B3035016DC4EC62CDEB1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2247520F1208C8D9AC33B3035016DC4EC62CDEB1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 12:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:f7:a6:5c:23:21:06:85:8e:94:c4:72:3c:0d:80:4b:99:74:db:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2247520F1208C8D9AC33B3035016DC4EC62CDEB1 Validity Not Before: Jul 1 01:00:02 2024 GMT Not After : Jun 30 01:05:02 2025 GMT Subject: CN=27CCBB6780B05BB7C617D99D875C0A184EBDC075 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a8:01:68:66:83:da:d0:c0:e1:20:cf:6c:f3: 0b:bb:6a:bb:7d:e9:5b:14:2d:92:ca:c2:47:76:7c: 30:39:b4:29:df:0e:2b:2b:13:07:6f:5a:fa:8e:c1: 8b:1e:c6:0d:83:4b:3a:f9:7a:5b:e5:46:cb:0b:0a: 6f:c6:e6:b0:bc:8b:d8:11:33:cc:dc:48:e9:40:17: 10:aa:24:9e:62:1b:37:f7:9e:4d:50:17:20:45:71: 3d:46:9f:26:19:83:0c:d6:75:80:c6:84:e8:10:03: 28:ac:4f:b7:c7:65:d9:f7:d1:fa:b1:e7:45:58:01: 3c:51:2a:bf:8d:f0:79:c2:80:9f:8e:f4:c2:ed:ad: 15:f5:1d:fd:32:cf:5b:1c:2d:03:3c:46:2f:f9:1d: 2e:3a:da:56:89:9b:ff:b9:54:76:a6:90:69:8f:35: 86:66:6a:03:5a:63:fb:e2:1b:45:98:72:a8:ff:75: 46:67:78:e0:e6:92:a3:4e:ea:f4:37:f7:59:c4:26: 09:04:8a:45:a0:a7:f2:87:61:2c:87:2f:29:a2:fb: c8:2e:b7:76:07:7b:51:6b:e5:55:e8:d4:d6:f4:c3: 4b:27:5a:f5:8d:44:92:a5:30:46:e6:b8:42:05:a0: 43:01:b7:d2:8b:39:75:2f:1f:a2:82:60:3f:a8:41: ca:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:CC:BB:67:80:B0:5B:B7:C6:17:D9:9D:87:5C:0A:18:4E:BD:C0:75 X509v3 Authority Key Identifier: keyid:22:47:52:0F:12:08:C8:D9:AC:33:B3:03:50:16:DC:4E:C6:2C:DE:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/addf181f-1e89-4022-82f8-e0dba859ee2e/0/2247520F1208C8D9AC33B3035016DC4EC62CDEB1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2247520F1208C8D9AC33B3035016DC4EC62CDEB1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/addf181f-1e89-4022-82f8-e0dba859ee2e/0/3130332e3130372e37312e302f32342d3234203d3e20313336383739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.107.71.0/24 Signature Algorithm: sha256WithRSAEncryption ab:a7:28:dd:71:f2:d1:cc:c2:0c:9e:13:7f:d4:54:90:08:5a: c9:47:ec:6a:1e:58:cc:5b:0f:d5:c4:2e:96:f7:81:6f:a7:7e: d5:1a:22:e5:92:3a:f3:5f:04:97:cc:72:54:35:b9:4d:be:2b: 89:53:5d:9f:37:ec:24:b6:bb:ac:19:2b:a0:a9:83:75:d6:50: 56:11:eb:2f:11:a1:6b:5a:a4:c4:64:77:24:31:79:e6:56:ae: d1:01:2a:70:93:3e:a2:8b:b1:f5:65:43:44:26:19:77:17:a0: 07:3f:81:7f:ec:30:bc:ca:4f:3d:b8:48:d2:bf:66:12:e0:fb: 6d:7d:29:ef:3e:e4:57:68:01:5a:2a:b8:a7:12:41:a4:2d:f1: 9f:1b:f2:69:9d:13:68:01:9b:51:09:3c:4f:6a:dc:3e:c8:ab: 16:65:0f:9b:dc:c8:d2:c3:d2:47:ec:9f:cc:e2:a4:7e:b4:1b: 82:85:d6:ba:c0:64:53:73:60:47:0b:ac:95:33:5a:e4:bf:90: 16:dc:18:c7:f7:03:b7:b6:f5:9e:1b:e8:c5:73:64:e0:36:04: b9:e1:25:27:6c:cb:37:77:07:3e:c2:6c:9a:ca:33:54:a2:9a: 25:9f:c3:7c:2a:77:e8:94:69:67:a7:a5:30:8a:03:b1:a5:8f: 8e:da:b7:fe -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEvemXCMhBoWOlMRyPA2AS5l027gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI0NzUyMEYxMjA4QzhEOUFDMzNCMzAzNTAxNkRDNEVD NjJDREVCMTAeFw0yNDA3MDEwMTAwMDJaFw0yNTA2MzAwMTA1MDJaMDMxMTAvBgNV BAMTKDI3Q0NCQjY3ODBCMDVCQjdDNjE3RDk5RDg3NUMwQTE4NEVCREMwNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1qAFoZoPa0MDhIM9s8wu7art9 6VsULZLKwkd2fDA5tCnfDisrEwdvWvqOwYsexg2DSzr5elvlRssLCm/G5rC8i9gR M8zcSOlAFxCqJJ5iGzf3nk1QFyBFcT1GnyYZgwzWdYDGhOgQAyisT7fHZdn30fqx 50VYATxRKr+N8HnCgJ+O9MLtrRX1Hf0yz1scLQM8Ri/5HS462laJm/+5VHamkGmP NYZmagNaY/viG0WYcqj/dUZneODmkqNO6vQ391nEJgkEikWgp/KHYSyHLymi+8gu t3YHe1Fr5VXo1Nb0w0snWvWNRJKlMEbmuEIFoEMBt9KLOXUvH6KCYD+oQco7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJ8y7Z4CwW7fGF9mdh1wKGE69wHUwHwYDVR0j BBgwFoAUIkdSDxIIyNmsM7MDUBbcTsYs3rEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZGRmMTgxZi0xZTg5LTQwMjItODJmOC1lMGRiYTg1OWVlMmUvMC8yMjQ3NTIwRjEy MDhDOEQ5QUMzM0IzMDM1MDE2REM0RUM2MkNERUIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI0NzUyMEYxMjA4QzhEOUFDMzNCMzAzNTAxNkRDNEVDNjJD REVCMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FkZGYxODFmLTFlODktNDAyMi04 MmY4LWUwZGJhODU5ZWUyZS8wLzMxMzAzMzJlMzEzMDM3MmUzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2tHMA0GCSqG SIb3DQEBCwUAA4IBAQCrpyjdcfLRzMIMnhN/1FSQCFrJR+xqHljMWw/VxC6W94Fv p37VGiLlkjrzXwSXzHJUNblNviuJU12fN+wktrusGSugqYN11lBWEesvEaFrWqTE ZHckMXnmVq7RASpwkz6ii7H1ZUNEJhl3F6AHP4F/7DC8yk89uEjSv2YS4PttfSnv PuRXaAFaKrinEkGkLfGfG/JpnRNoAZtRCTxPatw+yKsWZQ+b3MjSw9JH7J/M4qR+ tBuChda6wGRTc2BHC6yVM1rkv5AW3BjH9wO3tvWeG+jFc2TgNgS54SUnbMs3dwc+ wmyayjNUopoln8N8KnfolGlnp6UwigOxpY+O2rf+ -----END CERTIFICATE-----Generated at Fri Feb 21 11:11:46 2025 by rpki-client