$ rpki-client -vvf repo-rpki.idnic.net/repo/b193018e-718f-4757-a087-93ad77b81821/0/3130332e3132362e3139352e302f32342d3234203d3e20313530353438.roa File: 3130332e3132362e3139352e302f32342d3234203d3e20313530353438.roa (raw, json) Hash identifier: 2Aghezf2z7P1qZlnkDBkv3wvvtG5c1l4SMgNAsKv8N0= Subject key identifier: 9C:CA:E6:04:6F:35:13:72:67:6A:11:EC:6D:1C:D2:9B:DD:46:7F:D5 Certificate issuer: /CN=0F21C3EBD50FC8F43F8CA7A87114156F7425DC9D Certificate serial: 23DBD117CAD6111FFBBE4E827AB598E321C36996 Authority key identifier: 0F:21:C3:EB:D5:0F:C8:F4:3F:8C:A7:A8:71:14:15:6F:74:25:DC:9D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0F21C3EBD50FC8F43F8CA7A87114156F7425DC9D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b193018e-718f-4757-a087-93ad77b81821/0/3130332e3132362e3139352e302f32342d3234203d3e20313530353438.roa Signing time: Wed 08 Jan 2025 04:02:59 +0000 ROA not before: Wed 08 Jan 2025 03:57:59 +0000 ROA not after: Wed 07 Jan 2026 04:02:59 +0000 asID: 150548 IP address blocks: 103.126.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b193018e-718f-4757-a087-93ad77b81821/0/0F21C3EBD50FC8F43F8CA7A87114156F7425DC9D.crl rsync://repo-rpki.idnic.net/repo/b193018e-718f-4757-a087-93ad77b81821/0/0F21C3EBD50FC8F43F8CA7A87114156F7425DC9D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0F21C3EBD50FC8F43F8CA7A87114156F7425DC9D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 20:09:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:db:d1:17:ca:d6:11:1f:fb:be:4e:82:7a:b5:98:e3:21:c3:69:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0F21C3EBD50FC8F43F8CA7A87114156F7425DC9D Validity Not Before: Jan 8 03:57:59 2025 GMT Not After : Jan 7 04:02:59 2026 GMT Subject: CN=9CCAE6046F351372676A11EC6D1CD29BDD467FD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:89:28:69:0a:2f:3f:40:6a:5e:8e:83:a5:70: d6:86:6d:0e:3f:4c:87:80:37:62:d4:58:7b:84:11: c9:0d:8b:ae:c0:74:a1:a7:d1:64:b6:ff:b4:b5:69: 89:7d:fd:8d:93:ef:31:41:b1:f9:2e:06:39:33:aa: e3:95:72:1e:11:b2:00:b4:ff:9b:52:58:2c:58:04: 48:44:15:60:1a:fe:d4:c3:8b:75:91:22:77:f1:24: f9:0d:90:de:01:ad:a3:f4:4c:ba:c0:8e:4c:a3:df: fc:6f:d9:0d:4f:65:65:b8:f9:77:34:77:4c:06:e8: 1b:58:5b:2b:d5:5e:c7:07:e5:68:7f:f0:c5:f2:2b: 64:8b:d3:c8:73:cc:5b:5f:19:67:23:fe:2a:0f:81: 1e:55:a0:30:41:e0:30:d2:d3:71:5d:6c:ac:f8:02: ff:e7:79:3f:a2:3d:20:2b:2d:54:e2:98:c8:4b:bb: a3:53:da:24:1b:13:f0:9d:80:cd:30:d6:41:e4:08: 9c:53:2e:23:be:1a:45:6d:67:b4:08:a2:1f:7d:06: d0:43:2f:98:f6:d0:4a:1a:52:ab:e4:9f:72:58:cc: be:c6:38:37:f0:ff:c9:12:46:9c:ae:cd:df:f9:7e: a5:79:58:fd:92:a6:9f:7f:ef:b5:4a:d2:02:55:9c: e6:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:CA:E6:04:6F:35:13:72:67:6A:11:EC:6D:1C:D2:9B:DD:46:7F:D5 X509v3 Authority Key Identifier: keyid:0F:21:C3:EB:D5:0F:C8:F4:3F:8C:A7:A8:71:14:15:6F:74:25:DC:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b193018e-718f-4757-a087-93ad77b81821/0/0F21C3EBD50FC8F43F8CA7A87114156F7425DC9D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0F21C3EBD50FC8F43F8CA7A87114156F7425DC9D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b193018e-718f-4757-a087-93ad77b81821/0/3130332e3132362e3139352e302f32342d3234203d3e20313530353438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.126.195.0/24 Signature Algorithm: sha256WithRSAEncryption af:0e:ef:91:71:32:42:e1:87:e4:cc:64:7f:0f:7e:00:26:e1: 67:5f:84:2f:88:f0:0f:6c:ae:e6:d9:cf:a3:74:01:fe:e0:01: 09:2a:bc:10:80:eb:fa:da:81:23:f7:dd:6a:03:82:1f:f7:dc: 32:44:b1:e6:19:7b:3b:84:f1:9f:da:fa:f2:27:00:8a:23:5c: 13:c0:b1:63:7a:9d:62:2c:fd:7d:a6:fa:08:a5:eb:90:6f:af: d1:24:f7:d6:ba:2c:8c:44:e5:6e:0b:b0:27:5a:85:58:99:86: 2d:d7:11:0b:c6:3c:b4:d2:83:6c:cd:75:ba:10:6b:d4:fb:c4: b9:87:cf:33:50:7a:e5:a8:c8:15:c0:fe:8c:a7:fe:b7:19:1b: 91:b5:fd:60:35:8d:bb:3c:28:29:dc:53:e0:0a:7f:62:cf:e3: db:4a:d4:b8:8c:84:de:3e:22:67:9b:d2:be:eb:17:c4:55:8d: 48:e4:88:4a:22:d3:92:c5:9c:b4:1e:47:6f:a5:b6:ed:e5:1f: 7f:fc:e5:39:2a:83:6a:a6:d3:2a:6a:b1:ca:6e:5c:f2:8d:40: c3:bc:9f:ec:13:75:24:12:a5:2c:dc:1a:59:07:e1:78:91:06: 16:66:28:7b:26:cd:b8:c7:a4:85:05:60:42:76:5b:b7:c0:95: 29:ec:81:38 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUI9vRF8rWER/7vk6CerWY4yHDaZYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEYyMUMzRUJENTBGQzhGNDNGOENBN0E4NzExNDE1NkY3 NDI1REM5RDAeFw0yNTAxMDgwMzU3NTlaFw0yNjAxMDcwNDAyNTlaMDMxMTAvBgNV BAMTKDlDQ0FFNjA0NkYzNTEzNzI2NzZBMTFFQzZEMUNEMjlCREQ0NjdGRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeiShpCi8/QGpejoOlcNaGbQ4/ TIeAN2LUWHuEEckNi67AdKGn0WS2/7S1aYl9/Y2T7zFBsfkuBjkzquOVch4RsgC0 /5tSWCxYBEhEFWAa/tTDi3WRInfxJPkNkN4BraP0TLrAjkyj3/xv2Q1PZWW4+Xc0 d0wG6BtYWyvVXscH5Wh/8MXyK2SL08hzzFtfGWcj/ioPgR5VoDBB4DDS03FdbKz4 Av/neT+iPSArLVTimMhLu6NT2iQbE/CdgM0w1kHkCJxTLiO+GkVtZ7QIoh99BtBD L5j20EoaUqvkn3JYzL7GODfw/8kSRpyuzd/5fqV5WP2Spp9/77VK0gJVnObfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUnMrmBG81E3JnahHsbRzSm91Gf9UwHwYDVR0j BBgwFoAUDyHD69UPyPQ/jKeocRQVb3Ql3J0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MTkzMDE4ZS03MThmLTQ3NTctYTA4Ny05M2FkNzdiODE4MjEvMC8wRjIxQzNFQkQ1 MEZDOEY0M0Y4Q0E3QTg3MTE0MTU2Rjc0MjVEQzlELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEYyMUMzRUJENTBGQzhGNDNGOENBN0E4NzExNDE1NkY3NDI1 REM5RC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxOTMwMThlLTcxOGYtNDc1Ny1h MDg3LTkzYWQ3N2I4MTgyMS8wLzMxMzAzMzJlMzEzMjM2MmUzMTM5MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzNTM0Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfsMwDQYJ KoZIhvcNAQELBQADggEBAK8O75FxMkLhh+TMZH8PfgAm4WdfhC+I8A9srubZz6N0 Af7gAQkqvBCA6/ragSP33WoDgh/33DJEseYZezuE8Z/a+vInAIojXBPAsWN6nWIs /X2m+gil65Bvr9Ek99a6LIxE5W4LsCdahViZhi3XEQvGPLTSg2zNdboQa9T7xLmH zzNQeuWoyBXA/oyn/rcZG5G1/WA1jbs8KCncU+AKf2LP49tK1LiMhN4+Imeb0r7r F8RVjUjkiEoi05LFnLQeR2+ltu3lH3/85Tkqg2qm0ypqscpuXPKNQMO8n+wTdSQS pSzcGlkH4XiRBhZmKHsmzbjHpIUFYEJ2W7fAlSnsgTg= -----END CERTIFICATE-----Generated at Sun Apr 6 17:51:57 2025 by rpki-client