$ rpki-client -vvf repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/3130332e3231392e3234382e302f32322d3234203d3e20313335343434.roa File: 3130332e3231392e3234382e302f32322d3234203d3e20313335343434.roa (raw, json) Hash identifier: Rrqdw9OPSaMzJqqbJeil51yS0Dp8UexGZcFlKd3Gk5M= Subject key identifier: 26:69:50:0F:D4:BD:4D:B5:17:13:61:69:1C:4C:0A:EA:59:8E:89:99 Certificate issuer: /CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Certificate serial: 5CF7FA0F3DFE2BC6DDAC4BEA637ECF2170D32C99 Authority key identifier: D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/3130332e3231392e3234382e302f32322d3234203d3e20313335343434.roa Signing time: Mon 01 Jul 2024 00:00:00 +0000 ROA not before: Sun 30 Jun 2024 23:55:00 +0000 ROA not after: Mon 30 Jun 2025 00:00:00 +0000 asID: 135444 IP address blocks: 103.219.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Mar 2025 17:24:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:f7:fa:0f:3d:fe:2b:c6:dd:ac:4b:ea:63:7e:cf:21:70:d3:2c:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Validity Not Before: Jun 30 23:55:00 2024 GMT Not After : Jun 30 00:00:00 2025 GMT Subject: CN=2669500FD4BD4DB5171361691C4C0AEA598E8999 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0c:42:ea:33:ad:4a:07:4e:9b:a7:f9:89:66: c9:e0:19:12:b6:67:9e:7d:f8:4f:71:ea:3c:f0:bd: 36:71:93:27:ef:f5:a4:17:f0:24:43:ae:57:ca:ff: 42:43:f2:1d:ec:c2:a8:44:49:8a:06:de:83:1f:ed: 40:7f:7b:91:ec:43:b9:54:05:37:a2:b7:c4:ef:da: 07:24:b0:ee:ea:6d:1f:ac:da:f6:04:cf:8c:b5:f9: 41:ef:e7:44:ce:a8:2b:fb:73:d3:10:5a:0b:60:5d: a0:70:1e:4c:f5:9b:22:30:7a:48:68:f0:17:6f:eb: a3:dd:93:4f:3a:6e:40:ae:b4:1a:d6:57:77:10:1e: 15:b4:73:76:9f:7c:c1:48:3d:18:08:79:a6:12:a3: 7c:23:1c:bb:33:57:2f:6e:32:bb:61:e5:9c:b5:c7: ad:0e:a0:8a:cc:58:61:13:7c:21:c0:d0:0d:11:76: 4d:25:92:aa:0c:e4:4a:90:cf:d4:8f:66:ae:54:5e: 56:c9:81:79:22:34:8a:2e:b5:11:7b:a1:a1:9a:4d: 32:fa:9b:51:98:5f:f4:73:1d:13:e5:c9:2f:75:25: 9e:f6:ff:01:f9:4a:62:b8:3d:f6:c4:51:0c:2c:90: 98:3b:e0:2d:a6:f5:a9:36:d3:e0:73:dd:ee:26:84: 2a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:69:50:0F:D4:BD:4D:B5:17:13:61:69:1C:4C:0A:EA:59:8E:89:99 X509v3 Authority Key Identifier: keyid:D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/3130332e3231392e3234382e302f32322d3234203d3e20313335343434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.219.248.0/22 Signature Algorithm: sha256WithRSAEncryption 57:5f:6e:d5:d7:5d:05:4d:81:f6:bc:9c:7e:5d:73:1d:5a:b6: ef:fe:0e:6c:10:9d:98:71:b6:3f:76:cc:06:4d:74:2e:b1:85: bd:d6:ea:5c:a1:cd:38:f2:eb:0f:e5:ee:ad:05:df:2a:4d:c6: 2d:99:2e:0a:61:df:36:54:a3:33:f0:ca:75:aa:98:da:fa:2c: 46:d4:66:8a:48:ca:31:bd:43:26:e3:6e:c7:4e:88:b5:f7:87: 75:40:9d:29:a1:83:8c:38:ab:d5:2a:e7:a1:bb:c8:8e:3f:d8: fd:37:d4:f7:0f:5f:a7:10:67:c9:89:ea:a6:3b:9e:0d:34:ec: fb:19:7b:ae:df:28:1e:92:41:07:54:dd:5b:45:3a:9d:d1:7d: 24:6f:f7:a3:6b:9c:ad:34:36:95:70:e4:18:f4:d5:e7:c4:31: e3:25:42:60:37:a2:d3:2e:e3:44:61:ae:bb:dd:5b:de:62:b2: d7:f3:03:1f:51:97:c7:9c:15:b9:02:d8:5d:41:3f:7b:93:2c: 5b:1e:39:1b:f6:db:0e:4b:e5:b6:d3:69:1e:2c:b8:a6:cb:8d: ca:14:b3:f5:03:d2:65:05:4e:a5:42:79:33:52:7e:5d:98:5b: 56:17:ba:72:b7:09:e1:7c:50:73:05:42:03:e4:6d:80:20:85: 83:5f:2e:2e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXPf6Dz3+K8bdrEvqY37PIXDTLJkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4 NkNGNTgyRjAeFw0yNDA2MzAyMzU1MDBaFw0yNTA2MzAwMDAwMDBaMDMxMTAvBgNV BAMTKDI2Njk1MDBGRDRCRDREQjUxNzEzNjE2OTFDNEMwQUVBNTk4RTg5OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+DELqM61KB06bp/mJZsngGRK2 Z559+E9x6jzwvTZxkyfv9aQX8CRDrlfK/0JD8h3swqhESYoG3oMf7UB/e5HsQ7lU BTeit8Tv2gcksO7qbR+s2vYEz4y1+UHv50TOqCv7c9MQWgtgXaBwHkz1myIwekho 8Bdv66Pdk086bkCutBrWV3cQHhW0c3affMFIPRgIeaYSo3wjHLszVy9uMrth5Zy1 x60OoIrMWGETfCHA0A0Rdk0lkqoM5EqQz9SPZq5UXlbJgXkiNIoutRF7oaGaTTL6 m1GYX/RzHRPlyS91JZ72/wH5SmK4PfbEUQwskJg74C2m9ak20+Bz3e4mhCrVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUJmlQD9S9TbUXE2FpHEwK6lmOiZkwHwYDVR0j BBgwFoAU2c1AR0vdDAcHdmztuvC2oYbPWC8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MWE3N2FkZC1hNDlhLTRjOGYtYTczNS1lZjk2YzMzYWIyOWYvMC9EOUNENDA0NzRC REQwQzA3MDc3NjZDRURCQUYwQjZBMTg2Q0Y1ODJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4NkNG NTgyRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxYTc3YWRkLWE0OWEtNGM4Zi1h NzM1LWVmOTZjMzNhYjI5Zi8wLzMxMzAzMzJlMzIzMTM5MmUzMjM0MzgyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM0MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn2/gwDQYJ KoZIhvcNAQELBQADggEBAFdfbtXXXQVNgfa8nH5dcx1atu/+DmwQnZhxtj92zAZN dC6xhb3W6lyhzTjy6w/l7q0F3ypNxi2ZLgph3zZUozPwynWqmNr6LEbUZopIyjG9 QybjbsdOiLX3h3VAnSmhg4w4q9Uq56G7yI4/2P031PcPX6cQZ8mJ6qY7ng007PsZ e67fKB6SQQdU3VtFOp3RfSRv96NrnK00NpVw5Bj01efEMeMlQmA3otMu40Rhrrvd W95istfzAx9Rl8ecFbkC2F1BP3uTLFseORv22w5L5bbTaR4suKbLjcoUs/UD0mUF TqVCeTNSfl2YW1YXunK3CeF8UHMFQgPkbYAghYNfLi4= -----END CERTIFICATE-----Generated at Tue Mar 11 05:00:50 2025 by rpki-client