$ rpki-client -vvf repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/3130332e3133382e37312e302f32342d3234203d3e20313338383834.roa File: 3130332e3133382e37312e302f32342d3234203d3e20313338383834.roa (raw, json) Hash identifier: JCNF2AqA+9yLiNsXD2G46cVY5ai2iXqfYKsqNNx0uaI= Subject key identifier: 62:8B:CF:0C:8B:00:E9:47:B7:4B:4A:C9:79:20:AB:71:87:BA:76:00 Certificate issuer: /CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Certificate serial: 34EE0ADBCF91D6D4D3DDAD06413D78C5FB4BE35A Authority key identifier: 88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/3130332e3133382e37312e302f32342d3234203d3e20313338383834.roa Signing time: Fri 09 Aug 2024 04:03:00 +0000 ROA not before: Fri 09 Aug 2024 03:58:00 +0000 ROA not after: Fri 08 Aug 2025 04:03:00 +0000 asID: 138884 IP address blocks: 103.138.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 16:32:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:ee:0a:db:cf:91:d6:d4:d3:dd:ad:06:41:3d:78:c5:fb:4b:e3:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Validity Not Before: Aug 9 03:58:00 2024 GMT Not After : Aug 8 04:03:00 2025 GMT Subject: CN=628BCF0C8B00E947B74B4AC97920AB7187BA7600 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e7:67:86:96:81:b9:13:69:e4:cb:78:99:8c: c5:35:b1:e1:78:c5:65:60:fc:79:66:44:1a:f3:b1: be:2d:f5:dd:87:2e:ff:76:03:9c:10:24:57:c9:78: 53:4e:73:c8:b7:54:e3:9c:a5:5b:17:df:f3:42:ad: bd:b2:37:85:a2:b9:98:f8:7b:14:28:22:92:60:e1: 29:1a:58:5e:de:ae:dc:6a:f6:db:4e:4d:74:6a:a4: b2:81:97:bf:d2:3d:0a:fe:a3:90:42:55:fb:62:1d: 1b:02:57:1a:48:d9:7b:04:65:c0:2c:8d:18:2f:a3: 3d:c1:40:d3:fc:06:95:5d:71:ac:93:d1:be:40:e6: 77:bb:4c:97:df:e7:e9:84:a2:ca:30:7d:e3:2d:46: 37:4d:a4:53:6a:dd:4f:0d:0b:7d:49:9a:e4:58:6f: 45:89:ec:b1:bb:47:a7:ff:1c:ca:b4:11:0f:64:36: 7b:7c:d1:84:aa:bf:06:f3:ef:d4:bb:aa:d2:aa:25: 8c:73:c9:df:e6:6e:13:21:91:60:85:e1:ca:b2:36: 19:82:23:d4:0f:53:39:bb:17:e6:b4:85:8a:81:b9: 73:86:d0:86:9b:2c:2f:6a:db:97:76:7e:15:fb:74: b7:9f:71:0e:4a:9a:ef:87:2d:1d:51:37:28:1a:df: 45:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:8B:CF:0C:8B:00:E9:47:B7:4B:4A:C9:79:20:AB:71:87:BA:76:00 X509v3 Authority Key Identifier: keyid:88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/3130332e3133382e37312e302f32342d3234203d3e20313338383834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.138.71.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:5b:38:66:6b:c8:a1:51:8f:6b:37:75:b1:76:1f:f3:59:73: 10:2b:a5:0f:7c:8a:22:d4:bd:fb:b7:7d:56:26:7d:6c:74:be: cb:60:4f:08:4c:24:34:80:5c:8b:db:4c:01:b0:d5:83:d9:8c: aa:fb:5b:4a:02:35:2e:95:38:c3:28:b6:66:ec:8b:c4:ee:28: f6:21:d3:4f:f5:9f:51:9f:6d:8c:91:06:30:60:32:cd:55:88: 4a:a7:0a:4c:f5:5e:1d:a4:65:72:de:37:85:a5:d7:25:f8:8f: b3:21:d1:9f:33:14:b4:0a:e0:98:61:ad:9c:64:fb:22:92:2e: 5e:34:2a:69:1a:56:6a:0a:9c:98:ea:d9:37:b2:13:c8:91:a2: 7f:f7:c1:21:fa:cf:3d:90:30:0a:41:e9:b4:5d:e0:8b:9c:0a: b3:e7:ec:fe:7e:34:26:c2:9a:87:ac:cb:a9:9a:e6:38:a2:20: 66:1b:50:ed:68:c1:2b:00:29:83:ad:4f:5a:31:27:f4:b5:97: 9a:8e:bb:b1:55:bc:4f:2a:d1:f3:08:33:8b:0b:bf:ee:80:1e: 8e:fd:04:6f:e0:ee:75:de:bf:81:94:5b:35:3c:a0:46:10:fe: ba:62:93:2d:99:6f:1f:87:fe:fa:bd:55:6d:a8:20:15:24:93: 14:dd:06:91 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNO4K28+R1tTT3a0GQT14xftL41owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1 MjI0OUIzRTAeFw0yNDA4MDkwMzU4MDBaFw0yNTA4MDgwNDAzMDBaMDMxMTAvBgNV BAMTKDYyOEJDRjBDOEIwMEU5NDdCNzRCNEFDOTc5MjBBQjcxODdCQTc2MDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+52eGloG5E2nky3iZjMU1seF4 xWVg/HlmRBrzsb4t9d2HLv92A5wQJFfJeFNOc8i3VOOcpVsX3/NCrb2yN4WiuZj4 exQoIpJg4SkaWF7ertxq9ttOTXRqpLKBl7/SPQr+o5BCVftiHRsCVxpI2XsEZcAs jRgvoz3BQNP8BpVdcayT0b5A5ne7TJff5+mEosowfeMtRjdNpFNq3U8NC31JmuRY b0WJ7LG7R6f/HMq0EQ9kNnt80YSqvwbz79S7qtKqJYxzyd/mbhMhkWCF4cqyNhmC I9QPUzm7F+a0hYqBuXOG0IabLC9q25d2fhX7dLefcQ5Kmu+HLR1RNyga30UhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYovPDIsA6Ue3S0rJeSCrcYe6dgAwHwYDVR0j BBgwFoAUiL0arqFtiiRVBBbNuV4jIVIkmz4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjBjNmQ2OS02MjkwLTQwMmYtYTg0ZS1kMjg5YzZlOTNhNzMvMC84OEJEMUFBRUEx NkQ4QTI0NTUwNDE2Q0RCOTVFMjMyMTUyMjQ5QjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1MjI0 OUIzRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyMGM2ZDY5LTYyOTAtNDAyZi1h ODRlLWQyODljNmU5M2E3My8wLzMxMzAzMzJlMzEzMzM4MmUzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzODM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4pHMA0GCSqG SIb3DQEBCwUAA4IBAQAbWzhma8ihUY9rN3Wxdh/zWXMQK6UPfIoi1L37t31WJn1s dL7LYE8ITCQ0gFyL20wBsNWD2Yyq+1tKAjUulTjDKLZm7IvE7ij2IdNP9Z9Rn22M kQYwYDLNVYhKpwpM9V4dpGVy3jeFpdcl+I+zIdGfMxS0CuCYYa2cZPsiki5eNCpp GlZqCpyY6tk3shPIkaJ/98Eh+s89kDAKQem0XeCLnAqz5+z+fjQmwpqHrMupmuY4 oiBmG1DtaMErACmDrU9aMSf0tZeajruxVbxPKtHzCDOLC7/ugB6O/QRv4O513r+B lFs1PKBGEP66YpMtmW8fh/76vVVtqCAVJJMU3QaR -----END CERTIFICATE-----Generated at Tue Mar 11 05:04:18 2025 by rpki-client