$ rpki-client -vvf repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/3130332e3132322e322e302f32342d3234203d3e20313430333839.roa File: 3130332e3132322e322e302f32342d3234203d3e20313430333839.roa (raw, json) Hash identifier: tbN19feblT3PguVaZeJVSZOFHq52R/v7NXiFpVjRDJ4= Subject key identifier: 63:52:59:ED:71:19:10:E3:2E:EB:E3:B7:35:FA:74:A8:39:B6:86:5A Certificate issuer: /CN=AEB84984B4021FC01344F3D02190FDED8607E7FA Certificate serial: 2C4804AE04F4C69113D97372FFAD3861DCF47B85 Authority key identifier: AE:B8:49:84:B4:02:1F:C0:13:44:F3:D0:21:90:FD:ED:86:07:E7:FA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB84984B4021FC01344F3D02190FDED8607E7FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/3130332e3132322e322e302f32342d3234203d3e20313430333839.roa Signing time: Fri 31 Jan 2025 06:00:00 +0000 ROA not before: Fri 31 Jan 2025 05:55:00 +0000 ROA not after: Fri 30 Jan 2026 06:00:00 +0000 asID: 140389 IP address blocks: 103.122.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/AEB84984B4021FC01344F3D02190FDED8607E7FA.crl rsync://repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/AEB84984B4021FC01344F3D02190FDED8607E7FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB84984B4021FC01344F3D02190FDED8607E7FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 02:39:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:48:04:ae:04:f4:c6:91:13:d9:73:72:ff:ad:38:61:dc:f4:7b:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEB84984B4021FC01344F3D02190FDED8607E7FA Validity Not Before: Jan 31 05:55:00 2025 GMT Not After : Jan 30 06:00:00 2026 GMT Subject: CN=635259ED711910E32EEBE3B735FA74A839B6865A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e6:9b:6f:16:5e:08:5b:4b:68:18:dc:bc:2b: fe:12:55:5d:3d:23:6c:07:d0:d1:95:41:ac:f2:3e: 32:56:26:b8:d4:43:aa:4d:da:ac:f9:ad:78:bd:34: ff:1c:6b:08:26:54:dd:ee:9f:47:ac:60:b8:4c:93: e2:6e:9c:ab:9a:e9:52:a1:cc:1b:40:cb:8c:48:32: a6:00:8a:81:7d:54:42:9d:8e:0d:e5:12:52:66:12: c6:f4:3a:3e:d8:de:ea:4d:6d:8b:54:ce:0f:6d:fe: 0b:3f:03:8c:52:37:70:f9:94:c4:07:5a:b6:9a:4b: 7f:03:25:18:68:46:f7:79:eb:e1:4a:a9:2b:c4:fb: fe:f0:9f:b5:df:37:8b:64:e0:b3:87:1a:74:32:19: 8a:4c:19:78:3e:49:83:5b:cf:54:ba:f5:86:3b:18: b4:c0:af:a0:a4:d8:73:f7:9d:4b:90:9c:52:a7:e8: cf:e0:88:f4:d1:b8:53:60:50:7c:d8:98:e0:6d:b1: f0:21:0f:e2:a2:35:c4:9d:a6:10:7d:df:9f:c2:97: d7:10:0e:d1:ca:40:80:a7:29:c0:50:d0:23:fc:ca: be:1f:24:c1:88:8b:75:0e:d2:98:90:b5:6c:71:f4: 6a:c9:98:12:9e:54:96:37:4a:ef:1e:58:fc:55:e3: 10:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:52:59:ED:71:19:10:E3:2E:EB:E3:B7:35:FA:74:A8:39:B6:86:5A X509v3 Authority Key Identifier: keyid:AE:B8:49:84:B4:02:1F:C0:13:44:F3:D0:21:90:FD:ED:86:07:E7:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/AEB84984B4021FC01344F3D02190FDED8607E7FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB84984B4021FC01344F3D02190FDED8607E7FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/3130332e3132322e322e302f32342d3234203d3e20313430333839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.2.0/24 Signature Algorithm: sha256WithRSAEncryption 22:60:ba:13:cf:54:39:ca:be:64:99:fd:6f:08:e9:cf:5c:98: 06:f9:75:21:24:c8:0e:b0:2e:75:59:50:bb:8a:69:3c:85:c0: 7e:a3:72:81:dc:92:63:56:9c:5c:a6:39:e6:ad:62:cc:95:ae: 51:cb:95:9e:67:83:66:93:89:8f:78:11:06:22:c7:61:89:14: f6:93:42:ec:c0:48:cf:bb:b2:ae:c4:d1:ee:7e:f4:e4:a6:3f: db:ed:b2:19:cb:ab:de:5c:4c:72:ee:d5:0e:ee:d9:fc:41:18: cc:5b:5e:40:30:76:46:f3:93:39:62:36:e6:ae:23:81:7a:fa: de:00:02:a9:6d:dc:ae:e1:a0:ab:50:46:c4:97:c5:f7:06:53: 73:9b:f5:03:6c:46:0d:d7:be:30:e2:e9:02:05:b7:57:03:b7: 06:5e:9e:a2:52:fc:e3:c5:86:01:70:0d:92:10:17:37:21:fc: 00:f8:0e:f3:d7:e8:db:c5:7f:ea:2a:90:1a:c9:91:98:26:68: ac:ab:0e:fd:28:a9:b6:08:02:70:77:e9:94:6a:9d:3f:f4:67: 27:8d:e2:27:e7:c5:c6:3c:1e:1f:0a:e4:60:dc:cc:6f:75:c7: 78:e0:77:71:85:3e:c8:95:55:94:b0:8e:d0:ae:96:d6:e1:67: 8f:df:00:70 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULEgErgT0xpET2XNy/604Ydz0e4UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVCODQ5ODRCNDAyMUZDMDEzNDRGM0QwMjE5MEZERUQ4 NjA3RTdGQTAeFw0yNTAxMzEwNTU1MDBaFw0yNjAxMzAwNjAwMDBaMDMxMTAvBgNV BAMTKDYzNTI1OUVENzExOTEwRTMyRUVCRTNCNzM1RkE3NEE4MzlCNjg2NUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh5ptvFl4IW0toGNy8K/4SVV09 I2wH0NGVQazyPjJWJrjUQ6pN2qz5rXi9NP8cawgmVN3un0esYLhMk+JunKua6VKh zBtAy4xIMqYAioF9VEKdjg3lElJmEsb0Oj7Y3upNbYtUzg9t/gs/A4xSN3D5lMQH WraaS38DJRhoRvd56+FKqSvE+/7wn7XfN4tk4LOHGnQyGYpMGXg+SYNbz1S69YY7 GLTAr6Ck2HP3nUuQnFKn6M/giPTRuFNgUHzYmOBtsfAhD+KiNcSdphB935/Cl9cQ DtHKQICnKcBQ0CP8yr4fJMGIi3UO0piQtWxx9GrJmBKeVJY3Su8eWPxV4xAHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUY1JZ7XEZEOMu6+O3Nfp0qDm2hlowHwYDVR0j BBgwFoAUrrhJhLQCH8ATRPPQIZD97YYH5/owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjE5NTVmMC00YjQwLTRjM2ItOWZmZi05ZjkyNThjMzk3NWEvMC9BRUI4NDk4NEI0 MDIxRkMwMTM0NEYzRDAyMTkwRkRFRDg2MDdFN0ZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUVCODQ5ODRCNDAyMUZDMDEzNDRGM0QwMjE5MEZERUQ4NjA3 RTdGQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyMTk1NWYwLTRiNDAtNGMzYi05 ZmZmLTlmOTI1OGMzOTc1YS8wLzMxMzAzMzJlMzEzMjMyMmUzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDMzMzgzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGd6AjANBgkqhkiG 9w0BAQsFAAOCAQEAImC6E89UOcq+ZJn9bwjpz1yYBvl1ISTIDrAudVlQu4ppPIXA fqNygdySY1acXKY55q1izJWuUcuVnmeDZpOJj3gRBiLHYYkU9pNC7MBIz7uyrsTR 7n705KY/2+2yGcur3lxMcu7VDu7Z/EEYzFteQDB2RvOTOWI25q4jgXr63gACqW3c ruGgq1BGxJfF9wZTc5v1A2xGDde+MOLpAgW3VwO3Bl6eolL848WGAXANkhAXNyH8 APgO89fo28V/6iqQGsmRmCZorKsO/SiptggCcHfplGqdP/RnJ43iJ+fFxjweHwrk YNzMb3XHeOB3cYU+yJVVlLCO0K6W1uFnj98AcA== -----END CERTIFICATE-----Generated at Sun Apr 6 09:37:59 2025 by rpki-client