$ rpki-client -vvf repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/3130332e3132322e332e302f32342d3234203d3e20313430333839.roa File: 3130332e3132322e332e302f32342d3234203d3e20313430333839.roa (raw, json) Hash identifier: H/C8JBNaVqOow9m1g+QZ6kwM7JKkj4ce0Cna5R3evE0= Subject key identifier: 6A:69:30:60:53:55:61:E4:AB:E8:C6:EE:3F:0D:31:20:2E:32:55:89 Certificate issuer: /CN=AEB84984B4021FC01344F3D02190FDED8607E7FA Certificate serial: 4B9FFDB60CD04EEFC32C69D3A6F56EE40E8E5D05 Authority key identifier: AE:B8:49:84:B4:02:1F:C0:13:44:F3:D0:21:90:FD:ED:86:07:E7:FA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB84984B4021FC01344F3D02190FDED8607E7FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/3130332e3132322e332e302f32342d3234203d3e20313430333839.roa Signing time: Fri 31 Jan 2025 06:00:01 +0000 ROA not before: Fri 31 Jan 2025 05:55:01 +0000 ROA not after: Fri 30 Jan 2026 06:00:01 +0000 asID: 140389 IP address blocks: 103.122.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/AEB84984B4021FC01344F3D02190FDED8607E7FA.crl rsync://repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/AEB84984B4021FC01344F3D02190FDED8607E7FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB84984B4021FC01344F3D02190FDED8607E7FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 01:48:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:9f:fd:b6:0c:d0:4e:ef:c3:2c:69:d3:a6:f5:6e:e4:0e:8e:5d:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEB84984B4021FC01344F3D02190FDED8607E7FA Validity Not Before: Jan 31 05:55:01 2025 GMT Not After : Jan 30 06:00:01 2026 GMT Subject: CN=6A693060535561E4ABE8C6EE3F0D31202E325589 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:bc:39:e0:61:38:60:2f:b2:02:01:e6:18:69: 7e:33:0f:fe:d2:85:a1:33:ef:ab:07:de:95:7e:b6: 36:ad:7c:1a:a6:c1:fe:60:d2:f6:52:dd:fb:12:fa: b3:42:58:26:c7:f5:54:d5:b2:67:ac:0d:41:4c:46: 7b:e0:de:6d:c2:0f:21:be:cf:43:64:4f:b8:96:ba: 16:44:56:16:ca:2d:d0:3f:51:2c:f4:9c:c1:c2:89: 97:ad:42:43:ab:54:aa:c3:a1:2b:39:fd:da:89:75: ab:c8:27:87:a5:72:bd:fb:06:7b:fe:61:b8:f2:23: 4f:f6:6a:ae:30:7f:e2:23:51:1f:93:03:03:89:05: 74:ea:a0:cf:f4:eb:d6:86:8d:82:90:77:af:5e:40: 7e:c9:93:41:bd:fe:5b:e8:b1:fc:27:7a:ba:d6:b8: 41:91:e4:33:8c:3c:ae:7d:b9:ad:b4:45:1c:f5:bf: ae:4a:8d:82:47:57:38:8d:d2:9c:5b:6c:94:d7:9d: 8d:4c:0a:11:ea:32:35:e0:02:f4:3c:3e:d2:68:81: 8a:c1:aa:07:45:ef:a9:8c:09:4a:60:8d:bd:cf:c6: 41:fc:2b:1e:a2:8d:97:a0:38:f9:e2:8f:d6:27:77: f2:97:64:ac:62:6d:a4:7c:a6:b8:40:c1:d2:ea:c6: f7:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:69:30:60:53:55:61:E4:AB:E8:C6:EE:3F:0D:31:20:2E:32:55:89 X509v3 Authority Key Identifier: keyid:AE:B8:49:84:B4:02:1F:C0:13:44:F3:D0:21:90:FD:ED:86:07:E7:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/AEB84984B4021FC01344F3D02190FDED8607E7FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB84984B4021FC01344F3D02190FDED8607E7FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/3130332e3132322e332e302f32342d3234203d3e20313430333839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.3.0/24 Signature Algorithm: sha256WithRSAEncryption 30:f5:c1:a2:2e:40:4a:cc:81:95:5d:b9:78:5e:0e:fe:bb:01: fb:85:ed:24:28:48:36:f3:74:cc:6a:5b:ae:9d:be:18:de:9c: 3f:9b:ac:00:65:dc:c6:e8:66:9f:64:be:fc:0b:4f:09:4f:3e: b9:0e:6e:a1:96:aa:07:a7:f4:96:c9:54:6c:77:19:e5:e0:20: 58:c9:fd:40:19:29:3b:df:fc:26:93:bb:6f:de:b7:9c:6f:83: 9f:a4:dd:9e:79:01:e1:0f:98:fc:43:d6:64:62:04:4e:92:46: 44:a0:08:c9:76:60:6f:81:34:34:b6:3c:1e:53:03:92:74:67: 0b:2e:95:9c:f4:4c:40:4c:d3:fb:2c:95:bd:db:ba:52:e9:9c: 21:cb:ea:d7:fd:10:f3:5c:67:b8:9a:b3:b5:1e:66:09:37:35: 23:c5:67:8a:04:5e:e8:6b:89:c4:45:b5:a9:70:2b:37:14:08: 72:0d:97:72:14:15:b2:03:b9:0e:d7:9f:d0:bb:a5:d5:11:61: 43:d2:4f:e8:52:04:17:48:55:bc:05:fa:98:05:cc:a3:da:51: c6:b8:15:dd:d2:a5:dd:2d:5c:08:aa:aa:79:8d:ef:4d:98:6b: f6:75:bf:fe:af:5f:e0:05:8b:c7:93:34:b7:36:8d:4e:7c:c9: 85:b3:69:e8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUS5/9tgzQTu/DLGnTpvVu5A6OXQUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVCODQ5ODRCNDAyMUZDMDEzNDRGM0QwMjE5MEZERUQ4 NjA3RTdGQTAeFw0yNTAxMzEwNTU1MDFaFw0yNjAxMzAwNjAwMDFaMDMxMTAvBgNV BAMTKDZBNjkzMDYwNTM1NTYxRTRBQkU4QzZFRTNGMEQzMTIwMkUzMjU1ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAvDngYThgL7ICAeYYaX4zD/7S haEz76sH3pV+tjatfBqmwf5g0vZS3fsS+rNCWCbH9VTVsmesDUFMRnvg3m3CDyG+ z0NkT7iWuhZEVhbKLdA/USz0nMHCiZetQkOrVKrDoSs5/dqJdavIJ4elcr37Bnv+ YbjyI0/2aq4wf+IjUR+TAwOJBXTqoM/069aGjYKQd69eQH7Jk0G9/lvosfwnerrW uEGR5DOMPK59ua20RRz1v65KjYJHVziN0pxbbJTXnY1MChHqMjXgAvQ8PtJogYrB qgdF76mMCUpgjb3PxkH8Kx6ijZegOPnij9Ynd/KXZKxibaR8prhAwdLqxvcRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUamkwYFNVYeSr6MbuPw0xIC4yVYkwHwYDVR0j BBgwFoAUrrhJhLQCH8ATRPPQIZD97YYH5/owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjE5NTVmMC00YjQwLTRjM2ItOWZmZi05ZjkyNThjMzk3NWEvMC9BRUI4NDk4NEI0 MDIxRkMwMTM0NEYzRDAyMTkwRkRFRDg2MDdFN0ZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUVCODQ5ODRCNDAyMUZDMDEzNDRGM0QwMjE5MEZERUQ4NjA3 RTdGQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyMTk1NWYwLTRiNDAtNGMzYi05 ZmZmLTlmOTI1OGMzOTc1YS8wLzMxMzAzMzJlMzEzMjMyMmUzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDMzMzgzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGd6AzANBgkqhkiG 9w0BAQsFAAOCAQEAMPXBoi5ASsyBlV25eF4O/rsB+4XtJChINvN0zGpbrp2+GN6c P5usAGXcxuhmn2S+/AtPCU8+uQ5uoZaqB6f0lslUbHcZ5eAgWMn9QBkpO9/8JpO7 b963nG+Dn6TdnnkB4Q+Y/EPWZGIETpJGRKAIyXZgb4E0NLY8HlMDknRnCy6VnPRM QEzT+yyVvdu6UumcIcvq1/0Q81xnuJqztR5mCTc1I8VnigRe6GuJxEW1qXArNxQI cg2XchQVsgO5Dtef0Lul1RFhQ9JP6FIEF0hVvAX6mAXMo9pRxrgV3dKl3S1cCKqq eY3vTZhr9nW//q9f4AWLx5M0tzaNTnzJhbNp6A== -----END CERTIFICATE-----Generated at Tue Mar 11 05:05:27 2025 by rpki-client