$ rpki-client -vvf repo-rpki.idnic.net/repo/b32e945c-ed3d-489a-83ed-5017273d5aa5/0/3130332e33312e3230372e302f32342d3234203d3e20313331373534.roa File: 3130332e33312e3230372e302f32342d3234203d3e20313331373534.roa (raw, json) Hash identifier: W6WFo2Hu+QfbijXkpTTas8+VNp9aDLxId/mc15FAtA0= Subject key identifier: 70:C0:79:D6:9B:D2:42:5D:7B:8D:3F:2E:58:EA:81:1B:48:E2:E7:E3 Certificate issuer: /CN=AD1CBBE3A1ABE1CA2644C3E2DF831EF99B61A906 Certificate serial: 032DC3DA8E3C6989A01F71A123281DB3CF7CA24A Authority key identifier: AD:1C:BB:E3:A1:AB:E1:CA:26:44:C3:E2:DF:83:1E:F9:9B:61:A9:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD1CBBE3A1ABE1CA2644C3E2DF831EF99B61A906.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b32e945c-ed3d-489a-83ed-5017273d5aa5/0/3130332e33312e3230372e302f32342d3234203d3e20313331373534.roa Signing time: Mon 29 Jul 2024 08:00:00 +0000 ROA not before: Mon 29 Jul 2024 07:55:00 +0000 ROA not after: Mon 28 Jul 2025 08:00:00 +0000 asID: 131754 IP address blocks: 103.31.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b32e945c-ed3d-489a-83ed-5017273d5aa5/0/AD1CBBE3A1ABE1CA2644C3E2DF831EF99B61A906.crl rsync://repo-rpki.idnic.net/repo/b32e945c-ed3d-489a-83ed-5017273d5aa5/0/AD1CBBE3A1ABE1CA2644C3E2DF831EF99B61A906.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD1CBBE3A1ABE1CA2644C3E2DF831EF99B61A906.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 21:17:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:2d:c3:da:8e:3c:69:89:a0:1f:71:a1:23:28:1d:b3:cf:7c:a2:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD1CBBE3A1ABE1CA2644C3E2DF831EF99B61A906 Validity Not Before: Jul 29 07:55:00 2024 GMT Not After : Jul 28 08:00:00 2025 GMT Subject: CN=70C079D69BD2425D7B8D3F2E58EA811B48E2E7E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ef:2a:20:d6:cd:8b:3d:4d:27:7c:a7:b3:a2: b4:f0:28:dd:32:3c:ae:0a:b6:1e:37:0c:9f:79:c6: 5d:d8:c8:02:d7:aa:44:2f:e3:da:03:36:20:7c:96: ff:33:85:8d:a3:1a:51:e6:04:74:10:5c:f4:b0:e8: fd:8d:83:61:96:04:23:ce:d8:13:d3:88:44:b4:a1: 74:1c:f2:0d:76:16:b5:e5:94:46:28:99:e9:ac:f6: a0:02:65:28:b3:d9:aa:01:09:7c:3d:e5:33:9f:06: 48:cc:29:3a:36:f2:40:5d:7c:c0:85:18:8d:59:1c: 41:05:cd:f2:38:a2:80:34:6b:8d:52:54:6e:15:86: 03:0c:9a:2d:d3:7c:4a:24:1d:6d:2a:cd:1e:ff:87: a3:bd:c1:38:d0:5b:2e:b1:a5:13:57:e4:c4:5b:ae: 5f:17:dc:fe:9c:6c:35:e8:97:85:2d:c5:0d:c9:31: a5:09:96:e0:66:5c:6f:eb:d6:b1:65:b1:d5:96:53: 15:f6:e6:12:68:06:22:2b:04:8c:70:9e:cc:56:c1: e7:31:f1:2a:59:b2:7a:5e:04:8a:56:fb:22:f3:4e: b5:c9:dd:fd:9c:18:2b:ee:4d:f2:14:d2:83:0f:f1: 59:04:af:e9:32:2f:3f:b3:74:5f:1d:1b:7b:d0:0c: c1:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:C0:79:D6:9B:D2:42:5D:7B:8D:3F:2E:58:EA:81:1B:48:E2:E7:E3 X509v3 Authority Key Identifier: keyid:AD:1C:BB:E3:A1:AB:E1:CA:26:44:C3:E2:DF:83:1E:F9:9B:61:A9:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b32e945c-ed3d-489a-83ed-5017273d5aa5/0/AD1CBBE3A1ABE1CA2644C3E2DF831EF99B61A906.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD1CBBE3A1ABE1CA2644C3E2DF831EF99B61A906.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b32e945c-ed3d-489a-83ed-5017273d5aa5/0/3130332e33312e3230372e302f32342d3234203d3e20313331373534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.31.207.0/24 Signature Algorithm: sha256WithRSAEncryption 12:fb:0e:74:58:1d:9f:c5:d2:0c:a4:37:7f:a3:e2:f9:54:7a: ba:82:3d:40:c6:75:49:00:36:74:ca:70:9b:25:e4:cf:a2:67: c4:14:f6:40:7f:1b:22:54:16:b7:06:3d:11:86:a4:8a:69:19: 7e:27:99:84:ce:a2:1c:fd:fc:f5:2c:8e:f8:d7:e3:2a:e2:77: ab:b2:3c:1a:44:49:ed:c5:5c:6a:a7:04:37:fa:e9:b5:3c:6b: 24:d4:96:27:a9:c8:0d:f3:73:ba:84:52:c6:bc:c7:89:19:20: 05:a7:74:30:2b:a1:6c:58:70:31:67:ff:20:71:77:bf:73:e6: 5d:63:aa:4a:74:14:79:b4:a7:57:00:68:91:99:22:51:c4:dd: 3b:8c:85:8e:8e:e2:09:58:21:f1:be:2b:3f:0f:23:ca:cd:86: de:ef:2d:23:97:12:df:56:2b:19:68:db:51:af:09:d9:58:db: ff:f7:0c:34:7d:9f:26:ed:2c:95:f9:95:16:22:ff:e2:f0:dd: 7a:fe:ce:06:d8:8a:19:9e:5f:89:06:9a:10:76:5d:27:f5:3f: e4:18:71:26:33:91:43:fd:41:04:f6:a0:4d:a1:97:df:ee:bc: e1:5e:bf:54:09:90:2d:a1:3e:df:a6:93:ed:3f:8b:1f:bd:09: 40:5a:ef:55 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAy3D2o48aYmgH3GhIygds898okowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUQxQ0JCRTNBMUFCRTFDQTI2NDRDM0UyREY4MzFFRjk5 QjYxQTkwNjAeFw0yNDA3MjkwNzU1MDBaFw0yNTA3MjgwODAwMDBaMDMxMTAvBgNV BAMTKDcwQzA3OUQ2OUJEMjQyNUQ3QjhEM0YyRTU4RUE4MTFCNDhFMkU3RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC87yog1s2LPU0nfKezorTwKN0y PK4Kth43DJ95xl3YyALXqkQv49oDNiB8lv8zhY2jGlHmBHQQXPSw6P2Ng2GWBCPO 2BPTiES0oXQc8g12FrXllEYomems9qACZSiz2aoBCXw95TOfBkjMKTo28kBdfMCF GI1ZHEEFzfI4ooA0a41SVG4VhgMMmi3TfEokHW0qzR7/h6O9wTjQWy6xpRNX5MRb rl8X3P6cbDXol4UtxQ3JMaUJluBmXG/r1rFlsdWWUxX25hJoBiIrBIxwnsxWwecx 8SpZsnpeBIpW+yLzTrXJ3f2cGCvuTfIU0oMP8VkEr+kyLz+zdF8dG3vQDMHFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcMB51pvSQl17jT8uWOqBG0ji5+MwHwYDVR0j BBgwFoAUrRy746Gr4comRMPi34Me+ZthqQYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MzJlOTQ1Yy1lZDNkLTQ4OWEtODNlZC01MDE3MjczZDVhYTUvMC9BRDFDQkJFM0Ex QUJFMUNBMjY0NEMzRTJERjgzMUVGOTlCNjFBOTA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUQxQ0JCRTNBMUFCRTFDQTI2NDRDM0UyREY4MzFFRjk5QjYx QTkwNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzMmU5NDVjLWVkM2QtNDg5YS04 M2VkLTUwMTcyNzNkNWFhNS8wLzMxMzAzMzJlMzMzMTJlMzIzMDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNTM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZx/PMA0GCSqG SIb3DQEBCwUAA4IBAQAS+w50WB2fxdIMpDd/o+L5VHq6gj1AxnVJADZ0ynCbJeTP omfEFPZAfxsiVBa3Bj0RhqSKaRl+J5mEzqIc/fz1LI741+Mq4nersjwaREntxVxq pwQ3+um1PGsk1JYnqcgN83O6hFLGvMeJGSAFp3QwK6FsWHAxZ/8gcXe/c+ZdY6pK dBR5tKdXAGiRmSJRxN07jIWOjuIJWCHxvis/DyPKzYbe7y0jlxLfVisZaNtRrwnZ WNv/9ww0fZ8m7SyV+ZUWIv/i8N16/s4G2IoZnl+JBpoQdl0n9T/kGHEmM5FD/UEE 9qBNoZff7rzhXr9UCZAtoT7fppPtP4sfvQlAWu9V -----END CERTIFICATE-----Generated at Sun Apr 20 12:59:51 2025 by rpki-client