$ rpki-client -vvf repo-rpki.idnic.net/repo/b377461d-fe4f-4961-92e5-9655af25754a/0/3130332e3132312e39382e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e39382e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: Vt+xMHjG5YTpxuui1w1X3tQR1voBOHb2VX4CdiVJNBs= Subject key identifier: 58:C0:B4:D7:67:EC:4F:0D:D8:2B:D5:CE:AF:D0:B6:C6:FC:07:D2:A8 Certificate issuer: /CN=AE12581F3D20A87088DAAE24374CC2D8FE34FA12 Certificate serial: 348A4F3C3F1E8B2AE9E2FCDDE50BF45EE2B04BE5 Authority key identifier: AE:12:58:1F:3D:20:A8:70:88:DA:AE:24:37:4C:C2:D8:FE:34:FA:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE12581F3D20A87088DAAE24374CC2D8FE34FA12.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b377461d-fe4f-4961-92e5-9655af25754a/0/3130332e3132312e39382e302f32332d3234203d3e20313335343738.roa Signing time: Wed 04 Dec 2024 05:02:34 +0000 ROA not before: Wed 04 Dec 2024 04:57:34 +0000 ROA not after: Wed 03 Dec 2025 05:02:34 +0000 asID: 135478 IP address blocks: 103.121.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b377461d-fe4f-4961-92e5-9655af25754a/0/AE12581F3D20A87088DAAE24374CC2D8FE34FA12.crl rsync://repo-rpki.idnic.net/repo/b377461d-fe4f-4961-92e5-9655af25754a/0/AE12581F3D20A87088DAAE24374CC2D8FE34FA12.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE12581F3D20A87088DAAE24374CC2D8FE34FA12.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:41:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:8a:4f:3c:3f:1e:8b:2a:e9:e2:fc:dd:e5:0b:f4:5e:e2:b0:4b:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE12581F3D20A87088DAAE24374CC2D8FE34FA12 Validity Not Before: Dec 4 04:57:34 2024 GMT Not After : Dec 3 05:02:34 2025 GMT Subject: CN=58C0B4D767EC4F0DD82BD5CEAFD0B6C6FC07D2A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:6c:bd:12:33:30:0a:3c:6c:11:3b:c2:9c:fb: f2:62:0b:1f:3b:52:9c:03:5d:60:a2:d8:15:e0:bb: dd:e6:1b:ac:9d:b6:fc:fe:22:b0:53:d6:33:76:ae: 94:c8:a4:be:ce:ae:ca:f0:8b:0c:58:80:a2:f7:b6: 2c:5b:6f:8d:18:24:02:4d:6b:03:a6:3e:47:49:cb: 86:c4:30:66:0d:fb:00:b9:4e:63:ec:31:b0:9d:30: 20:29:a4:8d:f4:4a:d2:03:d8:4d:f0:18:51:84:9a: 93:33:7e:1b:96:14:a9:d5:84:25:ef:49:3f:69:35: 5b:18:19:89:f1:bf:5e:f3:1f:47:f3:03:9c:9b:9c: 65:5e:0f:63:2b:ed:81:34:ae:7a:62:25:da:0e:26: a0:78:65:cf:df:cd:cc:59:34:fc:86:0e:5d:7f:b2: ec:58:4f:82:dc:cb:4b:62:8a:c8:f9:90:dd:9c:84: 8c:c5:75:30:d1:44:54:67:5e:9b:de:9f:c8:09:b9: 9b:b0:d1:77:61:61:2c:20:f0:dd:81:0d:a8:99:d0: e9:a5:66:da:07:0c:f8:4a:3d:9e:d4:72:94:32:22: 72:44:d0:7c:6e:c1:d1:e3:1c:9d:2e:21:e2:63:96: f9:09:7e:15:96:d7:3a:26:e5:6a:81:18:62:e7:e6: d4:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:C0:B4:D7:67:EC:4F:0D:D8:2B:D5:CE:AF:D0:B6:C6:FC:07:D2:A8 X509v3 Authority Key Identifier: keyid:AE:12:58:1F:3D:20:A8:70:88:DA:AE:24:37:4C:C2:D8:FE:34:FA:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b377461d-fe4f-4961-92e5-9655af25754a/0/AE12581F3D20A87088DAAE24374CC2D8FE34FA12.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE12581F3D20A87088DAAE24374CC2D8FE34FA12.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b377461d-fe4f-4961-92e5-9655af25754a/0/3130332e3132312e39382e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.98.0/23 Signature Algorithm: sha256WithRSAEncryption 97:32:ac:b8:49:fb:96:f9:04:37:32:c9:88:bd:d3:3b:e3:13: 41:4b:5f:5b:06:ef:37:bb:20:36:d2:f6:f0:56:6f:82:ba:06: 3d:79:30:35:d4:93:c3:cb:1e:3a:b5:65:48:49:8d:61:82:08: 2d:3d:8e:9c:96:d5:71:3d:10:f6:16:b0:f9:a2:dd:a6:85:a1: bc:96:e0:31:51:cf:71:53:8f:60:92:d2:96:5e:0d:bd:00:96: dd:d4:7a:43:7d:51:a0:23:43:c9:46:b3:3b:a6:43:8b:6c:b6: 0b:8a:50:a0:7c:39:8f:1f:17:0d:b5:23:e7:55:d6:47:e3:c3: 15:52:e5:2d:49:d8:f8:a5:88:05:fd:72:ab:ed:bf:b1:44:5b: 56:a8:72:d4:63:37:7a:97:64:3a:3e:54:16:34:42:2c:3f:5b: 91:e7:4f:92:76:b5:1a:8e:ef:40:0c:f5:51:d8:ac:ce:f0:19: 37:1e:6b:d0:db:c0:93:60:64:b4:54:b8:29:1a:38:9a:97:11: 24:24:f6:13:dd:26:29:50:3f:72:ec:c8:2c:c9:ca:95:2a:05: aa:10:a8:e2:be:cf:0b:e2:8f:58:37:29:c0:08:f9:7b:cc:7c: ac:1b:fe:a1:36:f4:f1:97:81:fd:af:01:99:61:67:f5:79:ca: b1:ba:e9:7d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNIpPPD8eiyrp4vzd5Qv0XuKwS+UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUUxMjU4MUYzRDIwQTg3MDg4REFBRTI0Mzc0Q0MyRDhG RTM0RkExMjAeFw0yNDEyMDQwNDU3MzRaFw0yNTEyMDMwNTAyMzRaMDMxMTAvBgNV BAMTKDU4QzBCNEQ3NjdFQzRGMEREODJCRDVDRUFGRDBCNkM2RkMwN0QyQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUbL0SMzAKPGwRO8Kc+/JiCx87 UpwDXWCi2BXgu93mG6ydtvz+IrBT1jN2rpTIpL7OrsrwiwxYgKL3tixbb40YJAJN awOmPkdJy4bEMGYN+wC5TmPsMbCdMCAppI30StID2E3wGFGEmpMzfhuWFKnVhCXv ST9pNVsYGYnxv17zH0fzA5ybnGVeD2Mr7YE0rnpiJdoOJqB4Zc/fzcxZNPyGDl1/ suxYT4Lcy0tiisj5kN2chIzFdTDRRFRnXpven8gJuZuw0XdhYSwg8N2BDaiZ0Oml ZtoHDPhKPZ7UcpQyInJE0HxuwdHjHJ0uIeJjlvkJfhWW1zom5WqBGGLn5tQTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWMC012fsTw3YK9XOr9C2xvwH0qgwHwYDVR0j BBgwFoAUrhJYHz0gqHCI2q4kN0zC2P40+hIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i Mzc3NDYxZC1mZTRmLTQ5NjEtOTJlNS05NjU1YWYyNTc1NGEvMC9BRTEyNTgxRjNE MjBBODcwODhEQUFFMjQzNzRDQzJEOEZFMzRGQTEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUUxMjU4MUYzRDIwQTg3MDg4REFBRTI0Mzc0Q0MyRDhGRTM0 RkExMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzNzc0NjFkLWZlNGYtNDk2MS05 MmU1LTk2NTVhZjI1NzU0YS8wLzMxMzAzMzJlMzEzMjMxMmUzOTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ3liMA0GCSqG SIb3DQEBCwUAA4IBAQCXMqy4SfuW+QQ3MsmIvdM74xNBS19bBu83uyA20vbwVm+C ugY9eTA11JPDyx46tWVISY1hgggtPY6cltVxPRD2FrD5ot2mhaG8luAxUc9xU49g ktKWXg29AJbd1HpDfVGgI0PJRrM7pkOLbLYLilCgfDmPHxcNtSPnVdZH48MVUuUt Sdj4pYgF/XKr7b+xRFtWqHLUYzd6l2Q6PlQWNEIsP1uR50+SdrUaju9ADPVR2KzO 8Bk3HmvQ28CTYGS0VLgpGjialxEkJPYT3SYpUD9y7MgsycqVKgWqEKjivs8L4o9Y NynACPl7zHysG/6hNvTxl4H9rwGZYWf1ecqxuul9 -----END CERTIFICATE-----Generated at Sun Apr 6 17:57:32 2025 by rpki-client