$ rpki-client -vvf repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/3130332e3135352e3139322e302f32332d3233203d3e20313431303639.roa File: 3130332e3135352e3139322e302f32332d3233203d3e20313431303639.roa (raw, json) Hash identifier: i2QCdpwtS3jBNeMNy+5WyOIAyyTfGeaRUbzY0Zs+J+w= Subject key identifier: 11:1D:39:F3:96:07:0B:41:F6:14:43:B3:76:08:1D:0A:77:08:9A:B1 Certificate issuer: /CN=98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA Certificate serial: 2A7017407C2967D8921D742C63745136EB3E6145 Authority key identifier: 98:FF:48:FF:AD:3C:C9:E9:87:8D:3F:A7:4E:0E:EA:79:CA:13:F0:FA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/3130332e3135352e3139322e302f32332d3233203d3e20313431303639.roa Signing time: Mon 13 May 2024 17:00:00 +0000 ROA not before: Mon 13 May 2024 16:55:00 +0000 ROA not after: Mon 12 May 2025 17:00:00 +0000 asID: 141069 IP address blocks: 103.155.192.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.crl rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 15:14:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:70:17:40:7c:29:67:d8:92:1d:74:2c:63:74:51:36:eb:3e:61:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA Validity Not Before: May 13 16:55:00 2024 GMT Not After : May 12 17:00:00 2025 GMT Subject: CN=111D39F396070B41F61443B376081D0A77089AB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:cc:21:e4:c5:85:f3:d6:a6:14:1e:8e:85:ba: 39:85:c1:45:fb:36:d5:09:46:9e:2f:18:f2:c3:58: 22:97:f7:84:29:9b:95:3f:ca:9a:0d:30:9e:d3:65: 58:29:5b:e8:93:91:87:65:a2:9b:02:f6:44:7d:ae: e9:28:59:86:02:9f:42:bb:5e:2a:99:3e:5a:d6:a4: cf:a7:0f:3e:71:e6:7f:3c:24:bd:3f:fc:b4:f1:58: dc:1a:b4:a1:0c:6b:63:52:29:48:52:63:8b:82:ed: e0:bb:df:af:5f:e8:30:4f:ea:63:c4:9a:1d:e8:6e: e9:13:b8:2c:41:96:2b:54:05:cc:b3:92:79:ef:2c: 63:24:8d:c7:5c:36:6e:20:59:2a:b4:d1:19:c7:f5: 65:97:0e:ed:d5:20:c5:f4:d5:75:b2:62:20:78:39: cc:b1:04:c7:2e:83:ad:6d:e6:06:95:f5:e1:fb:f5: 9a:9f:0d:d1:fd:da:ae:5a:77:6d:74:13:44:48:48: ad:d7:07:95:6a:5d:06:35:75:4c:2a:2f:51:87:91: 65:2b:ff:23:af:e8:d5:32:67:7f:5f:57:96:04:f5: ba:52:c8:3c:00:f2:38:a0:e9:52:a1:79:dc:7d:c2: 4f:8e:b8:4d:74:96:b4:e8:99:f0:a5:4e:c4:bc:af: 54:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:1D:39:F3:96:07:0B:41:F6:14:43:B3:76:08:1D:0A:77:08:9A:B1 X509v3 Authority Key Identifier: keyid:98:FF:48:FF:AD:3C:C9:E9:87:8D:3F:A7:4E:0E:EA:79:CA:13:F0:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/3130332e3135352e3139322e302f32332d3233203d3e20313431303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.192.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:71:bb:27:ee:54:f0:46:0b:0e:14:81:3a:3a:b4:7a:1f:6d: e8:0c:67:f6:bc:e6:26:2b:52:b8:03:c4:7d:a3:31:f2:34:02: 19:8e:d7:39:f1:a5:eb:bd:b1:42:50:20:a6:3d:6e:ef:fe:16: 35:9c:0c:38:bf:9f:7f:4f:55:57:29:72:d9:ce:bf:3b:2d:63: 87:c2:b9:df:26:4a:47:70:67:f6:03:26:4f:bf:1b:be:ae:28: 59:9b:ba:bb:7f:00:94:bc:07:6e:42:66:9d:06:7c:be:6b:af: f7:2f:75:61:4b:09:89:8c:c8:02:39:37:4a:f6:ed:e2:8c:f7: 41:e2:86:1e:54:f1:d8:a3:7a:09:b1:5e:fb:93:5b:a4:60:51: 03:47:00:35:71:e6:b9:3e:c0:3d:5c:5b:06:f9:5e:03:33:b4: 14:f4:c4:29:d1:64:29:66:f4:a7:e0:ad:49:d4:f5:ff:c3:a7: ed:fb:1f:5a:cf:af:40:e9:d7:a3:04:02:aa:fd:ec:1d:95:cd: 33:cc:95:32:74:f1:f9:bd:ce:e9:f6:9e:b4:dc:c0:3b:65:75: e7:3a:4e:d5:a5:1f:86:50:bf:ef:74:b9:c3:16:c0:04:fa:41: 36:74:a5:43:ed:c1:f3:82:a9:94:a3:4a:2c:a1:a6:57:bd:2a: 91:15:2e:d5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKnAXQHwpZ9iSHXQsY3RRNus+YUUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOThGRjQ4RkZBRDNDQzlFOTg3OEQzRkE3NEUwRUVBNzlD QTEzRjBGQTAeFw0yNDA1MTMxNjU1MDBaFw0yNTA1MTIxNzAwMDBaMDMxMTAvBgNV BAMTKDExMUQzOUYzOTYwNzBCNDFGNjE0NDNCMzc2MDgxRDBBNzcwODlBQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCzCHkxYXz1qYUHo6FujmFwUX7 NtUJRp4vGPLDWCKX94Qpm5U/ypoNMJ7TZVgpW+iTkYdlopsC9kR9rukoWYYCn0K7 XiqZPlrWpM+nDz5x5n88JL0//LTxWNwatKEMa2NSKUhSY4uC7eC7369f6DBP6mPE mh3obukTuCxBlitUBcyzknnvLGMkjcdcNm4gWSq00RnH9WWXDu3VIMX01XWyYiB4 OcyxBMcug61t5gaV9eH79ZqfDdH92q5ad210E0RISK3XB5VqXQY1dUwqL1GHkWUr /yOv6NUyZ39fV5YE9bpSyDwA8jig6VKhedx9wk+OuE10lrTomfClTsS8r1TVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUER0585YHC0H2FEOzdggdCncImrEwHwYDVR0j BBgwFoAUmP9I/608yemHjT+nTg7qecoT8PowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NDUwZDk1Ni05YjAwLTQ2YzEtYTYzMS0zNTY0ZTE4NmEwNzkvMC85OEZGNDhGRkFE M0NDOUU5ODc4RDNGQTc0RTBFRUE3OUNBMTNGMEZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOThGRjQ4RkZBRDNDQzlFOTg3OEQzRkE3NEUwRUVBNzlDQTEz RjBGQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I0NTBkOTU2LTliMDAtNDZjMS1h NjMxLTM1NjRlMTg2YTA3OS8wLzMxMzAzMzJlMzEzNTM1MmUzMTM5MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzMDM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnm8AwDQYJ KoZIhvcNAQELBQADggEBAG1xuyfuVPBGCw4UgTo6tHofbegMZ/a85iYrUrgDxH2j MfI0AhmO1znxpeu9sUJQIKY9bu/+FjWcDDi/n39PVVcpctnOvzstY4fCud8mSkdw Z/YDJk+/G76uKFmburt/AJS8B25CZp0GfL5rr/cvdWFLCYmMyAI5N0r27eKM90Hi hh5U8dijegmxXvuTW6RgUQNHADVx5rk+wD1cWwb5XgMztBT0xCnRZClm9KfgrUnU 9f/Dp+37H1rPr0Dp16MEAqr97B2VzTPMlTJ08fm9zun2nrTcwDtldec6TtWlH4ZQ v+90ucMWwAT6QTZ0pUPtwfOCqZSjSiyhple9KpEVLtU= -----END CERTIFICATE-----Generated at Fri Feb 21 11:01:01 2025 by rpki-client