$ rpki-client -vvf repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/3130332e3135352e3139332e302f32342d3234203d3e20313431303639.roa File: 3130332e3135352e3139332e302f32342d3234203d3e20313431303639.roa (raw, json) Hash identifier: RTZAR6JbiE58BH/hJBI7y153wU0F4T3IcaEwpW8e87c= Subject key identifier: 9E:A6:70:42:66:F6:3A:D2:FA:22:73:FC:42:4D:9F:CE:B2:A8:0B:ED Certificate issuer: /CN=98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA Certificate serial: 2BDA4D512CF32966C68C29DAF7F16E106AEB9062 Authority key identifier: 98:FF:48:FF:AD:3C:C9:E9:87:8D:3F:A7:4E:0E:EA:79:CA:13:F0:FA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/3130332e3135352e3139332e302f32342d3234203d3e20313431303639.roa Signing time: Mon 01 Apr 2024 20:00:00 +0000 ROA not before: Mon 01 Apr 2024 19:55:00 +0000 ROA not after: Mon 31 Mar 2025 20:00:00 +0000 asID: 141069 IP address blocks: 103.155.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.crl rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 15:14:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:da:4d:51:2c:f3:29:66:c6:8c:29:da:f7:f1:6e:10:6a:eb:90:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA Validity Not Before: Apr 1 19:55:00 2024 GMT Not After : Mar 31 20:00:00 2025 GMT Subject: CN=9EA6704266F63AD2FA2273FC424D9FCEB2A80BED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3c:c9:92:0a:d5:69:36:b4:23:03:e0:49:a4: ad:a6:09:17:91:2c:a5:92:25:d8:f3:62:1b:1d:8a: 6e:90:3e:11:be:44:19:18:95:d5:16:23:3d:d8:57: 9d:1d:02:61:66:53:25:62:cb:02:46:70:6f:f1:22: 10:10:71:e0:44:17:a1:c4:80:c0:5f:67:b9:6d:23: ae:a8:29:85:f5:05:2a:e5:bf:f4:47:b1:40:bc:ff: 7d:8e:83:2e:21:0c:54:77:1f:08:62:11:b5:05:94: 43:46:01:27:e1:9b:6c:32:1c:d9:ef:51:d5:d9:43: c7:d9:52:3f:d8:f6:42:2e:6e:94:59:37:76:2b:6e: c0:2c:5f:8d:77:e0:3a:eb:d4:e8:8c:43:c1:08:7b: 8f:8b:93:fd:74:ef:b9:e4:c4:f8:26:60:57:bc:13: 01:d8:4c:99:55:f2:09:70:3b:a1:f3:22:ba:88:24: ca:65:c0:72:d8:ec:51:ba:84:ba:27:3d:4b:a3:d9: 02:3e:de:c6:aa:22:6e:10:7b:a1:f2:99:28:db:f1: 3d:cf:4d:4a:24:a6:01:af:14:a7:03:2d:07:20:66: 01:24:ce:ad:0a:cc:d0:9b:2a:fc:71:b7:d7:f2:0e: ec:cd:99:a9:76:cf:bf:9e:2f:ec:00:3e:9d:46:f9: 97:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:A6:70:42:66:F6:3A:D2:FA:22:73:FC:42:4D:9F:CE:B2:A8:0B:ED X509v3 Authority Key Identifier: keyid:98:FF:48:FF:AD:3C:C9:E9:87:8D:3F:A7:4E:0E:EA:79:CA:13:F0:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/3130332e3135352e3139332e302f32342d3234203d3e20313431303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.193.0/24 Signature Algorithm: sha256WithRSAEncryption 93:b1:19:d3:5a:a2:80:8d:ed:29:45:36:82:fc:17:13:df:2a: 20:97:bf:c3:64:46:7f:e6:9e:40:5d:56:a7:98:d9:90:e7:ab: 7c:cd:7f:75:0f:b5:2b:3b:19:0b:9e:93:cd:18:a2:0a:39:0c: 11:d7:53:95:6e:71:08:d9:4b:29:3d:5a:ad:14:24:13:5f:74: 83:37:97:bb:5e:6f:ea:c1:ad:da:d4:04:05:8d:9f:45:ee:d0: bc:6d:0d:70:77:c7:fb:7c:26:17:7e:4b:d3:15:e9:c7:05:26: 34:13:dc:06:15:7f:b8:92:87:08:a9:a9:9b:1e:dc:9c:d1:a0: 66:a4:2f:3d:5a:79:58:32:36:bc:42:57:d9:da:3c:6f:99:52: f5:e4:d1:d9:e7:59:cb:fb:b8:50:81:21:6b:22:e9:3f:33:88: 12:35:69:cc:c0:e5:c7:61:72:12:9e:3d:7d:e9:ae:41:86:16: 27:0d:c9:aa:c6:d5:fd:ca:cb:09:c2:cf:b7:71:d2:50:ec:50: c4:41:fa:8e:55:2f:a6:7a:8e:52:05:63:dc:24:e7:12:f1:1b: 2f:00:4e:59:14:df:19:5b:6f:94:1a:4d:d9:dd:f2:67:db:d6: 45:9b:80:f3:f3:9b:89:90:b2:9f:10:07:ab:bd:0d:f7:6b:35: 0e:84:c6:74 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUK9pNUSzzKWbGjCna9/FuEGrrkGIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOThGRjQ4RkZBRDNDQzlFOTg3OEQzRkE3NEUwRUVBNzlD QTEzRjBGQTAeFw0yNDA0MDExOTU1MDBaFw0yNTAzMzEyMDAwMDBaMDMxMTAvBgNV BAMTKDlFQTY3MDQyNjZGNjNBRDJGQTIyNzNGQzQyNEQ5RkNFQjJBODBCRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmPMmSCtVpNrQjA+BJpK2mCReR LKWSJdjzYhsdim6QPhG+RBkYldUWIz3YV50dAmFmUyViywJGcG/xIhAQceBEF6HE gMBfZ7ltI66oKYX1BSrlv/RHsUC8/32Ogy4hDFR3HwhiEbUFlENGASfhm2wyHNnv UdXZQ8fZUj/Y9kIubpRZN3YrbsAsX4134Drr1OiMQ8EIe4+Lk/1077nkxPgmYFe8 EwHYTJlV8glwO6HzIrqIJMplwHLY7FG6hLonPUuj2QI+3saqIm4Qe6HymSjb8T3P TUokpgGvFKcDLQcgZgEkzq0KzNCbKvxxt9fyDuzNmal2z7+eL+wAPp1G+ZeVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUnqZwQmb2OtL6InP8Qk2fzrKoC+0wHwYDVR0j BBgwFoAUmP9I/608yemHjT+nTg7qecoT8PowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NDUwZDk1Ni05YjAwLTQ2YzEtYTYzMS0zNTY0ZTE4NmEwNzkvMC85OEZGNDhGRkFE M0NDOUU5ODc4RDNGQTc0RTBFRUE3OUNBMTNGMEZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOThGRjQ4RkZBRDNDQzlFOTg3OEQzRkE3NEUwRUVBNzlDQTEz RjBGQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I0NTBkOTU2LTliMDAtNDZjMS1h NjMxLTM1NjRlMTg2YTA3OS8wLzMxMzAzMzJlMzEzNTM1MmUzMTM5MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnm8EwDQYJ KoZIhvcNAQELBQADggEBAJOxGdNaooCN7SlFNoL8FxPfKiCXv8NkRn/mnkBdVqeY 2ZDnq3zNf3UPtSs7GQuek80Yogo5DBHXU5VucQjZSyk9Wq0UJBNfdIM3l7teb+rB rdrUBAWNn0Xu0LxtDXB3x/t8Jhd+S9MV6ccFJjQT3AYVf7iShwipqZse3JzRoGak Lz1aeVgyNrxCV9naPG+ZUvXk0dnnWcv7uFCBIWsi6T8ziBI1aczA5cdhchKePX3p rkGGFicNyarG1f3KywnCz7dx0lDsUMRB+o5VL6Z6jlIFY9wk5xLxGy8ATlkU3xlb b5QaTdnd8mfb1kWbgPPzm4mQsp8QB6u9DfdrNQ6ExnQ= -----END CERTIFICATE-----Generated at Fri Feb 21 11:03:42 2025 by rpki-client