$ rpki-client -vvf repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/3130332e32332e3134312e302f32342d3234203d3e203538343031.roa File: 3130332e32332e3134312e302f32342d3234203d3e203538343031.roa (raw, json) Hash identifier: bpnf9mBeGfx0zt+1Xl1UCMlQaKI1ja3sTK62Yd2Fvec= Subject key identifier: 96:A0:48:CE:8A:D3:C3:2A:42:A5:8E:48:BB:3D:A8:07:5F:69:C8:78 Certificate issuer: /CN=019C4E26EEC252EA61FBB09FD856CDD057CEAD8C Certificate serial: 532BB7A8F0852EA51089F57EDE0D21C640E192B4 Authority key identifier: 01:9C:4E:26:EE:C2:52:EA:61:FB:B0:9F:D8:56:CD:D0:57:CE:AD:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/3130332e32332e3134312e302f32342d3234203d3e203538343031.roa Signing time: Wed 04 Dec 2024 09:03:11 +0000 ROA not before: Wed 04 Dec 2024 08:58:11 +0000 ROA not after: Wed 03 Dec 2025 09:03:11 +0000 asID: 58401 IP address blocks: 103.23.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.crl rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:2b:b7:a8:f0:85:2e:a5:10:89:f5:7e:de:0d:21:c6:40:e1:92:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=019C4E26EEC252EA61FBB09FD856CDD057CEAD8C Validity Not Before: Dec 4 08:58:11 2024 GMT Not After : Dec 3 09:03:11 2025 GMT Subject: CN=96A048CE8AD3C32A42A58E48BB3DA8075F69C878 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:38:3b:97:44:40:4c:1e:6f:9d:56:6a:5d:85: e2:f9:08:91:da:9e:40:e5:fc:be:d4:11:75:d5:1c: 2d:96:eb:60:5e:28:ff:98:88:d2:bd:61:58:13:05: e5:a5:10:b2:ed:8d:53:85:f9:08:7d:75:d5:86:99: 27:4f:17:50:4f:85:3f:ac:bf:e6:c3:fe:92:be:a6: fe:76:f4:eb:e0:7e:30:da:27:1c:91:aa:52:75:a4: 87:6a:7b:55:11:5b:9f:c4:20:fb:20:f2:b7:38:84: 80:a4:29:58:8d:46:57:79:1b:9a:ac:dd:92:b5:7d: 70:0f:09:b5:ed:b1:09:11:45:7a:f4:f2:98:36:33: 3a:f3:76:20:61:83:2b:5e:fc:20:9d:7c:96:db:4c: ae:84:8a:8f:4b:00:7c:38:e4:e4:69:8d:44:ee:33: 83:14:72:be:0c:91:9a:f3:cd:6a:18:87:ac:32:e7: 4f:1e:24:ce:ac:18:cb:b0:22:17:6e:57:0c:33:cd: 8e:3c:0e:f2:0b:94:be:4b:3d:71:7d:5d:32:1f:05: 82:8b:f0:23:fe:c0:2f:0b:59:b3:19:83:0b:97:88: 74:1c:70:b5:a9:c9:88:74:c1:b9:d5:ec:bd:30:bf: cf:07:19:76:ec:c0:26:cf:c8:50:33:9c:83:11:0e: 19:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:A0:48:CE:8A:D3:C3:2A:42:A5:8E:48:BB:3D:A8:07:5F:69:C8:78 X509v3 Authority Key Identifier: keyid:01:9C:4E:26:EE:C2:52:EA:61:FB:B0:9F:D8:56:CD:D0:57:CE:AD:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/3130332e32332e3134312e302f32342d3234203d3e203538343031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.23.141.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:df:a2:21:af:d4:db:08:5d:5b:65:a4:0b:9f:d1:e8:c4:9a: 73:0a:5e:cf:25:98:20:3f:22:0f:18:9c:27:53:2c:68:5a:b4: f1:47:98:0d:2c:d0:e4:eb:f2:1c:a6:ec:0f:84:2f:10:58:e7: 18:09:6a:e5:d7:3c:04:f5:de:61:e3:5a:d9:d2:d0:8e:43:72: 70:36:ec:04:46:28:0a:2e:cc:be:7f:b4:7e:ce:eb:2b:ab:1c: b9:60:db:a3:0c:19:9c:50:e8:12:4f:c5:53:a1:72:9b:d0:9d: 35:af:bb:d0:bb:c5:ec:3a:c6:36:01:7f:18:c8:90:c8:f1:28: e7:33:ea:0c:52:05:ba:35:d0:4b:5d:93:c6:1f:e0:c0:54:d6: 70:91:2a:49:d2:d2:31:6e:ab:24:83:8a:d6:dd:22:36:f5:66: 49:4e:6c:75:6d:0b:89:85:b7:d5:da:85:6c:6e:e4:67:29:6a: 32:32:c8:72:0b:fb:3d:4a:45:84:d6:8f:f5:09:2e:6a:16:77: 45:10:f9:2d:5e:51:eb:11:bb:f6:f3:07:d3:16:c5:7a:57:2e: e2:8a:4c:f8:5f:ca:8a:d0:8e:cf:23:1a:fd:4a:f1:2d:ed:20: a9:98:4a:92:0e:d4:32:f4:1c:47:34:ce:90:4e:41:8f:ae:50: 61:8f:4e:8d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUyu3qPCFLqUQifV+3g0hxkDhkrQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE5QzRFMjZFRUMyNTJFQTYxRkJCMDlGRDg1NkNERDA1 N0NFQUQ4QzAeFw0yNDEyMDQwODU4MTFaFw0yNTEyMDMwOTAzMTFaMDMxMTAvBgNV BAMTKDk2QTA0OENFOEFEM0MzMkE0MkE1OEU0OEJCM0RBODA3NUY2OUM4NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKODuXREBMHm+dVmpdheL5CJHa nkDl/L7UEXXVHC2W62BeKP+YiNK9YVgTBeWlELLtjVOF+Qh9ddWGmSdPF1BPhT+s v+bD/pK+pv529OvgfjDaJxyRqlJ1pIdqe1URW5/EIPsg8rc4hICkKViNRld5G5qs 3ZK1fXAPCbXtsQkRRXr08pg2MzrzdiBhgyte/CCdfJbbTK6Eio9LAHw45ORpjUTu M4MUcr4MkZrzzWoYh6wy508eJM6sGMuwIhduVwwzzY48DvILlL5LPXF9XTIfBYKL 8CP+wC8LWbMZgwuXiHQccLWpyYh0wbnV7L0wv88HGXbswCbPyFAznIMRDhnNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUlqBIzorTwypCpY5Iuz2oB19pyHgwHwYDVR0j BBgwFoAUAZxOJu7CUuph+7Cf2FbN0FfOrYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDVjNDcxNS0yODJlLTQ1N2YtYjg5ZS0wNDFiZjkxMTBhZjgvMC8wMTlDNEUyNkVF QzI1MkVBNjFGQkIwOUZEODU2Q0REMDU3Q0VBRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDE5QzRFMjZFRUMyNTJFQTYxRkJCMDlGRDg1NkNERDA1N0NF QUQ4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkNWM0NzE1LTI4MmUtNDU3Zi1i ODllLTA0MWJmOTExMGFmOC8wLzMxMzAzMzJlMzIzMzJlMzEzNDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzAzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcXjTANBgkqhkiG 9w0BAQsFAAOCAQEAj9+iIa/U2whdW2WkC5/R6MSacwpezyWYID8iDxicJ1MsaFq0 8UeYDSzQ5OvyHKbsD4QvEFjnGAlq5dc8BPXeYeNa2dLQjkNycDbsBEYoCi7Mvn+0 fs7rK6scuWDbowwZnFDoEk/FU6Fym9CdNa+70LvF7DrGNgF/GMiQyPEo5zPqDFIF ujXQS12Txh/gwFTWcJEqSdLSMW6rJIOK1t0iNvVmSU5sdW0LiYW31dqFbG7kZylq MjLIcgv7PUpFhNaP9QkuahZ3RRD5LV5R6xG79vMH0xbFelcu4opM+F/KitCOzyMa /UrxLe0gqZhKkg7UMvQcRzTOkE5Bj65QYY9OjQ== -----END CERTIFICATE-----Generated at Thu Apr 17 01:15:29 2025 by rpki-client