$ rpki-client -vvf repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/3130332e3232362e3233342e302f32342d3234203d3e203539323736.roa File: 3130332e3232362e3233342e302f32342d3234203d3e203539323736.roa (raw, json) Hash identifier: YASd+4IY2ByHOpeWGSgT5aSz1TSDcJWrWxZ8mmmAyH4= Subject key identifier: FA:6B:3C:9A:5D:A7:4F:51:DD:4E:16:D4:1F:81:D1:4D:CE:C3:2B:C4 Certificate issuer: /CN=6319B77FD8EB7EC968DD59FE94AE146A879A74E5 Certificate serial: 39D8D67C6AFD8A6C8E5A52B501DAD522670F5C25 Authority key identifier: 63:19:B7:7F:D8:EB:7E:C9:68:DD:59:FE:94:AE:14:6A:87:9A:74:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/3130332e3232362e3233342e302f32342d3234203d3e203539323736.roa Signing time: Sat 14 Dec 2024 00:07:29 +0000 ROA not before: Sat 14 Dec 2024 00:02:29 +0000 ROA not after: Sat 13 Dec 2025 00:07:29 +0000 asID: 59276 IP address blocks: 103.226.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.crl rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 09:56:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:d8:d6:7c:6a:fd:8a:6c:8e:5a:52:b5:01:da:d5:22:67:0f:5c:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6319B77FD8EB7EC968DD59FE94AE146A879A74E5 Validity Not Before: Dec 14 00:02:29 2024 GMT Not After : Dec 13 00:07:29 2025 GMT Subject: CN=FA6B3C9A5DA74F51DD4E16D41F81D14DCEC32BC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1e:d6:4e:81:19:4c:a9:62:4c:65:dc:74:39: 52:5b:ec:47:04:f6:90:a9:98:3e:9c:70:f8:e2:b6: 6c:28:4a:75:df:38:97:73:f1:52:21:63:3a:75:98: 46:e8:7d:dc:13:4e:fe:74:a7:c2:81:15:b0:47:31: 58:04:ee:ba:1a:6e:e4:69:d6:11:04:6e:61:0a:bb: ba:ec:2b:8b:cf:5b:91:41:4f:7d:77:72:ef:58:cd: dd:21:10:03:7f:b8:91:8a:40:e2:f9:c6:0c:89:78: 2d:dd:26:d6:e7:52:02:f9:b3:81:76:52:a3:84:9a: ea:e2:b2:72:0a:bc:73:bd:42:24:3c:f3:52:cd:ec: dc:bf:7f:a2:fa:ca:2c:8c:bc:4c:78:e2:bb:2e:87: 87:78:7d:76:35:2e:09:fa:c0:52:62:f3:94:e5:a6: 22:65:7f:ff:01:d7:47:e0:b4:82:a7:07:02:12:fc: 87:cd:dd:f1:18:df:6f:31:a5:7c:52:4c:a4:d2:49: a1:a4:44:8f:b7:35:6d:d3:26:9c:73:f0:bd:51:89: f1:65:f8:fe:d9:02:c3:39:67:2c:a2:0c:bc:57:22: 46:5a:fe:72:03:09:88:c4:b7:ae:70:ee:86:d7:fa: 74:93:8b:d7:ed:a1:9d:79:97:b4:4a:68:84:63:fe: 03:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:6B:3C:9A:5D:A7:4F:51:DD:4E:16:D4:1F:81:D1:4D:CE:C3:2B:C4 X509v3 Authority Key Identifier: keyid:63:19:B7:7F:D8:EB:7E:C9:68:DD:59:FE:94:AE:14:6A:87:9A:74:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/3130332e3232362e3233342e302f32342d3234203d3e203539323736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.226.234.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:ad:f5:83:ed:35:6b:ea:6f:ea:f7:52:9d:a4:2a:b0:e0:c7: 63:fa:9b:b2:e0:2c:83:ed:85:a7:47:26:be:eb:fa:82:65:d4: 1e:1b:ed:ec:c7:b3:e9:45:84:60:9f:0b:38:0d:bf:73:b5:eb: bc:e2:05:e4:e2:52:ce:cb:c2:87:ee:3a:19:60:46:6b:c6:e8: 3d:25:50:ff:5c:22:d9:a6:0d:91:ef:e7:af:22:e6:e4:88:fa: 07:74:d4:cb:4a:97:29:ec:59:46:05:7d:aa:0e:9b:e0:dd:2c: 3c:54:ed:a5:31:13:24:f4:fd:55:60:dc:75:49:52:20:d6:c6: ad:a2:b2:64:91:6a:1a:cc:b8:29:23:d2:f8:0f:35:60:e8:14: ec:f5:17:12:46:4f:4c:96:02:fa:aa:a3:a6:4a:1f:87:65:5d: 75:c0:c3:d8:01:21:02:dc:10:28:5b:57:78:f6:d8:df:96:2b: 75:0d:cc:3d:fa:73:70:6d:9b:cd:41:0e:ee:9a:1b:48:cc:d4: c1:80:76:e8:c6:51:dd:91:73:e1:6b:84:5b:66:fe:0a:c2:29: f1:c8:eb:80:54:a5:a0:ea:96:aa:0f:db:ae:85:37:a6:73:28: 70:bd:f0:9f:47:0a:df:22:73:9e:03:1a:35:2c:e4:a1:62:a5: 2f:4b:e7:27 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOdjWfGr9imyOWlK1AdrVImcPXCUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjMxOUI3N0ZEOEVCN0VDOTY4REQ1OUZFOTRBRTE0NkE4 NzlBNzRFNTAeFw0yNDEyMTQwMDAyMjlaFw0yNTEyMTMwMDA3MjlaMDMxMTAvBgNV BAMTKEZBNkIzQzlBNURBNzRGNTFERDRFMTZENDFGODFEMTREQ0VDMzJCQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5HtZOgRlMqWJMZdx0OVJb7EcE 9pCpmD6ccPjitmwoSnXfOJdz8VIhYzp1mEbofdwTTv50p8KBFbBHMVgE7roabuRp 1hEEbmEKu7rsK4vPW5FBT313cu9Yzd0hEAN/uJGKQOL5xgyJeC3dJtbnUgL5s4F2 UqOEmurisnIKvHO9QiQ881LN7Ny/f6L6yiyMvEx44rsuh4d4fXY1Lgn6wFJi85Tl piJlf/8B10fgtIKnBwIS/IfN3fEY328xpXxSTKTSSaGkRI+3NW3TJpxz8L1RifFl +P7ZAsM5ZyyiDLxXIkZa/nIDCYjEt65w7obX+nSTi9ftoZ15l7RKaIRj/gOBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+ms8ml2nT1HdThbUH4HRTc7DK8QwHwYDVR0j BBgwFoAUYxm3f9jrfslo3Vn+lK4UaoeadOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZjU0MmJjNC03NGRjLTQ1ZGQtYjY1OS03NDVjYTJhY2EzMzMvMC82MzE5Qjc3RkQ4 RUI3RUM5NjhERDU5RkU5NEFFMTQ2QTg3OUE3NEU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjMxOUI3N0ZEOEVCN0VDOTY4REQ1OUZFOTRBRTE0NkE4NzlB NzRFNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JmNTQyYmM0LTc0ZGMtNDVkZC1i NjU5LTc0NWNhMmFjYTMzMy8wLzMxMzAzMzJlMzIzMjM2MmUzMjMzMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzIzNzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+LqMA0GCSqG SIb3DQEBCwUAA4IBAQCerfWD7TVr6m/q91KdpCqw4Mdj+puy4CyD7YWnRya+6/qC ZdQeG+3sx7PpRYRgnws4Db9zteu84gXk4lLOy8KH7joZYEZrxug9JVD/XCLZpg2R 7+evIubkiPoHdNTLSpcp7FlGBX2qDpvg3Sw8VO2lMRMk9P1VYNx1SVIg1satorJk kWoazLgpI9L4DzVg6BTs9RcSRk9MlgL6qqOmSh+HZV11wMPYASEC3BAoW1d49tjf lit1Dcw9+nNwbZvNQQ7umhtIzNTBgHboxlHdkXPha4RbZv4KwinxyOuAVKWg6paq D9uuhTemcyhwvfCfRwrfInOeAxo1LOShYqUvS+cn -----END CERTIFICATE-----Generated at Sun Apr 6 15:58:09 2025 by rpki-client