$ rpki-client -vvf repo-rpki.idnic.net/repo/c80dde94-e5be-4d29-bb12-45fb5c1d2c79/0/3130332e3232322e3235342e302f32342d3234203d3e20313531303131.roa File: 3130332e3232322e3235342e302f32342d3234203d3e20313531303131.roa (raw, json) Hash identifier: 4R0ewsQUFLUVyE7+RSBY5nMwWIm0sLWkA4V0ZrdAVrk= Subject key identifier: F4:86:6B:56:E2:F8:F0:89:2D:25:FE:69:46:63:03:CE:F7:5C:79:E3 Certificate issuer: /CN=744F97E1DF1BD6D37E6C2EA8F02C088498F43323 Certificate serial: 6E4DB66F88795B88A533BE5327FD1CC1C8EC2828 Authority key identifier: 74:4F:97:E1:DF:1B:D6:D3:7E:6C:2E:A8:F0:2C:08:84:98:F4:33:23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/744F97E1DF1BD6D37E6C2EA8F02C088498F43323.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c80dde94-e5be-4d29-bb12-45fb5c1d2c79/0/3130332e3232322e3235342e302f32342d3234203d3e20313531303131.roa Signing time: Tue 10 Dec 2024 14:00:00 +0000 ROA not before: Tue 10 Dec 2024 13:55:00 +0000 ROA not after: Tue 09 Dec 2025 14:00:00 +0000 asID: 151011 IP address blocks: 103.222.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c80dde94-e5be-4d29-bb12-45fb5c1d2c79/0/744F97E1DF1BD6D37E6C2EA8F02C088498F43323.crl rsync://repo-rpki.idnic.net/repo/c80dde94-e5be-4d29-bb12-45fb5c1d2c79/0/744F97E1DF1BD6D37E6C2EA8F02C088498F43323.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/744F97E1DF1BD6D37E6C2EA8F02C088498F43323.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 19:26:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:4d:b6:6f:88:79:5b:88:a5:33:be:53:27:fd:1c:c1:c8:ec:28:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=744F97E1DF1BD6D37E6C2EA8F02C088498F43323 Validity Not Before: Dec 10 13:55:00 2024 GMT Not After : Dec 9 14:00:00 2025 GMT Subject: CN=F4866B56E2F8F0892D25FE69466303CEF75C79E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b7:a4:ba:2b:d6:4c:2f:31:3e:de:5e:c6:33: cb:61:a9:6e:a8:c2:be:17:3c:0d:f5:23:15:f7:a4: 60:c0:9f:8b:50:cb:ae:68:61:95:dc:e6:ce:af:37: 48:fa:21:8e:b4:95:58:55:c1:51:ab:d3:f9:40:88: 0b:c5:5f:ba:fe:b5:9c:6d:dd:1f:46:37:73:fc:5c: ad:c8:eb:45:34:20:8b:e6:66:bc:85:9f:ce:f8:dc: 35:bb:a0:1e:90:2a:26:a8:f2:43:c7:99:b4:9b:23: f9:4d:da:a8:9e:ca:8a:bb:23:9a:df:fd:73:71:54: 60:1a:2b:ef:d5:53:2c:69:2f:3e:d7:5d:ec:c9:da: 9e:61:84:40:71:4b:fd:36:a5:d9:2f:69:1a:8e:f5: 96:47:43:6c:69:ba:6b:b9:b8:85:47:f2:4f:89:4c: bb:b5:47:e0:91:38:80:15:a6:05:1a:30:5d:b0:98: d6:85:08:a8:de:ea:4f:cb:84:11:ce:5e:0d:75:0e: 0e:31:ac:2b:2b:65:40:c3:2b:a4:b3:45:48:e3:dd: 5f:51:cd:72:90:c6:68:55:c1:74:8e:9c:03:23:b0: a6:31:c0:81:10:d0:9a:b9:38:af:62:5c:02:79:05: 45:28:d2:b3:fb:45:24:12:7d:c6:e7:e4:6d:04:a9: 7b:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:86:6B:56:E2:F8:F0:89:2D:25:FE:69:46:63:03:CE:F7:5C:79:E3 X509v3 Authority Key Identifier: keyid:74:4F:97:E1:DF:1B:D6:D3:7E:6C:2E:A8:F0:2C:08:84:98:F4:33:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c80dde94-e5be-4d29-bb12-45fb5c1d2c79/0/744F97E1DF1BD6D37E6C2EA8F02C088498F43323.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/744F97E1DF1BD6D37E6C2EA8F02C088498F43323.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c80dde94-e5be-4d29-bb12-45fb5c1d2c79/0/3130332e3232322e3235342e302f32342d3234203d3e20313531303131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.222.254.0/24 Signature Algorithm: sha256WithRSAEncryption 48:16:03:cb:7a:cc:2c:87:a6:b5:69:2a:71:8d:64:95:00:46: f2:3c:d3:80:c8:54:29:e8:47:3c:fa:0f:09:5f:51:78:43:ab: de:ca:bd:13:ba:04:e6:8c:64:ef:d2:fd:e8:16:62:2d:ab:6a: ee:bd:32:5a:9d:84:0b:62:85:6e:5d:43:b6:7f:c8:a6:4c:47: 2b:4e:6e:d7:e6:78:07:db:aa:8d:27:b4:80:48:39:b0:25:77: 64:37:cf:d3:6b:e0:ca:ab:1c:1d:d9:04:d2:76:6c:df:53:48: 01:92:7c:0d:9e:41:94:f8:03:a1:dd:62:e4:0c:a9:7f:48:a4: c2:20:12:c9:48:48:99:03:dd:e6:6a:2d:f6:b7:08:47:2b:91: 4d:0f:07:11:c1:67:2c:75:31:a8:1f:18:6c:95:90:20:e6:72: b1:a2:9d:1c:24:96:e4:55:57:ce:4c:d2:49:ff:cb:0a:4f:b6: 35:df:cc:8b:cb:a4:9d:a1:5a:0b:41:33:37:5f:df:aa:05:13: 2d:e0:3c:32:43:23:a8:17:b5:eb:68:de:4f:d4:7d:32:c1:9e: b7:73:5e:60:50:1c:17:e0:81:0b:88:a0:5f:0d:53:aa:58:2d: d0:f9:83:aa:7c:a6:02:5f:cb:78:24:c1:03:17:36:85:00:ae: 84:21:a9:93 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbk22b4h5W4ilM75TJ/0cwcjsKCgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ0Rjk3RTFERjFCRDZEMzdFNkMyRUE4RjAyQzA4ODQ5 OEY0MzMyMzAeFw0yNDEyMTAxMzU1MDBaFw0yNTEyMDkxNDAwMDBaMDMxMTAvBgNV BAMTKEY0ODY2QjU2RTJGOEYwODkyRDI1RkU2OTQ2NjMwM0NFRjc1Qzc5RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTt6S6K9ZMLzE+3l7GM8thqW6o wr4XPA31IxX3pGDAn4tQy65oYZXc5s6vN0j6IY60lVhVwVGr0/lAiAvFX7r+tZxt 3R9GN3P8XK3I60U0IIvmZryFn8743DW7oB6QKiao8kPHmbSbI/lN2qieyoq7I5rf /XNxVGAaK+/VUyxpLz7XXezJ2p5hhEBxS/02pdkvaRqO9ZZHQ2xpumu5uIVH8k+J TLu1R+CROIAVpgUaMF2wmNaFCKje6k/LhBHOXg11Dg4xrCsrZUDDK6SzRUjj3V9R zXKQxmhVwXSOnAMjsKYxwIEQ0Jq5OK9iXAJ5BUUo0rP7RSQSfcbn5G0EqXvLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU9IZrVuL48IktJf5pRmMDzvdceeMwHwYDVR0j BBgwFoAUdE+X4d8b1tN+bC6o8CwIhJj0MyMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ODBkZGU5NC1lNWJlLTRkMjktYmIxMi00NWZiNWMxZDJjNzkvMC83NDRGOTdFMURG MUJENkQzN0U2QzJFQThGMDJDMDg4NDk4RjQzMzIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ0Rjk3RTFERjFCRDZEMzdFNkMyRUE4RjAyQzA4ODQ5OEY0 MzMyMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4MGRkZTk0LWU1YmUtNGQyOS1i YjEyLTQ1ZmI1YzFkMmM3OS8wLzMxMzAzMzJlMzIzMjMyMmUzMjM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzMDMxMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn3v4wDQYJ KoZIhvcNAQELBQADggEBAEgWA8t6zCyHprVpKnGNZJUARvI804DIVCnoRzz6Dwlf UXhDq97KvRO6BOaMZO/S/egWYi2rau69MlqdhAtihW5dQ7Z/yKZMRytObtfmeAfb qo0ntIBIObAld2Q3z9Nr4MqrHB3ZBNJ2bN9TSAGSfA2eQZT4A6HdYuQMqX9IpMIg EslISJkD3eZqLfa3CEcrkU0PBxHBZyx1MagfGGyVkCDmcrGinRwkluRVV85M0kn/ ywpPtjXfzIvLpJ2hWgtBMzdf36oFEy3gPDJDI6gXteto3k/UfTLBnrdzXmBQHBfg gQuIoF8NU6pYLdD5g6p8pgJfy3gkwQMXNoUAroQhqZM= -----END CERTIFICATE-----Generated at Sun Apr 6 11:00:05 2025 by rpki-client