$ rpki-client -vvf repo-rpki.idnic.net/repo/c80dde94-e5be-4d29-bb12-45fb5c1d2c79/0/3130332e3235302e3130332e302f32342d3234203d3e20313531303131.roa File: 3130332e3235302e3130332e302f32342d3234203d3e20313531303131.roa (raw, json) Hash identifier: bdGVInKG942n8PXL1PKuGQ0Pq5j+ZmOgUrMT9tNRThE= Subject key identifier: D9:53:57:BB:07:78:15:24:8A:7F:89:5F:A8:0C:D1:30:3A:B6:F6:53 Certificate issuer: /CN=744F97E1DF1BD6D37E6C2EA8F02C088498F43323 Certificate serial: 053D70E5454CC0AC6FDF777A10C9566C0A5086BE Authority key identifier: 74:4F:97:E1:DF:1B:D6:D3:7E:6C:2E:A8:F0:2C:08:84:98:F4:33:23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/744F97E1DF1BD6D37E6C2EA8F02C088498F43323.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c80dde94-e5be-4d29-bb12-45fb5c1d2c79/0/3130332e3235302e3130332e302f32342d3234203d3e20313531303131.roa Signing time: Tue 10 Dec 2024 15:00:00 +0000 ROA not before: Tue 10 Dec 2024 14:55:00 +0000 ROA not after: Tue 09 Dec 2025 15:00:00 +0000 asID: 151011 IP address blocks: 103.250.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c80dde94-e5be-4d29-bb12-45fb5c1d2c79/0/744F97E1DF1BD6D37E6C2EA8F02C088498F43323.crl rsync://repo-rpki.idnic.net/repo/c80dde94-e5be-4d29-bb12-45fb5c1d2c79/0/744F97E1DF1BD6D37E6C2EA8F02C088498F43323.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/744F97E1DF1BD6D37E6C2EA8F02C088498F43323.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 19:26:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:3d:70:e5:45:4c:c0:ac:6f:df:77:7a:10:c9:56:6c:0a:50:86:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=744F97E1DF1BD6D37E6C2EA8F02C088498F43323 Validity Not Before: Dec 10 14:55:00 2024 GMT Not After : Dec 9 15:00:00 2025 GMT Subject: CN=D95357BB077815248A7F895FA80CD1303AB6F653 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:63:93:5b:34:54:5a:78:27:65:ef:fa:52:de: 19:8b:83:b2:9e:0d:6f:75:ab:d8:c9:6e:e2:09:da: 78:47:97:91:75:a4:c3:3a:0e:c4:a2:9f:ea:1d:d2: 33:3f:47:24:c7:89:bb:25:31:29:e8:ab:74:46:60: 9c:a5:d9:bc:c8:51:f1:10:dc:c6:bd:7c:86:a5:66: 3a:9b:1d:58:d8:13:84:b6:cb:3a:10:eb:24:1f:4e: 2e:f3:86:41:05:87:df:d3:17:7d:6d:07:0b:7f:6a: 18:17:8f:f7:34:f1:51:6b:00:75:91:03:b5:11:8a: c9:39:eb:6f:c5:71:20:86:54:f4:a4:56:28:62:17: 65:dd:6e:73:c9:d0:68:70:61:5b:ea:a9:5a:cc:80: 12:79:2d:43:f9:95:ba:20:df:e7:82:d5:11:db:20: 9a:fe:c3:ef:b2:d9:b9:85:5f:66:62:b7:56:94:6f: 25:57:a8:34:cd:60:72:33:c7:46:c3:fb:1d:26:e0: 8f:84:ff:5f:20:5e:64:76:fe:bb:77:e8:2d:df:8d: 8c:80:45:6f:ba:8e:87:d4:3c:b7:49:c9:5e:ef:2e: 36:2e:9c:8c:d4:9a:18:7c:ab:62:09:54:71:5d:a3: 47:e8:c3:7f:bd:bb:24:f2:2c:2f:6e:8d:ca:f5:2d: ae:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:53:57:BB:07:78:15:24:8A:7F:89:5F:A8:0C:D1:30:3A:B6:F6:53 X509v3 Authority Key Identifier: keyid:74:4F:97:E1:DF:1B:D6:D3:7E:6C:2E:A8:F0:2C:08:84:98:F4:33:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c80dde94-e5be-4d29-bb12-45fb5c1d2c79/0/744F97E1DF1BD6D37E6C2EA8F02C088498F43323.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/744F97E1DF1BD6D37E6C2EA8F02C088498F43323.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c80dde94-e5be-4d29-bb12-45fb5c1d2c79/0/3130332e3235302e3130332e302f32342d3234203d3e20313531303131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.250.103.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:3e:cd:1a:4f:21:41:a4:34:b6:44:d3:fd:99:9c:87:03:d3: f5:06:c7:cc:9d:b4:58:5c:cf:a5:5d:30:6a:a5:47:6b:70:31: c8:3e:c5:2c:6e:79:c6:8f:ef:5e:59:a2:5e:89:03:af:a6:78: bd:e7:35:39:68:3c:65:33:c9:a7:f4:57:95:a0:2f:c9:c3:ec: 16:39:14:de:22:15:72:00:38:bc:bb:08:dc:6d:c6:2f:31:ea: 2e:36:d3:65:91:3d:5f:5f:60:26:14:d1:d1:94:53:ea:a5:91: 31:20:d1:ca:91:c5:1b:08:af:6d:92:85:ff:ba:bf:d0:f4:96: 98:30:bc:18:65:38:06:6b:27:93:63:2c:42:c8:58:ab:fd:7c: be:ed:08:8f:a4:51:cc:7f:01:c1:5c:9c:1c:9c:5a:d2:f5:0f: 93:95:f6:45:5c:f4:23:b1:05:a7:21:14:8a:68:60:b1:b3:47: 15:2d:10:20:cc:38:35:7f:b1:b1:ee:b6:6b:3b:63:62:9c:e0: dd:6a:d0:41:f1:ce:c2:58:0a:19:24:fe:e8:23:21:6c:ed:12: 65:8d:bf:3c:48:18:1d:ca:34:ba:7b:6f:d9:6a:cf:6c:d2:4a: 00:ee:02:b6:c0:0a:dd:21:df:10:d3:b4:08:4b:37:16:b3:cb: 2b:4c:9e:8c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBT1w5UVMwKxv33d6EMlWbApQhr4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ0Rjk3RTFERjFCRDZEMzdFNkMyRUE4RjAyQzA4ODQ5 OEY0MzMyMzAeFw0yNDEyMTAxNDU1MDBaFw0yNTEyMDkxNTAwMDBaMDMxMTAvBgNV BAMTKEQ5NTM1N0JCMDc3ODE1MjQ4QTdGODk1RkE4MENEMTMwM0FCNkY2NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPY5NbNFRaeCdl7/pS3hmLg7Ke DW91q9jJbuIJ2nhHl5F1pMM6DsSin+od0jM/RyTHibslMSnoq3RGYJyl2bzIUfEQ 3Ma9fIalZjqbHVjYE4S2yzoQ6yQfTi7zhkEFh9/TF31tBwt/ahgXj/c08VFrAHWR A7URisk562/FcSCGVPSkVihiF2XdbnPJ0GhwYVvqqVrMgBJ5LUP5lbog3+eC1RHb IJr+w++y2bmFX2Zit1aUbyVXqDTNYHIzx0bD+x0m4I+E/18gXmR2/rt36C3fjYyA RW+6jofUPLdJyV7vLjYunIzUmhh8q2IJVHFdo0fow3+9uyTyLC9ujcr1La4/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU2VNXuwd4FSSKf4lfqAzRMDq29lMwHwYDVR0j BBgwFoAUdE+X4d8b1tN+bC6o8CwIhJj0MyMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ODBkZGU5NC1lNWJlLTRkMjktYmIxMi00NWZiNWMxZDJjNzkvMC83NDRGOTdFMURG MUJENkQzN0U2QzJFQThGMDJDMDg4NDk4RjQzMzIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ0Rjk3RTFERjFCRDZEMzdFNkMyRUE4RjAyQzA4ODQ5OEY0 MzMyMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4MGRkZTk0LWU1YmUtNGQyOS1i YjEyLTQ1ZmI1YzFkMmM3OS8wLzMxMzAzMzJlMzIzNTMwMmUzMTMwMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzMDMxMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn+mcwDQYJ KoZIhvcNAQELBQADggEBAJ4+zRpPIUGkNLZE0/2ZnIcD0/UGx8ydtFhcz6VdMGql R2twMcg+xSxuecaP715Zol6JA6+meL3nNTloPGUzyaf0V5WgL8nD7BY5FN4iFXIA OLy7CNxtxi8x6i4202WRPV9fYCYU0dGUU+qlkTEg0cqRxRsIr22Shf+6v9D0lpgw vBhlOAZrJ5NjLELIWKv9fL7tCI+kUcx/AcFcnBycWtL1D5OV9kVc9COxBachFIpo YLGzRxUtECDMODV/sbHutms7Y2Kc4N1q0EHxzsJYChkk/ugjIWztEmWNvzxIGB3K NLp7b9lqz2zSSgDuArbACt0h3xDTtAhLNxazyytMnow= -----END CERTIFICATE-----Generated at Sun Apr 6 08:40:38 2025 by rpki-client