$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132312e302f32342d3234203d3e20313339393532.roa File: 3130332e3134392e3132312e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: s6MFeDXqeIkTAot5lzYFNGxoGgi1Yjw/2CsMKFqccxU= Subject key identifier: B4:3A:14:D2:ED:75:13:AD:CD:5E:AD:79:F5:3A:C9:C9:C2:01:1E:98 Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 457BFAC7A521A6D1DB2F6C6F21AEEFF710F34847 Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132312e302f32342d3234203d3e20313339393532.roa Signing time: Thu 12 Dec 2024 09:01:28 +0000 ROA not before: Thu 12 Dec 2024 08:56:28 +0000 ROA not after: Thu 11 Dec 2025 09:01:28 +0000 asID: 139952 IP address blocks: 103.149.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 22:42:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:7b:fa:c7:a5:21:a6:d1:db:2f:6c:6f:21:ae:ef:f7:10:f3:48:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Dec 12 08:56:28 2024 GMT Not After : Dec 11 09:01:28 2025 GMT Subject: CN=B43A14D2ED7513ADCD5EAD79F53AC9C9C2011E98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:40:e6:18:28:34:81:83:5d:93:13:c3:47:ae: 21:7f:78:0d:de:1d:1f:28:30:16:9a:16:fa:32:68: 54:13:71:3b:af:bd:4b:3b:1e:0e:cf:a8:ac:74:f7: 94:9d:3a:e4:d3:cd:5a:ee:a0:18:73:03:fc:d6:10: 90:ab:66:de:d5:dc:cf:6c:a0:a9:57:5f:bd:a5:00: 05:71:11:30:33:d4:a2:ce:f0:98:06:73:1b:d7:32: 02:c8:65:56:d8:e2:ab:e2:38:ed:8f:5a:8e:8d:4f: a2:0f:f2:88:0d:99:73:6e:52:d4:f0:2c:5e:a2:fc: 67:70:6d:95:be:d3:f8:9f:cf:e4:3a:70:a3:ba:7a: a7:61:37:2e:d2:17:64:b3:8e:76:a9:c8:4c:94:ed: 16:a2:c0:24:86:04:2f:96:d6:8e:d2:b5:b8:1c:02: 51:06:36:bf:18:32:11:76:2c:51:20:6b:a1:31:94: 37:df:b1:ef:87:94:95:62:3e:0b:2f:9d:e9:9a:8b: 45:6f:4f:00:2e:c3:b6:ab:1e:d0:19:da:d1:a1:3e: 08:f0:af:37:2f:6e:f5:12:b6:d8:32:95:12:a1:f2: 03:ee:94:f1:97:cc:d8:2b:5c:0d:d1:b7:b8:03:38: b9:f0:9d:01:ba:98:e1:70:d3:17:16:17:6f:0b:39: 51:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:3A:14:D2:ED:75:13:AD:CD:5E:AD:79:F5:3A:C9:C9:C2:01:1E:98 X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132312e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.121.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:b3:a1:bb:de:ff:03:f2:35:fa:3d:0e:ff:a7:6e:71:13:fc: e5:16:95:d3:d0:91:d4:7c:91:ba:dc:8a:4d:e5:bd:86:8f:95: 43:75:b1:57:4f:da:51:0a:17:b3:03:99:b4:f0:d8:54:75:c6: fa:0a:dc:91:3e:bc:3a:fb:da:12:f5:58:ae:49:bb:20:8a:97: 0f:92:80:ba:01:25:88:b4:18:76:bb:bd:b5:ab:de:ae:c5:0e: 30:7d:20:a0:13:fc:d7:1f:eb:75:a3:ee:0a:c3:4f:85:04:f2: aa:07:da:46:48:6f:c9:7e:d3:ed:06:58:6f:05:bc:5c:38:00: 4a:91:1f:a9:49:00:0b:db:bb:f8:6f:17:24:61:4f:37:c3:ef: ae:64:5b:c8:3a:27:67:70:df:a0:f3:e0:9a:13:c4:bf:f5:e5: cb:bc:37:aa:b7:5c:9d:64:20:35:2f:39:bc:37:5a:5d:7e:ea: a8:64:c9:ea:63:d1:f0:74:a5:9a:3d:e7:a1:d0:83:e9:1d:48: af:1a:07:e7:a7:61:db:0f:c8:8d:8c:69:fe:3b:69:a6:42:4a: c8:9a:1a:2d:3d:6d:07:0a:ae:08:a2:83:f1:38:32:db:42:43: ce:94:bf:c0:d3:a5:af:48:11:5d:67:6c:7d:7e:1f:b5:ab:63: 0e:57:98:d2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURXv6x6UhptHbL2xvIa7v9xDzSEcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNDEyMTIwODU2MjhaFw0yNTEyMTEwOTAxMjhaMDMxMTAvBgNV BAMTKEI0M0ExNEQyRUQ3NTEzQURDRDVFQUQ3OUY1M0FDOUM5QzIwMTFFOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOQOYYKDSBg12TE8NHriF/eA3e HR8oMBaaFvoyaFQTcTuvvUs7Hg7PqKx095SdOuTTzVruoBhzA/zWEJCrZt7V3M9s oKlXX72lAAVxETAz1KLO8JgGcxvXMgLIZVbY4qviOO2PWo6NT6IP8ogNmXNuUtTw LF6i/GdwbZW+0/ifz+Q6cKO6eqdhNy7SF2SzjnapyEyU7RaiwCSGBC+W1o7Stbgc AlEGNr8YMhF2LFEga6ExlDffse+HlJViPgsvnemai0VvTwAuw7arHtAZ2tGhPgjw rzcvbvUSttgylRKh8gPulPGXzNgrXA3Rt7gDOLnwnQG6mOFw0xcWF28LOVGNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUtDoU0u11E63NXq159TrJycIBHpgwHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4ZDBlNjQwLTIyZTktNDQxYy04 NjM0LWY5NTI1MzA3ZGE3Ni8wLzMxMzAzMzJlMzEzNDM5MmUzMTMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnlXkwDQYJ KoZIhvcNAQELBQADggEBAE+zobve/wPyNfo9Dv+nbnET/OUWldPQkdR8kbrcik3l vYaPlUN1sVdP2lEKF7MDmbTw2FR1xvoK3JE+vDr72hL1WK5JuyCKlw+SgLoBJYi0 GHa7vbWr3q7FDjB9IKAT/Ncf63Wj7grDT4UE8qoH2kZIb8l+0+0GWG8FvFw4AEqR H6lJAAvbu/hvFyRhTzfD765kW8g6J2dw36Dz4JoTxL/15cu8N6q3XJ1kIDUvObw3 Wl1+6qhkyepj0fB0pZo956HQg+kdSK8aB+enYdsPyI2Maf47aaZCSsiaGi09bQcK rgiig/E4MttCQ86Uv8DTpa9IEV1nbH1+H7WrYw5XmNI= -----END CERTIFICATE-----Generated at Sun Apr 6 11:01:33 2025 by rpki-client