$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132312e302f32342d3234203d3e2037373133.roa File: 3130332e3134392e3132312e302f32342d3234203d3e2037373133.roa (raw, json) Hash identifier: zVGnPMz6FjIWNaiokQGONx21w4m18vhd71uDshC7eyA= Subject key identifier: 62:A7:DA:62:FA:23:36:9B:26:02:CE:DB:7B:2A:68:7C:C8:BE:06:AF Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 29B232BAB002B0A6993E247128EBF7E7058F17F5 Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132312e302f32342d3234203d3e2037373133.roa Signing time: Thu 12 Dec 2024 09:01:28 +0000 ROA not before: Thu 12 Dec 2024 08:56:28 +0000 ROA not after: Thu 11 Dec 2025 09:01:28 +0000 asID: 7713 IP address blocks: 103.149.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 22:42:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:b2:32:ba:b0:02:b0:a6:99:3e:24:71:28:eb:f7:e7:05:8f:17:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Dec 12 08:56:28 2024 GMT Not After : Dec 11 09:01:28 2025 GMT Subject: CN=62A7DA62FA23369B2602CEDB7B2A687CC8BE06AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fa:55:80:07:64:e3:25:3e:a3:c7:e2:79:6a: f6:d9:5f:75:30:98:e6:37:4c:7b:75:31:63:9e:d3: 7e:3a:30:5c:29:10:8f:61:3c:18:ed:9f:85:7f:13: d5:c1:ae:8d:de:76:1b:7e:85:9f:02:5b:ca:f0:2f: aa:97:6d:b2:e4:c9:60:bf:4b:70:f0:c9:71:7d:d6: 5b:cb:33:5e:fa:29:8e:ef:f5:e6:c1:f1:c5:62:55: 96:f0:44:1a:6f:c6:a8:df:c9:21:35:79:78:b8:c8: 04:4b:58:87:c8:df:cb:14:d5:f4:cd:bd:e6:14:19: 33:52:bb:c0:7c:99:d4:11:ed:28:05:39:29:d6:fb: 2b:3e:b7:88:a2:b3:e7:c3:e3:ab:2f:53:06:6f:45: fd:2d:24:84:2e:a7:5b:74:fb:6a:ed:0f:3e:01:9a: d9:80:01:18:62:64:e0:d8:f7:7d:e8:6b:25:d8:0b: b3:b6:c0:dc:76:76:0f:56:30:2b:63:a6:c1:42:4f: 23:60:e9:b1:bf:6a:e3:55:94:db:c4:b3:0b:c1:dd: 40:50:b9:6f:e2:c8:e4:3b:38:f7:2b:e9:79:09:b2: af:f5:96:30:9d:22:45:fe:e5:e8:ff:82:11:51:84: 5d:a0:7d:a3:77:67:60:bf:f1:ea:93:e8:a6:b0:81: 07:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:A7:DA:62:FA:23:36:9B:26:02:CE:DB:7B:2A:68:7C:C8:BE:06:AF X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132312e302f32342d3234203d3e2037373133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.121.0/24 Signature Algorithm: sha256WithRSAEncryption 56:42:55:b1:4f:d6:82:22:4e:0d:3a:0e:d8:38:c1:f7:66:32: d9:27:18:e4:e3:b7:a8:56:a0:ff:6a:29:53:8a:a3:0f:76:bc: 78:cf:3c:c8:f7:86:be:45:66:a7:ad:0b:83:42:9b:d3:6c:32: a6:ed:05:0f:0d:c8:20:08:1a:f1:43:5f:a6:49:77:6b:d4:05: 85:d8:49:75:49:e3:c0:42:8b:2e:45:a1:07:b7:51:7d:e4:b5: 38:1c:17:d9:ae:18:8a:6a:1f:92:6c:60:65:64:ee:1b:0c:39: 55:ce:ef:26:01:cf:85:ca:61:5c:68:a6:0e:07:50:46:33:e7: 3a:6a:4b:bc:60:ef:8c:a0:8a:0d:ea:cc:74:e3:e6:2c:54:e0: 93:d8:37:02:df:2b:f3:9d:40:19:9c:82:0e:83:e0:bb:20:83: 04:58:4c:60:3b:70:37:12:d1:0e:ab:c0:b7:8f:23:23:fb:09: e6:a8:30:9c:66:7d:ac:0e:a3:f6:b5:f0:66:a5:43:19:15:87: 68:e5:52:16:51:89:f3:0f:8c:c1:11:4e:09:83:29:f5:20:f3: fa:64:d0:9c:30:b8:4d:79:82:ea:ce:e5:8e:52:1c:2a:0d:52: bb:08:56:6f:7f:bb:3a:3b:a9:ac:a9:94:36:ea:c2:a1:a4:14: 38:fa:cf:f2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKbIyurACsKaZPiRxKOv35wWPF/UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNDEyMTIwODU2MjhaFw0yNTEyMTEwOTAxMjhaMDMxMTAvBgNV BAMTKDYyQTdEQTYyRkEyMzM2OUIyNjAyQ0VEQjdCMkE2ODdDQzhCRTA2QUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6+lWAB2TjJT6jx+J5avbZX3Uw mOY3THt1MWOe0346MFwpEI9hPBjtn4V/E9XBro3edht+hZ8CW8rwL6qXbbLkyWC/ S3DwyXF91lvLM176KY7v9ebB8cViVZbwRBpvxqjfySE1eXi4yARLWIfI38sU1fTN veYUGTNSu8B8mdQR7SgFOSnW+ys+t4iis+fD46svUwZvRf0tJIQup1t0+2rtDz4B mtmAARhiZODY933oayXYC7O2wNx2dg9WMCtjpsFCTyNg6bG/auNVlNvEswvB3UBQ uW/iyOQ7OPcr6XkJsq/1ljCdIkX+5ej/ghFRhF2gfaN3Z2C/8eqT6KawgQfzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYqfaYvojNpsmAs7beypofMi+Bq8wHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4ZDBlNjQwLTIyZTktNDQxYy04 NjM0LWY5NTI1MzA3ZGE3Ni8wLzMxMzAzMzJlMzEzNDM5MmUzMTMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNzM3MzEzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeVeTANBgkqhkiG 9w0BAQsFAAOCAQEAVkJVsU/WgiJODToO2DjB92Yy2ScY5OO3qFag/2opU4qjD3a8 eM88yPeGvkVmp60Lg0Kb02wypu0FDw3IIAga8UNfpkl3a9QFhdhJdUnjwEKLLkWh B7dRfeS1OBwX2a4YimofkmxgZWTuGww5Vc7vJgHPhcphXGimDgdQRjPnOmpLvGDv jKCKDerMdOPmLFTgk9g3At8r851AGZyCDoPguyCDBFhMYDtwNxLRDqvAt48jI/sJ 5qgwnGZ9rA6j9rXwZqVDGRWHaOVSFlGJ8w+MwRFOCYMp9SDz+mTQnDC4TXmC6s7l jlIcKg1SuwhWb3+7OjuprKmUNurCoaQUOPrP8g== -----END CERTIFICATE-----Generated at Sun Apr 6 08:27:45 2025 by rpki-client