$ rpki-client -vvf repo-rpki.idnic.net/repo/ca124e6a-f51b-46d0-8ea3-76b2744558a6/0/3130332e372e3130362e302f32342d3234203d3e20313531353939.roa File: 3130332e372e3130362e302f32342d3234203d3e20313531353939.roa (raw, json) Hash identifier: 0rbZlrsZPTaqVhI90ea5Mcg8UbhZvU1fUTVZXNAKo74= Subject key identifier: 59:3E:08:7F:37:83:FB:63:22:C4:53:83:23:72:9C:25:A7:06:EA:99 Certificate issuer: /CN=B178402BEDE3EC5A5EE2E0E71F736A1360C06AF6 Certificate serial: 3274F228E60E76095BC6AF37ABF38435029555FC Authority key identifier: B1:78:40:2B:ED:E3:EC:5A:5E:E2:E0:E7:1F:73:6A:13:60:C0:6A:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B178402BEDE3EC5A5EE2E0E71F736A1360C06AF6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ca124e6a-f51b-46d0-8ea3-76b2744558a6/0/3130332e372e3130362e302f32342d3234203d3e20313531353939.roa Signing time: Mon 06 Jan 2025 14:42:45 +0000 ROA not before: Mon 06 Jan 2025 14:37:45 +0000 ROA not after: Mon 05 Jan 2026 14:42:45 +0000 asID: 151599 IP address blocks: 103.7.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ca124e6a-f51b-46d0-8ea3-76b2744558a6/0/B178402BEDE3EC5A5EE2E0E71F736A1360C06AF6.crl rsync://repo-rpki.idnic.net/repo/ca124e6a-f51b-46d0-8ea3-76b2744558a6/0/B178402BEDE3EC5A5EE2E0E71F736A1360C06AF6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B178402BEDE3EC5A5EE2E0E71F736A1360C06AF6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 12:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:74:f2:28:e6:0e:76:09:5b:c6:af:37:ab:f3:84:35:02:95:55:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B178402BEDE3EC5A5EE2E0E71F736A1360C06AF6 Validity Not Before: Jan 6 14:37:45 2025 GMT Not After : Jan 5 14:42:45 2026 GMT Subject: CN=593E087F3783FB6322C4538323729C25A706EA99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:26:30:ee:20:2e:70:4f:3f:63:aa:2d:b5:2c: 52:28:14:7d:b9:41:75:f7:97:40:ab:20:92:ba:2f: 2d:e2:a3:c3:37:e3:60:89:16:3c:c7:c1:60:dd:f9: df:d0:ca:af:3f:56:9a:a9:08:8f:0e:86:b7:4c:68: 6a:21:24:5f:e5:98:3c:5d:cd:a8:51:da:25:cd:e1: e3:2e:6a:07:7d:8e:44:7a:f1:d0:fc:3a:21:96:b7: 4a:ee:4e:e3:c4:f3:9f:bc:f3:58:58:68:61:a4:d6: 2e:32:5e:68:63:5f:a2:b2:ff:7d:e9:61:bb:d5:4d: f7:b0:f3:a7:28:8f:94:8f:d2:ed:74:86:b7:ea:6a: 3b:99:4a:59:78:d4:cb:b6:40:a0:d3:db:33:23:df: d9:6f:a9:37:ab:c2:c9:d5:79:13:17:c8:f3:fb:7e: 8f:c9:b9:9f:a4:1b:33:38:a5:e4:71:50:b4:ba:68: ff:8a:a8:63:b3:cb:bc:64:25:c5:1d:3a:2f:d5:cb: 37:9d:77:32:a4:b7:53:53:11:d8:c5:28:3d:bc:2b: bb:0f:7f:19:68:d2:e8:67:5d:46:f8:db:98:e3:4e: ef:41:dc:1b:8a:81:36:12:d0:11:54:79:e3:95:e2: a7:42:39:a0:9b:ff:30:0b:d5:8c:8e:bb:19:d7:fe: 20:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:3E:08:7F:37:83:FB:63:22:C4:53:83:23:72:9C:25:A7:06:EA:99 X509v3 Authority Key Identifier: keyid:B1:78:40:2B:ED:E3:EC:5A:5E:E2:E0:E7:1F:73:6A:13:60:C0:6A:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ca124e6a-f51b-46d0-8ea3-76b2744558a6/0/B178402BEDE3EC5A5EE2E0E71F736A1360C06AF6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B178402BEDE3EC5A5EE2E0E71F736A1360C06AF6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca124e6a-f51b-46d0-8ea3-76b2744558a6/0/3130332e372e3130362e302f32342d3234203d3e20313531353939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.7.106.0/24 Signature Algorithm: sha256WithRSAEncryption 48:33:d6:8c:cf:a9:02:83:1f:98:c6:38:8f:31:eb:a9:9e:e6: 36:61:75:5f:37:5d:95:77:5f:62:7c:e1:6c:fe:a3:c4:91:8f: 6c:24:96:ac:54:ff:68:d6:87:7b:57:42:ea:63:92:91:b4:65: 99:80:66:92:5d:10:bf:b0:f9:7b:3d:47:e5:fe:81:ed:bc:ea: 0e:fd:e7:ad:08:91:2f:82:10:38:2f:08:db:3f:6d:4f:f3:74: 10:6d:5c:df:ea:95:f6:e8:d6:30:aa:88:05:77:16:d2:06:59: ce:c9:2b:99:6d:b7:20:2e:ff:f1:c0:3e:9b:00:25:84:ac:7d: 82:89:4d:17:85:7e:53:a8:f9:6a:21:20:f6:b7:dd:87:6f:7c: d2:38:aa:7c:75:20:0a:0e:b2:08:14:e2:c9:04:7a:75:c0:57: 31:1c:d0:60:26:dc:6c:e5:ae:13:c4:a1:65:6e:24:f7:8d:20: 64:e8:6d:dd:c1:c8:ef:19:56:21:a3:09:2f:fb:00:26:4f:0b: f2:7b:40:2b:82:19:13:b0:99:47:72:93:db:58:d4:f4:4d:5f: f1:b0:fd:30:af:ea:ae:85:9f:fc:b9:7f:95:b0:e2:13:5a:6b: 78:16:b0:47:f3:cb:c4:e2:8f:1b:f6:d1:cf:51:bb:30:40:a2: a6:4f:dc:3b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMnTyKOYOdglbxq83q/OENQKVVfwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE3ODQwMkJFREUzRUM1QTVFRTJFMEU3MUY3MzZBMTM2 MEMwNkFGNjAeFw0yNTAxMDYxNDM3NDVaFw0yNjAxMDUxNDQyNDVaMDMxMTAvBgNV BAMTKDU5M0UwODdGMzc4M0ZCNjMyMkM0NTM4MzIzNzI5QzI1QTcwNkVBOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2JjDuIC5wTz9jqi21LFIoFH25 QXX3l0CrIJK6Ly3io8M342CJFjzHwWDd+d/Qyq8/VpqpCI8OhrdMaGohJF/lmDxd zahR2iXN4eMuagd9jkR68dD8OiGWt0ruTuPE85+881hYaGGk1i4yXmhjX6Ky/33p YbvVTfew86coj5SP0u10hrfqajuZSll41Mu2QKDT2zMj39lvqTerwsnVeRMXyPP7 fo/JuZ+kGzM4peRxULS6aP+KqGOzy7xkJcUdOi/VyzeddzKkt1NTEdjFKD28K7sP fxlo0uhnXUb425jjTu9B3BuKgTYS0BFUeeOV4qdCOaCb/zAL1YyOuxnX/iBNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWT4IfzeD+2MixFODI3KcJacG6pkwHwYDVR0j BBgwFoAUsXhAK+3j7Fpe4uDnH3NqE2DAavYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YTEyNGU2YS1mNTFiLTQ2ZDAtOGVhMy03NmIyNzQ0NTU4YTYvMC9CMTc4NDAyQkVE RTNFQzVBNUVFMkUwRTcxRjczNkExMzYwQzA2QUY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjE3ODQwMkJFREUzRUM1QTVFRTJFMEU3MUY3MzZBMTM2MEMw NkFGNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhMTI0ZTZhLWY1MWItNDZkMC04 ZWEzLTc2YjI3NDQ1NThhNi8wLzMxMzAzMzJlMzcyZTMxMzAzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMTM1MzkzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcHajANBgkqhkiG 9w0BAQsFAAOCAQEASDPWjM+pAoMfmMY4jzHrqZ7mNmF1XzddlXdfYnzhbP6jxJGP bCSWrFT/aNaHe1dC6mOSkbRlmYBmkl0Qv7D5ez1H5f6B7bzqDv3nrQiRL4IQOC8I 2z9tT/N0EG1c3+qV9ujWMKqIBXcW0gZZzskrmW23IC7/8cA+mwAlhKx9golNF4V+ U6j5aiEg9rfdh2980jiqfHUgCg6yCBTiyQR6dcBXMRzQYCbcbOWuE8ShZW4k940g ZOht3cHI7xlWIaMJL/sAJk8L8ntAK4IZE7CZR3KT21jU9E1f8bD9MK/qroWf/Ll/ lbDiE1preBawR/PLxOKPG/bRz1G7MECipk/cOw== -----END CERTIFICATE-----Generated at Fri Feb 21 11:08:42 2025 by rpki-client