$ rpki-client -vvf repo-rpki.idnic.net/repo/ca124e6a-f51b-46d0-8ea3-76b2744558a6/0/3130332e372e3130372e302f32342d3234203d3e20313531353939.roa File: 3130332e372e3130372e302f32342d3234203d3e20313531353939.roa (raw, json) Hash identifier: ZOp7UUJVVpn+HE+2CW6AOz2wc15ptx3FxJXIlhX1FTo= Subject key identifier: F4:1A:74:75:5E:AC:48:54:96:7F:91:ED:F5:F0:ED:88:FC:00:8E:E1 Certificate issuer: /CN=B178402BEDE3EC5A5EE2E0E71F736A1360C06AF6 Certificate serial: 2A7D96FA2A3125F5F74FA59C5779B82E2AC74DAF Authority key identifier: B1:78:40:2B:ED:E3:EC:5A:5E:E2:E0:E7:1F:73:6A:13:60:C0:6A:F6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B178402BEDE3EC5A5EE2E0E71F736A1360C06AF6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ca124e6a-f51b-46d0-8ea3-76b2744558a6/0/3130332e372e3130372e302f32342d3234203d3e20313531353939.roa Signing time: Mon 06 Jan 2025 14:43:09 +0000 ROA not before: Mon 06 Jan 2025 14:38:09 +0000 ROA not after: Mon 05 Jan 2026 14:43:09 +0000 asID: 151599 IP address blocks: 103.7.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ca124e6a-f51b-46d0-8ea3-76b2744558a6/0/B178402BEDE3EC5A5EE2E0E71F736A1360C06AF6.crl rsync://repo-rpki.idnic.net/repo/ca124e6a-f51b-46d0-8ea3-76b2744558a6/0/B178402BEDE3EC5A5EE2E0E71F736A1360C06AF6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B178402BEDE3EC5A5EE2E0E71F736A1360C06AF6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 12:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:7d:96:fa:2a:31:25:f5:f7:4f:a5:9c:57:79:b8:2e:2a:c7:4d:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B178402BEDE3EC5A5EE2E0E71F736A1360C06AF6 Validity Not Before: Jan 6 14:38:09 2025 GMT Not After : Jan 5 14:43:09 2026 GMT Subject: CN=F41A74755EAC4854967F91EDF5F0ED88FC008EE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b1:b3:7a:16:c3:a9:0a:a9:6e:94:c8:48:b1: ce:ba:23:2c:88:f8:4c:3f:d2:fc:77:7f:dd:46:21: 19:22:8d:ec:5e:94:16:18:9c:02:fa:de:2f:5a:c9: 69:ac:e6:5e:a6:82:61:b5:c3:b0:dd:e7:a1:90:94: b1:61:29:2c:2b:45:7e:ed:c0:a3:55:7d:0f:03:f0: 4a:e4:a5:94:d7:e7:c3:45:76:f8:98:1f:1a:46:0d: 93:cc:eb:d4:27:94:31:00:a3:c8:3e:2f:2a:82:64: 88:3c:29:3c:3a:bd:4b:ca:f7:54:cd:e2:45:05:01: 69:4b:b6:c7:cd:7b:c0:cd:81:82:2f:44:72:62:4f: d5:2d:e6:4b:c4:89:b3:04:2a:45:1d:14:90:1a:e6: c5:6b:0f:f0:79:9e:1f:dc:c6:4b:31:46:4a:fd:5b: b4:94:69:ef:fe:c1:15:52:0e:08:46:92:59:bf:4e: 57:c6:b7:f2:eb:1c:2a:60:e8:10:cb:b3:fa:cc:05: f5:82:d1:14:23:89:bd:81:26:7d:24:f1:22:f8:05: 9e:df:3e:73:60:a3:d3:46:92:d0:31:0a:97:4a:f0: c7:bd:42:ec:4f:5d:6f:2e:19:10:7f:38:a5:e7:ca: a1:b4:4a:5f:1e:c7:77:48:84:8a:63:e6:5c:79:29: f7:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:1A:74:75:5E:AC:48:54:96:7F:91:ED:F5:F0:ED:88:FC:00:8E:E1 X509v3 Authority Key Identifier: keyid:B1:78:40:2B:ED:E3:EC:5A:5E:E2:E0:E7:1F:73:6A:13:60:C0:6A:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ca124e6a-f51b-46d0-8ea3-76b2744558a6/0/B178402BEDE3EC5A5EE2E0E71F736A1360C06AF6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B178402BEDE3EC5A5EE2E0E71F736A1360C06AF6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca124e6a-f51b-46d0-8ea3-76b2744558a6/0/3130332e372e3130372e302f32342d3234203d3e20313531353939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.7.107.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:3d:b4:7f:3c:48:f6:a6:95:a7:6b:2a:10:86:da:8d:4b:3e: 08:69:e9:20:1a:64:de:1f:14:9a:a6:ae:5d:09:5c:66:ea:2c: b9:48:e5:f1:39:d8:0c:dc:77:57:bf:b2:29:60:0b:0d:c3:3e: 06:63:3c:a2:c9:51:0c:25:e6:e0:bd:19:f8:8b:aa:ac:59:8b: 4b:b1:05:9d:e7:af:38:50:0f:06:95:52:79:e6:49:81:43:c0: ce:f1:a8:e5:8f:0a:66:ea:d7:80:6c:f1:90:64:9f:d6:5d:d5: a4:66:5b:cd:c2:8b:e0:94:d1:2b:d1:74:ac:65:2e:51:90:33: c4:75:96:15:fc:e4:af:50:3d:34:69:f4:1a:26:75:b2:11:d9: 8c:de:93:c7:ec:27:62:ca:4d:42:7c:7d:b9:7d:66:25:0b:ff: 58:e5:f0:ca:9f:fb:bb:d3:8a:93:c4:e2:01:59:b6:7c:65:d2: a0:49:01:63:32:3a:72:cb:44:53:42:9c:5b:86:91:fa:96:c1: e5:5d:d2:6d:1d:72:34:ed:39:5e:3f:8a:9a:b8:2a:41:c8:05: 4f:11:2b:26:de:79:3e:9c:2c:a7:bf:c1:2d:eb:be:72:17:b6: 38:1a:87:0c:ce:92:7e:45:b2:85:4c:97:f9:7d:20:df:a0:57: c3:0d:f3:c7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKn2W+ioxJfX3T6WcV3m4LirHTa8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE3ODQwMkJFREUzRUM1QTVFRTJFMEU3MUY3MzZBMTM2 MEMwNkFGNjAeFw0yNTAxMDYxNDM4MDlaFw0yNjAxMDUxNDQzMDlaMDMxMTAvBgNV BAMTKEY0MUE3NDc1NUVBQzQ4NTQ5NjdGOTFFREY1RjBFRDg4RkMwMDhFRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAsbN6FsOpCqlulMhIsc66IyyI +Ew/0vx3f91GIRkijexelBYYnAL63i9ayWms5l6mgmG1w7Dd56GQlLFhKSwrRX7t wKNVfQ8D8ErkpZTX58NFdviYHxpGDZPM69QnlDEAo8g+LyqCZIg8KTw6vUvK91TN 4kUFAWlLtsfNe8DNgYIvRHJiT9Ut5kvEibMEKkUdFJAa5sVrD/B5nh/cxksxRkr9 W7SUae/+wRVSDghGklm/TlfGt/LrHCpg6BDLs/rMBfWC0RQjib2BJn0k8SL4BZ7f PnNgo9NGktAxCpdK8Me9QuxPXW8uGRB/OKXnyqG0Sl8ex3dIhIpj5lx5Kff5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9Bp0dV6sSFSWf5Ht9fDtiPwAjuEwHwYDVR0j BBgwFoAUsXhAK+3j7Fpe4uDnH3NqE2DAavYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YTEyNGU2YS1mNTFiLTQ2ZDAtOGVhMy03NmIyNzQ0NTU4YTYvMC9CMTc4NDAyQkVE RTNFQzVBNUVFMkUwRTcxRjczNkExMzYwQzA2QUY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjE3ODQwMkJFREUzRUM1QTVFRTJFMEU3MUY3MzZBMTM2MEMw NkFGNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhMTI0ZTZhLWY1MWItNDZkMC04 ZWEzLTc2YjI3NDQ1NThhNi8wLzMxMzAzMzJlMzcyZTMxMzAzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMTM1MzkzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcHazANBgkqhkiG 9w0BAQsFAAOCAQEAiz20fzxI9qaVp2sqEIbajUs+CGnpIBpk3h8UmqauXQlcZuos uUjl8TnYDNx3V7+yKWALDcM+BmM8oslRDCXm4L0Z+IuqrFmLS7EFneevOFAPBpVS eeZJgUPAzvGo5Y8KZurXgGzxkGSf1l3VpGZbzcKL4JTRK9F0rGUuUZAzxHWWFfzk r1A9NGn0GiZ1shHZjN6Tx+wnYspNQnx9uX1mJQv/WOXwyp/7u9OKk8TiAVm2fGXS oEkBYzI6cstEU0KcW4aR+pbB5V3SbR1yNO05Xj+KmrgqQcgFTxErJt55Ppwsp7/B Leu+che2OBqHDM6SfkWyhUyX+X0g36BXww3zxw== -----END CERTIFICATE-----Generated at Fri Feb 21 11:00:14 2025 by rpki-client