$ rpki-client -vvf repo-rpki.idnic.net/repo/cc60a6c1-c081-439b-ae8d-8149b634d5a2/0/3130332e3134352e3134362e302f32332d3233203d3e20313430303038.roa File: 3130332e3134352e3134362e302f32332d3233203d3e20313430303038.roa (raw, json) Hash identifier: vi0RRY/Tgbq1ZVq8x8YtBDfoh9xnysAkjOB8me9GGMg= Subject key identifier: 8F:52:46:70:8A:3F:4A:D9:71:39:A5:E3:DE:CD:16:CC:C6:30:8B:D4 Certificate issuer: /CN=26A14190F845A3F3FC336BD3062AE6F165B97E5C Certificate serial: 20EF286EC63F6E17460D2CB069E69E5D3CBE13F5 Authority key identifier: 26:A1:41:90:F8:45:A3:F3:FC:33:6B:D3:06:2A:E6:F1:65:B9:7E:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26A14190F845A3F3FC336BD3062AE6F165B97E5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cc60a6c1-c081-439b-ae8d-8149b634d5a2/0/3130332e3134352e3134362e302f32332d3233203d3e20313430303038.roa Signing time: Thu 31 Oct 2024 06:00:01 +0000 ROA not before: Thu 31 Oct 2024 05:55:01 +0000 ROA not after: Thu 30 Oct 2025 06:00:01 +0000 asID: 140008 IP address blocks: 103.145.146.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cc60a6c1-c081-439b-ae8d-8149b634d5a2/0/26A14190F845A3F3FC336BD3062AE6F165B97E5C.crl rsync://repo-rpki.idnic.net/repo/cc60a6c1-c081-439b-ae8d-8149b634d5a2/0/26A14190F845A3F3FC336BD3062AE6F165B97E5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26A14190F845A3F3FC336BD3062AE6F165B97E5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 15:12:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:ef:28:6e:c6:3f:6e:17:46:0d:2c:b0:69:e6:9e:5d:3c:be:13:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=26A14190F845A3F3FC336BD3062AE6F165B97E5C Validity Not Before: Oct 31 05:55:01 2024 GMT Not After : Oct 30 06:00:01 2025 GMT Subject: CN=8F5246708A3F4AD97139A5E3DECD16CCC6308BD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:20:32:59:cd:a6:7f:9e:c3:1c:fa:04:54:fc: 42:2e:51:2a:cf:df:e8:27:a3:78:e7:11:e8:a3:3b: fb:ab:e7:db:2e:70:ac:9d:c9:0b:f6:a8:e3:01:71: 06:66:88:24:9f:72:6d:f9:64:44:c6:61:25:80:97: a7:ad:86:01:6b:1c:4c:03:9f:c4:c3:8d:0b:b7:e8: 13:89:e0:c1:e3:5f:b1:38:5d:8a:22:7c:aa:66:c1: 38:1b:82:7c:b8:01:76:e1:16:32:9a:77:10:e0:ac: 4d:31:58:f7:53:69:b8:3b:25:80:04:69:77:43:ee: 32:fd:24:35:86:cc:aa:07:a9:de:6f:41:37:3e:ad: 98:d0:bb:fe:6a:69:fa:02:c7:ba:04:cc:fb:5d:65: 10:ef:44:8d:f6:30:85:8f:c5:ae:0c:ad:18:04:f9: 73:95:c2:47:53:a8:14:86:4a:64:b3:f1:4b:a5:2a: a2:96:d7:2c:35:51:82:88:a7:21:a1:47:b4:8d:37: 02:e0:3c:d6:1a:37:20:bf:a8:5f:d9:5e:97:2f:62: 64:48:8f:38:10:52:1c:e0:19:20:5f:76:95:57:86: 2d:43:3d:c6:d3:09:fe:24:59:65:0d:24:d7:b8:82: bb:32:26:62:c8:20:18:c6:c3:22:c1:36:f7:88:52: a8:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:52:46:70:8A:3F:4A:D9:71:39:A5:E3:DE:CD:16:CC:C6:30:8B:D4 X509v3 Authority Key Identifier: keyid:26:A1:41:90:F8:45:A3:F3:FC:33:6B:D3:06:2A:E6:F1:65:B9:7E:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cc60a6c1-c081-439b-ae8d-8149b634d5a2/0/26A14190F845A3F3FC336BD3062AE6F165B97E5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26A14190F845A3F3FC336BD3062AE6F165B97E5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cc60a6c1-c081-439b-ae8d-8149b634d5a2/0/3130332e3134352e3134362e302f32332d3233203d3e20313430303038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.146.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:ed:50:13:e0:48:c5:a6:4f:9c:0d:74:3a:3f:9f:5f:17:20: f5:75:b9:4e:13:3c:62:03:fb:c5:73:0e:46:1b:2f:2e:5f:43: 75:ee:35:70:6d:e2:06:4e:7e:ff:6f:de:c8:6c:95:ec:10:36: 85:5a:cb:71:d6:64:f5:4c:26:0c:f6:25:e3:ed:aa:64:86:9f: 51:d7:24:5b:31:08:f9:d8:b8:e7:48:26:05:5f:8c:f8:3a:f2: 30:63:15:36:dc:97:fa:d5:01:af:e3:9a:ad:50:43:0d:d1:52: 2a:ea:7e:b1:b1:f4:20:19:e2:bf:c0:9f:4e:c4:83:b9:aa:28: 16:e6:0a:17:4d:92:89:6f:85:cb:bf:87:78:94:04:4b:ae:4c: 43:14:35:9a:df:1f:0f:76:ad:ee:89:16:b7:ee:cb:b7:96:af: 28:a5:1f:73:7c:81:31:55:ff:3b:8d:b9:16:2a:16:f2:42:a3: 1c:d8:6f:3c:53:6b:22:df:d9:e6:40:b8:19:67:02:af:c8:f4: be:0c:c8:dd:51:02:d7:4f:44:74:94:7d:a0:5f:cf:d6:29:45: 4a:fe:b8:e2:9f:8b:19:bf:a2:fe:a6:ca:0c:29:81:e5:fe:17: 9c:a3:ef:83:24:6f:e4:ea:8b:37:56:0a:54:22:d1:e9:99:d3: fa:7d:16:17 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIO8obsY/bhdGDSywaeaeXTy+E/UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjZBMTQxOTBGODQ1QTNGM0ZDMzM2QkQzMDYyQUU2RjE2 NUI5N0U1QzAeFw0yNDEwMzEwNTU1MDFaFw0yNTEwMzAwNjAwMDFaMDMxMTAvBgNV BAMTKDhGNTI0NjcwOEEzRjRBRDk3MTM5QTVFM0RFQ0QxNkNDQzYzMDhCRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlIDJZzaZ/nsMc+gRU/EIuUSrP 3+gno3jnEeijO/ur59sucKydyQv2qOMBcQZmiCSfcm35ZETGYSWAl6ethgFrHEwD n8TDjQu36BOJ4MHjX7E4XYoifKpmwTgbgny4AXbhFjKadxDgrE0xWPdTabg7JYAE aXdD7jL9JDWGzKoHqd5vQTc+rZjQu/5qafoCx7oEzPtdZRDvRI32MIWPxa4MrRgE +XOVwkdTqBSGSmSz8UulKqKW1yw1UYKIpyGhR7SNNwLgPNYaNyC/qF/ZXpcvYmRI jzgQUhzgGSBfdpVXhi1DPcbTCf4kWWUNJNe4grsyJmLIIBjGwyLBNveIUqhnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUj1JGcIo/StlxOaXj3s0WzMYwi9QwHwYDVR0j BBgwFoAUJqFBkPhFo/P8M2vTBirm8WW5flwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YzYwYTZjMS1jMDgxLTQzOWItYWU4ZC04MTQ5YjYzNGQ1YTIvMC8yNkExNDE5MEY4 NDVBM0YzRkMzMzZCRDMwNjJBRTZGMTY1Qjk3RTVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjZBMTQxOTBGODQ1QTNGM0ZDMzM2QkQzMDYyQUU2RjE2NUI5 N0U1Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjNjBhNmMxLWMwODEtNDM5Yi1h ZThkLTgxNDliNjM0ZDVhMi8wLzMxMzAzMzJlMzEzNDM1MmUzMTM0MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzMDMwMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnkZIwDQYJ KoZIhvcNAQELBQADggEBAA7tUBPgSMWmT5wNdDo/n18XIPV1uU4TPGID+8VzDkYb Ly5fQ3XuNXBt4gZOfv9v3shslewQNoVay3HWZPVMJgz2JePtqmSGn1HXJFsxCPnY uOdIJgVfjPg68jBjFTbcl/rVAa/jmq1QQw3RUirqfrGx9CAZ4r/An07Eg7mqKBbm ChdNkolvhcu/h3iUBEuuTEMUNZrfHw92re6JFrfuy7eWryilH3N8gTFV/zuNuRYq FvJCoxzYbzxTayLf2eZAuBlnAq/I9L4MyN1RAtdPRHSUfaBfz9YpRUr+uOKfixm/ ov6mygwpgeX+F5yj74Mkb+TqizdWClQi0emZ0/p9Fhc= -----END CERTIFICATE-----Generated at Fri Feb 21 11:25:34 2025 by rpki-client