$ rpki-client -vvf repo-rpki.idnic.net/repo/cc8d4ee2-549e-4160-8d6f-87730e8ae5e2/0/3130332e3132392e35362e302f32332d3234203d3e20313335343738.roa File: 3130332e3132392e35362e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: f0SGYOuYC9wlhNvu18Rx/15roii5H8mAD5EFZkRY12E= Subject key identifier: 07:58:54:60:A8:E4:61:E9:DD:9E:61:BF:85:24:44:A0:36:A0:1F:CA Certificate issuer: /CN=819AD043A7A2F8424ABC9E6CFD9C518670507FC3 Certificate serial: 6FD148A34ED0383478C732F9B42F55CEE0A61D17 Authority key identifier: 81:9A:D0:43:A7:A2:F8:42:4A:BC:9E:6C:FD:9C:51:86:70:50:7F:C3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/819AD043A7A2F8424ABC9E6CFD9C518670507FC3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cc8d4ee2-549e-4160-8d6f-87730e8ae5e2/0/3130332e3132392e35362e302f32332d3234203d3e20313335343738.roa Signing time: Wed 04 Dec 2024 09:03:09 +0000 ROA not before: Wed 04 Dec 2024 08:58:09 +0000 ROA not after: Wed 03 Dec 2025 09:03:09 +0000 asID: 135478 IP address blocks: 103.129.56.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cc8d4ee2-549e-4160-8d6f-87730e8ae5e2/0/819AD043A7A2F8424ABC9E6CFD9C518670507FC3.crl rsync://repo-rpki.idnic.net/repo/cc8d4ee2-549e-4160-8d6f-87730e8ae5e2/0/819AD043A7A2F8424ABC9E6CFD9C518670507FC3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/819AD043A7A2F8424ABC9E6CFD9C518670507FC3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 11:46:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:d1:48:a3:4e:d0:38:34:78:c7:32:f9:b4:2f:55:ce:e0:a6:1d:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=819AD043A7A2F8424ABC9E6CFD9C518670507FC3 Validity Not Before: Dec 4 08:58:09 2024 GMT Not After : Dec 3 09:03:09 2025 GMT Subject: CN=07585460A8E461E9DD9E61BF852444A036A01FCA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:52:46:f2:e0:6e:e7:3d:eb:ca:06:f7:48:05: 7c:5d:2f:69:60:80:1b:52:f1:08:10:32:4f:83:67: 67:cd:c0:dd:be:17:e1:15:11:15:54:00:f4:6d:a6: 30:a5:0e:e6:d5:53:fb:5f:39:41:1d:04:60:2c:9f: 0a:11:ae:28:ed:9e:d2:4b:7b:8f:1f:10:04:8f:c3: 90:88:80:09:1a:b5:e0:cd:1a:0f:1f:68:8d:1d:aa: de:72:e4:2c:bd:b9:e1:2b:cc:57:9a:2d:4c:e3:f5: db:b7:30:b4:34:66:88:f5:ea:3e:1c:fc:5b:5a:78: d7:cb:ce:b3:13:17:15:07:7a:63:77:04:1b:52:2d: 02:14:6d:af:52:ca:4c:b0:aa:61:7e:1f:00:4c:3f: 83:36:1d:3f:8a:28:93:45:f2:f4:48:b8:c4:f2:10: 10:7d:12:79:93:c6:69:69:d7:16:e7:14:46:3a:eb: ae:5a:70:9c:c0:be:a3:ef:2a:46:9f:c8:8b:33:2e: 1f:3a:2a:b1:75:3d:66:7e:fc:c3:54:2a:5b:3a:db: 1f:92:09:17:ff:c1:a4:63:ba:38:44:4c:b7:42:d9: 25:d9:57:29:a0:27:ba:20:b6:7d:3f:8d:01:6e:ef: 70:bc:7c:de:ae:ed:05:c4:7e:7e:d0:63:f9:0c:e9: 41:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:58:54:60:A8:E4:61:E9:DD:9E:61:BF:85:24:44:A0:36:A0:1F:CA X509v3 Authority Key Identifier: keyid:81:9A:D0:43:A7:A2:F8:42:4A:BC:9E:6C:FD:9C:51:86:70:50:7F:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cc8d4ee2-549e-4160-8d6f-87730e8ae5e2/0/819AD043A7A2F8424ABC9E6CFD9C518670507FC3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/819AD043A7A2F8424ABC9E6CFD9C518670507FC3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cc8d4ee2-549e-4160-8d6f-87730e8ae5e2/0/3130332e3132392e35362e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.56.0/23 Signature Algorithm: sha256WithRSAEncryption 24:55:5e:bc:7f:52:1b:9a:a4:56:a4:69:ac:38:51:b6:4d:64: 2e:43:6d:26:8f:b3:12:5a:a8:61:2a:74:f8:6f:09:d4:ab:8c: 47:74:b1:53:1b:b3:df:bd:9d:3c:85:08:03:56:e2:4a:eb:0b: 3f:37:cd:91:c6:bc:83:29:ea:9d:2e:d0:70:55:46:5d:8c:05: 64:04:04:15:3e:b6:27:85:0b:02:45:c6:16:cf:11:37:9e:df: 08:9d:5d:e2:e9:28:39:9b:8f:23:3e:71:f2:c0:8f:1f:77:d3: da:32:68:98:ef:ba:6f:51:d1:53:ee:0c:42:e5:25:7c:9b:92: f8:98:f3:31:65:4d:8e:52:67:bd:e3:97:80:4f:e2:c8:0c:34: 6d:d9:0a:e3:70:a7:85:53:71:91:14:91:d7:84:2e:27:71:96: e0:7b:c8:cb:d5:a8:84:ed:30:6a:bf:72:d1:7a:a4:50:dd:40: c1:48:91:dc:a0:64:16:f8:61:d1:9a:09:02:36:c9:01:67:38: 56:d0:48:8f:3c:1c:e9:90:ba:5d:44:46:de:ec:42:75:9b:3e: 24:87:a4:45:66:e8:38:79:eb:70:b1:38:25:84:ff:f2:24:2f: 8d:ea:5a:1c:4b:aa:6b:80:c5:e3:a8:b9:3b:eb:98:4f:01:ef: 03:2f:e5:43 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUb9FIo07QODR4xzL5tC9VzuCmHRcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODE5QUQwNDNBN0EyRjg0MjRBQkM5RTZDRkQ5QzUxODY3 MDUwN0ZDMzAeFw0yNDEyMDQwODU4MDlaFw0yNTEyMDMwOTAzMDlaMDMxMTAvBgNV BAMTKDA3NTg1NDYwQThFNDYxRTlERDlFNjFCRjg1MjQ0NEEwMzZBMDFGQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYUkby4G7nPevKBvdIBXxdL2lg gBtS8QgQMk+DZ2fNwN2+F+EVERVUAPRtpjClDubVU/tfOUEdBGAsnwoRrijtntJL e48fEASPw5CIgAkateDNGg8faI0dqt5y5Cy9ueErzFeaLUzj9du3MLQ0Zoj16j4c /FtaeNfLzrMTFxUHemN3BBtSLQIUba9SykywqmF+HwBMP4M2HT+KKJNF8vRIuMTy EBB9EnmTxmlp1xbnFEY6665acJzAvqPvKkafyIszLh86KrF1PWZ+/MNUKls62x+S CRf/waRjujhETLdC2SXZVymgJ7ogtn0/jQFu73C8fN6u7QXEfn7QY/kM6UGdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUB1hUYKjkYendnmG/hSREoDagH8owHwYDVR0j BBgwFoAUgZrQQ6ei+EJKvJ5s/ZxRhnBQf8MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YzhkNGVlMi01NDllLTQxNjAtOGQ2Zi04NzczMGU4YWU1ZTIvMC84MTlBRDA0M0E3 QTJGODQyNEFCQzlFNkNGRDlDNTE4NjcwNTA3RkMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODE5QUQwNDNBN0EyRjg0MjRBQkM5RTZDRkQ5QzUxODY3MDUw N0ZDMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjOGQ0ZWUyLTU0OWUtNDE2MC04 ZDZmLTg3NzMwZThhZTVlMi8wLzMxMzAzMzJlMzEzMjM5MmUzNTM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4E4MA0GCSqG SIb3DQEBCwUAA4IBAQAkVV68f1IbmqRWpGmsOFG2TWQuQ20mj7MSWqhhKnT4bwnU q4xHdLFTG7PfvZ08hQgDVuJK6ws/N82RxryDKeqdLtBwVUZdjAVkBAQVPrYnhQsC RcYWzxE3nt8InV3i6Sg5m48jPnHywI8fd9PaMmiY77pvUdFT7gxC5SV8m5L4mPMx ZU2OUme945eAT+LIDDRt2QrjcKeFU3GRFJHXhC4ncZbge8jL1aiE7TBqv3LReqRQ 3UDBSJHcoGQW+GHRmgkCNskBZzhW0EiPPBzpkLpdREbe7EJ1mz4kh6RFZug4eetw sTglhP/yJC+N6locS6prgMXjqLk765hPAe8DL+VD -----END CERTIFICATE-----Generated at Sun Apr 6 10:57:56 2025 by rpki-client