$ rpki-client -vvf repo-rpki.idnic.net/repo/cc8d4ee2-549e-4160-8d6f-87730e8ae5e2/0/3130332e3132392e35382e302f32332d3234203d3e20313335343738.roa File: 3130332e3132392e35382e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: znoG+tzolSoK4k4/3nWegkyYPSmCV03zZXbpGFh3j3Q= Subject key identifier: DF:22:3B:D0:8A:6B:48:B0:8C:7B:2E:96:A9:52:D7:D5:2A:0E:0A:23 Certificate issuer: /CN=819AD043A7A2F8424ABC9E6CFD9C518670507FC3 Certificate serial: 02F97F9E50DBF33DA42597634938714443390DE4 Authority key identifier: 81:9A:D0:43:A7:A2:F8:42:4A:BC:9E:6C:FD:9C:51:86:70:50:7F:C3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/819AD043A7A2F8424ABC9E6CFD9C518670507FC3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cc8d4ee2-549e-4160-8d6f-87730e8ae5e2/0/3130332e3132392e35382e302f32332d3234203d3e20313335343738.roa Signing time: Wed 04 Dec 2024 09:03:09 +0000 ROA not before: Wed 04 Dec 2024 08:58:09 +0000 ROA not after: Wed 03 Dec 2025 09:03:09 +0000 asID: 135478 IP address blocks: 103.129.58.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cc8d4ee2-549e-4160-8d6f-87730e8ae5e2/0/819AD043A7A2F8424ABC9E6CFD9C518670507FC3.crl rsync://repo-rpki.idnic.net/repo/cc8d4ee2-549e-4160-8d6f-87730e8ae5e2/0/819AD043A7A2F8424ABC9E6CFD9C518670507FC3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/819AD043A7A2F8424ABC9E6CFD9C518670507FC3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 11:46:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:f9:7f:9e:50:db:f3:3d:a4:25:97:63:49:38:71:44:43:39:0d:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=819AD043A7A2F8424ABC9E6CFD9C518670507FC3 Validity Not Before: Dec 4 08:58:09 2024 GMT Not After : Dec 3 09:03:09 2025 GMT Subject: CN=DF223BD08A6B48B08C7B2E96A952D7D52A0E0A23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f5:a3:96:53:35:d3:62:df:62:02:70:e9:c1: e4:f5:fc:bd:71:c4:b6:10:76:ed:38:6b:fd:a4:57: 09:4d:6a:fe:07:7c:2c:66:92:de:24:f6:80:d7:89: aa:01:ed:f3:a2:62:cc:67:31:d9:51:0c:d2:51:88: 6d:98:8c:ca:9a:03:ab:93:1c:db:7b:79:9c:33:ed: 9f:50:eb:18:91:3d:07:6f:99:d9:2e:de:b3:ab:57: 4b:da:17:8d:2f:3a:82:de:ff:48:c6:d9:2e:5a:0a: e3:5c:b4:18:c9:b5:68:c8:12:2a:a6:7b:48:56:f2: a3:e6:ac:46:66:89:fe:07:86:ff:f2:d5:58:20:cd: 59:5b:9d:d6:7f:34:6f:0d:df:a4:3b:ae:4a:c8:72: 5b:79:f4:c5:82:a2:30:2b:d4:fb:d2:ae:eb:89:01: a3:78:b2:a4:cf:d6:b4:b5:74:2a:c7:b2:d0:62:32: 5d:98:5c:04:45:11:6d:4c:5c:ea:e8:97:23:e7:04: 5d:97:8d:f7:ef:c3:1b:29:67:a3:bc:bc:51:20:43: e2:b2:51:94:39:8b:84:1d:2f:9d:cc:2d:17:2b:2d: 49:da:1f:fc:42:b1:0d:a0:74:b3:7f:e3:07:80:44: 2a:24:77:81:33:2e:53:4a:5d:76:94:d5:70:c5:9a: 41:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:22:3B:D0:8A:6B:48:B0:8C:7B:2E:96:A9:52:D7:D5:2A:0E:0A:23 X509v3 Authority Key Identifier: keyid:81:9A:D0:43:A7:A2:F8:42:4A:BC:9E:6C:FD:9C:51:86:70:50:7F:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cc8d4ee2-549e-4160-8d6f-87730e8ae5e2/0/819AD043A7A2F8424ABC9E6CFD9C518670507FC3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/819AD043A7A2F8424ABC9E6CFD9C518670507FC3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cc8d4ee2-549e-4160-8d6f-87730e8ae5e2/0/3130332e3132392e35382e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.58.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:57:e0:c3:b2:8c:73:fe:0e:aa:4a:c0:75:ea:b3:f4:66:86: 1a:d7:1c:fb:6e:93:ab:11:2a:be:83:3c:3f:0b:5a:f3:2f:33: a9:20:65:64:d9:6b:25:6c:c4:67:9e:b5:98:74:38:1f:bc:fb: 32:56:83:70:50:f4:a8:d4:1d:ff:31:79:5b:41:71:f6:1f:ce: 52:12:51:4e:b9:53:c5:36:98:a9:35:c6:4a:6b:fe:6c:11:ca: 6a:29:8d:29:d2:37:cd:04:a7:2f:b1:be:13:2c:80:78:26:1a: f6:6d:85:07:2a:a2:c9:cd:bf:7f:1c:a2:77:52:d3:1e:2b:6b: 57:ee:5f:06:b8:6f:17:d3:a5:59:32:fd:9d:14:ed:cb:8e:2c: 40:6d:cc:47:de:2f:96:0a:c6:a2:5f:a5:7b:f6:88:fb:10:01: 8e:f9:80:8f:a9:39:db:36:2a:d6:39:b0:b7:bb:b3:da:f9:96: 8a:df:03:b0:9e:ac:ae:84:57:98:5f:c3:93:95:31:c8:a1:44: 0d:bb:63:8f:0c:ac:77:b9:20:05:3a:56:df:51:42:7d:2f:a1: 0f:ed:7c:21:2c:97:47:09:56:59:98:06:be:2d:f5:54:af:5a: 03:61:61:26:95:1d:06:0d:d3:89:ee:eb:ef:7f:d6:f1:e7:f6: 98:2f:4c:8f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAvl/nlDb8z2kJZdjSThxREM5DeQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODE5QUQwNDNBN0EyRjg0MjRBQkM5RTZDRkQ5QzUxODY3 MDUwN0ZDMzAeFw0yNDEyMDQwODU4MDlaFw0yNTEyMDMwOTAzMDlaMDMxMTAvBgNV BAMTKERGMjIzQkQwOEE2QjQ4QjA4QzdCMkU5NkE5NTJEN0Q1MkEwRTBBMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC99aOWUzXTYt9iAnDpweT1/L1x xLYQdu04a/2kVwlNav4HfCxmkt4k9oDXiaoB7fOiYsxnMdlRDNJRiG2YjMqaA6uT HNt7eZwz7Z9Q6xiRPQdvmdku3rOrV0vaF40vOoLe/0jG2S5aCuNctBjJtWjIEiqm e0hW8qPmrEZmif4Hhv/y1VggzVlbndZ/NG8N36Q7rkrIclt59MWCojAr1PvSruuJ AaN4sqTP1rS1dCrHstBiMl2YXARFEW1MXOrolyPnBF2XjffvwxspZ6O8vFEgQ+Ky UZQ5i4QdL53MLRcrLUnaH/xCsQ2gdLN/4weARCokd4EzLlNKXXaU1XDFmkHZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3yI70IprSLCMey6WqVLX1SoOCiMwHwYDVR0j BBgwFoAUgZrQQ6ei+EJKvJ5s/ZxRhnBQf8MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YzhkNGVlMi01NDllLTQxNjAtOGQ2Zi04NzczMGU4YWU1ZTIvMC84MTlBRDA0M0E3 QTJGODQyNEFCQzlFNkNGRDlDNTE4NjcwNTA3RkMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODE5QUQwNDNBN0EyRjg0MjRBQkM5RTZDRkQ5QzUxODY3MDUw N0ZDMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjOGQ0ZWUyLTU0OWUtNDE2MC04 ZDZmLTg3NzMwZThhZTVlMi8wLzMxMzAzMzJlMzEzMjM5MmUzNTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4E6MA0GCSqG SIb3DQEBCwUAA4IBAQCdV+DDsoxz/g6qSsB16rP0ZoYa1xz7bpOrESq+gzw/C1rz LzOpIGVk2WslbMRnnrWYdDgfvPsyVoNwUPSo1B3/MXlbQXH2H85SElFOuVPFNpip NcZKa/5sEcpqKY0p0jfNBKcvsb4TLIB4Jhr2bYUHKqLJzb9/HKJ3UtMeK2tX7l8G uG8X06VZMv2dFO3LjixAbcxH3i+WCsaiX6V79oj7EAGO+YCPqTnbNirWObC3u7Pa +ZaK3wOwnqyuhFeYX8OTlTHIoUQNu2OPDKx3uSAFOlbfUUJ9L6EP7XwhLJdHCVZZ mAa+LfVUr1oDYWEmlR0GDdOJ7uvvf9bx5/aYL0yP -----END CERTIFICATE-----Generated at Sun Apr 6 10:57:37 2025 by rpki-client