$ rpki-client -vvf repo-rpki.idnic.net/repo/ccbcc00d-ce79-4216-a62b-e3d50cc79442/0/3130332e332e35392e302f32342d3234203d3e203435323839.roa File: 3130332e332e35392e302f32342d3234203d3e203435323839.roa (raw, json) Hash identifier: JnLquCgIroielTjx4ROKisgjaiP3OgaMmkhANFXPFCc= Subject key identifier: 75:D0:E8:5C:C6:0A:57:1C:C8:8D:B0:CC:1F:B9:5C:DB:CE:FC:09:82 Certificate issuer: /CN=9973E5D6F7F65DCF015E9DAFCEF394F512E4FD61 Certificate serial: 1C5E5DDF6C2AAEF489A8AE9E174160A3A840944C Authority key identifier: 99:73:E5:D6:F7:F6:5D:CF:01:5E:9D:AF:CE:F3:94:F5:12:E4:FD:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9973E5D6F7F65DCF015E9DAFCEF394F512E4FD61.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ccbcc00d-ce79-4216-a62b-e3d50cc79442/0/3130332e332e35392e302f32342d3234203d3e203435323839.roa Signing time: Tue 11 Feb 2025 10:00:01 +0000 ROA not before: Tue 11 Feb 2025 09:55:01 +0000 ROA not after: Tue 10 Feb 2026 10:00:01 +0000 asID: 45289 IP address blocks: 103.3.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ccbcc00d-ce79-4216-a62b-e3d50cc79442/0/9973E5D6F7F65DCF015E9DAFCEF394F512E4FD61.crl rsync://repo-rpki.idnic.net/repo/ccbcc00d-ce79-4216-a62b-e3d50cc79442/0/9973E5D6F7F65DCF015E9DAFCEF394F512E4FD61.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9973E5D6F7F65DCF015E9DAFCEF394F512E4FD61.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 02:13:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:5e:5d:df:6c:2a:ae:f4:89:a8:ae:9e:17:41:60:a3:a8:40:94:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9973E5D6F7F65DCF015E9DAFCEF394F512E4FD61 Validity Not Before: Feb 11 09:55:01 2025 GMT Not After : Feb 10 10:00:01 2026 GMT Subject: CN=75D0E85CC60A571CC88DB0CC1FB95CDBCEFC0982 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6c:7f:37:12:9c:72:c8:75:7d:79:6b:5a:36: 8b:09:15:74:7b:37:b3:8b:40:1b:d0:48:a0:46:d7: 8b:3d:72:9d:1e:b2:0d:91:c3:10:71:6c:64:5b:90: 03:7a:75:34:5f:84:1c:20:6a:c4:73:52:f4:2d:f8: 59:2c:e5:e0:82:b6:85:ef:0d:b5:a6:0b:18:8a:4d: 21:77:56:a3:ff:cf:10:ec:b3:76:85:ec:7b:4d:b8: 5c:d4:3d:60:9b:8f:f9:09:59:cb:34:08:0d:d5:d5: 91:a9:72:b8:38:94:6a:4e:a6:e8:89:41:57:b9:78: 8f:88:4c:2a:20:24:c9:48:91:0e:09:e4:74:6e:5f: e9:95:2f:33:b4:2c:55:f9:bf:39:7b:ac:85:36:10: 63:80:a0:fd:e5:27:59:30:07:97:07:ba:f4:67:39: 15:ba:bf:bd:81:48:1c:7d:65:2b:8c:87:e9:ca:69: 25:7a:7c:72:a6:f4:c6:df:80:e0:06:66:05:9b:e7: 66:f2:9b:43:35:5f:aa:d4:d1:cb:59:bf:a8:42:dd: a1:94:36:08:97:19:2d:d9:f5:94:12:b2:63:6c:94: 14:de:7d:8b:7e:de:6b:ca:46:c9:09:e4:91:28:51: 99:4c:7b:5d:c5:2d:c5:03:d0:21:ae:93:39:06:eb: c9:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:D0:E8:5C:C6:0A:57:1C:C8:8D:B0:CC:1F:B9:5C:DB:CE:FC:09:82 X509v3 Authority Key Identifier: keyid:99:73:E5:D6:F7:F6:5D:CF:01:5E:9D:AF:CE:F3:94:F5:12:E4:FD:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ccbcc00d-ce79-4216-a62b-e3d50cc79442/0/9973E5D6F7F65DCF015E9DAFCEF394F512E4FD61.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9973E5D6F7F65DCF015E9DAFCEF394F512E4FD61.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccbcc00d-ce79-4216-a62b-e3d50cc79442/0/3130332e332e35392e302f32342d3234203d3e203435323839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.3.59.0/24 Signature Algorithm: sha256WithRSAEncryption b2:68:60:8b:3a:a4:3e:3e:0a:56:a8:73:bc:f4:b3:ad:25:16: b5:d3:9a:20:71:13:b7:2a:b0:d2:22:09:fa:dd:91:aa:29:c0: 97:08:34:7f:44:78:a9:31:43:07:e3:6e:ff:ac:5d:db:f5:41: 42:63:16:ce:8b:6f:24:b6:6d:01:62:85:88:49:48:8c:38:0e: 05:48:86:5e:bf:2a:b5:46:2f:70:7a:e8:9a:28:0b:e2:41:d7: 7d:10:e5:e7:21:4e:7e:d7:cd:c6:e6:a1:c6:7b:2a:d4:61:fa: 60:31:3a:fd:35:e3:d0:4f:01:95:98:61:78:23:ad:2a:82:a4: af:81:e8:43:95:6d:8d:75:36:ba:e7:f9:4d:87:90:fb:72:8b: 98:7e:61:c5:a2:fc:2e:d9:8c:dd:ec:94:cf:d4:96:cb:4b:38: d3:c3:52:e8:ed:2c:f1:fb:43:89:7c:6f:19:d3:66:ab:3f:fd: e9:24:7a:80:e2:eb:40:f0:6b:2b:14:b6:7b:f5:2f:2f:90:dd: b0:9a:17:ff:7c:f3:ad:b0:6c:41:cf:99:2e:8a:01:f5:9d:c6: 5e:85:a6:53:91:a6:a1:2a:50:08:84:e8:5e:51:cc:9b:e3:c1: d7:55:d5:ed:c6:18:39:8c:68:91:37:2c:de:cf:63:b6:87:cc: 7c:c5:73:51 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUHF5d32wqrvSJqK6eF0Fgo6hAlEwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTk3M0U1RDZGN0Y2NURDRjAxNUU5REFGQ0VGMzk0RjUx MkU0RkQ2MTAeFw0yNTAyMTEwOTU1MDFaFw0yNjAyMTAxMDAwMDFaMDMxMTAvBgNV BAMTKDc1RDBFODVDQzYwQTU3MUNDODhEQjBDQzFGQjk1Q0RCQ0VGQzA5ODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGbH83EpxyyHV9eWtaNosJFXR7 N7OLQBvQSKBG14s9cp0esg2RwxBxbGRbkAN6dTRfhBwgasRzUvQt+Fks5eCCtoXv DbWmCxiKTSF3VqP/zxDss3aF7HtNuFzUPWCbj/kJWcs0CA3V1ZGpcrg4lGpOpuiJ QVe5eI+ITCogJMlIkQ4J5HRuX+mVLzO0LFX5vzl7rIU2EGOAoP3lJ1kwB5cHuvRn ORW6v72BSBx9ZSuMh+nKaSV6fHKm9MbfgOAGZgWb52bym0M1X6rU0ctZv6hC3aGU NgiXGS3Z9ZQSsmNslBTefYt+3mvKRskJ5JEoUZlMe13FLcUD0CGukzkG68m1AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUddDoXMYKVxzIjbDMH7lc2878CYIwHwYDVR0j BBgwFoAUmXPl1vf2Xc8BXp2vzvOU9RLk/WEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Y2JjYzAwZC1jZTc5LTQyMTYtYTYyYi1lM2Q1MGNjNzk0NDIvMC85OTczRTVENkY3 RjY1RENGMDE1RTlEQUZDRUYzOTRGNTEyRTRGRDYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTk3M0U1RDZGN0Y2NURDRjAxNUU5REFGQ0VGMzk0RjUxMkU0 RkQ2MS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vY2NiY2MwMGQtY2U3OS00MjE2LWE2 MmItZTNkNTBjYzc5NDQyLzAvMzEzMDMzMmUzMzJlMzUzOTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM0MzUzMjM4Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnAzswDQYJKoZIhvcNAQEL BQADggEBALJoYIs6pD4+Claoc7z0s60lFrXTmiBxE7cqsNIiCfrdkaopwJcINH9E eKkxQwfjbv+sXdv1QUJjFs6LbyS2bQFihYhJSIw4DgVIhl6/KrVGL3B66JooC+JB 130Q5echTn7XzcbmocZ7KtRh+mAxOv0149BPAZWYYXgjrSqCpK+B6EOVbY11Nrrn +U2HkPtyi5h+YcWi/C7ZjN3slM/UlstLONPDUujtLPH7Q4l8bxnTZqs//ekkeoDi 60DwaysUtnv1Ly+Q3bCaF/98862wbEHPmS6KAfWdxl6FplORpqEqUAiE6F5RzJvj wddV1e3GGDmMaJE3LN7PY7aHzHzFc1E= -----END CERTIFICATE-----Generated at Sun Apr 6 05:53:05 2025 by rpki-client