$ rpki-client -vvf repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233362e302f32342d3234203d3e20313335343339.roa File: 3130332e3231342e3233362e302f32342d3234203d3e20313335343339.roa (raw, json) Hash identifier: pdPZa1hqVrYPWZYkmw/3L6oJ44J+aMpGpranP7CjD4s= Subject key identifier: 9B:70:7A:27:83:5F:39:06:B6:66:A6:26:B6:18:14:3A:3D:46:0F:69 Certificate issuer: /CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE Certificate serial: 63F77666717F9859912D1ED64B66E2D500A563F2 Authority key identifier: 97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233362e302f32342d3234203d3e20313335343339.roa Signing time: Sun 01 Dec 2024 09:00:01 +0000 ROA not before: Sun 01 Dec 2024 08:55:01 +0000 ROA not after: Sun 30 Nov 2025 09:00:01 +0000 asID: 135439 IP address blocks: 103.214.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.crl rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 03:02:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:f7:76:66:71:7f:98:59:91:2d:1e:d6:4b:66:e2:d5:00:a5:63:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE Validity Not Before: Dec 1 08:55:01 2024 GMT Not After : Nov 30 09:00:01 2025 GMT Subject: CN=9B707A27835F3906B666A626B618143A3D460F69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1c:19:b0:79:4a:c8:99:1e:e5:c2:8f:d3:89: 4d:cc:14:fa:c3:11:b8:a3:b1:e2:87:0b:a5:cc:0e: a9:0f:b6:77:1b:f3:2c:63:64:14:e1:3a:8e:44:8e: b4:26:83:9b:88:15:f7:46:03:34:4e:fe:38:46:70: 90:ef:a2:a5:46:1b:c2:fb:bd:f6:ff:bb:fe:20:00: b2:10:31:00:64:d7:fa:03:89:cd:d1:d6:ae:80:3f: 66:9d:a5:5d:4c:ae:90:e2:c8:21:b0:f2:e6:ec:68: 88:d6:a5:71:0e:87:83:c7:df:de:74:16:32:6b:3b: 69:cb:85:a0:95:a9:a2:38:b3:b7:a8:f1:aa:f0:86: c3:b3:0f:fa:eb:7c:ab:0a:ac:20:96:98:ff:09:81: a3:36:d2:64:f6:ce:5f:57:2f:9a:46:4e:84:24:8e: bc:2c:27:7f:e2:31:85:7c:52:dc:f5:12:66:1a:1e: 99:d9:f8:72:0d:a5:89:c9:1a:e4:05:0f:46:d7:3d: 41:87:74:0b:11:72:41:9b:51:2e:f7:03:9b:6c:73: ca:7b:cf:fe:46:6a:cc:db:de:41:7e:ab:5e:db:84: a9:7e:cd:30:c7:6c:04:69:6c:9d:dd:ee:db:2c:37: a5:e6:0b:43:0d:28:ff:5c:94:85:9c:99:c9:03:25: 78:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:70:7A:27:83:5F:39:06:B6:66:A6:26:B6:18:14:3A:3D:46:0F:69 X509v3 Authority Key Identifier: keyid:97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233362e302f32342d3234203d3e20313335343339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.214.236.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:a0:46:54:fe:6e:ac:ca:24:b1:6c:e7:89:f7:e8:99:7a:3c: c9:7d:fa:62:db:8a:6d:cb:bc:73:3a:13:0a:bf:2b:7c:01:c3: 0c:83:c1:2f:8e:a2:5f:c5:20:3a:f1:08:82:80:9c:2a:5d:08: ef:30:39:60:1d:a5:96:01:de:a7:6d:73:ae:f1:d1:a9:c0:bd: b1:97:32:2a:dc:f9:ed:93:3c:5a:39:6d:d3:8b:17:03:80:5d: 7d:4d:96:82:a5:ba:86:07:41:d6:21:62:e6:9a:1a:9e:86:13: d3:b8:be:1b:47:0e:e2:1e:df:f9:de:e6:56:d3:e3:57:fb:27: 1a:53:aa:6f:99:97:df:f4:1b:39:d9:6e:9c:f7:cc:a9:ce:2c: 01:43:d1:18:74:12:8d:29:9e:66:22:34:cd:79:d0:30:89:b6: 5d:04:5f:d0:44:e9:07:e4:35:a4:dd:40:8f:18:0b:d3:a9:d4: 4b:95:ca:97:4c:2e:e8:78:9c:43:e9:e1:15:0b:11:cc:7f:74: b6:ea:c1:3c:04:67:f8:0c:27:84:e0:0e:23:1b:59:83:11:be: ca:84:75:a4:aa:e1:fe:ac:f8:1b:36:f0:9f:6d:26:b0:d6:83: 5b:3b:26:54:45:b9:bc:3f:0b:23:16:55:66:ec:e7:cd:09:e6: 1c:82:ba:a4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUY/d2ZnF/mFmRLR7WS2bi1QClY/IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTc5QjMyOTM1RUJGQTJEQTZEQ0IwQTc5REIzOTdGRDdC NDlENEVGRTAeFw0yNDEyMDEwODU1MDFaFw0yNTExMzAwOTAwMDFaMDMxMTAvBgNV BAMTKDlCNzA3QTI3ODM1RjM5MDZCNjY2QTYyNkI2MTgxNDNBM0Q0NjBGNjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7HBmweUrImR7lwo/TiU3MFPrD EbijseKHC6XMDqkPtncb8yxjZBThOo5EjrQmg5uIFfdGAzRO/jhGcJDvoqVGG8L7 vfb/u/4gALIQMQBk1/oDic3R1q6AP2adpV1MrpDiyCGw8ubsaIjWpXEOh4PH3950 FjJrO2nLhaCVqaI4s7eo8arwhsOzD/rrfKsKrCCWmP8JgaM20mT2zl9XL5pGToQk jrwsJ3/iMYV8Utz1EmYaHpnZ+HINpYnJGuQFD0bXPUGHdAsRckGbUS73A5tsc8p7 z/5Gaszb3kF+q17bhKl+zTDHbARpbJ3d7tssN6XmC0MNKP9clIWcmckDJXjLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUm3B6J4NfOQa2ZqYmthgUOj1GD2kwHwYDVR0j BBgwFoAUl5syk16/otptywp52zl/17SdTv4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZGU3MTQzNy04NWZjLTQ3YWYtOTY4Ny05MDNiYWZiMmMxNjEvMC85NzlCMzI5MzVF QkZBMkRBNkRDQjBBNzlEQjM5N0ZEN0I0OUQ0RUZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTc5QjMyOTM1RUJGQTJEQTZEQ0IwQTc5REIzOTdGRDdCNDlE NEVGRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NkZTcxNDM3LTg1ZmMtNDdhZi05 Njg3LTkwM2JhZmIyYzE2MS8wLzMxMzAzMzJlMzIzMTM0MmUzMjMzMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzUzNDMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn1uwwDQYJ KoZIhvcNAQELBQADggEBAB6gRlT+bqzKJLFs54n36Jl6PMl9+mLbim3LvHM6Ewq/ K3wBwwyDwS+Ool/FIDrxCIKAnCpdCO8wOWAdpZYB3qdtc67x0anAvbGXMirc+e2T PFo5bdOLFwOAXX1NloKluoYHQdYhYuaaGp6GE9O4vhtHDuIe3/ne5lbT41f7JxpT qm+Zl9/0GznZbpz3zKnOLAFD0Rh0Eo0pnmYiNM150DCJtl0EX9BE6QfkNaTdQI8Y C9Op1EuVypdMLuh4nEPp4RULEcx/dLbqwTwEZ/gMJ4TgDiMbWYMRvsqEdaSq4f6s +Bs28J9tJrDWg1s7JlRFubw/CyMWVWbs580J5hyCuqQ= -----END CERTIFICATE-----Generated at Sun Apr 6 11:10:41 2025 by rpki-client