$ rpki-client -vvf repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233392e302f32342d3234203d3e20313335343339.roa File: 3130332e3231342e3233392e302f32342d3234203d3e20313335343339.roa (raw, json) Hash identifier: VMR23vWqztgF5Q/iMRDhZJFW6rkTGEBU0HHkzSi1LgY= Subject key identifier: B8:CC:DB:44:6C:2A:12:8A:A8:79:CE:4E:33:2B:16:E6:56:35:51:9F Certificate issuer: /CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE Certificate serial: 3876CADCEDD7F576B0EA17E2FCE5477F302325F1 Authority key identifier: 97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233392e302f32342d3234203d3e20313335343339.roa Signing time: Sun 01 Dec 2024 09:00:01 +0000 ROA not before: Sun 01 Dec 2024 08:55:01 +0000 ROA not after: Sun 30 Nov 2025 09:00:01 +0000 asID: 135439 IP address blocks: 103.214.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.crl rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 03:02:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:76:ca:dc:ed:d7:f5:76:b0:ea:17:e2:fc:e5:47:7f:30:23:25:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE Validity Not Before: Dec 1 08:55:01 2024 GMT Not After : Nov 30 09:00:01 2025 GMT Subject: CN=B8CCDB446C2A128AA879CE4E332B16E65635519F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:50:37:00:a3:09:b2:9e:f5:19:46:d7:69:8d: 48:55:ca:72:16:ac:26:fc:e3:f6:20:b4:ab:ce:02: 8b:ba:c5:37:36:68:4c:17:f1:79:45:31:a8:a5:78: 8a:ae:f8:16:5c:57:d3:11:ba:3e:54:64:aa:fb:a7: 67:26:99:64:01:45:ad:0f:64:de:03:2d:20:03:57: 26:e8:07:5c:04:ed:6a:49:44:fb:ab:21:50:02:0a: ff:ef:b1:1f:da:14:35:c1:66:5c:96:5d:40:88:49: d5:42:79:c6:7e:e9:29:dd:78:99:b0:e1:f1:15:ec: 96:9f:9c:90:30:6f:20:0b:2e:37:6a:1d:3b:e9:71: 53:ba:0e:12:90:d7:5f:fb:85:c8:d7:24:15:19:89: a4:6c:3e:a5:90:bc:1c:19:b1:49:db:ce:78:75:b1: db:3a:9b:b1:db:60:c0:5d:e6:3a:07:86:9a:8a:84: dc:ea:51:31:d6:ea:5e:4b:32:43:8d:8a:97:85:7b: 8b:76:dc:db:a4:93:7e:5f:1f:8b:89:49:7f:ea:97: f7:b6:6e:f1:68:33:e8:3f:a5:e8:51:a4:73:c9:5b: 9f:f7:c0:83:2f:cb:fc:52:54:e8:d9:dc:cc:82:25: f1:b0:20:39:8d:32:83:c7:8b:ed:f1:e2:5a:81:94: 32:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:CC:DB:44:6C:2A:12:8A:A8:79:CE:4E:33:2B:16:E6:56:35:51:9F X509v3 Authority Key Identifier: keyid:97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233392e302f32342d3234203d3e20313335343339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.214.239.0/24 Signature Algorithm: sha256WithRSAEncryption 98:3b:56:19:4e:d4:87:84:94:ed:77:37:71:71:38:a8:d6:dd: 3c:6c:db:71:ce:f3:93:0a:6b:59:64:f0:fd:3c:cc:b9:91:ca: a7:15:17:8e:5e:60:0e:b8:90:8f:2d:df:ef:46:fd:5f:44:4b: a8:94:3c:4e:20:04:72:a2:fb:5e:14:97:9d:13:04:18:8b:8b: f5:1c:ed:99:80:8f:dd:05:55:eb:3c:cd:ea:fb:86:ee:1e:d6: 67:f1:02:64:cc:39:6a:5f:ee:86:fc:89:5f:92:e9:2e:29:f4: 22:a3:48:44:4c:c0:96:b5:e5:fb:fc:e5:0c:a4:15:a9:2b:26: e4:57:63:b2:6a:04:75:02:70:f4:27:65:d1:3f:bd:d4:7b:1d: 8f:5a:9a:1a:e2:dd:7d:24:f1:b0:f1:67:18:13:9c:79:bf:41: d1:85:ab:35:ac:7e:58:fd:97:20:f8:22:1e:9c:ff:2e:a4:b0: 8b:6a:41:45:51:cb:6a:60:54:7f:9c:f2:4c:f3:86:19:05:2e: e6:8e:5a:29:12:49:dd:b0:6c:6d:98:90:29:06:76:bd:92:2e: 96:4e:3f:47:b6:a7:0f:1d:70:20:f3:ac:52:c6:6a:60:d3:2d: e7:52:4d:ff:3d:14:9a:10:e9:37:44:35:4a:83:55:80:c4:85: 73:b8:cf:f8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOHbK3O3X9Xaw6hfi/OVHfzAjJfEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTc5QjMyOTM1RUJGQTJEQTZEQ0IwQTc5REIzOTdGRDdC NDlENEVGRTAeFw0yNDEyMDEwODU1MDFaFw0yNTExMzAwOTAwMDFaMDMxMTAvBgNV BAMTKEI4Q0NEQjQ0NkMyQTEyOEFBODc5Q0U0RTMzMkIxNkU2NTYzNTUxOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGUDcAowmynvUZRtdpjUhVynIW rCb84/YgtKvOAou6xTc2aEwX8XlFMaileIqu+BZcV9MRuj5UZKr7p2cmmWQBRa0P ZN4DLSADVyboB1wE7WpJRPurIVACCv/vsR/aFDXBZlyWXUCISdVCecZ+6SndeJmw 4fEV7JafnJAwbyALLjdqHTvpcVO6DhKQ11/7hcjXJBUZiaRsPqWQvBwZsUnbznh1 sds6m7HbYMBd5joHhpqKhNzqUTHW6l5LMkONipeFe4t23Nukk35fH4uJSX/ql/e2 bvFoM+g/pehRpHPJW5/3wIMvy/xSVOjZ3MyCJfGwIDmNMoPHi+3x4lqBlDL9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUuMzbRGwqEoqoec5OMysW5lY1UZ8wHwYDVR0j BBgwFoAUl5syk16/otptywp52zl/17SdTv4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZGU3MTQzNy04NWZjLTQ3YWYtOTY4Ny05MDNiYWZiMmMxNjEvMC85NzlCMzI5MzVF QkZBMkRBNkRDQjBBNzlEQjM5N0ZEN0I0OUQ0RUZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTc5QjMyOTM1RUJGQTJEQTZEQ0IwQTc5REIzOTdGRDdCNDlE NEVGRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NkZTcxNDM3LTg1ZmMtNDdhZi05 Njg3LTkwM2JhZmIyYzE2MS8wLzMxMzAzMzJlMzIzMTM0MmUzMjMzMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzUzNDMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn1u8wDQYJ KoZIhvcNAQELBQADggEBAJg7VhlO1IeElO13N3FxOKjW3Txs23HO85MKa1lk8P08 zLmRyqcVF45eYA64kI8t3+9G/V9ES6iUPE4gBHKi+14Ul50TBBiLi/Uc7ZmAj90F Ves8zer7hu4e1mfxAmTMOWpf7ob8iV+S6S4p9CKjSERMwJa15fv85QykFakrJuRX Y7JqBHUCcPQnZdE/vdR7HY9amhri3X0k8bDxZxgTnHm/QdGFqzWsflj9lyD4Ih6c /y6ksItqQUVRy2pgVH+c8kzzhhkFLuaOWikSSd2wbG2YkCkGdr2SLpZOP0e2pw8d cCDzrFLGamDTLedSTf89FJoQ6TdENUqDVYDEhXO4z/g= -----END CERTIFICATE-----Generated at Sun Apr 6 11:16:23 2025 by rpki-client