$ rpki-client -vvf repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/3130332e3135362e31342e302f32332d3234203d3e203538383231.roa File: 3130332e3135362e31342e302f32332d3234203d3e203538383231.roa (raw, json) Hash identifier: uhbTS40xOE2iorcFCGhU6uKqyXCDewHO7yiFkBSc5gw= Subject key identifier: 48:B0:72:3D:A4:A8:12:F3:2C:C4:3C:AF:A1:71:D7:6A:CB:A1:5D:FD Certificate issuer: /CN=1D8D9CBC52934EF02BCD1D478AEBA6A368F80419 Certificate serial: 1116ECA79EFE7445EC66AA7F0D76CBEAC4121721 Authority key identifier: 1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/3130332e3135362e31342e302f32332d3234203d3e203538383231.roa Signing time: Sat 21 Dec 2024 08:00:00 +0000 ROA not before: Sat 21 Dec 2024 07:55:00 +0000 ROA not after: Sat 20 Dec 2025 08:00:00 +0000 asID: 58821 IP address blocks: 103.156.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 17:58:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:16:ec:a7:9e:fe:74:45:ec:66:aa:7f:0d:76:cb:ea:c4:12:17:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D8D9CBC52934EF02BCD1D478AEBA6A368F80419 Validity Not Before: Dec 21 07:55:00 2024 GMT Not After : Dec 20 08:00:00 2025 GMT Subject: CN=48B0723DA4A812F32CC43CAFA171D76ACBA15DFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:cd:8b:6f:9e:07:2d:9b:32:83:5e:a3:4e:6e: b2:8d:9a:6c:0a:ff:fd:f3:a0:e8:83:ba:f9:7b:04: 01:cc:2b:f8:03:fd:3b:54:2f:92:36:b6:73:57:bc: 7e:59:f2:2a:eb:9d:53:bc:cf:81:95:d2:25:28:fe: ab:6d:42:f2:0f:9d:a1:40:c5:29:af:1d:48:09:c2: 8c:4a:ea:26:64:d5:25:28:b4:4f:57:df:8f:aa:37: ea:de:19:d7:3d:8c:26:89:00:d7:c1:1b:ca:aa:62: dd:83:59:ca:4d:06:89:87:42:3e:c9:32:f0:94:76: 05:41:a0:ca:bd:c8:fa:ab:5c:e6:c3:eb:cf:ab:ad: d5:d5:ea:ae:67:19:28:7a:37:a5:45:49:0a:7b:06: 24:57:93:ca:56:50:19:8e:ae:58:0f:ed:f4:bd:b6: f7:cb:e0:24:d0:ff:a0:35:67:a6:60:82:af:6b:5f: 9b:a4:e6:70:3b:a9:37:e9:c3:8c:a0:a3:54:cd:b2: 43:e6:10:21:e5:70:41:90:e8:55:5c:62:1d:aa:de: 36:0e:60:c6:4f:06:eb:df:f8:c3:cf:02:59:80:9b: d1:43:cc:88:db:04:2f:6c:0a:d6:7c:02:2b:35:0c: 19:c6:c8:22:6c:73:fa:bb:05:0e:36:ea:49:f7:a4: 71:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:B0:72:3D:A4:A8:12:F3:2C:C4:3C:AF:A1:71:D7:6A:CB:A1:5D:FD X509v3 Authority Key Identifier: keyid:1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/3130332e3135362e31342e302f32332d3234203d3e203538383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.14.0/23 Signature Algorithm: sha256WithRSAEncryption b4:12:73:3f:1a:78:b2:df:9e:00:2c:73:49:fd:0c:89:35:5b: 43:59:f9:23:53:95:5e:99:25:7f:e3:43:5f:3f:73:d1:ec:4b: 44:86:d0:f8:9d:31:8f:1b:e6:a6:27:74:b3:76:30:5b:e1:26: af:06:be:fc:ac:8a:4e:4b:71:3c:ae:bb:27:50:22:c1:39:b5: 1e:3e:b1:0c:7c:35:53:25:15:2d:9f:78:77:83:0f:2e:a4:58: 7f:7b:33:36:f2:3d:21:74:0c:42:3b:a4:cd:ca:7b:e4:8b:03: 84:6d:80:95:a3:ff:61:c0:d2:62:d2:99:d0:1d:a7:c5:39:93: f5:4d:e0:d8:31:dd:78:e4:ec:0d:a4:92:4f:fc:a7:7a:07:2e: 94:49:79:68:e4:26:29:db:7c:4a:2a:79:95:eb:07:3d:4f:1b: cf:69:b4:06:1d:52:a6:4e:3c:ee:ed:24:4a:ee:2e:46:c1:5e: 4e:9a:9b:35:ab:f4:45:cf:31:14:09:79:d9:4f:00:e0:68:d4: f2:75:50:cc:0c:e3:4c:91:76:e7:35:5a:cc:58:71:45:e9:bc: a1:01:25:88:ed:4f:b1:7f:83:31:db:75:77:78:61:78:ae:a0: fd:7a:d5:02:d8:75:b2:0b:d6:c4:84:07:f1:d9:f6:d5:0c:2e: 43:98:f6:40 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUERbsp57+dEXsZqp/DXbL6sQSFyEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2QTM2 OEY4MDQxOTAeFw0yNDEyMjEwNzU1MDBaFw0yNTEyMjAwODAwMDBaMDMxMTAvBgNV BAMTKDQ4QjA3MjNEQTRBODEyRjMyQ0M0M0NBRkExNzFENzZBQ0JBMTVERkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYzYtvngctmzKDXqNObrKNmmwK //3zoOiDuvl7BAHMK/gD/TtUL5I2tnNXvH5Z8irrnVO8z4GV0iUo/qttQvIPnaFA xSmvHUgJwoxK6iZk1SUotE9X34+qN+reGdc9jCaJANfBG8qqYt2DWcpNBomHQj7J MvCUdgVBoMq9yPqrXObD68+rrdXV6q5nGSh6N6VFSQp7BiRXk8pWUBmOrlgP7fS9 tvfL4CTQ/6A1Z6Zggq9rX5uk5nA7qTfpw4ygo1TNskPmECHlcEGQ6FVcYh2q3jYO YMZPBuvf+MPPAlmAm9FDzIjbBC9sCtZ8Ais1DBnGyCJsc/q7BQ426kn3pHG1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUSLByPaSoEvMsxDyvoXHXasuhXf0wHwYDVR0j BBgwFoAUHY2cvFKTTvArzR1Hiuumo2j4BBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZTFlYTUxMy1hYzZlLTRhNWYtYjNlYi1kNTM1MmNhZjQ4NmIvMC8xRDhEOUNCQzUy OTM0RUYwMkJDRDFENDc4QUVCQTZBMzY4RjgwNDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2QTM2OEY4 MDQxOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NlMWVhNTEzLWFjNmUtNGE1Zi1i M2ViLWQ1MzUyY2FmNDg2Yi8wLzMxMzAzMzJlMzEzNTM2MmUzMTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzODM4MzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWecDjANBgkqhkiG 9w0BAQsFAAOCAQEAtBJzPxp4st+eACxzSf0MiTVbQ1n5I1OVXpklf+NDXz9z0exL RIbQ+J0xjxvmpid0s3YwW+Emrwa+/KyKTktxPK67J1AiwTm1Hj6xDHw1UyUVLZ94 d4MPLqRYf3szNvI9IXQMQjukzcp75IsDhG2AlaP/YcDSYtKZ0B2nxTmT9U3g2DHd eOTsDaSST/ynegculEl5aOQmKdt8Sip5lesHPU8bz2m0Bh1Spk487u0kSu4uRsFe TpqbNav0Rc8xFAl52U8A4GjU8nVQzAzjTJF25zVazFhxRem8oQEliO1PsX+DMdt1 d3hheK6g/XrVAth1sgvWxIQH8dn21QwuQ5j2QA== -----END CERTIFICATE-----Generated at Sun Apr 6 11:54:47 2025 by rpki-client