$ rpki-client -vvf repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/3130332e3234362e3136392e302f32342d3234203d3e203538333835.roa File: 3130332e3234362e3136392e302f32342d3234203d3e203538333835.roa (raw, json) Hash identifier: 8meh4qssPriL64kBvXs5YtBumf6ArWnflJaVktjo3Fo= Subject key identifier: 48:BE:B9:E9:EA:23:24:9E:A4:28:BF:8C:E9:CD:8A:DB:E4:0F:F6:4D Certificate issuer: /CN=B891A45840F824B9F116CBEAA3574A68343F5538 Certificate serial: 4E4E02ADA92757300876E3CA3ADC5BEB5F3D88D7 Authority key identifier: B8:91:A4:58:40:F8:24:B9:F1:16:CB:EA:A3:57:4A:68:34:3F:55:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B891A45840F824B9F116CBEAA3574A68343F5538.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/3130332e3234362e3136392e302f32342d3234203d3e203538333835.roa Signing time: Mon 23 Dec 2024 17:01:24 +0000 ROA not before: Mon 23 Dec 2024 16:56:24 +0000 ROA not after: Mon 22 Dec 2025 17:01:24 +0000 asID: 58385 IP address blocks: 103.246.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/B891A45840F824B9F116CBEAA3574A68343F5538.crl rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/B891A45840F824B9F116CBEAA3574A68343F5538.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B891A45840F824B9F116CBEAA3574A68343F5538.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 13:52:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:4e:02:ad:a9:27:57:30:08:76:e3:ca:3a:dc:5b:eb:5f:3d:88:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B891A45840F824B9F116CBEAA3574A68343F5538 Validity Not Before: Dec 23 16:56:24 2024 GMT Not After : Dec 22 17:01:24 2025 GMT Subject: CN=48BEB9E9EA23249EA428BF8CE9CD8ADBE40FF64D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a3:86:ff:3f:77:d4:4e:86:9b:57:93:ee:48: c0:58:8a:30:29:96:5b:2d:60:be:5a:04:65:8c:8b: af:6c:db:06:49:be:a4:ba:a3:2c:73:65:33:ca:b4: ae:19:ff:87:d9:ef:a0:76:38:21:67:04:14:94:d3: 98:b5:da:5d:0e:47:5b:4c:6b:41:94:cc:fe:47:59: 0e:75:1e:49:69:14:aa:92:f8:bf:06:6e:12:1c:5f: 4b:7e:9f:6c:e6:6a:8a:fc:84:84:87:2f:fd:b9:fd: 29:2b:f7:27:43:e6:ea:a9:f5:78:b1:7a:6d:fa:cd: 30:fd:45:7b:23:a3:5a:bc:a4:d2:ef:06:9a:e4:3a: 49:b9:a9:53:cb:2d:b2:46:f6:45:58:cd:15:9e:d3: 40:db:a8:9d:f6:61:7f:90:10:73:ae:d1:38:0c:a5: 3d:83:d9:64:68:b8:ed:1e:dd:91:0d:2c:84:88:58: 9a:31:61:8a:54:32:64:f2:72:00:ac:74:76:70:d4: a1:f0:5a:b8:2f:f9:90:62:b2:78:1a:ce:ef:57:31: 03:81:36:d4:85:61:7e:68:9d:25:8f:fc:6c:25:d0: dd:e4:df:61:56:b5:bf:e1:30:58:cb:83:01:29:41: 68:80:7b:86:3b:85:c1:b6:15:8d:36:5e:25:06:89: d4:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:BE:B9:E9:EA:23:24:9E:A4:28:BF:8C:E9:CD:8A:DB:E4:0F:F6:4D X509v3 Authority Key Identifier: keyid:B8:91:A4:58:40:F8:24:B9:F1:16:CB:EA:A3:57:4A:68:34:3F:55:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/B891A45840F824B9F116CBEAA3574A68343F5538.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B891A45840F824B9F116CBEAA3574A68343F5538.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/3130332e3234362e3136392e302f32342d3234203d3e203538333835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.246.169.0/24 Signature Algorithm: sha256WithRSAEncryption 38:ce:82:1e:91:1b:97:15:41:da:c0:9c:46:be:ed:7d:a8:4b: dd:98:54:ab:fa:2b:5a:95:45:ac:60:36:fe:23:21:6f:1a:6b: a6:59:c2:0d:2f:2c:03:7c:4b:e6:82:71:b5:66:43:66:4e:17: 7e:c3:87:b1:0e:1b:7a:29:8b:bc:58:be:91:d9:72:6b:e8:68: df:c4:75:c5:aa:88:5d:ce:3a:47:2d:d2:32:17:00:5f:0a:ac: 05:92:cc:31:cd:b4:bf:44:31:66:c5:74:15:26:3d:47:3c:f6: 66:f0:c7:f9:58:0e:c0:82:1f:00:58:eb:67:8c:89:f9:d5:06: 36:fa:28:2f:41:ae:6b:9e:9a:b1:3f:43:2e:b8:0c:12:a0:a4: 48:4a:4d:f2:8f:fe:23:45:45:fb:53:f6:e7:df:71:e8:57:3f: 15:d1:8d:96:7d:06:92:e6:88:ac:62:f3:6a:91:f6:13:dd:df: 8e:49:a4:da:3b:0c:cb:62:fa:75:e4:ec:cf:d9:27:eb:b9:63: db:12:3d:4e:7a:10:5b:29:b8:c1:56:c4:7c:98:a5:32:0e:01: 02:a1:1b:7d:01:d7:6e:b6:fe:35:59:dd:6a:72:c6:72:3d:ce: 84:e1:1d:bd:6a:f8:68:39:b5:d2:e7:e2:d2:25:2f:d9:f0:ea: 68:e0:b5:3c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTk4CraknVzAIduPKOtxb6189iNcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg5MUE0NTg0MEY4MjRCOUYxMTZDQkVBQTM1NzRBNjgz NDNGNTUzODAeFw0yNDEyMjMxNjU2MjRaFw0yNTEyMjIxNzAxMjRaMDMxMTAvBgNV BAMTKDQ4QkVCOUU5RUEyMzI0OUVBNDI4QkY4Q0U5Q0Q4QURCRTQwRkY2NEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqo4b/P3fUToabV5PuSMBYijAp llstYL5aBGWMi69s2wZJvqS6oyxzZTPKtK4Z/4fZ76B2OCFnBBSU05i12l0OR1tM a0GUzP5HWQ51HklpFKqS+L8GbhIcX0t+n2zmaor8hISHL/25/Skr9ydD5uqp9Xix em36zTD9RXsjo1q8pNLvBprkOkm5qVPLLbJG9kVYzRWe00DbqJ32YX+QEHOu0TgM pT2D2WRouO0e3ZENLISIWJoxYYpUMmTycgCsdHZw1KHwWrgv+ZBisngazu9XMQOB NtSFYX5onSWP/Gwl0N3k32FWtb/hMFjLgwEpQWiAe4Y7hcG2FY02XiUGidQVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSL656eojJJ6kKL+M6c2K2+QP9k0wHwYDVR0j BBgwFoAUuJGkWED4JLnxFsvqo1dKaDQ/VTgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MzkyNTM4OC0zNWM2LTQxZDctOWRjNC1kYjRkMTE4ZDEzNWEvMC9CODkxQTQ1ODQw RjgyNEI5RjExNkNCRUFBMzU3NEE2ODM0M0Y1NTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg5MUE0NTg0MEY4MjRCOUYxMTZDQkVBQTM1NzRBNjgzNDNG NTUzOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzOTI1Mzg4LTM1YzYtNDFkNy05 ZGM0LWRiNGQxMThkMTM1YS8wLzMxMzAzMzJlMzIzNDM2MmUzMTM2MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/apMA0GCSqG SIb3DQEBCwUAA4IBAQA4zoIekRuXFUHawJxGvu19qEvdmFSr+italUWsYDb+IyFv GmumWcINLywDfEvmgnG1ZkNmThd+w4exDht6KYu8WL6R2XJr6GjfxHXFqohdzjpH LdIyFwBfCqwFkswxzbS/RDFmxXQVJj1HPPZm8Mf5WA7Agh8AWOtnjIn51QY2+igv Qa5rnpqxP0MuuAwSoKRISk3yj/4jRUX7U/bn33HoVz8V0Y2WfQaS5oisYvNqkfYT 3d+OSaTaOwzLYvp15OzP2SfruWPbEj1OehBbKbjBVsR8mKUyDgECoRt9Addutv41 Wd1qcsZyPc6E4R29avhoObXS5+LSJS/Z8Opo4LU8 -----END CERTIFICATE-----Generated at Sun Apr 6 14:46:56 2025 by rpki-client