$ rpki-client -vvf repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/3130332e3135312e3134302e302f32332d3233203d3e20313430343137.roa File: 3130332e3135312e3134302e302f32332d3233203d3e20313430343137.roa (raw, json) Hash identifier: 583fCmP3etiTrbOSzBAay1dcbZS7/0Ktohr7FAmuse4= Subject key identifier: D7:34:85:A8:A7:24:68:9F:A0:0D:E1:D1:BA:B3:95:36:6D:F8:8A:7A Certificate issuer: /CN=FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3 Certificate serial: 1CCDCE61FDF0E8FE69C86BBDFFAE85F1AB1BBD07 Authority key identifier: FC:D5:B5:62:FA:ED:9B:9D:67:F9:DE:5D:B7:05:78:BF:DB:00:57:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/3130332e3135312e3134302e302f32332d3233203d3e20313430343137.roa Signing time: Wed 29 May 2024 02:07:25 +0000 ROA not before: Wed 29 May 2024 02:02:25 +0000 ROA not after: Wed 28 May 2025 02:07:25 +0000 asID: 140417 IP address blocks: 103.151.140.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.crl rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 21:35:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:cd:ce:61:fd:f0:e8:fe:69:c8:6b:bd:ff:ae:85:f1:ab:1b:bd:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3 Validity Not Before: May 29 02:02:25 2024 GMT Not After : May 28 02:07:25 2025 GMT Subject: CN=D73485A8A724689FA00DE1D1BAB395366DF88A7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e8:c3:01:79:46:6b:94:94:24:78:3c:29:dd: ec:cf:37:5f:5b:6e:5e:57:a8:38:fc:ec:4e:f8:2d: ef:37:cc:bd:6f:7e:20:67:82:3f:16:35:25:bc:12: bc:d3:d8:11:63:a7:f5:62:b2:1d:da:f7:3f:97:37: ae:a3:ee:d3:ea:d7:ea:82:5e:28:bb:f5:3a:2e:60: ba:72:79:0e:82:e9:3b:d9:4b:ac:c7:12:9f:4a:4c: 8a:2f:77:ad:ed:36:c0:1c:e1:ad:34:b2:52:69:f4: 0a:d6:32:30:87:da:c5:d0:0d:ca:9b:0c:0d:c1:2a: f2:94:d3:44:7f:bf:bf:ee:58:94:40:e3:db:26:ac: 74:a0:5a:64:68:31:16:c0:e9:28:3d:a9:26:69:b5: ea:51:5c:13:c6:c0:53:ea:3e:40:96:50:c1:6c:dd: cb:9f:41:bf:b8:44:50:92:6d:f7:c9:51:ae:86:5f: 15:ba:4a:b0:53:f2:7f:e2:5c:c6:7f:7e:00:b7:94: 7d:ab:fc:0a:26:0e:39:88:77:c6:13:24:0b:b3:8a: 02:04:4c:f7:29:81:c6:19:e0:3c:50:33:71:5c:64: 2a:a2:58:66:56:2a:d0:9d:52:70:75:60:e7:84:19: b8:8b:97:73:79:6f:fb:0c:a0:f7:59:46:fc:65:9d: 20:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:34:85:A8:A7:24:68:9F:A0:0D:E1:D1:BA:B3:95:36:6D:F8:8A:7A X509v3 Authority Key Identifier: keyid:FC:D5:B5:62:FA:ED:9B:9D:67:F9:DE:5D:B7:05:78:BF:DB:00:57:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/3130332e3135312e3134302e302f32332d3233203d3e20313430343137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.140.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:00:d5:2b:4e:fb:53:9b:62:0a:e2:77:00:cf:03:5c:66:5b: c9:b7:53:76:68:27:b3:53:39:e4:db:7d:a7:39:6b:91:61:08: 45:7e:aa:0f:37:32:1c:c5:e4:2a:5f:09:3b:8e:b7:a1:b8:ba: 60:e1:17:e4:78:9a:de:c5:c3:d3:1f:b5:bb:be:cd:06:88:08: c3:ea:9d:4e:9f:ca:37:1a:7e:b3:59:52:80:0b:d2:a8:77:32: 47:84:ce:82:8e:1d:c2:27:2c:85:d5:89:1a:a7:3d:54:5b:ee: 06:67:17:c1:5c:01:6a:fc:e3:37:a2:62:51:14:bb:9c:ef:ef: f1:dd:f2:e5:ba:79:ea:67:a0:14:c0:4c:24:7a:2c:54:02:3a: f7:cf:89:93:fe:20:70:dc:b6:4d:ec:09:4e:c2:48:c3:3c:ba: 89:c3:4a:de:d4:d2:03:3d:b1:91:1b:4c:02:5d:7f:2e:40:84: 02:58:db:37:87:cb:44:9c:4d:87:07:9b:26:47:72:14:44:72: 06:c1:52:06:f3:96:4a:ca:f5:50:9b:22:a0:ab:e0:c9:02:b6: ce:95:21:04:0d:4e:11:0e:cc:a5:07:5a:37:61:96:aa:76:03: 57:3d:3d:32:61:d4:9f:ea:96:75:66:a0:9b:c5:dc:9d:a2:e4: cb:49:84:d4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHM3OYf3w6P5pyGu9/66F8asbvQcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNENUI1NjJGQUVEOUI5RDY3RjlERTVEQjcwNTc4QkZE QjAwNTdCMzAeFw0yNDA1MjkwMjAyMjVaFw0yNTA1MjgwMjA3MjVaMDMxMTAvBgNV BAMTKEQ3MzQ4NUE4QTcyNDY4OUZBMDBERTFEMUJBQjM5NTM2NkRGODhBN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk6MMBeUZrlJQkeDwp3ezPN19b bl5XqDj87E74Le83zL1vfiBngj8WNSW8ErzT2BFjp/Vish3a9z+XN66j7tPq1+qC Xii79TouYLpyeQ6C6TvZS6zHEp9KTIovd63tNsAc4a00slJp9ArWMjCH2sXQDcqb DA3BKvKU00R/v7/uWJRA49smrHSgWmRoMRbA6Sg9qSZptepRXBPGwFPqPkCWUMFs 3cufQb+4RFCSbffJUa6GXxW6SrBT8n/iXMZ/fgC3lH2r/AomDjmId8YTJAuzigIE TPcpgcYZ4DxQM3FcZCqiWGZWKtCdUnB1YOeEGbiLl3N5b/sMoPdZRvxlnSBzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1zSFqKckaJ+gDeHRurOVNm34inowHwYDVR0j BBgwFoAU/NW1Yvrtm51n+d5dtwV4v9sAV7MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NDcwMjZhOS0wYzlhLTRkNzktYWQ2Ny0yYzlkYmQzNjZkMGIvMC9GQ0Q1QjU2MkZB RUQ5QjlENjdGOURFNURCNzA1NzhCRkRCMDA1N0IzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNENUI1NjJGQUVEOUI5RDY3RjlERTVEQjcwNTc4QkZEQjAw NTdCMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q0NzAyNmE5LTBjOWEtNGQ3OS1h ZDY3LTJjOWRiZDM2NmQwYi8wLzMxMzAzMzJlMzEzNTMxMmUzMTM0MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzNDMxMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnl4wwDQYJ KoZIhvcNAQELBQADggEBAD4A1StO+1ObYgridwDPA1xmW8m3U3ZoJ7NTOeTbfac5 a5FhCEV+qg83MhzF5CpfCTuOt6G4umDhF+R4mt7Fw9Mftbu+zQaICMPqnU6fyjca frNZUoAL0qh3MkeEzoKOHcInLIXViRqnPVRb7gZnF8FcAWr84zeiYlEUu5zv7/Hd 8uW6eepnoBTATCR6LFQCOvfPiZP+IHDctk3sCU7CSMM8uonDSt7U0gM9sZEbTAJd fy5AhAJY2zeHy0ScTYcHmyZHchREcgbBUgbzlkrK9VCbIqCr4MkCts6VIQQNThEO zKUHWjdhlqp2A1c9PTJh1J/qlnVmoJvF3J2i5MtJhNQ= -----END CERTIFICATE-----Generated at Tue Mar 11 05:00:39 2025 by rpki-client