$ rpki-client -vvf repo-rpki.idnic.net/repo/d6df2691-db62-43b9-8a57-0e06da1acc64/0/3130332e37392e3233392e302f32342d3234203d3e20313336383431.roa File: 3130332e37392e3233392e302f32342d3234203d3e20313336383431.roa (raw, json) Hash identifier: rT8h0ZGLVYrPZ61SPuOGRkw+nbg9/wVNgxfxW7rae5E= Subject key identifier: 1B:DA:B7:C6:ED:DB:CC:53:A7:71:E8:3C:EE:0F:64:74:23:32:45:B6 Certificate issuer: /CN=F027F0676E31F5D61FFCB99138BA71A6A6C2A888 Certificate serial: 5164858B453DC56838616AC1012CBCA316483632 Authority key identifier: F0:27:F0:67:6E:31:F5:D6:1F:FC:B9:91:38:BA:71:A6:A6:C2:A8:88 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F027F0676E31F5D61FFCB99138BA71A6A6C2A888.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d6df2691-db62-43b9-8a57-0e06da1acc64/0/3130332e37392e3233392e302f32342d3234203d3e20313336383431.roa Signing time: Wed 08 Jan 2025 05:00:00 +0000 ROA not before: Wed 08 Jan 2025 04:55:00 +0000 ROA not after: Wed 07 Jan 2026 05:00:00 +0000 asID: 136841 IP address blocks: 103.79.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d6df2691-db62-43b9-8a57-0e06da1acc64/0/F027F0676E31F5D61FFCB99138BA71A6A6C2A888.crl rsync://repo-rpki.idnic.net/repo/d6df2691-db62-43b9-8a57-0e06da1acc64/0/F027F0676E31F5D61FFCB99138BA71A6A6C2A888.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F027F0676E31F5D61FFCB99138BA71A6A6C2A888.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 09:54:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:64:85:8b:45:3d:c5:68:38:61:6a:c1:01:2c:bc:a3:16:48:36:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F027F0676E31F5D61FFCB99138BA71A6A6C2A888 Validity Not Before: Jan 8 04:55:00 2025 GMT Not After : Jan 7 05:00:00 2026 GMT Subject: CN=1BDAB7C6EDDBCC53A771E83CEE0F6474233245B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:af:ae:b4:6f:dd:99:4f:4f:06:14:29:5e:a0: 1a:de:60:e8:10:57:bf:8e:cd:98:06:4a:9f:84:45: 60:4e:60:45:3b:78:7a:0f:97:d2:af:9e:ae:92:be: 0a:b8:a4:ea:c3:d4:e6:c6:6a:68:a2:07:95:e5:00: 85:a7:35:5a:15:a0:45:ad:72:86:84:be:5d:ec:3e: a5:91:a2:b7:69:4c:da:8b:20:7c:3b:e3:d9:1e:91: f5:1e:a5:71:9d:a8:0a:d0:ec:d1:c9:65:98:77:01: 5e:54:cb:66:b1:48:d7:8b:9b:f7:bd:8a:d3:84:47: 3d:95:2a:d3:30:1b:d8:bb:b8:92:c2:33:15:c3:08: 41:36:11:9a:31:5a:38:65:9e:23:34:65:e6:03:b5: 0a:b5:b1:9a:c9:b7:1c:e2:50:0b:7f:0b:00:f4:63: aa:8b:2b:1e:9f:f5:e5:53:b8:8a:8e:7a:aa:06:d2: 69:84:3a:4a:6e:ad:4c:6d:0d:01:76:97:59:59:f0: af:32:b6:7a:bd:6c:4e:0c:08:1e:af:93:be:fd:bd: 4a:f7:11:8f:0d:8d:a1:24:ff:9a:82:43:e0:53:93: dc:25:17:49:49:a8:79:97:28:26:89:ec:de:cc:77: ab:50:df:5c:b8:fd:f8:38:b4:75:d7:5f:52:5d:08: 77:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:DA:B7:C6:ED:DB:CC:53:A7:71:E8:3C:EE:0F:64:74:23:32:45:B6 X509v3 Authority Key Identifier: keyid:F0:27:F0:67:6E:31:F5:D6:1F:FC:B9:91:38:BA:71:A6:A6:C2:A8:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d6df2691-db62-43b9-8a57-0e06da1acc64/0/F027F0676E31F5D61FFCB99138BA71A6A6C2A888.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F027F0676E31F5D61FFCB99138BA71A6A6C2A888.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d6df2691-db62-43b9-8a57-0e06da1acc64/0/3130332e37392e3233392e302f32342d3234203d3e20313336383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.79.239.0/24 Signature Algorithm: sha256WithRSAEncryption 50:c8:fb:90:3d:b0:40:8e:bb:6a:98:1a:02:50:3c:fd:cb:08: 50:49:ce:54:de:86:df:06:c2:94:62:4f:3e:e4:20:24:36:17: 97:59:73:d2:a5:3a:e8:47:3c:f2:6b:cb:09:14:51:30:ed:75: 75:09:8b:9f:53:3d:65:9f:07:d0:e2:3f:dd:fe:76:46:b3:0a: ff:f7:6f:4b:50:c2:3c:38:e9:7d:c0:35:13:be:e6:e8:f4:3a: cd:01:ed:eb:0c:be:c2:7c:fb:ea:79:c5:9f:35:09:88:43:e6: d6:61:5a:24:b5:f3:6f:17:49:dd:42:7b:40:2e:a8:bc:c2:18: 4c:32:a8:63:10:09:4a:39:71:7b:fe:3c:f5:80:04:0a:dc:c0: 9c:74:3f:d3:1c:eb:b6:38:1a:45:17:48:ed:58:4f:9a:e8:5f: 5f:ce:3e:c8:b5:e4:3d:1a:65:73:88:74:71:ac:b9:61:fe:d9: 6d:6e:6f:e4:a2:b2:1e:d3:38:3c:57:4c:a5:b5:db:e1:fb:ae: 04:b7:39:9c:e9:09:e2:8a:2b:57:59:0d:0b:97:eb:98:ae:c6: 82:d5:5a:ae:3f:bf:e5:da:93:27:ff:53:83:85:4a:46:29:a7: 6b:35:ca:ef:cf:e9:ac:0e:d3:43:73:4e:86:0f:fb:cb:80:fb: 7e:0d:d0:5b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUWSFi0U9xWg4YWrBASy8oxZINjIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjAyN0YwNjc2RTMxRjVENjFGRkNCOTkxMzhCQTcxQTZB NkMyQTg4ODAeFw0yNTAxMDgwNDU1MDBaFw0yNjAxMDcwNTAwMDBaMDMxMTAvBgNV BAMTKDFCREFCN0M2RUREQkNDNTNBNzcxRTgzQ0VFMEY2NDc0MjMzMjQ1QjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0r660b92ZT08GFCleoBreYOgQ V7+OzZgGSp+ERWBOYEU7eHoPl9Kvnq6Svgq4pOrD1ObGamiiB5XlAIWnNVoVoEWt coaEvl3sPqWRordpTNqLIHw749kekfUepXGdqArQ7NHJZZh3AV5Uy2axSNeLm/e9 itOERz2VKtMwG9i7uJLCMxXDCEE2EZoxWjhlniM0ZeYDtQq1sZrJtxziUAt/CwD0 Y6qLKx6f9eVTuIqOeqoG0mmEOkpurUxtDQF2l1lZ8K8ytnq9bE4MCB6vk779vUr3 EY8NjaEk/5qCQ+BTk9wlF0lJqHmXKCaJ7N7Md6tQ31y4/fg4tHXXX1JdCHdlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUG9q3xu3bzFOnceg87g9kdCMyRbYwHwYDVR0j BBgwFoAU8CfwZ24x9dYf/LmROLpxpqbCqIgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NmRmMjY5MS1kYjYyLTQzYjktOGE1Ny0wZTA2ZGExYWNjNjQvMC9GMDI3RjA2NzZF MzFGNUQ2MUZGQ0I5OTEzOEJBNzFBNkE2QzJBODg4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjAyN0YwNjc2RTMxRjVENjFGRkNCOTkxMzhCQTcxQTZBNkMy QTg4OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q2ZGYyNjkxLWRiNjItNDNiOS04 YTU3LTBlMDZkYTFhY2M2NC8wLzMxMzAzMzJlMzczOTJlMzIzMzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0/vMA0GCSqG SIb3DQEBCwUAA4IBAQBQyPuQPbBAjrtqmBoCUDz9ywhQSc5U3obfBsKUYk8+5CAk NheXWXPSpTroRzzya8sJFFEw7XV1CYufUz1lnwfQ4j/d/nZGswr/929LUMI8OOl9 wDUTvubo9DrNAe3rDL7CfPvqecWfNQmIQ+bWYVoktfNvF0ndQntALqi8whhMMqhj EAlKOXF7/jz1gAQK3MCcdD/THOu2OBpFF0jtWE+a6F9fzj7IteQ9GmVziHRxrLlh /tltbm/korIe0zg8V0yltdvh+64Etzmc6QniiitXWQ0Ll+uYrsaC1VquP7/l2pMn /1ODhUpGKadrNcrvz+msDtNDc06GD/vLgPt+DdBb -----END CERTIFICATE-----Generated at Sun Apr 6 13:38:55 2025 by rpki-client