$ rpki-client -vvf repo-rpki.idnic.net/repo/d9243950-3fdf-49ab-bfdc-f586453704c6/0/3130332e3133312e3130372e302f32342d3234203d3e20313338313139.roa File: 3130332e3133312e3130372e302f32342d3234203d3e20313338313139.roa (raw, json) Hash identifier: QM+E96allUDLK9wsWGS1oYObrhWCqwcu3k2b8E6ZM5k= Subject key identifier: 89:FE:04:C0:72:78:7A:0C:87:88:D8:09:1D:FF:33:9E:65:B9:4C:2E Certificate issuer: /CN=51B0CF7488516A897D04B7AFE3238190B6B5606C Certificate serial: 34AA6710B0F963684C3F7EEC9C5D427258AEF25D Authority key identifier: 51:B0:CF:74:88:51:6A:89:7D:04:B7:AF:E3:23:81:90:B6:B5:60:6C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/51B0CF7488516A897D04B7AFE3238190B6B5606C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d9243950-3fdf-49ab-bfdc-f586453704c6/0/3130332e3133312e3130372e302f32342d3234203d3e20313338313139.roa Signing time: Thu 09 Jan 2025 09:00:01 +0000 ROA not before: Thu 09 Jan 2025 08:55:01 +0000 ROA not after: Thu 08 Jan 2026 09:00:01 +0000 asID: 138119 IP address blocks: 103.131.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d9243950-3fdf-49ab-bfdc-f586453704c6/0/51B0CF7488516A897D04B7AFE3238190B6B5606C.crl rsync://repo-rpki.idnic.net/repo/d9243950-3fdf-49ab-bfdc-f586453704c6/0/51B0CF7488516A897D04B7AFE3238190B6B5606C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/51B0CF7488516A897D04B7AFE3238190B6B5606C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 02:17:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:aa:67:10:b0:f9:63:68:4c:3f:7e:ec:9c:5d:42:72:58:ae:f2:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51B0CF7488516A897D04B7AFE3238190B6B5606C Validity Not Before: Jan 9 08:55:01 2025 GMT Not After : Jan 8 09:00:01 2026 GMT Subject: CN=89FE04C072787A0C8788D8091DFF339E65B94C2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:1f:d5:2b:6d:09:30:c7:98:c8:6c:bd:ba:88: ba:7f:d8:9d:dc:92:b1:d1:61:73:86:d9:5e:86:21: 9b:dd:7a:86:07:56:22:94:fd:44:1b:9e:34:3c:d0: 4f:db:6e:a8:44:f7:8f:77:3c:f2:b9:58:4f:a4:f8: dc:0c:72:f9:2e:41:76:3a:95:92:a0:a5:74:48:43: 98:a1:03:51:ce:d8:fb:94:a2:55:8d:d7:80:2a:1d: 9e:22:79:25:1c:8d:82:64:90:f6:b7:0a:bc:5d:29: 06:31:7e:60:18:b3:ad:85:52:1e:54:4a:9a:a5:52: 1c:8f:8a:2f:03:b6:ab:ee:eb:6d:39:9e:41:8e:70: bd:53:b7:ea:64:27:df:b9:4a:34:e7:2b:e0:95:a7: c4:63:50:79:ee:e0:39:4c:08:26:86:30:04:12:95: 02:7a:db:2c:ac:9f:ad:9f:65:9b:e6:0e:aa:b1:cb: e7:99:f6:ab:d8:c2:3f:10:f6:c9:32:b1:d0:e2:c9: 68:20:6b:df:d4:dc:58:c0:a5:04:48:fe:95:d1:c3: 28:5d:98:b1:91:8d:b3:25:45:9d:19:fa:0e:e7:86: 8d:16:97:51:48:a6:d8:9e:bf:e4:c7:0e:5c:56:20: 18:8a:bb:10:68:9b:25:cb:a5:bb:ae:7c:8b:00:e6: 85:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:FE:04:C0:72:78:7A:0C:87:88:D8:09:1D:FF:33:9E:65:B9:4C:2E X509v3 Authority Key Identifier: keyid:51:B0:CF:74:88:51:6A:89:7D:04:B7:AF:E3:23:81:90:B6:B5:60:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d9243950-3fdf-49ab-bfdc-f586453704c6/0/51B0CF7488516A897D04B7AFE3238190B6B5606C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/51B0CF7488516A897D04B7AFE3238190B6B5606C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d9243950-3fdf-49ab-bfdc-f586453704c6/0/3130332e3133312e3130372e302f32342d3234203d3e20313338313139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.131.107.0/24 Signature Algorithm: sha256WithRSAEncryption 44:0a:52:a9:45:ba:da:0b:ed:cc:b1:e9:ed:86:94:6b:6e:94: 15:19:66:3c:15:f2:ef:83:b4:19:b3:63:08:b2:8b:93:10:71: ed:35:c7:d3:49:54:b6:d3:d5:58:be:23:b9:04:8b:0f:18:38: 8e:d0:8d:57:66:4f:3d:e3:a8:1a:99:50:8a:e0:a6:dc:20:97: 9a:17:75:03:12:5f:b8:c0:b0:06:5c:c7:86:0f:61:a9:6f:8c: 8d:0a:67:42:31:05:2b:22:13:03:e3:39:02:cf:2b:64:f3:63: 1c:28:91:e6:5f:b9:79:f0:25:6d:38:6e:33:e5:b9:b9:a5:3c: ce:ad:55:96:28:0c:c0:33:e4:71:22:30:19:de:7a:e2:13:e1: 40:82:cb:f2:6e:8b:51:a4:67:f5:f9:30:94:0d:8d:d2:2c:c7: b3:b4:d4:8e:69:27:75:eb:96:8d:f7:72:72:07:26:a2:0e:8e: c7:1f:23:36:b6:ce:09:c2:fc:73:1a:40:bc:ba:19:4c:64:af: 8a:da:19:34:40:a6:93:d8:29:09:e5:41:2a:d8:54:37:c9:6b: 02:c8:c2:b9:2b:21:49:6e:7f:af:46:99:03:70:a9:34:06:43: a3:c1:86:dc:bc:c3:ff:74:28:f4:1d:bd:8f:66:c7:99:fd:7e: f7:d4:a3:ab -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNKpnELD5Y2hMP37snF1Ccliu8l0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTFCMENGNzQ4ODUxNkE4OTdEMDRCN0FGRTMyMzgxOTBC NkI1NjA2QzAeFw0yNTAxMDkwODU1MDFaFw0yNjAxMDgwOTAwMDFaMDMxMTAvBgNV BAMTKDg5RkUwNEMwNzI3ODdBMEM4Nzg4RDgwOTFERkYzMzlFNjVCOTRDMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkH9UrbQkwx5jIbL26iLp/2J3c krHRYXOG2V6GIZvdeoYHViKU/UQbnjQ80E/bbqhE9493PPK5WE+k+NwMcvkuQXY6 lZKgpXRIQ5ihA1HO2PuUolWN14AqHZ4ieSUcjYJkkPa3CrxdKQYxfmAYs62FUh5U SpqlUhyPii8Dtqvu6205nkGOcL1Tt+pkJ9+5SjTnK+CVp8RjUHnu4DlMCCaGMAQS lQJ62yysn62fZZvmDqqxy+eZ9qvYwj8Q9skysdDiyWgga9/U3FjApQRI/pXRwyhd mLGRjbMlRZ0Z+g7nho0Wl1FIptiev+THDlxWIBiKuxBomyXLpbuufIsA5oWvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUif4EwHJ4egyHiNgJHf8znmW5TC4wHwYDVR0j BBgwFoAUUbDPdIhRaol9BLev4yOBkLa1YGwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OTI0Mzk1MC0zZmRmLTQ5YWItYmZkYy1mNTg2NDUzNzA0YzYvMC81MUIwQ0Y3NDg4 NTE2QTg5N0QwNEI3QUZFMzIzODE5MEI2QjU2MDZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTFCMENGNzQ4ODUxNkE4OTdEMDRCN0FGRTMyMzgxOTBCNkI1 NjA2Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q5MjQzOTUwLTNmZGYtNDlhYi1i ZmRjLWY1ODY0NTM3MDRjNi8wLzMxMzAzMzJlMzEzMzMxMmUzMTMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMxMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABng2swDQYJ KoZIhvcNAQELBQADggEBAEQKUqlFutoL7cyx6e2GlGtulBUZZjwV8u+DtBmzYwiy i5MQce01x9NJVLbT1Vi+I7kEiw8YOI7QjVdmTz3jqBqZUIrgptwgl5oXdQMSX7jA sAZcx4YPYalvjI0KZ0IxBSsiEwPjOQLPK2TzYxwokeZfuXnwJW04bjPlubmlPM6t VZYoDMAz5HEiMBneeuIT4UCCy/Jui1GkZ/X5MJQNjdIsx7O01I5pJ3Xrlo33cnIH JqIOjscfIza2zgnC/HMaQLy6GUxkr4raGTRAppPYKQnlQSrYVDfJawLIwrkrIUlu f69GmQNwqTQGQ6PBhty8w/90KPQdvY9mx5n9fvfUo6s= -----END CERTIFICATE-----Generated at Sun Apr 6 08:34:23 2025 by rpki-client