$ rpki-client -vvf repo-rpki.idnic.net/repo/dabce71e-4ee4-4590-94fb-37ffd9f0d6b7/0/3130332e3131332e32362e302f32342d3234203d3e20313337333339.roa File: 3130332e3131332e32362e302f32342d3234203d3e20313337333339.roa (raw, json) Hash identifier: NOH9wRK9inkAfrcmkP1Y7WHt1AAQ1F9Kr20Q6/2/AlY= Subject key identifier: CF:D1:29:41:86:99:9D:59:51:48:B8:7A:14:3F:3B:90:AE:92:F6:BB Certificate issuer: /CN=11489A5805B7FE2710AE32C3077C3450579D1288 Certificate serial: 536501AF06105C6A7F69EB5F39936B1598537578 Authority key identifier: 11:48:9A:58:05:B7:FE:27:10:AE:32:C3:07:7C:34:50:57:9D:12:88 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11489A5805B7FE2710AE32C3077C3450579D1288.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dabce71e-4ee4-4590-94fb-37ffd9f0d6b7/0/3130332e3131332e32362e302f32342d3234203d3e20313337333339.roa Signing time: Wed 27 Nov 2024 16:00:01 +0000 ROA not before: Wed 27 Nov 2024 15:55:01 +0000 ROA not after: Wed 26 Nov 2025 16:00:01 +0000 asID: 137339 IP address blocks: 103.113.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dabce71e-4ee4-4590-94fb-37ffd9f0d6b7/0/11489A5805B7FE2710AE32C3077C3450579D1288.crl rsync://repo-rpki.idnic.net/repo/dabce71e-4ee4-4590-94fb-37ffd9f0d6b7/0/11489A5805B7FE2710AE32C3077C3450579D1288.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11489A5805B7FE2710AE32C3077C3450579D1288.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 04:30:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:65:01:af:06:10:5c:6a:7f:69:eb:5f:39:93:6b:15:98:53:75:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11489A5805B7FE2710AE32C3077C3450579D1288 Validity Not Before: Nov 27 15:55:01 2024 GMT Not After : Nov 26 16:00:01 2025 GMT Subject: CN=CFD1294186999D595148B87A143F3B90AE92F6BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:34:a9:c2:28:cd:e3:c6:aa:9d:8d:30:9f:aa: d7:38:3a:5c:4b:30:82:39:2b:89:bc:8f:8f:c1:fd: b4:91:27:c2:82:3f:b1:ad:a9:1b:f6:e1:0b:4f:21: 5a:49:cd:47:22:9b:e6:c5:c0:3d:8c:b0:ff:2d:31: 0a:d0:8e:ac:72:8a:cc:0a:cc:09:b9:05:dd:b6:7a: 61:80:b0:5d:3c:86:1b:ce:e6:d2:bd:2d:7d:48:a9: f5:bf:4d:ad:72:76:25:b0:29:60:1f:bf:32:3c:7b: 45:de:dc:b1:5c:8d:09:ba:b4:2d:ae:8e:24:07:f8: 0b:4b:b4:d0:63:2d:e8:7c:21:0e:62:26:f3:b0:32: ef:2a:b0:2e:85:73:77:d0:49:48:6e:da:39:66:40: db:61:80:f2:77:64:8a:ea:cb:1d:c0:3e:16:78:66: bd:b7:fe:c7:53:fb:27:8e:d0:94:9d:5a:9f:e6:57: c8:24:9b:93:f7:22:df:38:b7:fa:f7:92:c3:80:d8: dd:49:ae:ad:59:47:e8:69:51:f2:17:b8:fe:f7:04: 11:fc:17:c7:69:13:d1:90:cb:f4:9d:29:e5:ed:89: 31:08:95:1a:cd:6c:f8:81:d4:ad:e9:56:d2:ca:55: 7a:f2:f3:34:81:8a:af:5f:ee:45:ec:d9:cf:4e:14: 08:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:D1:29:41:86:99:9D:59:51:48:B8:7A:14:3F:3B:90:AE:92:F6:BB X509v3 Authority Key Identifier: keyid:11:48:9A:58:05:B7:FE:27:10:AE:32:C3:07:7C:34:50:57:9D:12:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dabce71e-4ee4-4590-94fb-37ffd9f0d6b7/0/11489A5805B7FE2710AE32C3077C3450579D1288.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11489A5805B7FE2710AE32C3077C3450579D1288.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dabce71e-4ee4-4590-94fb-37ffd9f0d6b7/0/3130332e3131332e32362e302f32342d3234203d3e20313337333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.113.26.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:f4:72:00:41:ac:2b:92:55:d8:4b:a8:40:76:fc:e1:e1:3c: d7:d4:8f:57:10:56:72:41:e9:33:0a:db:a2:c4:bd:99:54:ad: 20:f9:ab:d3:a6:56:97:20:40:11:24:41:e1:32:3c:9d:7a:83: ea:05:a1:42:ae:8c:3f:1e:bf:ac:d0:01:a1:95:6c:05:5f:ad: 7b:c3:4c:6c:01:00:7f:9e:6a:56:44:8e:01:49:e9:17:4b:44: 5e:c5:f9:f6:c0:0d:ba:f0:f3:52:be:85:e7:7e:e4:3f:e7:74: 3e:f8:71:4d:56:c7:8d:aa:a2:d1:e0:0e:54:1e:1a:13:82:01: 5a:e4:de:07:b0:e8:95:50:08:4b:6a:15:70:68:93:68:b7:50: ed:3d:21:3b:05:35:31:95:2c:13:ba:52:b1:40:b0:3d:3e:fd: 3c:94:d9:59:bc:ed:d0:d8:da:93:ac:b7:0f:1f:28:f9:93:53: cf:0e:e9:f9:5b:9c:f1:e6:c9:88:22:a8:77:f7:95:11:c8:73: 03:80:10:a4:14:14:cb:60:d0:dc:c3:5a:6a:50:c4:6c:4b:64: 12:4a:6e:ad:f0:41:6d:38:d2:48:e2:00:00:e2:a3:ae:4f:1f: bb:77:a6:5d:b3:7d:4d:43:6c:e5:f4:64:7f:14:45:98:36:58: 20:05:c5:bb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUU2UBrwYQXGp/aetfOZNrFZhTdXgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTE0ODlBNTgwNUI3RkUyNzEwQUUzMkMzMDc3QzM0NTA1 NzlEMTI4ODAeFw0yNDExMjcxNTU1MDFaFw0yNTExMjYxNjAwMDFaMDMxMTAvBgNV BAMTKENGRDEyOTQxODY5OTlENTk1MTQ4Qjg3QTE0M0YzQjkwQUU5MkY2QkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDNKnCKM3jxqqdjTCfqtc4OlxL MII5K4m8j4/B/bSRJ8KCP7GtqRv24QtPIVpJzUcim+bFwD2MsP8tMQrQjqxyiswK zAm5Bd22emGAsF08hhvO5tK9LX1IqfW/Ta1ydiWwKWAfvzI8e0Xe3LFcjQm6tC2u jiQH+AtLtNBjLeh8IQ5iJvOwMu8qsC6Fc3fQSUhu2jlmQNthgPJ3ZIrqyx3APhZ4 Zr23/sdT+yeO0JSdWp/mV8gkm5P3It84t/r3ksOA2N1Jrq1ZR+hpUfIXuP73BBH8 F8dpE9GQy/SdKeXtiTEIlRrNbPiB1K3pVtLKVXry8zSBiq9f7kXs2c9OFAhZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUz9EpQYaZnVlRSLh6FD87kK6S9rswHwYDVR0j BBgwFoAUEUiaWAW3/icQrjLDB3w0UFedEogwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YWJjZTcxZS00ZWU0LTQ1OTAtOTRmYi0zN2ZmZDlmMGQ2YjcvMC8xMTQ4OUE1ODA1 QjdGRTI3MTBBRTMyQzMwNzdDMzQ1MDU3OUQxMjg4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTE0ODlBNTgwNUI3RkUyNzEwQUUzMkMzMDc3QzM0NTA1NzlE MTI4OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhYmNlNzFlLTRlZTQtNDU5MC05 NGZiLTM3ZmZkOWYwZDZiNy8wLzMxMzAzMzJlMzEzMTMzMmUzMjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM3MzMzMzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3EaMA0GCSqG SIb3DQEBCwUAA4IBAQAq9HIAQawrklXYS6hAdvzh4TzX1I9XEFZyQekzCtuixL2Z VK0g+avTplaXIEARJEHhMjydeoPqBaFCrow/Hr+s0AGhlWwFX617w0xsAQB/nmpW RI4BSekXS0Rexfn2wA268PNSvoXnfuQ/53Q++HFNVseNqqLR4A5UHhoTggFa5N4H sOiVUAhLahVwaJNot1DtPSE7BTUxlSwTulKxQLA9Pv08lNlZvO3Q2NqTrLcPHyj5 k1PPDun5W5zx5smIIqh395URyHMDgBCkFBTLYNDcw1pqUMRsS2QSSm6t8EFtONJI 4gAA4qOuTx+7d6Zds31NQ2zl9GR/FEWYNlggBcW7 -----END CERTIFICATE-----Generated at Sun Apr 6 14:39:07 2025 by rpki-client