$ rpki-client -vvf repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130362e302f32342d3234203d3e20313338303730.roa File: 3130332e3132332e3130362e302f32342d3234203d3e20313338303730.roa (raw, json) Hash identifier: cb1+UtU0B63HE5/QKD2FCjn1IpWHPQJZXXC6USKJKHE= Subject key identifier: 65:74:94:10:FA:6B:58:FB:22:75:A8:65:B5:44:1A:43:CA:FE:CF:FB Certificate issuer: /CN=1CA9E40710262DA751A67E932477D6E12B4B2DED Certificate serial: 3A861027439C3E4C10912AA065012C36C15B30B9 Authority key identifier: 1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130362e302f32342d3234203d3e20313338303730.roa Signing time: Mon 06 May 2024 11:23:07 +0000 ROA not before: Mon 06 May 2024 11:18:07 +0000 ROA not after: Mon 05 May 2025 11:23:07 +0000 asID: 138070 IP address blocks: 103.123.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.crl rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 21:34:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:86:10:27:43:9c:3e:4c:10:91:2a:a0:65:01:2c:36:c1:5b:30:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1CA9E40710262DA751A67E932477D6E12B4B2DED Validity Not Before: May 6 11:18:07 2024 GMT Not After : May 5 11:23:07 2025 GMT Subject: CN=65749410FA6B58FB2275A865B5441A43CAFECFFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:61:08:b7:3c:68:91:ef:ca:2a:62:ff:b9:00: a4:34:a6:95:03:06:91:e7:be:61:67:0f:c6:88:02: e4:6a:95:b6:e6:46:a0:f6:fc:4f:f7:f3:0e:47:7f: d0:70:c9:47:ee:53:4e:e0:0b:c7:e4:8f:44:14:8a: 12:82:b1:73:a2:2f:db:5d:44:44:38:65:6a:aa:57: c1:fc:16:0b:46:61:1f:a5:20:e0:43:a8:36:f9:76: de:60:10:97:19:2d:77:d0:b4:71:bd:5c:99:e8:7e: e7:f8:3d:48:7c:d3:9e:2f:f0:38:ea:d8:ac:a0:72: 14:fb:ed:51:35:bb:7b:ae:ad:eb:d6:f2:af:4a:37: 92:27:0d:ab:83:c2:c7:7c:60:34:d6:ac:69:b4:8f: 30:2b:aa:e2:75:e3:1d:d6:65:0c:87:86:0f:32:8e: f4:c4:6a:c0:47:60:40:7a:58:39:c0:f9:93:b6:d0: 91:55:5e:1f:60:7a:b1:0f:ae:17:00:03:cc:89:9c: ba:0f:6c:29:80:41:1e:22:03:b5:11:80:59:9a:e2: a5:03:05:ec:ad:30:21:5a:fb:5a:47:06:eb:c0:bd: b2:bb:7b:1a:bb:08:12:5c:2d:e0:9d:93:67:a7:af: 8c:f2:e6:0d:6b:1e:e7:ad:4c:2b:28:2b:e2:5f:ba: 34:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:74:94:10:FA:6B:58:FB:22:75:A8:65:B5:44:1A:43:CA:FE:CF:FB X509v3 Authority Key Identifier: keyid:1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130362e302f32342d3234203d3e20313338303730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.106.0/24 Signature Algorithm: sha256WithRSAEncryption 92:1e:5e:cf:36:f0:6b:cb:c8:9c:d8:50:fe:aa:14:6a:48:2b: 6f:68:aa:5b:f2:19:91:74:93:d4:51:aa:7c:4f:86:35:55:50: b7:05:f1:47:79:42:ee:29:52:58:ff:29:23:09:95:13:10:c7: 0f:68:57:76:1d:1c:ac:99:51:3d:4a:d3:41:e4:b7:a6:24:ac: 7d:9c:75:7a:75:b1:91:20:48:49:c3:59:ed:3e:eb:be:e9:45: 69:45:a7:a6:cd:88:ee:21:91:d1:b8:3f:3b:77:77:d9:c4:4e: 0c:0f:a6:ef:01:49:a6:24:60:c6:92:f5:d2:6c:f1:88:30:99: a2:54:4e:ca:2c:b8:c0:1b:54:ca:fb:44:5d:ce:7a:4a:fa:79: 7a:ed:b7:3a:9e:65:be:54:bf:51:b4:c8:b4:6e:06:9b:ea:5f: 86:83:f8:ff:71:cc:4f:56:68:d1:b7:6b:a5:5f:b4:37:45:41: a0:53:da:84:2f:39:5b:ce:bd:ed:2d:4a:09:d4:bc:63:d1:d4: 90:61:02:9d:bf:d8:30:71:01:86:35:37:70:c8:59:66:2f:91: 8d:15:87:0d:2f:83:10:82:1f:cc:b0:50:cd:cd:10:6b:cc:49: ab:d4:e4:c6:68:03:e7:f0:7a:c0:30:6c:6f:87:5c:31:2c:50: 25:54:66:73 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOoYQJ0OcPkwQkSqgZQEsNsFbMLkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUNBOUU0MDcxMDI2MkRBNzUxQTY3RTkzMjQ3N0Q2RTEy QjRCMkRFRDAeFw0yNDA1MDYxMTE4MDdaFw0yNTA1MDUxMTIzMDdaMDMxMTAvBgNV BAMTKDY1NzQ5NDEwRkE2QjU4RkIyMjc1QTg2NUI1NDQxQTQzQ0FGRUNGRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3YQi3PGiR78oqYv+5AKQ0ppUD BpHnvmFnD8aIAuRqlbbmRqD2/E/38w5Hf9BwyUfuU07gC8fkj0QUihKCsXOiL9td REQ4ZWqqV8H8FgtGYR+lIOBDqDb5dt5gEJcZLXfQtHG9XJnofuf4PUh8054v8Djq 2KygchT77VE1u3uurevW8q9KN5InDauDwsd8YDTWrGm0jzArquJ14x3WZQyHhg8y jvTEasBHYEB6WDnA+ZO20JFVXh9gerEPrhcAA8yJnLoPbCmAQR4iA7URgFma4qUD BeytMCFa+1pHBuvAvbK7exq7CBJcLeCdk2enr4zy5g1rHuetTCsoK+JfujSpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUZXSUEPprWPsidahltUQaQ8r+z/swHwYDVR0j BBgwFoAUHKnkBxAmLadRpn6TJHfW4StLLe0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YWQ2N2Q1Zi01NzEzLTQxNTMtODcxYi0xYjAwOGY3ZmZkZDIvMC8xQ0E5RTQwNzEw MjYyREE3NTFBNjdFOTMyNDc3RDZFMTJCNEIyREVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUNBOUU0MDcxMDI2MkRBNzUxQTY3RTkzMjQ3N0Q2RTEyQjRC MkRFRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhZDY3ZDVmLTU3MTMtNDE1My04 NzFiLTFiMDA4ZjdmZmRkMi8wLzMxMzAzMzJlMzEzMjMzMmUzMTMwMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABne2owDQYJ KoZIhvcNAQELBQADggEBAJIeXs828GvLyJzYUP6qFGpIK29oqlvyGZF0k9RRqnxP hjVVULcF8Ud5Qu4pUlj/KSMJlRMQxw9oV3YdHKyZUT1K00Hkt6YkrH2cdXp1sZEg SEnDWe0+677pRWlFp6bNiO4hkdG4Pzt3d9nETgwPpu8BSaYkYMaS9dJs8YgwmaJU TsosuMAbVMr7RF3Oekr6eXrttzqeZb5Uv1G0yLRuBpvqX4aD+P9xzE9WaNG3a6Vf tDdFQaBT2oQvOVvOve0tSgnUvGPR1JBhAp2/2DBxAYY1N3DIWWYvkY0Vhw0vgxCC H8ywUM3NEGvMSavU5MZoA+fwesAwbG+HXDEsUCVUZnM= -----END CERTIFICATE-----Generated at Tue Mar 11 05:01:54 2025 by rpki-client