$ rpki-client -vvf repo-rpki.idnic.net/repo/dbff1b3f-1190-4119-bbc6-1417df8aa258/0/3130332e37392e3233372e302f32342d3234203d3e20313530393535.roa File: 3130332e37392e3233372e302f32342d3234203d3e20313530393535.roa (raw, json) Hash identifier: 2IWnXxowwOlz7I18Z25U30dGHsj5oRHYQH7WRuuUzKo= Subject key identifier: 88:4E:7D:CB:51:0F:BB:20:8C:1D:7B:6B:45:4B:39:27:1E:49:EA:35 Certificate issuer: /CN=89B98D1F135A7FC66C0284C34477C19604645554 Certificate serial: 243D88D3B47E891E45F1B3D7CBE6476514DAE4DB Authority key identifier: 89:B9:8D:1F:13:5A:7F:C6:6C:02:84:C3:44:77:C1:96:04:64:55:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89B98D1F135A7FC66C0284C34477C19604645554.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dbff1b3f-1190-4119-bbc6-1417df8aa258/0/3130332e37392e3233372e302f32342d3234203d3e20313530393535.roa Signing time: Wed 12 Feb 2025 08:02:24 +0000 ROA not before: Wed 12 Feb 2025 07:57:24 +0000 ROA not after: Wed 11 Feb 2026 08:02:24 +0000 asID: 150955 IP address blocks: 103.79.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dbff1b3f-1190-4119-bbc6-1417df8aa258/0/89B98D1F135A7FC66C0284C34477C19604645554.crl rsync://repo-rpki.idnic.net/repo/dbff1b3f-1190-4119-bbc6-1417df8aa258/0/89B98D1F135A7FC66C0284C34477C19604645554.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89B98D1F135A7FC66C0284C34477C19604645554.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 18:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:3d:88:d3:b4:7e:89:1e:45:f1:b3:d7:cb:e6:47:65:14:da:e4:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89B98D1F135A7FC66C0284C34477C19604645554 Validity Not Before: Feb 12 07:57:24 2025 GMT Not After : Feb 11 08:02:24 2026 GMT Subject: CN=884E7DCB510FBB208C1D7B6B454B39271E49EA35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a3:80:53:03:8f:59:4b:5c:3c:1e:f2:8e:86: b7:9a:98:98:d5:3a:35:49:aa:86:65:27:e8:64:65: b6:c8:24:76:dc:1e:ee:6c:ad:c5:59:ed:af:65:c7: 64:ca:7c:ff:a3:9f:63:b8:73:95:53:3a:9c:5e:1c: 18:63:a7:6d:3f:41:1f:c8:a4:2b:ed:67:ae:03:3f: 03:3d:81:13:1f:d5:fc:95:05:4b:ae:2c:24:4d:d0: d8:72:3d:4c:22:6f:ea:bd:9e:2f:db:36:14:ef:72: 9a:43:30:92:ee:48:57:f3:86:3e:9c:e3:93:04:85: 9f:6c:44:31:3d:99:be:89:07:77:d7:fd:92:98:d6: f3:f0:20:01:a3:40:aa:42:d3:ad:b8:80:c8:b4:2b: d1:99:64:76:34:e1:94:ec:c3:a7:6a:34:ac:49:04: 1d:d2:26:8b:dc:2e:3a:ae:36:3c:7d:de:c9:b5:a6: 58:d9:38:7f:da:4e:47:2b:13:3a:cb:f7:37:e0:6b: 7b:3f:ab:fb:8c:63:70:a2:7e:5b:7c:5b:35:9a:1d: cd:fb:56:6a:b6:d6:a4:c3:c8:bd:5f:a0:73:41:90: 2c:0c:6b:a9:b2:70:82:5b:fc:f9:eb:a0:88:d2:98: 88:61:f4:c5:ab:7f:29:3d:8d:ea:a3:68:8e:2a:7b: 12:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:4E:7D:CB:51:0F:BB:20:8C:1D:7B:6B:45:4B:39:27:1E:49:EA:35 X509v3 Authority Key Identifier: keyid:89:B9:8D:1F:13:5A:7F:C6:6C:02:84:C3:44:77:C1:96:04:64:55:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dbff1b3f-1190-4119-bbc6-1417df8aa258/0/89B98D1F135A7FC66C0284C34477C19604645554.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89B98D1F135A7FC66C0284C34477C19604645554.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dbff1b3f-1190-4119-bbc6-1417df8aa258/0/3130332e37392e3233372e302f32342d3234203d3e20313530393535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.79.237.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:b2:f9:78:ff:4d:08:8a:ad:76:44:bc:d2:bd:0b:54:9c:bc: c5:94:d5:ba:7f:f8:7a:c6:a3:fa:36:bb:81:8b:b7:ee:ca:37: 44:2e:43:82:d5:87:ff:27:f3:44:d0:22:16:62:10:c2:2e:9d: 29:92:40:54:2b:63:bf:27:d0:c6:76:35:d6:73:57:02:2f:1d: fd:76:39:4c:31:83:e4:1a:ff:a4:50:4d:80:92:15:13:00:f1: fb:ab:51:16:75:7a:0d:f0:ac:50:47:f2:aa:15:dd:34:08:c2: 75:cc:69:b0:06:5f:8e:43:b4:3a:c0:4a:93:85:3f:ac:82:41: 8c:44:24:70:bd:f8:ca:d8:ee:30:6d:bf:42:ba:62:71:30:f9: 16:16:11:25:b2:1f:b4:eb:b2:92:a9:27:22:d5:dc:1e:4f:72: c2:43:96:12:f7:19:bf:69:41:83:ab:0f:f4:1a:72:be:9f:f9: 17:16:d5:8c:34:c2:b6:a1:43:72:ea:11:c8:f0:40:41:26:0a: 24:ef:03:98:fc:63:5f:63:07:15:cd:6b:cf:45:a4:66:eb:f4: 71:12:b2:48:52:c9:4f:89:19:d5:22:a4:a0:c4:d6:cc:9d:94: 51:62:f8:ed:95:80:ad:7c:39:21:da:2b:1d:ae:55:22:04:47: d3:27:5c:51 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJD2I07R+iR5F8bPXy+ZHZRTa5NswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODlCOThEMUYxMzVBN0ZDNjZDMDI4NEMzNDQ3N0MxOTYw NDY0NTU1NDAeFw0yNTAyMTIwNzU3MjRaFw0yNjAyMTEwODAyMjRaMDMxMTAvBgNV BAMTKDg4NEU3RENCNTEwRkJCMjA4QzFEN0I2QjQ1NEIzOTI3MUU0OUVBMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJo4BTA49ZS1w8HvKOhreamJjV OjVJqoZlJ+hkZbbIJHbcHu5srcVZ7a9lx2TKfP+jn2O4c5VTOpxeHBhjp20/QR/I pCvtZ64DPwM9gRMf1fyVBUuuLCRN0NhyPUwib+q9ni/bNhTvcppDMJLuSFfzhj6c 45MEhZ9sRDE9mb6JB3fX/ZKY1vPwIAGjQKpC0624gMi0K9GZZHY04ZTsw6dqNKxJ BB3SJovcLjquNjx93sm1pljZOH/aTkcrEzrL9zfga3s/q/uMY3Ciflt8WzWaHc37 Vmq21qTDyL1foHNBkCwMa6mycIJb/PnroIjSmIhh9MWrfyk9jeqjaI4qexJRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUiE59y1EPuyCMHXtrRUs5Jx5J6jUwHwYDVR0j BBgwFoAUibmNHxNaf8ZsAoTDRHfBlgRkVVQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YmZmMWIzZi0xMTkwLTQxMTktYmJjNi0xNDE3ZGY4YWEyNTgvMC84OUI5OEQxRjEz NUE3RkM2NkMwMjg0QzM0NDc3QzE5NjA0NjQ1NTU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODlCOThEMUYxMzVBN0ZDNjZDMDI4NEMzNDQ3N0MxOTYwNDY0 NTU1NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RiZmYxYjNmLTExOTAtNDExOS1i YmM2LTE0MTdkZjhhYTI1OC8wLzMxMzAzMzJlMzczOTJlMzIzMzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0/tMA0GCSqG SIb3DQEBCwUAA4IBAQAqsvl4/00Iiq12RLzSvQtUnLzFlNW6f/h6xqP6NruBi7fu yjdELkOC1Yf/J/NE0CIWYhDCLp0pkkBUK2O/J9DGdjXWc1cCLx39djlMMYPkGv+k UE2AkhUTAPH7q1EWdXoN8KxQR/KqFd00CMJ1zGmwBl+OQ7Q6wEqThT+sgkGMRCRw vfjK2O4wbb9CumJxMPkWFhElsh+067KSqSci1dweT3LCQ5YS9xm/aUGDqw/0GnK+ n/kXFtWMNMK2oUNy6hHI8EBBJgok7wOY/GNfYwcVzWvPRaRm6/RxErJIUslPiRnV IqSgxNbMnZRRYvjtlYCtfDkh2isdrlUiBEfTJ1xR -----END CERTIFICATE-----Generated at Tue Mar 11 05:05:38 2025 by rpki-client