$ rpki-client -vvf repo-rpki.idnic.net/repo/dce9f43d-08ba-4d02-8f38-74732f15cd8c/0/3130332e3138362e33332e302f32342d3234203d3e20313439363930.roa File: 3130332e3138362e33332e302f32342d3234203d3e20313439363930.roa (raw, json) Hash identifier: P4hdS37EWneF08stt5Krg+rWSIKfiKz6ffEd1QqCT5Q= Subject key identifier: 89:39:72:AA:22:E3:28:F6:87:D8:94:39:CD:A2:7B:70:9C:A2:09:85 Certificate issuer: /CN=47E5E36B848613534A65DDE4FBA27AB59A745B50 Certificate serial: 47C9930BEA15E588F56370EF2D0FBA95AB426EC1 Authority key identifier: 47:E5:E3:6B:84:86:13:53:4A:65:DD:E4:FB:A2:7A:B5:9A:74:5B:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47E5E36B848613534A65DDE4FBA27AB59A745B50.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dce9f43d-08ba-4d02-8f38-74732f15cd8c/0/3130332e3138362e33332e302f32342d3234203d3e20313439363930.roa Signing time: Mon 20 Jan 2025 13:00:02 +0000 ROA not before: Mon 20 Jan 2025 12:55:02 +0000 ROA not after: Mon 19 Jan 2026 13:00:02 +0000 asID: 149690 IP address blocks: 103.186.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dce9f43d-08ba-4d02-8f38-74732f15cd8c/0/47E5E36B848613534A65DDE4FBA27AB59A745B50.crl rsync://repo-rpki.idnic.net/repo/dce9f43d-08ba-4d02-8f38-74732f15cd8c/0/47E5E36B848613534A65DDE4FBA27AB59A745B50.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47E5E36B848613534A65DDE4FBA27AB59A745B50.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 04:09:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:c9:93:0b:ea:15:e5:88:f5:63:70:ef:2d:0f:ba:95:ab:42:6e:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47E5E36B848613534A65DDE4FBA27AB59A745B50 Validity Not Before: Jan 20 12:55:02 2025 GMT Not After : Jan 19 13:00:02 2026 GMT Subject: CN=893972AA22E328F687D89439CDA27B709CA20985 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:93:42:01:c9:f7:3c:4a:f9:5f:99:d4:d0:67: 75:cb:b8:12:05:17:5e:5f:24:71:ca:6f:3c:e6:18: 2d:41:8d:20:e3:2d:93:22:eb:a5:b8:82:1a:91:57: 06:b8:1f:f2:89:e9:53:5a:a1:91:81:46:c6:e8:2a: b2:b4:e8:11:23:22:2d:74:05:83:e0:67:9d:24:38: 08:5b:bd:66:82:0a:d7:88:0f:d4:0e:22:b1:c1:4f: bf:ff:f9:7f:3b:42:53:dd:d4:1c:9c:30:ca:ad:b8: c6:3f:cc:aa:8b:ee:ba:16:bc:97:1e:ac:7b:76:cb: 37:ac:79:79:7d:b4:2e:fb:6f:83:19:7d:b3:e7:d7: 13:7e:ab:e0:3c:92:e2:a2:a5:45:e4:ae:0c:0e:63: c3:f5:d9:cd:ac:d4:3c:25:66:ac:7b:4c:2b:8a:b5: af:03:87:a8:94:a8:21:67:22:87:4f:f0:53:f1:01: 62:f4:73:2e:e4:76:a6:bb:16:ca:bc:01:f8:95:7b: 9c:f5:8f:e7:d5:a6:fc:94:db:bd:a5:eb:eb:a5:23: 44:ff:15:df:2c:be:b0:59:02:5b:50:cc:39:c3:e3: 21:62:fc:fb:e1:a9:07:9a:8a:85:2f:47:d2:99:39: 38:21:be:35:8f:1b:96:f3:0e:9f:8c:2f:df:e3:e3: 50:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:39:72:AA:22:E3:28:F6:87:D8:94:39:CD:A2:7B:70:9C:A2:09:85 X509v3 Authority Key Identifier: keyid:47:E5:E3:6B:84:86:13:53:4A:65:DD:E4:FB:A2:7A:B5:9A:74:5B:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dce9f43d-08ba-4d02-8f38-74732f15cd8c/0/47E5E36B848613534A65DDE4FBA27AB59A745B50.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47E5E36B848613534A65DDE4FBA27AB59A745B50.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dce9f43d-08ba-4d02-8f38-74732f15cd8c/0/3130332e3138362e33332e302f32342d3234203d3e20313439363930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.33.0/24 Signature Algorithm: sha256WithRSAEncryption 12:e7:31:0f:75:02:12:53:d9:3d:9d:d3:c9:fe:dd:06:37:ab: 6d:a2:b7:46:13:b9:6c:a5:d0:c8:81:4e:da:47:d5:91:f2:84: da:90:3a:1b:da:55:23:fa:bf:10:1e:cb:07:92:eb:d4:55:77: df:91:27:a7:80:9a:80:c4:ac:ba:78:23:49:45:fb:20:38:eb: f2:db:cf:53:df:a5:b6:3f:2c:f3:79:68:e6:38:8d:f0:35:f6: 32:a4:8e:33:e3:bc:8d:ee:e4:10:10:0c:b1:72:69:eb:cb:ee: 5c:e0:ba:c1:65:eb:af:44:7c:4b:ec:d3:f8:5c:88:c9:6c:88: 66:74:fd:8f:8f:60:63:92:ed:8e:eb:62:41:75:c4:dd:10:21: 49:88:61:75:03:9c:71:67:ff:ac:2e:70:43:74:5a:2f:c5:7b: 2f:03:29:64:4c:da:b7:2e:aa:7a:ad:29:0c:9b:6e:4d:0a:97: e2:04:a4:f1:40:67:0a:bb:80:c7:52:0a:31:d7:c8:35:ee:98: b8:76:6d:e6:37:72:c4:0e:85:3c:e3:e8:b0:9b:e2:79:b4:17: b0:14:98:92:f4:0f:79:8f:d9:06:58:da:9d:99:57:ea:90:ca: 82:64:03:fd:31:ca:a4:71:0d:e7:d5:75:ab:74:58:84:41:53: 14:62:41:9c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUR8mTC+oV5Yj1Y3DvLQ+6latCbsEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDdFNUUzNkI4NDg2MTM1MzRBNjVEREU0RkJBMjdBQjU5 QTc0NUI1MDAeFw0yNTAxMjAxMjU1MDJaFw0yNjAxMTkxMzAwMDJaMDMxMTAvBgNV BAMTKDg5Mzk3MkFBMjJFMzI4RjY4N0Q4OTQzOUNEQTI3QjcwOUNBMjA5ODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKk0IByfc8SvlfmdTQZ3XLuBIF F15fJHHKbzzmGC1BjSDjLZMi66W4ghqRVwa4H/KJ6VNaoZGBRsboKrK06BEjIi10 BYPgZ50kOAhbvWaCCteID9QOIrHBT7//+X87QlPd1BycMMqtuMY/zKqL7roWvJce rHt2yzeseXl9tC77b4MZfbPn1xN+q+A8kuKipUXkrgwOY8P12c2s1DwlZqx7TCuK ta8Dh6iUqCFnIodP8FPxAWL0cy7kdqa7Fsq8AfiVe5z1j+fVpvyU272l6+ulI0T/ Fd8svrBZAltQzDnD4yFi/PvhqQeaioUvR9KZOTghvjWPG5bzDp+ML9/j41BlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUiTlyqiLjKPaH2JQ5zaJ7cJyiCYUwHwYDVR0j BBgwFoAUR+Xja4SGE1NKZd3k+6J6tZp0W1AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k Y2U5ZjQzZC0wOGJhLTRkMDItOGYzOC03NDczMmYxNWNkOGMvMC80N0U1RTM2Qjg0 ODYxMzUzNEE2NURERTRGQkEyN0FCNTlBNzQ1QjUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDdFNUUzNkI4NDg2MTM1MzRBNjVEREU0RkJBMjdBQjU5QTc0 NUI1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RjZTlmNDNkLTA4YmEtNGQwMi04 ZjM4LTc0NzMyZjE1Y2Q4Yy8wLzMxMzAzMzJlMzEzODM2MmUzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzYzOTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7ohMA0GCSqG SIb3DQEBCwUAA4IBAQAS5zEPdQISU9k9ndPJ/t0GN6ttordGE7lspdDIgU7aR9WR 8oTakDob2lUj+r8QHssHkuvUVXffkSengJqAxKy6eCNJRfsgOOvy289T36W2Pyzz eWjmOI3wNfYypI4z47yN7uQQEAyxcmnry+5c4LrBZeuvRHxL7NP4XIjJbIhmdP2P j2Bjku2O62JBdcTdECFJiGF1A5xxZ/+sLnBDdFovxXsvAylkTNq3Lqp6rSkMm25N CpfiBKTxQGcKu4DHUgox18g17pi4dm3mN3LEDoU84+iwm+J5tBewFJiS9A95j9kG WNqdmVfqkMqCZAP9McqkcQ3n1XWrdFiEQVMUYkGc -----END CERTIFICATE-----Generated at Sun Feb 16 22:11:48 2025 by rpki-client