$ rpki-client -vvf repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/3130332e3133322e34302e302f32342d3234203d3e20313530393730.roa File: 3130332e3133322e34302e302f32342d3234203d3e20313530393730.roa (raw, json) Hash identifier: f48Cy1U7udxBY7J5ME0Gs+AuNWTYX+G7wDW6QnQhy6I= Subject key identifier: 20:6C:28:06:1C:B9:5C:C2:97:87:33:07:CA:0E:E5:F2:A2:74:78:AE Certificate issuer: /CN=CB9662733153C02E4C411B7D2F2B9E22D2F0EB85 Certificate serial: 7C94521DFD12FD8A2226D96F9B3EE002F908CA90 Authority key identifier: CB:96:62:73:31:53:C0:2E:4C:41:1B:7D:2F:2B:9E:22:D2:F0:EB:85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/3130332e3133322e34302e302f32342d3234203d3e20313530393730.roa Signing time: Thu 04 Jul 2024 18:00:00 +0000 ROA not before: Thu 04 Jul 2024 17:55:00 +0000 ROA not after: Thu 03 Jul 2025 18:00:00 +0000 asID: 150970 IP address blocks: 103.132.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.crl rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Feb 2025 21:50:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:94:52:1d:fd:12:fd:8a:22:26:d9:6f:9b:3e:e0:02:f9:08:ca:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB9662733153C02E4C411B7D2F2B9E22D2F0EB85 Validity Not Before: Jul 4 17:55:00 2024 GMT Not After : Jul 3 18:00:00 2025 GMT Subject: CN=206C28061CB95CC297873307CA0EE5F2A27478AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ad:7a:1e:8b:8f:78:f4:92:dd:ac:57:9e:75: 51:34:64:45:a2:54:1c:b4:fc:7d:34:d1:72:66:3e: 66:73:25:c0:49:3d:c5:e2:d0:82:8b:56:6b:93:2f: a4:98:51:1e:e4:a2:06:45:15:50:92:86:28:84:03: 40:10:3d:68:89:40:52:f3:51:28:c9:aa:bf:b6:39: 26:49:e2:f1:f9:c6:e0:b9:f3:f0:d1:b5:77:e3:77: c3:bc:bc:37:d6:ae:e2:78:fb:51:a1:39:2c:4f:a9: ad:35:d7:05:ad:fd:c5:0b:3b:4a:92:34:6f:0f:6e: 2f:1e:73:99:71:08:3a:a0:66:dc:28:49:cc:18:83: 6f:43:22:56:8c:22:a7:65:79:db:95:26:5d:70:b1: 53:3c:83:f4:1a:98:bd:52:65:16:1b:98:ae:7d:5e: ef:10:5c:b1:8f:45:b1:7b:72:c7:90:a1:40:bf:4b: ae:54:f3:98:ef:73:25:c2:46:2e:85:83:44:87:d9: 1d:ad:f3:06:1c:8a:54:7f:db:b8:e6:82:e0:10:8c: 3f:b9:aa:f6:7c:26:f7:50:c1:94:2d:2a:82:d8:82: 46:ff:b8:79:8e:2d:08:5f:cb:9e:b1:71:a5:45:27: 88:4e:0b:3e:89:3d:a5:7f:6c:24:76:fc:c3:e5:c5: c8:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:6C:28:06:1C:B9:5C:C2:97:87:33:07:CA:0E:E5:F2:A2:74:78:AE X509v3 Authority Key Identifier: keyid:CB:96:62:73:31:53:C0:2E:4C:41:1B:7D:2F:2B:9E:22:D2:F0:EB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/3130332e3133322e34302e302f32342d3234203d3e20313530393730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.40.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:61:50:30:d3:5a:c0:14:5a:8c:2f:8f:d0:d0:fd:86:34:85: 15:37:90:bb:37:55:2e:d5:eb:82:ce:b1:a6:aa:ec:7b:03:92: 01:7a:d4:4d:ba:3e:6b:94:8c:3f:58:c5:93:b7:d2:0a:9b:f5: 96:f2:fa:5a:a7:17:3a:dc:5e:5a:96:2b:b9:d8:a5:ab:6c:da: c5:ff:14:b4:63:d2:49:0c:0f:ce:ee:9f:29:b0:cd:13:f2:07: 2e:51:5a:ff:50:0e:04:10:8f:59:4d:73:30:54:40:71:53:f0: 85:12:65:59:01:01:10:65:97:28:ce:8f:46:89:f0:25:1e:70: bf:b6:d4:1c:7a:18:5a:72:e2:8a:c2:a0:d7:d8:93:14:ee:f2: e8:77:f2:25:69:77:7f:a0:1c:ac:a7:60:b2:1b:a1:55:18:cc: 46:14:e3:17:6c:9d:5d:46:22:37:a6:7a:1d:45:0e:b8:b7:55: 5d:5a:fe:d5:0c:71:d2:a4:c8:b5:da:8c:5e:b9:bc:bb:65:52: ba:f1:d0:23:8c:36:a8:f4:26:49:d6:f7:ec:fe:f8:35:d6:60: e9:64:49:98:e1:08:21:df:ab:d9:45:e2:51:a2:f5:28:39:85: 17:74:4d:cf:ce:33:70:7f:32:9e:9d:dc:8c:59:9e:5c:7f:04: bd:d0:df:87 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfJRSHf0S/YoiJtlvmz7gAvkIypAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0I5NjYyNzMzMTUzQzAyRTRDNDExQjdEMkYyQjlFMjJE MkYwRUI4NTAeFw0yNDA3MDQxNzU1MDBaFw0yNTA3MDMxODAwMDBaMDMxMTAvBgNV BAMTKDIwNkMyODA2MUNCOTVDQzI5Nzg3MzMwN0NBMEVFNUYyQTI3NDc4QUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCirXoei4949JLdrFeedVE0ZEWi VBy0/H000XJmPmZzJcBJPcXi0IKLVmuTL6SYUR7kogZFFVCShiiEA0AQPWiJQFLz USjJqr+2OSZJ4vH5xuC58/DRtXfjd8O8vDfWruJ4+1GhOSxPqa011wWt/cULO0qS NG8Pbi8ec5lxCDqgZtwoScwYg29DIlaMIqdleduVJl1wsVM8g/QamL1SZRYbmK59 Xu8QXLGPRbF7cseQoUC/S65U85jvcyXCRi6Fg0SH2R2t8wYcilR/27jmguAQjD+5 qvZ8JvdQwZQtKoLYgkb/uHmOLQhfy56xcaVFJ4hOCz6JPaV/bCR2/MPlxcidAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIGwoBhy5XMKXhzMHyg7l8qJ0eK4wHwYDVR0j BBgwFoAUy5ZiczFTwC5MQRt9LyueItLw64UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZGYyZmZkYS0wNWQxLTQwODUtYTEzNS0wMzk4N2EwN2YzOWUvMC9DQjk2NjI3MzMx NTNDMDJFNEM0MTFCN0QyRjJCOUUyMkQyRjBFQjg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0I5NjYyNzMzMTUzQzAyRTRDNDExQjdEMkYyQjlFMjJEMkYw RUI4NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RkZjJmZmRhLTA1ZDEtNDA4NS1h MTM1LTAzOTg3YTA3ZjM5ZS8wLzMxMzAzMzJlMzEzMzMyMmUzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4QoMA0GCSqG SIb3DQEBCwUAA4IBAQAcYVAw01rAFFqML4/Q0P2GNIUVN5C7N1Uu1euCzrGmqux7 A5IBetRNuj5rlIw/WMWTt9IKm/WW8vpapxc63F5aliu52KWrbNrF/xS0Y9JJDA/O 7p8psM0T8gcuUVr/UA4EEI9ZTXMwVEBxU/CFEmVZAQEQZZcozo9GifAlHnC/ttQc ehhacuKKwqDX2JMU7vLod/IlaXd/oBysp2CyG6FVGMxGFOMXbJ1dRiI3pnodRQ64 t1VdWv7VDHHSpMi12oxeuby7ZVK68dAjjDao9CZJ1vfs/vg11mDpZEmY4Qgh36vZ ReJRovUoOYUXdE3PzjNwfzKendyMWZ5cfwS90N+H -----END CERTIFICATE-----Generated at Fri Feb 21 11:05:14 2025 by rpki-client