$ rpki-client -vvf repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/3130332e36372e38302e302f32342d3234203d3e20313532303031.roa File: 3130332e36372e38302e302f32342d3234203d3e20313532303031.roa (raw, json) Hash identifier: km/J3O6wA+/+giyqpUHqvd0x617eyhN+dq0ZwqMW8PA= Subject key identifier: 35:C4:28:93:9C:42:33:A7:42:CE:B6:7D:C0:78:3E:55:6E:58:74:9D Certificate issuer: /CN=16889A9053AE7EB169CF822E9EE670A5C618F97E Certificate serial: 1F1464EBA7EBB4A61A7912B78664CEFE368248F1 Authority key identifier: 16:88:9A:90:53:AE:7E:B1:69:CF:82:2E:9E:E6:70:A5:C6:18:F9:7E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/16889A9053AE7EB169CF822E9EE670A5C618F97E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/3130332e36372e38302e302f32342d3234203d3e20313532303031.roa Signing time: Tue 10 Dec 2024 08:00:01 +0000 ROA not before: Tue 10 Dec 2024 07:55:01 +0000 ROA not after: Tue 09 Dec 2025 08:00:01 +0000 asID: 152001 IP address blocks: 103.67.80.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.crl rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/16889A9053AE7EB169CF822E9EE670A5C618F97E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 07:11:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:14:64:eb:a7:eb:b4:a6:1a:79:12:b7:86:64:ce:fe:36:82:48:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16889A9053AE7EB169CF822E9EE670A5C618F97E Validity Not Before: Dec 10 07:55:01 2024 GMT Not After : Dec 9 08:00:01 2025 GMT Subject: CN=35C428939C4233A742CEB67DC0783E556E58749D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d9:8b:fd:ff:60:b1:72:42:91:a1:f0:d4:07: 9b:9c:9c:ea:ce:ed:34:d0:ab:6a:5d:bc:11:c9:76: 20:2b:f8:2d:4d:54:0d:89:c5:eb:63:16:dc:e0:16: 2c:80:9c:48:8c:ca:d5:6a:ec:5f:cd:4a:b8:97:41: 1a:b7:65:38:8c:a4:82:ce:e2:36:07:bd:62:c2:d6: ac:2e:ef:00:40:3e:00:ee:b3:99:d7:3b:ed:67:c8: f5:7f:3a:00:5b:4e:a0:b0:97:29:b1:a8:dc:2f:02: a1:fb:bf:70:40:e2:5a:0b:90:47:c0:52:c5:15:3a: 88:ac:75:0d:1b:d6:a2:4a:ef:23:3e:d3:1b:a0:f9: ed:da:6f:8f:3b:9f:4c:36:ad:3b:5b:a1:cd:32:f4: d7:f3:7f:b2:96:a5:cb:8a:6b:16:62:97:1d:9d:60: 96:1b:60:9f:48:cf:bd:0f:36:30:73:d0:67:bd:a6: 76:de:52:6b:05:9a:2e:6e:d7:5f:0a:c0:93:76:8b: 41:3c:be:ae:e5:61:bd:f1:79:0c:68:a6:63:6e:d6: 35:b0:59:9a:4a:aa:c5:4c:23:e9:06:08:7c:ea:4e: 2e:66:95:08:c7:72:ba:c5:23:fe:1e:6f:b4:0e:77: c4:1f:bf:91:9d:a8:22:28:58:15:07:d1:07:ff:48: 48:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:C4:28:93:9C:42:33:A7:42:CE:B6:7D:C0:78:3E:55:6E:58:74:9D X509v3 Authority Key Identifier: keyid:16:88:9A:90:53:AE:7E:B1:69:CF:82:2E:9E:E6:70:A5:C6:18:F9:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/16889A9053AE7EB169CF822E9EE670A5C618F97E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/3130332e36372e38302e302f32342d3234203d3e20313532303031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.67.80.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:a0:d1:5e:d9:48:a8:ed:30:a9:ad:3f:1f:10:c4:50:40:23: e5:32:3a:22:2a:5a:5b:67:d8:2d:78:38:03:a0:4b:39:c6:a6: 20:32:f6:c1:b7:f4:d4:f9:a0:65:b2:0c:13:07:b8:49:99:cd: b3:32:fb:18:b1:85:37:b9:59:38:b0:fe:6f:1b:be:d7:3d:f7: 35:40:54:a8:e7:ab:62:2e:11:ae:b5:a9:7c:14:16:f6:76:14: f7:80:03:9d:ed:da:25:66:57:11:f8:9e:39:3b:02:37:cd:85: 61:fe:6d:ca:b6:87:f6:a1:68:ab:ea:4d:05:33:fb:f3:b1:86: f4:35:79:21:1b:27:a6:b7:5b:58:77:7f:6c:ad:56:5a:0f:04: 8f:69:68:d8:e7:34:df:a1:7d:ca:1d:11:87:70:3d:0a:cf:3a: cc:b3:d7:ed:fc:ad:c9:30:f5:b3:df:aa:02:fb:02:f2:57:8d: 9e:74:07:e2:f3:58:66:bb:3d:aa:70:73:ae:84:97:be:ae:27: aa:4c:e1:9f:30:49:82:62:e9:cd:bb:9e:73:63:49:75:02:b5: df:6a:80:69:40:d1:3a:9d:30:c1:18:16:8e:e0:80:dc:ba:d2: 03:16:e2:76:8d:f0:ed:d2:f0:23:63:68:16:60:e3:96:5c:96: d9:e8:fb:de -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHxRk66frtKYaeRK3hmTO/jaCSPEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY4ODlBOTA1M0FFN0VCMTY5Q0Y4MjJFOUVFNjcwQTVD NjE4Rjk3RTAeFw0yNDEyMTAwNzU1MDFaFw0yNTEyMDkwODAwMDFaMDMxMTAvBgNV BAMTKDM1QzQyODkzOUM0MjMzQTc0MkNFQjY3REMwNzgzRTU1NkU1ODc0OUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW2Yv9/2CxckKRofDUB5ucnOrO 7TTQq2pdvBHJdiAr+C1NVA2JxetjFtzgFiyAnEiMytVq7F/NSriXQRq3ZTiMpILO 4jYHvWLC1qwu7wBAPgDus5nXO+1nyPV/OgBbTqCwlymxqNwvAqH7v3BA4loLkEfA UsUVOoisdQ0b1qJK7yM+0xug+e3ab487n0w2rTtboc0y9Nfzf7KWpcuKaxZilx2d YJYbYJ9Iz70PNjBz0Ge9pnbeUmsFmi5u118KwJN2i0E8vq7lYb3xeQxopmNu1jWw WZpKqsVMI+kGCHzqTi5mlQjHcrrFI/4eb7QOd8Qfv5GdqCIoWBUH0Qf/SEjdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNcQok5xCM6dCzrZ9wHg+VW5YdJ0wHwYDVR0j BBgwFoAUFoiakFOufrFpz4IunuZwpcYY+X4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTNmMmU5Yi0xMDY4LTRmYTktYmExZC01OWQwNzFhNDEyYTIvMC8xNjg4OUE5MDUz QUU3RUIxNjlDRjgyMkU5RUU2NzBBNUM2MThGOTdFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY4ODlBOTA1M0FFN0VCMTY5Q0Y4MjJFOUVFNjcwQTVDNjE4 Rjk3RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RlM2YyZTliLTEwNjgtNGZhOS1i YTFkLTU5ZDA3MWE0MTJhMi8wLzMxMzAzMzJlMzYzNzJlMzgzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzAzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdDUDANBgkqhkiG 9w0BAQsFAAOCAQEATKDRXtlIqO0wqa0/HxDEUEAj5TI6IipaW2fYLXg4A6BLOcam IDL2wbf01PmgZbIMEwe4SZnNszL7GLGFN7lZOLD+bxu+1z33NUBUqOerYi4RrrWp fBQW9nYU94ADne3aJWZXEfieOTsCN82FYf5tyraH9qFoq+pNBTP787GG9DV5IRsn prdbWHd/bK1WWg8Ej2lo2Oc036F9yh0Rh3A9Cs86zLPX7fytyTD1s9+qAvsC8leN nnQH4vNYZrs9qnBzroSXvq4nqkzhnzBJgmLpzbuec2NJdQK132qAaUDROp0wwRgW juCA3LrSAxbido3w7dLwI2NoFmDjllyW2ej73g== -----END CERTIFICATE-----Generated at Sun Apr 6 11:05:47 2025 by rpki-client