$ rpki-client -vvf repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/3130332e38302e3231342e302f32342d3234203d3e20313533303932.roa File: 3130332e38302e3231342e302f32342d3234203d3e20313533303932.roa (raw, json) Hash identifier: xGHUucKhH5kmQ+65YZMYfuYlyW3kJ8ie5abut/yqhlk= Subject key identifier: 7C:A5:10:F4:58:4A:A0:B1:19:4E:A9:51:A0:B7:B1:FD:F6:A3:89:10 Certificate issuer: /CN=2B90BB17E78B62C15179029C6583E42BD7E18277 Certificate serial: 4E62BDE4A874B511A31F0F6AFF156B2EADA5E11D Authority key identifier: 2B:90:BB:17:E7:8B:62:C1:51:79:02:9C:65:83:E4:2B:D7:E1:82:77 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/3130332e38302e3231342e302f32342d3234203d3e20313533303932.roa Signing time: Sat 14 Dec 2024 04:30:09 +0000 ROA not before: Sat 14 Dec 2024 04:25:09 +0000 ROA not after: Sat 13 Dec 2025 04:30:09 +0000 asID: 153092 IP address blocks: 103.80.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.crl rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 09:14:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:62:bd:e4:a8:74:b5:11:a3:1f:0f:6a:ff:15:6b:2e:ad:a5:e1:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B90BB17E78B62C15179029C6583E42BD7E18277 Validity Not Before: Dec 14 04:25:09 2024 GMT Not After : Dec 13 04:30:09 2025 GMT Subject: CN=7CA510F4584AA0B1194EA951A0B7B1FDF6A38910 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:bb:2f:b1:1b:72:02:23:f1:2c:58:86:c9:23: 5f:9a:4e:c8:f4:93:94:a3:01:71:0a:5b:c1:e4:f8: 04:9d:b1:30:d8:d9:2e:b8:04:33:ad:4d:08:97:ac: 7a:97:f5:f1:40:b2:7c:ff:a5:c5:48:61:c6:fc:9a: 40:95:f5:c4:5e:41:bb:e7:1b:a5:5c:69:21:35:fc: 37:e4:fe:60:08:da:e7:50:01:d8:3d:79:b9:9d:61: fc:80:64:ef:8c:d8:1c:2a:9d:ba:37:f2:b7:8d:0c: c7:d0:7f:85:6d:75:ee:0f:94:29:b1:82:f8:66:f0: cf:8c:1a:0a:00:2d:35:14:e4:f0:85:04:da:f0:13: 6a:d3:f7:4b:82:0e:d8:b9:31:2f:3b:e3:55:30:fd: b9:31:26:6a:d9:ec:29:e9:c7:a7:82:5f:15:6c:be: ac:7b:95:bb:5c:51:b6:41:6d:a3:71:e8:63:ab:d6: a3:4d:01:e8:9d:68:be:1d:9f:5e:16:c9:f5:e6:cf: d2:9c:17:60:c6:cb:ff:bf:e6:19:c1:d6:b1:0d:08: 77:2b:c2:8c:95:21:30:3b:ec:46:34:f9:d0:60:2e: e2:78:31:44:79:26:c9:05:ee:ba:0c:7d:61:f9:00: fe:57:a2:5c:4c:ae:f3:cf:53:31:b5:ec:21:82:36: c9:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:A5:10:F4:58:4A:A0:B1:19:4E:A9:51:A0:B7:B1:FD:F6:A3:89:10 X509v3 Authority Key Identifier: keyid:2B:90:BB:17:E7:8B:62:C1:51:79:02:9C:65:83:E4:2B:D7:E1:82:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/3130332e38302e3231342e302f32342d3234203d3e20313533303932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.80.214.0/24 Signature Algorithm: sha256WithRSAEncryption 95:e8:9c:20:84:23:68:53:a3:52:8b:87:d2:61:80:4c:9f:10: 0b:04:5f:e6:c2:11:75:2a:02:82:d6:14:cc:20:1d:ed:65:77: 04:76:23:29:36:21:c4:0f:49:08:5c:c7:13:87:d8:29:a6:7a: 99:50:bb:98:bb:c4:b8:7f:20:07:1c:3d:bc:f3:2b:a0:68:a6: a6:ff:24:43:8d:c0:f1:30:69:a1:ee:66:8b:51:9c:31:27:0b: e4:b3:22:98:31:1f:5c:54:e6:c8:76:01:0f:20:0a:a6:4e:4b: 22:32:0e:1c:92:77:32:ed:a8:0e:8f:cd:9b:b4:e3:f7:dd:0a: af:5d:61:55:76:c6:56:95:b6:de:f5:71:35:f9:56:f9:9b:c3: 22:af:22:b5:97:59:50:88:65:53:32:a6:50:ee:98:5c:da:9f: ed:ac:51:9a:e7:5b:65:a7:b7:06:60:87:f1:ca:f1:ef:f1:6d: fa:f0:ec:e8:14:95:a3:db:9a:0e:86:71:03:25:a2:98:09:5c: b8:59:83:61:77:74:12:8f:54:ba:43:e5:05:5c:ac:c1:5b:db: f7:68:73:15:ed:81:06:e5:6b:69:67:b4:60:d0:23:60:2d:69: cc:75:1d:8d:48:19:f5:ff:e9:ac:10:a6:bc:92:54:64:e7:61: 7f:d6:6c:a3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTmK95Kh0tRGjHw9q/xVrLq2l4R0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0MkJE N0UxODI3NzAeFw0yNDEyMTQwNDI1MDlaFw0yNTEyMTMwNDMwMDlaMDMxMTAvBgNV BAMTKDdDQTUxMEY0NTg0QUEwQjExOTRFQTk1MUEwQjdCMUZERjZBMzg5MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3uy+xG3ICI/EsWIbJI1+aTsj0 k5SjAXEKW8Hk+ASdsTDY2S64BDOtTQiXrHqX9fFAsnz/pcVIYcb8mkCV9cReQbvn G6VcaSE1/Dfk/mAI2udQAdg9ebmdYfyAZO+M2Bwqnbo38reNDMfQf4Vtde4PlCmx gvhm8M+MGgoALTUU5PCFBNrwE2rT90uCDti5MS8741Uw/bkxJmrZ7Cnpx6eCXxVs vqx7lbtcUbZBbaNx6GOr1qNNAeidaL4dn14WyfXmz9KcF2DGy/+/5hnB1rENCHcr woyVITA77EY0+dBgLuJ4MUR5JskF7roMfWH5AP5XolxMrvPPUzG17CGCNsk3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfKUQ9FhKoLEZTqlRoLex/fajiRAwHwYDVR0j BBgwFoAUK5C7F+eLYsFReQKcZYPkK9fhgncwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTVhNWU2ZC05MWVlLTQ0OTctYjQxNy04ZDMyZjY1M2U0YjAvMC8yQjkwQkIxN0U3 OEI2MkMxNTE3OTAyOUM2NTgzRTQyQkQ3RTE4Mjc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0MkJEN0Ux ODI3Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RlNWE1ZTZkLTkxZWUtNDQ5Ny1i NDE3LThkMzJmNjUzZTRiMC8wLzMxMzAzMzJlMzgzMDJlMzIzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzOTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1DWMA0GCSqG SIb3DQEBCwUAA4IBAQCV6JwghCNoU6NSi4fSYYBMnxALBF/mwhF1KgKC1hTMIB3t ZXcEdiMpNiHED0kIXMcTh9gppnqZULuYu8S4fyAHHD288yugaKam/yRDjcDxMGmh 7maLUZwxJwvksyKYMR9cVObIdgEPIAqmTksiMg4ckncy7agOj82btOP33QqvXWFV dsZWlbbe9XE1+Vb5m8MiryK1l1lQiGVTMqZQ7phc2p/trFGa51tlp7cGYIfxyvHv 8W368OzoFJWj25oOhnEDJaKYCVy4WYNhd3QSj1S6Q+UFXKzBW9v3aHMV7YEG5Wtp Z7Rg0CNgLWnMdR2NSBn1/+msEKa8klRk52F/1myj -----END CERTIFICATE-----Generated at Sun Apr 6 11:10:32 2025 by rpki-client