$ rpki-client -vvf repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/3130332e38302e3231352e302f32342d3234203d3e20313533303932.roa File: 3130332e38302e3231352e302f32342d3234203d3e20313533303932.roa (raw, json) Hash identifier: 4Y5Ddm6yUymC+qHSs8fVActMjjMDZEcHLdC59v78BoQ= Subject key identifier: 78:C8:29:4E:BC:DD:B7:28:E6:0A:11:B8:7E:97:6F:3A:77:14:22:D1 Certificate issuer: /CN=2B90BB17E78B62C15179029C6583E42BD7E18277 Certificate serial: 2F35FE8ED7ADA4ABC410F4C542C66DF4B5EDE0ED Authority key identifier: 2B:90:BB:17:E7:8B:62:C1:51:79:02:9C:65:83:E4:2B:D7:E1:82:77 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/3130332e38302e3231352e302f32342d3234203d3e20313533303932.roa Signing time: Sat 14 Dec 2024 04:31:46 +0000 ROA not before: Sat 14 Dec 2024 04:26:46 +0000 ROA not after: Sat 13 Dec 2025 04:31:46 +0000 asID: 153092 IP address blocks: 103.80.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.crl rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 09:14:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:35:fe:8e:d7:ad:a4:ab:c4:10:f4:c5:42:c6:6d:f4:b5:ed:e0:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B90BB17E78B62C15179029C6583E42BD7E18277 Validity Not Before: Dec 14 04:26:46 2024 GMT Not After : Dec 13 04:31:46 2025 GMT Subject: CN=78C8294EBCDDB728E60A11B87E976F3A771422D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:fc:d9:03:35:44:dc:59:87:c4:2b:72:d4:6e: a8:55:7b:3b:94:f8:e0:f7:2d:88:ef:07:08:d4:4f: 34:29:fc:7f:82:54:8a:a5:ac:3f:f7:86:a6:e8:7e: e5:eb:c8:34:f8:56:99:0d:1a:55:79:c9:76:a7:29: e1:a1:e8:51:3f:96:b4:b0:92:37:65:0e:da:fb:59: 21:44:04:69:ca:d0:68:11:c4:f4:64:26:3c:f4:5e: d2:bc:15:21:d4:31:31:2e:a2:ed:57:29:93:de:19: 6e:cb:38:10:c6:5f:3e:e5:f1:d3:7a:14:57:69:3a: ca:b1:81:b0:4a:68:7d:8a:14:0c:5e:de:e1:0e:6a: 79:6e:7c:6d:ee:94:6b:00:96:57:ef:95:9e:a4:a2: 3e:97:cb:0b:8c:cd:d7:ad:b3:c7:6f:15:d0:30:53: 78:c2:58:9d:6c:d5:e2:00:bc:53:b8:99:37:7c:c7: da:81:23:ce:95:b3:9f:bd:1a:52:c9:6b:68:23:9a: fb:be:62:de:9c:c9:bd:54:68:b9:3f:13:7f:80:32: 2e:11:77:14:d3:07:30:5d:63:f6:0f:ed:f9:da:48: 54:70:42:a7:d7:04:60:2b:61:9f:86:80:c1:1d:83: 54:c2:57:25:61:a5:b8:d7:17:53:66:e5:b3:f9:0f: 75:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:C8:29:4E:BC:DD:B7:28:E6:0A:11:B8:7E:97:6F:3A:77:14:22:D1 X509v3 Authority Key Identifier: keyid:2B:90:BB:17:E7:8B:62:C1:51:79:02:9C:65:83:E4:2B:D7:E1:82:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/3130332e38302e3231352e302f32342d3234203d3e20313533303932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.80.215.0/24 Signature Algorithm: sha256WithRSAEncryption 22:d0:8b:5e:27:ad:79:c4:f0:e2:8f:cb:c5:53:74:f3:dc:97: e4:f1:22:d0:9b:b8:19:35:23:65:95:3e:47:b4:4d:18:23:93: 85:f2:2b:69:06:e0:be:91:9a:11:4b:b8:5a:2f:4b:40:ba:e2: 0d:2f:7e:a5:7a:81:7f:32:41:3b:03:c1:20:2a:3b:36:fd:81: 96:c0:57:d4:1e:59:ec:5f:fa:5e:7c:7f:8d:47:aa:0c:49:d8: 89:54:68:01:be:7c:94:3a:82:87:83:55:b8:a4:f5:7a:3d:b4: 42:3a:5d:9e:a9:6f:12:04:e2:33:f3:22:d6:f2:fe:8d:8a:75: 79:c2:46:d3:16:6c:80:54:7c:83:00:43:db:2e:86:25:77:a3: f6:1c:46:ae:18:3f:be:b4:86:a2:af:ae:56:b2:a8:43:25:04: dd:9d:bb:a5:c8:94:30:ac:c5:2f:43:92:a0:3c:3c:f5:dd:21: ce:2b:48:4c:fe:03:4d:78:bf:7e:b7:1d:57:c0:79:7f:44:da: 59:cb:ca:52:df:06:b5:4d:b7:61:0f:46:3b:15:bf:3a:65:1d: 89:b0:ec:56:16:c1:ed:11:0d:59:6e:83:91:35:e7:f0:2b:ba: 26:e7:e4:3f:ab:39:55:91:3e:9f:ae:fd:48:e3:5a:53:df:f0: 0a:9b:d7:00 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULzX+jtetpKvEEPTFQsZt9LXt4O0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0MkJE N0UxODI3NzAeFw0yNDEyMTQwNDI2NDZaFw0yNTEyMTMwNDMxNDZaMDMxMTAvBgNV BAMTKDc4QzgyOTRFQkNEREI3MjhFNjBBMTFCODdFOTc2RjNBNzcxNDIyRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk/NkDNUTcWYfEK3LUbqhVezuU +OD3LYjvBwjUTzQp/H+CVIqlrD/3hqbofuXryDT4VpkNGlV5yXanKeGh6FE/lrSw kjdlDtr7WSFEBGnK0GgRxPRkJjz0XtK8FSHUMTEuou1XKZPeGW7LOBDGXz7l8dN6 FFdpOsqxgbBKaH2KFAxe3uEOanlufG3ulGsAllfvlZ6koj6XywuMzdets8dvFdAw U3jCWJ1s1eIAvFO4mTd8x9qBI86Vs5+9GlLJa2gjmvu+Yt6cyb1UaLk/E3+AMi4R dxTTBzBdY/YP7fnaSFRwQqfXBGArYZ+GgMEdg1TCVyVhpbjXF1Nm5bP5D3XvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUeMgpTrzdtyjmChG4fpdvOncUItEwHwYDVR0j BBgwFoAUK5C7F+eLYsFReQKcZYPkK9fhgncwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTVhNWU2ZC05MWVlLTQ0OTctYjQxNy04ZDMyZjY1M2U0YjAvMC8yQjkwQkIxN0U3 OEI2MkMxNTE3OTAyOUM2NTgzRTQyQkQ3RTE4Mjc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0MkJEN0Ux ODI3Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RlNWE1ZTZkLTkxZWUtNDQ5Ny1i NDE3LThkMzJmNjUzZTRiMC8wLzMxMzAzMzJlMzgzMDJlMzIzMTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzOTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1DXMA0GCSqG SIb3DQEBCwUAA4IBAQAi0IteJ615xPDij8vFU3Tz3Jfk8SLQm7gZNSNllT5HtE0Y I5OF8itpBuC+kZoRS7haL0tAuuINL36leoF/MkE7A8EgKjs2/YGWwFfUHlnsX/pe fH+NR6oMSdiJVGgBvnyUOoKHg1W4pPV6PbRCOl2eqW8SBOIz8yLW8v6NinV5wkbT FmyAVHyDAEPbLoYld6P2HEauGD++tIair65WsqhDJQTdnbulyJQwrMUvQ5KgPDz1 3SHOK0hM/gNNeL9+tx1XwHl/RNpZy8pS3wa1TbdhD0Y7Fb86ZR2JsOxWFsHtEQ1Z boORNefwK7om5+Q/qzlVkT6frv1I41pT3/AKm9cA -----END CERTIFICATE-----Generated at Sun Apr 6 11:03:20 2025 by rpki-client