$ rpki-client -vvf repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/3130332e3135372e3139322e302f32342d3234203d3e20313431313232.roa File: 3130332e3135372e3139322e302f32342d3234203d3e20313431313232.roa (raw, json) Hash identifier: /sa4N19iB/o6G9OL5Szcq6Y4DsVMrF2Yrq0Ab1himGg= Subject key identifier: FA:52:2A:64:AA:69:3B:46:F6:CA:DE:C9:0B:F4:D0:D1:D1:04:05:08 Certificate issuer: /CN=035AD6A9B712C4FA76B7E823A79F6410B449136D Certificate serial: 54E018AAE4EBDF8804D88D7FA9332AF8BD17186F Authority key identifier: 03:5A:D6:A9:B7:12:C4:FA:76:B7:E8:23:A7:9F:64:10:B4:49:13:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/035AD6A9B712C4FA76B7E823A79F6410B449136D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/3130332e3135372e3139322e302f32342d3234203d3e20313431313232.roa Signing time: Thu 26 Dec 2024 16:00:02 +0000 ROA not before: Thu 26 Dec 2024 15:55:02 +0000 ROA not after: Thu 25 Dec 2025 16:00:02 +0000 asID: 141122 IP address blocks: 103.157.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/035AD6A9B712C4FA76B7E823A79F6410B449136D.crl rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/035AD6A9B712C4FA76B7E823A79F6410B449136D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/035AD6A9B712C4FA76B7E823A79F6410B449136D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 00:12:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:e0:18:aa:e4:eb:df:88:04:d8:8d:7f:a9:33:2a:f8:bd:17:18:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=035AD6A9B712C4FA76B7E823A79F6410B449136D Validity Not Before: Dec 26 15:55:02 2024 GMT Not After : Dec 25 16:00:02 2025 GMT Subject: CN=FA522A64AA693B46F6CADEC90BF4D0D1D1040508 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:aa:43:88:9b:55:3a:1f:c5:b1:fe:59:9b:d7: 2a:8f:e2:bb:d0:28:11:91:a1:79:70:02:b4:21:26: d6:f7:78:1a:97:91:14:dd:cb:bc:be:3f:f2:5e:c8: 24:59:66:05:06:97:17:63:65:75:4a:e5:0f:c9:32: 2f:f7:e4:55:34:60:83:8f:56:55:88:12:bd:96:df: 24:c2:f7:34:2f:cf:cb:68:1d:66:7d:37:86:d5:1d: b1:8f:fa:10:01:ca:20:56:92:a2:f4:d6:92:df:dd: 93:90:07:4f:23:7a:ed:33:19:51:9b:7c:16:59:ee: 46:a8:73:15:da:10:83:61:8b:65:59:f4:18:7c:fa: 1e:ce:3f:90:89:25:1f:a1:c2:ec:82:af:d3:92:6b: 58:2e:fa:22:0c:f9:fa:28:03:9e:73:66:4d:12:f7: 08:d7:84:71:33:09:81:dc:3c:49:ab:37:61:33:22: fa:50:a7:40:de:2a:97:60:da:69:09:8b:6d:74:07: a5:b6:19:15:d6:a1:48:1f:67:8b:94:f3:e4:30:fa: 90:77:28:ef:c0:5f:66:f7:99:65:dc:98:c4:97:a2: a7:2c:be:45:99:7d:f6:c7:bc:14:3d:cf:d2:77:c9: e6:4d:a6:3a:24:a4:ba:74:b1:c4:62:14:11:07:83: 15:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:52:2A:64:AA:69:3B:46:F6:CA:DE:C9:0B:F4:D0:D1:D1:04:05:08 X509v3 Authority Key Identifier: keyid:03:5A:D6:A9:B7:12:C4:FA:76:B7:E8:23:A7:9F:64:10:B4:49:13:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/035AD6A9B712C4FA76B7E823A79F6410B449136D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/035AD6A9B712C4FA76B7E823A79F6410B449136D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/3130332e3135372e3139322e302f32342d3234203d3e20313431313232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.192.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:b4:93:7b:4b:91:79:dd:22:96:f5:6f:d6:b3:da:75:bb:12: 8f:e0:d3:ff:70:a8:55:96:53:a6:5f:0d:15:83:94:8f:32:20: 09:d0:66:2c:bb:a1:c4:b8:ce:80:f2:60:bb:de:e1:92:aa:c6: ee:a2:35:92:20:f0:5f:11:94:63:5c:74:5a:db:8e:97:b3:22: 08:40:f3:fd:e3:f6:99:44:da:4f:73:d6:20:bd:01:87:af:ff: 80:0f:0d:61:1f:bb:68:5b:43:d7:a8:19:76:90:19:09:95:24: 36:8d:dd:45:b3:51:8f:22:cc:fa:d2:84:54:c9:40:dc:65:d4: f0:13:77:be:f8:d8:6a:5f:57:48:3c:22:63:6d:51:0a:d1:74: 21:a6:b2:14:0e:ef:9e:42:04:01:b3:aa:d4:4a:b2:e9:69:bb: db:2b:25:0e:f0:a4:2d:ba:90:66:1b:c0:03:0e:7e:05:85:b9: f5:df:87:5e:04:ac:2a:62:37:ec:38:0d:25:07:c3:3c:46:3a: b5:6a:29:76:51:56:71:d0:8c:df:33:f1:64:93:ea:7c:45:34: 64:a7:0e:a0:66:88:7f:8d:60:4b:ad:1e:30:9e:1e:39:80:70: 84:aa:80:c1:d0:78:5e:8f:44:78:1e:b4:b2:b0:60:59:b7:46: 08:e4:5e:17 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVOAYquTr34gE2I1/qTMq+L0XGG8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDM1QUQ2QTlCNzEyQzRGQTc2QjdFODIzQTc5RjY0MTBC NDQ5MTM2RDAeFw0yNDEyMjYxNTU1MDJaFw0yNTEyMjUxNjAwMDJaMDMxMTAvBgNV BAMTKEZBNTIyQTY0QUE2OTNCNDZGNkNBREVDOTBCRjREMEQxRDEwNDA1MDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1qkOIm1U6H8Wx/lmb1yqP4rvQ KBGRoXlwArQhJtb3eBqXkRTdy7y+P/JeyCRZZgUGlxdjZXVK5Q/JMi/35FU0YIOP VlWIEr2W3yTC9zQvz8toHWZ9N4bVHbGP+hAByiBWkqL01pLf3ZOQB08jeu0zGVGb fBZZ7kaocxXaEINhi2VZ9Bh8+h7OP5CJJR+hwuyCr9OSa1gu+iIM+fooA55zZk0S 9wjXhHEzCYHcPEmrN2EzIvpQp0DeKpdg2mkJi210B6W2GRXWoUgfZ4uU8+Qw+pB3 KO/AX2b3mWXcmMSXoqcsvkWZffbHvBQ9z9J3yeZNpjokpLp0scRiFBEHgxXNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU+lIqZKppO0b2yt7JC/TQ0dEEBQgwHwYDVR0j BBgwFoAUA1rWqbcSxPp2t+gjp59kELRJE20wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTZmNWNlNy1iMzZiLTQ3M2QtYTViZS05YzAzNTBkMWYzODIvMC8wMzVBRDZBOUI3 MTJDNEZBNzZCN0U4MjNBNzlGNjQxMEI0NDkxMzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDM1QUQ2QTlCNzEyQzRGQTc2QjdFODIzQTc5RjY0MTBCNDQ5 MTM2RC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RlNmY1Y2U3LWIzNmItNDczZC1h NWJlLTljMDM1MGQxZjM4Mi8wLzMxMzAzMzJlMzEzNTM3MmUzMTM5MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMyMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnncAwDQYJ KoZIhvcNAQELBQADggEBADq0k3tLkXndIpb1b9az2nW7Eo/g0/9wqFWWU6ZfDRWD lI8yIAnQZiy7ocS4zoDyYLve4ZKqxu6iNZIg8F8RlGNcdFrbjpezIghA8/3j9plE 2k9z1iC9AYev/4APDWEfu2hbQ9eoGXaQGQmVJDaN3UWzUY8izPrShFTJQNxl1PAT d7742GpfV0g8ImNtUQrRdCGmshQO755CBAGzqtRKsulpu9srJQ7wpC26kGYbwAMO fgWFufXfh14ErCpiN+w4DSUHwzxGOrVqKXZRVnHQjN8z8WST6nxFNGSnDqBmiH+N YEutHjCeHjmAcISqgMHQeF6PRHgetLKwYFm3RgjkXhc= -----END CERTIFICATE-----Generated at Sun Apr 6 07:20:09 2025 by rpki-client