$ rpki-client -vvf repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/3130332e3135372e3139332e302f32342d3234203d3e20313431313232.roa File: 3130332e3135372e3139332e302f32342d3234203d3e20313431313232.roa (raw, json) Hash identifier: gov+8lERQceEfbRJlCEYxrAX+p+Uqcfqwo3MMxlUE04= Subject key identifier: F6:6B:ED:A0:2D:19:B8:4B:13:82:4E:8D:3C:87:68:AE:42:BB:C6:FC Certificate issuer: /CN=035AD6A9B712C4FA76B7E823A79F6410B449136D Certificate serial: 2C0815241235BD9EAA8B4B49CCD1E05ECE801DF0 Authority key identifier: 03:5A:D6:A9:B7:12:C4:FA:76:B7:E8:23:A7:9F:64:10:B4:49:13:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/035AD6A9B712C4FA76B7E823A79F6410B449136D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/3130332e3135372e3139332e302f32342d3234203d3e20313431313232.roa Signing time: Thu 26 Dec 2024 17:00:02 +0000 ROA not before: Thu 26 Dec 2024 16:55:02 +0000 ROA not after: Thu 25 Dec 2025 17:00:02 +0000 asID: 141122 IP address blocks: 103.157.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/035AD6A9B712C4FA76B7E823A79F6410B449136D.crl rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/035AD6A9B712C4FA76B7E823A79F6410B449136D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/035AD6A9B712C4FA76B7E823A79F6410B449136D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 00:12:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:08:15:24:12:35:bd:9e:aa:8b:4b:49:cc:d1:e0:5e:ce:80:1d:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=035AD6A9B712C4FA76B7E823A79F6410B449136D Validity Not Before: Dec 26 16:55:02 2024 GMT Not After : Dec 25 17:00:02 2025 GMT Subject: CN=F66BEDA02D19B84B13824E8D3C8768AE42BBC6FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e0:de:6f:c9:3d:41:71:a4:ed:88:53:da:0a: 6a:90:5f:e6:40:27:bb:7c:97:91:5a:b6:96:c4:f3: 56:81:54:ba:3e:f8:ee:7a:a5:f6:5f:b8:da:1b:9f: cd:58:f7:15:9b:d0:77:ba:01:5c:32:b5:cd:0a:cf: df:0d:05:ae:a7:08:ad:7b:0b:76:3d:72:37:ea:3a: 70:c4:8d:5c:bd:ac:c9:c4:ab:c8:9e:5d:dd:51:bf: 97:70:a6:a0:a1:62:54:38:08:6d:b0:56:d3:c8:59: 54:c8:ce:07:b9:c9:45:8c:0b:65:c4:17:1b:7e:72: 95:60:5d:d4:56:6b:00:21:19:c7:0b:70:41:80:d2: 7f:7b:5c:f5:aa:96:88:d9:45:63:ef:f9:99:a2:27: 0f:24:dc:a4:76:85:bc:3d:fe:72:8d:be:cb:e4:77: 0b:5d:0f:ce:0a:48:8c:f1:cb:8a:3e:01:95:6d:37: e9:33:d0:8a:83:53:64:1a:c2:31:13:bb:1c:bb:b4: 4b:f9:de:2f:24:96:7e:bd:4b:2e:f7:ea:64:f7:db: f8:2f:a3:59:a5:49:f3:6c:6c:f1:7c:ec:22:47:a6: 6f:3e:48:1d:78:fd:ae:b4:1d:1d:f7:63:43:ac:30: c7:66:85:89:a3:bc:91:1a:d1:29:18:2b:9f:6a:33: 7f:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:6B:ED:A0:2D:19:B8:4B:13:82:4E:8D:3C:87:68:AE:42:BB:C6:FC X509v3 Authority Key Identifier: keyid:03:5A:D6:A9:B7:12:C4:FA:76:B7:E8:23:A7:9F:64:10:B4:49:13:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/035AD6A9B712C4FA76B7E823A79F6410B449136D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/035AD6A9B712C4FA76B7E823A79F6410B449136D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de6f5ce7-b36b-473d-a5be-9c0350d1f382/0/3130332e3135372e3139332e302f32342d3234203d3e20313431313232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.193.0/24 Signature Algorithm: sha256WithRSAEncryption 42:4a:32:c8:78:2c:ac:62:74:96:5a:ab:b0:53:a0:3f:df:14: 3f:84:c9:0c:5c:ff:88:02:71:01:e1:75:d5:c5:d7:d4:b2:16: a5:32:03:80:f7:52:5d:34:6e:06:c4:9b:17:e2:b6:b2:71:60: a0:1c:34:3c:3d:6c:e5:a0:09:75:c2:ea:94:a8:c8:6c:40:9a: 3b:00:d4:2e:42:fc:e6:d7:f7:f4:b6:c9:c6:0e:d3:c2:8a:3c: 8b:ca:d2:42:46:34:36:5c:ed:e4:1d:41:1b:3f:8d:e5:5d:f2: 6a:41:40:19:c4:66:a1:6d:01:ff:48:d9:04:1a:4b:7d:89:a0: 7b:fe:10:bc:c8:78:da:fa:02:f6:09:aa:ee:9a:c0:d9:39:1d: b2:b4:f5:e6:ff:d9:13:9e:26:14:31:0e:4f:38:c3:3c:8d:e7: 12:a7:67:07:eb:46:57:d6:21:7a:73:7f:52:07:72:1a:64:26: f7:7d:40:f3:30:3f:0f:88:f2:5b:44:4a:de:96:e0:83:e9:46: 70:2d:77:24:f5:65:0e:e6:16:f1:65:ec:d7:37:cc:90:ab:9d: 53:50:36:10:c9:0a:8e:81:87:3b:cd:ab:14:ba:06:4e:91:7a: 42:2e:42:2c:dc:19:42:da:b3:52:b9:ad:15:1c:9b:5f:0a:72: 4a:2d:34:a0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULAgVJBI1vZ6qi0tJzNHgXs6AHfAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDM1QUQ2QTlCNzEyQzRGQTc2QjdFODIzQTc5RjY0MTBC NDQ5MTM2RDAeFw0yNDEyMjYxNjU1MDJaFw0yNTEyMjUxNzAwMDJaMDMxMTAvBgNV BAMTKEY2NkJFREEwMkQxOUI4NEIxMzgyNEU4RDNDODc2OEFFNDJCQkM2RkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI4N5vyT1BcaTtiFPaCmqQX+ZA J7t8l5FatpbE81aBVLo++O56pfZfuNobn81Y9xWb0He6AVwytc0Kz98NBa6nCK17 C3Y9cjfqOnDEjVy9rMnEq8ieXd1Rv5dwpqChYlQ4CG2wVtPIWVTIzge5yUWMC2XE Fxt+cpVgXdRWawAhGccLcEGA0n97XPWqlojZRWPv+ZmiJw8k3KR2hbw9/nKNvsvk dwtdD84KSIzxy4o+AZVtN+kz0IqDU2QawjETuxy7tEv53i8kln69Sy736mT32/gv o1mlSfNsbPF87CJHpm8+SB14/a60HR33Y0OsMMdmhYmjvJEa0SkYK59qM3/JAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU9mvtoC0ZuEsTgk6NPIdorkK7xvwwHwYDVR0j BBgwFoAUA1rWqbcSxPp2t+gjp59kELRJE20wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTZmNWNlNy1iMzZiLTQ3M2QtYTViZS05YzAzNTBkMWYzODIvMC8wMzVBRDZBOUI3 MTJDNEZBNzZCN0U4MjNBNzlGNjQxMEI0NDkxMzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDM1QUQ2QTlCNzEyQzRGQTc2QjdFODIzQTc5RjY0MTBCNDQ5 MTM2RC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RlNmY1Y2U3LWIzNmItNDczZC1h NWJlLTljMDM1MGQxZjM4Mi8wLzMxMzAzMzJlMzEzNTM3MmUzMTM5MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMyMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnncEwDQYJ KoZIhvcNAQELBQADggEBAEJKMsh4LKxidJZaq7BToD/fFD+EyQxc/4gCcQHhddXF 19SyFqUyA4D3Ul00bgbEmxfitrJxYKAcNDw9bOWgCXXC6pSoyGxAmjsA1C5C/ObX 9/S2ycYO08KKPIvK0kJGNDZc7eQdQRs/jeVd8mpBQBnEZqFtAf9I2QQaS32JoHv+ ELzIeNr6AvYJqu6awNk5HbK09eb/2ROeJhQxDk84wzyN5xKnZwfrRlfWIXpzf1IH chpkJvd9QPMwPw+I8ltESt6W4IPpRnAtdyT1ZQ7mFvFl7Nc3zJCrnVNQNhDJCo6B hzvNqxS6Bk6RekIuQizcGULas1K5rRUcm18KckotNKA= -----END CERTIFICATE-----Generated at Sun Apr 6 07:34:44 2025 by rpki-client