$ rpki-client -vvf repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/3130332e3131312e3231392e302f32342d3234203d3e20313337333233.roa File: 3130332e3131312e3231392e302f32342d3234203d3e20313337333233.roa (raw, json) Hash identifier: rIYn2x9xBTvWYF02bgk79rRjdwgksSC8GmTAPqYdm0M= Subject key identifier: CF:10:DC:7B:6C:4F:21:D1:4C:DD:23:69:65:F0:DA:14:AE:16:0F:A7 Certificate issuer: /CN=DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F Certificate serial: 043001546C4E813AEBA6346355F5AF4F0201E898 Authority key identifier: DC:FC:FE:4E:81:97:FF:AF:B9:A5:79:20:BD:40:DC:C1:AC:F0:F3:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/3130332e3131312e3231392e302f32342d3234203d3e20313337333233.roa Signing time: Tue 09 Apr 2024 13:00:01 +0000 ROA not before: Tue 09 Apr 2024 12:55:01 +0000 ROA not after: Tue 08 Apr 2025 13:00:01 +0000 asID: 137323 IP address blocks: 103.111.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.crl rsync://repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 18 Feb 2025 13:59:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:30:01:54:6c:4e:81:3a:eb:a6:34:63:55:f5:af:4f:02:01:e8:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F Validity Not Before: Apr 9 12:55:01 2024 GMT Not After : Apr 8 13:00:01 2025 GMT Subject: CN=CF10DC7B6C4F21D14CDD236965F0DA14AE160FA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:73:df:6d:fe:dd:23:6b:b5:f9:70:7e:07:1d: ff:71:a0:5d:08:8a:ac:2c:f8:25:ca:5e:9a:3f:93: c9:67:cd:cb:88:5b:08:dd:74:1c:e4:19:30:7b:1a: 5e:e2:03:6d:03:4c:42:16:f7:b8:77:5d:bb:65:db: 7c:a4:bb:08:b0:aa:8a:fb:8a:51:a6:c5:81:d1:8e: c1:9d:64:40:b9:ef:6a:43:77:f4:d4:ca:11:d5:01: 29:84:f4:80:e2:b8:fb:09:34:d0:5b:36:9b:d3:c9: 6f:94:d6:72:4c:5f:6f:b3:9f:c1:16:12:af:45:39: 63:e0:0e:11:24:0d:f0:66:e1:a2:29:e8:2d:51:32: 11:fe:a9:fb:4d:cc:c4:29:da:e8:95:5c:69:3a:a7: b6:6c:d5:c8:f4:d2:ff:a2:c2:80:59:74:2c:1d:e9: f8:59:91:1f:25:5a:80:e4:b9:17:ac:d4:13:e6:8c: cd:3e:a3:c2:c7:b0:49:ea:9c:c3:cb:6e:06:1f:0c: e9:6d:be:7c:fe:b0:34:be:c4:cd:be:31:cd:83:87: 85:e3:f5:60:24:2e:5a:4e:e8:7a:72:d5:cd:a0:66: c3:8f:c0:ec:9a:9f:e3:e1:db:32:96:25:70:b7:9b: fe:c5:9d:e0:a7:77:11:68:84:ea:02:19:7c:ed:39: 11:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:10:DC:7B:6C:4F:21:D1:4C:DD:23:69:65:F0:DA:14:AE:16:0F:A7 X509v3 Authority Key Identifier: keyid:DC:FC:FE:4E:81:97:FF:AF:B9:A5:79:20:BD:40:DC:C1:AC:F0:F3:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/3130332e3131312e3231392e302f32342d3234203d3e20313337333233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.111.219.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:a2:e5:97:3c:96:d9:b1:7e:5d:ae:88:b6:5f:cc:fa:2c:97: 9e:50:4c:9d:32:96:08:d4:9f:b0:37:b6:a2:fd:07:89:d6:87: d8:df:06:27:4a:2a:2b:fd:4f:07:f5:0d:1f:bb:cc:b6:ed:2c: 95:4d:58:0b:e7:a5:a9:7c:2f:24:fc:71:12:f9:96:59:79:b9: 09:d8:11:57:f4:c4:bb:ba:4d:90:90:fd:e1:16:f8:d7:1f:04: 15:fc:b3:7e:03:3e:f0:2b:97:10:7c:d2:e2:33:24:05:19:61: 94:e6:d8:ec:8d:69:3f:23:a7:59:77:50:b4:f3:17:4b:bf:35: 51:d6:98:91:24:a4:53:87:61:c9:df:49:40:1a:56:5d:42:09: da:7f:56:b5:17:83:2f:cd:33:5f:62:b8:b7:9c:3e:c4:37:02: cf:89:72:58:66:53:6c:8f:ff:31:44:67:60:b6:ae:7a:30:54: 6c:99:b8:44:4e:64:d0:dd:ed:42:b9:e7:b5:64:8f:68:34:de: 0b:92:af:11:df:36:63:f4:b2:76:23:9b:eb:7a:f0:29:a0:2c: 32:a2:42:ab:ee:46:0f:06:18:1c:56:e2:41:e6:1d:26:de:32: e2:bc:fb:8a:85:c3:8d:9b:63:15:5e:d3:38:f3:6e:6e:fe:9a: b2:c4:dc:3a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBDABVGxOgTrrpjRjVfWvTwIB6JgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRENGQ0ZFNEU4MTk3RkZBRkI5QTU3OTIwQkQ0MERDQzFB Q0YwRjMwRjAeFw0yNDA0MDkxMjU1MDFaFw0yNTA0MDgxMzAwMDFaMDMxMTAvBgNV BAMTKENGMTBEQzdCNkM0RjIxRDE0Q0REMjM2OTY1RjBEQTE0QUUxNjBGQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXc99t/t0ja7X5cH4HHf9xoF0I iqws+CXKXpo/k8lnzcuIWwjddBzkGTB7Gl7iA20DTEIW97h3Xbtl23ykuwiwqor7 ilGmxYHRjsGdZEC572pDd/TUyhHVASmE9IDiuPsJNNBbNpvTyW+U1nJMX2+zn8EW Eq9FOWPgDhEkDfBm4aIp6C1RMhH+qftNzMQp2uiVXGk6p7Zs1cj00v+iwoBZdCwd 6fhZkR8lWoDkuRes1BPmjM0+o8LHsEnqnMPLbgYfDOltvnz+sDS+xM2+Mc2Dh4Xj 9WAkLlpO6Hpy1c2gZsOPwOyan+Ph2zKWJXC3m/7FneCndxFohOoCGXztORF/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUzxDce2xPIdFM3SNpZfDaFK4WD6cwHwYDVR0j BBgwFoAU3Pz+ToGX/6+5pXkgvUDcwazw8w8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MWFmMTQ0Yi1iOTJlLTRmZmYtYjY0MS1lNDZmZGRlOGM2ZGYvMC9EQ0ZDRkU0RTgx OTdGRkFGQjlBNTc5MjBCRDQwRENDMUFDRjBGMzBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRENGQ0ZFNEU4MTk3RkZBRkI5QTU3OTIwQkQ0MERDQzFBQ0Yw RjMwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UxYWYxNDRiLWI5MmUtNGZmZi1i NjQxLWU0NmZkZGU4YzZkZi8wLzMxMzAzMzJlMzEzMTMxMmUzMjMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnb9swDQYJ KoZIhvcNAQELBQADggEBAEyi5Zc8ltmxfl2uiLZfzPosl55QTJ0ylgjUn7A3tqL9 B4nWh9jfBidKKiv9Twf1DR+7zLbtLJVNWAvnpal8LyT8cRL5lll5uQnYEVf0xLu6 TZCQ/eEW+NcfBBX8s34DPvArlxB80uIzJAUZYZTm2OyNaT8jp1l3ULTzF0u/NVHW mJEkpFOHYcnfSUAaVl1CCdp/VrUXgy/NM19iuLecPsQ3As+JclhmU2yP/zFEZ2C2 rnowVGyZuEROZNDd7UK557Vkj2g03guSrxHfNmP0snYjm+t68CmgLDKiQqvuRg8G GBxW4kHmHSbeMuK8+4qFw42bYxVe0zjzbm7+mrLE3Do= -----END CERTIFICATE-----Generated at Sun Feb 16 22:23:53 2025 by rpki-client