$ rpki-client -vvf repo-rpki.idnic.net/repo/e2f6a39f-2940-4ccc-8c1f-9d559c47a79b/0/3130332e3131382e3132312e302f32342d3234203d3e20313530323033.roa File: 3130332e3131382e3132312e302f32342d3234203d3e20313530323033.roa (raw, json) Hash identifier: uRWbiNeHPsQtBG/4Fu8zjLX2ho1cleaNvsV0GTgbsAs= Subject key identifier: 84:A0:79:E1:0B:D1:32:35:91:27:8C:42:39:DB:7F:B9:01:A0:5B:77 Certificate issuer: /CN=D85B24E818A4DAC388415FB8C96905DF03C8D6EA Certificate serial: 5201610754D8BD070416861048336C14A71A6118 Authority key identifier: D8:5B:24:E8:18:A4:DA:C3:88:41:5F:B8:C9:69:05:DF:03:C8:D6:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85B24E818A4DAC388415FB8C96905DF03C8D6EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e2f6a39f-2940-4ccc-8c1f-9d559c47a79b/0/3130332e3131382e3132312e302f32342d3234203d3e20313530323033.roa Signing time: Mon 23 Dec 2024 09:00:01 +0000 ROA not before: Mon 23 Dec 2024 08:55:01 +0000 ROA not after: Mon 22 Dec 2025 09:00:01 +0000 asID: 150203 IP address blocks: 103.118.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e2f6a39f-2940-4ccc-8c1f-9d559c47a79b/0/D85B24E818A4DAC388415FB8C96905DF03C8D6EA.crl rsync://repo-rpki.idnic.net/repo/e2f6a39f-2940-4ccc-8c1f-9d559c47a79b/0/D85B24E818A4DAC388415FB8C96905DF03C8D6EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85B24E818A4DAC388415FB8C96905DF03C8D6EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Feb 2025 12:32:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:01:61:07:54:d8:bd:07:04:16:86:10:48:33:6c:14:a7:1a:61:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D85B24E818A4DAC388415FB8C96905DF03C8D6EA Validity Not Before: Dec 23 08:55:01 2024 GMT Not After : Dec 22 09:00:01 2025 GMT Subject: CN=84A079E10BD1323591278C4239DB7FB901A05B77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:72:86:72:4b:4b:81:78:40:3c:88:97:d0:cb: 8a:1c:88:b0:dd:e5:8b:e7:c8:8e:6a:f7:40:07:b8: 29:42:f5:4b:e2:c4:25:ce:4e:c8:dd:5c:38:95:27: e4:fd:cf:4d:4e:5c:a9:1b:02:fa:f9:1f:5a:ca:87: 7d:8b:c6:2e:c6:d2:82:db:69:be:49:62:a7:ad:6b: 9d:1d:32:8a:dd:0f:27:35:3e:c2:cc:99:2b:d1:20: 23:27:83:18:14:ea:1a:e2:bd:ae:3c:3f:9c:9c:2e: bb:38:f7:68:b1:a7:af:4e:1a:29:23:8c:b5:2c:1b: f4:17:41:a8:ee:60:59:57:21:06:54:77:7f:73:c0: b2:f2:db:86:cb:37:f6:4d:06:36:01:8f:56:38:30: 15:23:db:5e:06:ed:62:82:97:00:5a:99:ad:42:ef: 3f:f3:71:e1:ad:f0:5c:4e:72:22:9e:f5:3d:d7:ab: b7:8e:31:3f:3f:54:93:9f:6f:1e:f6:14:36:27:f6: 1e:8b:23:a8:40:d4:11:40:27:be:89:d6:7b:ee:cc: cb:e3:92:7f:83:66:e3:74:4f:78:f1:fb:41:d6:37: 94:c4:ab:05:92:67:fc:f6:a8:24:04:bf:a6:b0:ea: 40:22:ee:da:f9:10:17:30:a7:1d:a7:ab:e3:35:2c: 82:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:A0:79:E1:0B:D1:32:35:91:27:8C:42:39:DB:7F:B9:01:A0:5B:77 X509v3 Authority Key Identifier: keyid:D8:5B:24:E8:18:A4:DA:C3:88:41:5F:B8:C9:69:05:DF:03:C8:D6:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e2f6a39f-2940-4ccc-8c1f-9d559c47a79b/0/D85B24E818A4DAC388415FB8C96905DF03C8D6EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85B24E818A4DAC388415FB8C96905DF03C8D6EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e2f6a39f-2940-4ccc-8c1f-9d559c47a79b/0/3130332e3131382e3132312e302f32342d3234203d3e20313530323033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.118.121.0/24 Signature Algorithm: sha256WithRSAEncryption 93:a4:14:bf:b2:0b:3e:ce:12:34:ec:e9:d8:67:27:4e:90:7a: 79:bb:94:65:9b:77:31:d0:06:37:69:99:5c:65:74:21:d5:21: 65:c4:88:21:d7:26:e6:8f:2a:51:26:f6:3b:3d:6c:3b:27:e9: 1d:af:f6:16:8f:4c:ef:6f:0f:22:cc:06:e8:4d:84:cf:03:bf: 1e:9a:32:32:6f:9d:85:cf:0e:0c:d3:6a:6c:17:18:b2:87:9d: 64:3f:e8:d6:61:de:ae:e6:42:51:3c:49:0b:04:51:8f:e7:a6: a4:70:f2:65:07:3a:48:ef:fd:e1:36:f1:08:95:4f:ec:ba:6e: dc:78:3b:84:23:c8:7a:b0:a1:f7:86:36:16:5d:51:f9:d4:ef: a4:ca:52:7d:f0:08:b5:73:c5:b8:c8:ab:d0:01:c9:c0:48:a4: 43:cd:11:d0:e7:0e:00:78:47:37:a5:5f:12:04:83:80:36:89: 89:ad:ce:6e:e1:14:19:06:22:6c:c1:17:d9:69:ca:68:5e:4f: ff:3d:a4:c7:90:51:12:00:a3:4b:c4:2a:b1:e2:71:48:56:aa: 9b:35:55:7c:7a:8f:88:ee:10:e3:4a:ef:cc:4d:1d:c1:85:dc: d8:83:10:fa:d4:f2:5f:6c:63:25:7c:cf:d9:34:c1:52:6f:9c: b0:65:84:00 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUgFhB1TYvQcEFoYQSDNsFKcaYRgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg1QjI0RTgxOEE0REFDMzg4NDE1RkI4Qzk2OTA1REYw M0M4RDZFQTAeFw0yNDEyMjMwODU1MDFaFw0yNTEyMjIwOTAwMDFaMDMxMTAvBgNV BAMTKDg0QTA3OUUxMEJEMTMyMzU5MTI3OEM0MjM5REI3RkI5MDFBMDVCNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCocoZyS0uBeEA8iJfQy4ociLDd 5YvnyI5q90AHuClC9UvixCXOTsjdXDiVJ+T9z01OXKkbAvr5H1rKh32Lxi7G0oLb ab5JYqeta50dMordDyc1PsLMmSvRICMngxgU6hriva48P5ycLrs492ixp69OGikj jLUsG/QXQajuYFlXIQZUd39zwLLy24bLN/ZNBjYBj1Y4MBUj214G7WKClwBama1C 7z/zceGt8FxOciKe9T3Xq7eOMT8/VJOfbx72FDYn9h6LI6hA1BFAJ76J1nvuzMvj kn+DZuN0T3jx+0HWN5TEqwWSZ/z2qCQEv6aw6kAi7tr5EBcwpx2nq+M1LIJpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUhKB54QvRMjWRJ4xCOdt/uQGgW3cwHwYDVR0j BBgwFoAU2Fsk6Bik2sOIQV+4yWkF3wPI1uowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MmY2YTM5Zi0yOTQwLTRjY2MtOGMxZi05ZDU1OWM0N2E3OWIvMC9EODVCMjRFODE4 QTREQUMzODg0MTVGQjhDOTY5MDVERjAzQzhENkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDg1QjI0RTgxOEE0REFDMzg4NDE1RkI4Qzk2OTA1REYwM0M4 RDZFQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UyZjZhMzlmLTI5NDAtNGNjYy04 YzFmLTlkNTU5YzQ3YTc5Yi8wLzMxMzAzMzJlMzEzMTM4MmUzMTMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzMjMwMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABndnkwDQYJ KoZIhvcNAQELBQADggEBAJOkFL+yCz7OEjTs6dhnJ06Qenm7lGWbdzHQBjdpmVxl dCHVIWXEiCHXJuaPKlEm9js9bDsn6R2v9haPTO9vDyLMBuhNhM8Dvx6aMjJvnYXP DgzTamwXGLKHnWQ/6NZh3q7mQlE8SQsEUY/npqRw8mUHOkjv/eE28QiVT+y6btx4 O4QjyHqwofeGNhZdUfnU76TKUn3wCLVzxbjIq9ABycBIpEPNEdDnDgB4RzelXxIE g4A2iYmtzm7hFBkGImzBF9lpymheT/89pMeQURIAo0vEKrHicUhWqps1VXx6j4ju EONK78xNHcGF3NiDEPrU8l9sYyV8z9k0wVJvnLBlhAA= -----END CERTIFICATE-----Generated at Fri Feb 21 11:02:42 2025 by rpki-client