$ rpki-client -vvf repo-rpki.idnic.net/repo/e8a9237a-726c-4c19-9b4e-7b94b1424c4b/0/3130332e3136322e3134312e302f32342d3234203d3e20313431303833.roa File: 3130332e3136322e3134312e302f32342d3234203d3e20313431303833.roa (raw, json) Hash identifier: 6+qzbxlDEMLlDFF8ZMTBVVGBQ81Jy42r6r5JLNvCfLQ= Subject key identifier: 5C:28:2D:EC:1F:A7:A1:D9:22:91:4C:8E:1F:24:20:E6:E6:2E:4F:D8 Certificate issuer: /CN=FF947BE188D359EA7EDF887D86DA2C7CC7460B70 Certificate serial: 1DC2C7ECDB22905DCDB06BC9944274B81B6ABF8C Authority key identifier: FF:94:7B:E1:88:D3:59:EA:7E:DF:88:7D:86:DA:2C:7C:C7:46:0B:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF947BE188D359EA7EDF887D86DA2C7CC7460B70.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e8a9237a-726c-4c19-9b4e-7b94b1424c4b/0/3130332e3136322e3134312e302f32342d3234203d3e20313431303833.roa Signing time: Thu 26 Dec 2024 11:00:01 +0000 ROA not before: Thu 26 Dec 2024 10:55:01 +0000 ROA not after: Thu 25 Dec 2025 11:00:01 +0000 asID: 141083 IP address blocks: 103.162.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e8a9237a-726c-4c19-9b4e-7b94b1424c4b/0/FF947BE188D359EA7EDF887D86DA2C7CC7460B70.crl rsync://repo-rpki.idnic.net/repo/e8a9237a-726c-4c19-9b4e-7b94b1424c4b/0/FF947BE188D359EA7EDF887D86DA2C7CC7460B70.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF947BE188D359EA7EDF887D86DA2C7CC7460B70.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 23:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:c2:c7:ec:db:22:90:5d:cd:b0:6b:c9:94:42:74:b8:1b:6a:bf:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF947BE188D359EA7EDF887D86DA2C7CC7460B70 Validity Not Before: Dec 26 10:55:01 2024 GMT Not After : Dec 25 11:00:01 2025 GMT Subject: CN=5C282DEC1FA7A1D922914C8E1F2420E6E62E4FD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:63:cb:af:51:f2:99:a1:6b:b7:8b:b1:b3:61: 4b:a6:d7:31:ac:6b:ca:43:ed:ea:27:a3:0c:2f:b7: 5d:db:e4:b9:35:98:85:fb:83:4a:f2:13:aa:2e:8f: 2e:17:a6:e7:13:c6:6d:9e:04:3c:3f:e0:a3:04:0a: dd:f8:d7:20:7e:9c:03:80:79:03:74:4a:7d:2e:0f: f6:ff:86:39:3c:8c:22:1c:bd:15:04:41:4b:cf:15: 11:3e:19:44:f2:05:82:7c:07:96:5e:81:a2:f9:06: 84:42:a8:d2:c1:39:49:a4:cd:5d:d7:22:1d:53:85: d3:2f:e8:3e:18:52:dc:07:7b:9d:0f:96:9c:fe:5b: dd:2b:50:17:76:2f:b4:d6:36:ba:af:d8:a1:93:0a: af:34:d1:5a:86:97:34:97:b7:42:e4:d2:aa:28:27: 02:66:83:41:6d:21:9c:ba:f1:5d:ce:47:87:9c:98: 28:a6:bf:3e:06:3a:3f:f0:79:1c:fc:92:c4:99:33: 82:da:5c:ec:94:fb:a3:b6:85:41:1e:cf:e5:4c:49: e8:13:38:ab:4c:c6:05:0d:e0:74:fa:96:39:5f:e3: 12:17:39:30:5e:7b:3a:c0:7b:a5:20:77:5e:ea:d6: 15:49:9f:de:75:12:ab:5f:25:2a:0a:67:d5:61:00: e4:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:28:2D:EC:1F:A7:A1:D9:22:91:4C:8E:1F:24:20:E6:E6:2E:4F:D8 X509v3 Authority Key Identifier: keyid:FF:94:7B:E1:88:D3:59:EA:7E:DF:88:7D:86:DA:2C:7C:C7:46:0B:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e8a9237a-726c-4c19-9b4e-7b94b1424c4b/0/FF947BE188D359EA7EDF887D86DA2C7CC7460B70.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF947BE188D359EA7EDF887D86DA2C7CC7460B70.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e8a9237a-726c-4c19-9b4e-7b94b1424c4b/0/3130332e3136322e3134312e302f32342d3234203d3e20313431303833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.141.0/24 Signature Algorithm: sha256WithRSAEncryption 61:54:02:ea:2e:35:dc:60:d9:63:67:3f:b1:11:84:18:cd:72: b6:15:c5:bd:ec:a1:d7:6d:75:9a:47:d7:1b:8d:ae:f7:de:89: cc:ea:62:6f:c1:d9:f2:5d:58:f0:73:a7:f6:9e:ed:e1:79:0e: 3d:8c:96:4a:31:31:20:3e:5d:78:1b:b9:f0:63:bc:45:64:06: c8:24:43:50:77:8a:e3:fe:64:8a:34:93:74:1a:82:9c:53:e0: 2c:54:57:30:ae:af:64:9c:a9:52:59:ed:14:a9:75:eb:b0:e4: 54:4e:c1:7e:59:a0:89:16:ce:04:ae:56:48:64:ac:dc:9e:2d: 05:cc:9c:dd:4f:8f:8c:56:4b:02:08:44:71:18:97:60:9c:b4: 50:ae:59:f3:1e:74:c1:0d:68:46:9d:52:34:a8:8c:6f:72:67: fa:e6:53:0a:51:fe:2e:36:59:b4:70:60:e7:5c:a0:cf:d0:32: 87:ed:b7:03:f5:4c:03:58:55:c3:b8:92:d6:b6:4f:38:d5:23: 11:bd:65:91:a7:cb:a2:04:96:cf:fc:d3:f7:9d:f2:2f:6d:15: b0:49:28:4c:af:63:1b:55:41:66:c6:f1:11:84:d1:45:1a:9e: c1:6e:a4:93:9c:f0:d0:52:cf:4a:be:47:a1:7e:9f:9b:67:9c: f2:07:87:46 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHcLH7NsikF3NsGvJlEJ0uBtqv4wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkY5NDdCRTE4OEQzNTlFQTdFREY4ODdEODZEQTJDN0ND NzQ2MEI3MDAeFw0yNDEyMjYxMDU1MDFaFw0yNTEyMjUxMTAwMDFaMDMxMTAvBgNV BAMTKDVDMjgyREVDMUZBN0ExRDkyMjkxNEM4RTFGMjQyMEU2RTYyRTRGRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSY8uvUfKZoWu3i7GzYUum1zGs a8pD7eonowwvt13b5Lk1mIX7g0ryE6oujy4XpucTxm2eBDw/4KMECt341yB+nAOA eQN0Sn0uD/b/hjk8jCIcvRUEQUvPFRE+GUTyBYJ8B5ZegaL5BoRCqNLBOUmkzV3X Ih1ThdMv6D4YUtwHe50Plpz+W90rUBd2L7TWNrqv2KGTCq800VqGlzSXt0Lk0qoo JwJmg0FtIZy68V3OR4ecmCimvz4GOj/weRz8ksSZM4LaXOyU+6O2hUEez+VMSegT OKtMxgUN4HT6ljlf4xIXOTBeezrAe6Ugd17q1hVJn951EqtfJSoKZ9VhAOS1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUXCgt7B+nodkikUyOHyQg5uYuT9gwHwYDVR0j BBgwFoAU/5R74YjTWep+34h9htosfMdGC3AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l OGE5MjM3YS03MjZjLTRjMTktOWI0ZS03Yjk0YjE0MjRjNGIvMC9GRjk0N0JFMTg4 RDM1OUVBN0VERjg4N0Q4NkRBMkM3Q0M3NDYwQjcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkY5NDdCRTE4OEQzNTlFQTdFREY4ODdEODZEQTJDN0NDNzQ2 MEI3MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4YTkyMzdhLTcyNmMtNGMxOS05 YjRlLTdiOTRiMTQyNGM0Yi8wLzMxMzAzMzJlMzEzNjMyMmUzMTM0MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM4MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoo0wDQYJ KoZIhvcNAQELBQADggEBAGFUAuouNdxg2WNnP7ERhBjNcrYVxb3soddtdZpH1xuN rvfeiczqYm/B2fJdWPBzp/ae7eF5Dj2MlkoxMSA+XXgbufBjvEVkBsgkQ1B3iuP+ ZIo0k3QagpxT4CxUVzCur2ScqVJZ7RSpdeuw5FROwX5ZoIkWzgSuVkhkrNyeLQXM nN1Pj4xWSwIIRHEYl2CctFCuWfMedMENaEadUjSojG9yZ/rmUwpR/i42WbRwYOdc oM/QMofttwP1TANYVcO4kta2TzjVIxG9ZZGny6IEls/80/ed8i9tFbBJKEyvYxtV QWbG8RGE0UUansFupJOc8NBSz0q+R6F+n5tnnPIHh0Y= -----END CERTIFICATE-----Generated at Mon Apr 7 13:04:31 2025 by rpki-client