$ rpki-client -vvf repo-rpki.idnic.net/repo/e8de9463-68a7-462d-9408-a7c39ce6e8ff/0/3130332e35342e38332e302f32342d3234203d3e20313530353132.roa File: 3130332e35342e38332e302f32342d3234203d3e20313530353132.roa (raw, json) Hash identifier: TNPPWguy+EG+YXVjh98k8HLbiPmnDYSLszixyMOhlSg= Subject key identifier: E7:DE:F5:ED:01:D8:3D:65:BF:DD:3D:EE:DE:CA:BF:62:26:AD:10:96 Certificate issuer: /CN=2ADCBF290A98776E6F59353351C879A1502B884A Certificate serial: 63430077CBD43AB920289EBF8913E0274C0CC57F Authority key identifier: 2A:DC:BF:29:0A:98:77:6E:6F:59:35:33:51:C8:79:A1:50:2B:88:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2ADCBF290A98776E6F59353351C879A1502B884A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e8de9463-68a7-462d-9408-a7c39ce6e8ff/0/3130332e35342e38332e302f32342d3234203d3e20313530353132.roa Signing time: Mon 23 Dec 2024 11:00:02 +0000 ROA not before: Mon 23 Dec 2024 10:55:02 +0000 ROA not after: Mon 22 Dec 2025 11:00:02 +0000 asID: 150512 IP address blocks: 103.54.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e8de9463-68a7-462d-9408-a7c39ce6e8ff/0/2ADCBF290A98776E6F59353351C879A1502B884A.crl rsync://repo-rpki.idnic.net/repo/e8de9463-68a7-462d-9408-a7c39ce6e8ff/0/2ADCBF290A98776E6F59353351C879A1502B884A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2ADCBF290A98776E6F59353351C879A1502B884A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 11:49:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:43:00:77:cb:d4:3a:b9:20:28:9e:bf:89:13:e0:27:4c:0c:c5:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ADCBF290A98776E6F59353351C879A1502B884A Validity Not Before: Dec 23 10:55:02 2024 GMT Not After : Dec 22 11:00:02 2025 GMT Subject: CN=E7DEF5ED01D83D65BFDD3DEEDECABF6226AD1096 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:1e:34:f7:f9:f7:80:6a:46:58:4f:2a:8a:7c: 48:6e:2c:59:ca:4b:62:d9:2f:35:65:4d:16:a2:fd: 0c:df:34:ed:98:59:9b:2b:f6:99:69:b8:14:0c:af: b1:a5:17:65:d0:b9:d1:0a:ef:ec:83:c0:60:83:fb: 51:75:e1:39:ec:1b:37:a7:a2:fd:f7:6c:81:72:8c: 33:88:5f:6d:6c:76:80:5d:79:ce:40:0f:8f:88:d5: a0:cc:19:4c:a4:3c:56:26:68:6d:a1:f5:81:01:eb: 37:67:e0:e8:9e:a5:93:72:cb:16:42:77:82:5a:51: 72:e0:74:89:d5:49:c7:91:51:c0:d5:bd:36:b6:50: 06:79:4f:81:e5:4f:5a:46:a6:77:9d:af:b7:53:96: 92:e7:d8:96:56:b4:15:55:a8:97:23:33:f0:7a:8d: 45:93:40:1e:64:06:26:31:6f:72:35:e5:92:78:64: dc:71:cd:e1:02:e7:fe:fa:a7:dc:dc:2b:e1:48:5a: ce:4a:47:41:bd:44:3c:24:09:c2:29:32:96:ef:d3: 65:aa:ca:a9:05:25:c3:a8:dd:be:d9:c2:95:e7:f0: 3f:1e:e6:d8:bf:4b:85:e1:65:8b:a7:a8:39:dd:8a: 49:14:08:40:88:6b:b7:cd:1c:a4:6c:ed:1a:f3:98: be:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:DE:F5:ED:01:D8:3D:65:BF:DD:3D:EE:DE:CA:BF:62:26:AD:10:96 X509v3 Authority Key Identifier: keyid:2A:DC:BF:29:0A:98:77:6E:6F:59:35:33:51:C8:79:A1:50:2B:88:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e8de9463-68a7-462d-9408-a7c39ce6e8ff/0/2ADCBF290A98776E6F59353351C879A1502B884A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2ADCBF290A98776E6F59353351C879A1502B884A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e8de9463-68a7-462d-9408-a7c39ce6e8ff/0/3130332e35342e38332e302f32342d3234203d3e20313530353132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.54.83.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:46:07:99:86:47:f5:52:30:38:d2:8b:f3:7e:d2:c2:1b:13: f8:79:1c:fd:c9:78:22:ef:0d:b5:b2:ce:72:50:2b:6c:57:a8: bf:66:ac:60:d8:cc:77:e3:b3:2d:9d:7f:a3:15:11:ce:2a:08: 94:43:5c:31:61:04:f0:87:c3:fe:f7:39:be:8a:88:0c:80:8a: cc:a0:43:ac:bc:84:59:28:cd:6f:1c:7f:68:3a:e2:1f:fb:3b: 34:21:ff:53:ab:c4:37:94:40:0f:3c:bc:6e:43:d7:1c:b5:31: 74:2a:fe:f5:8c:8f:4f:85:0c:ae:b0:64:dd:d0:67:73:79:6a: 9b:e5:0b:ce:64:d2:97:cb:2b:d8:bf:34:8d:f8:73:96:ff:f0: f0:3f:e0:05:be:3f:18:36:0d:ed:7d:ae:73:87:ef:e1:de:b4: cd:63:b0:a7:6b:78:f4:51:53:85:a0:56:5b:53:a2:c9:3b:94: f0:9d:32:fc:b6:62:4a:39:55:e3:2a:e7:f5:51:66:3e:63:07: 87:e9:38:75:a7:08:52:2f:e2:94:21:fb:b9:78:37:37:a8:42: 18:b5:de:2d:06:30:39:09:a6:27:bc:d5:cc:21:9d:1c:86:c3: 59:21:3a:7a:1c:97:ba:ec:45:81:71:ef:a0:a8:c4:68:43:c1: e9:5a:99:c6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUY0MAd8vUOrkgKJ6/iRPgJ0wMxX8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFEQ0JGMjkwQTk4Nzc2RTZGNTkzNTMzNTFDODc5QTE1 MDJCODg0QTAeFw0yNDEyMjMxMDU1MDJaFw0yNTEyMjIxMTAwMDJaMDMxMTAvBgNV BAMTKEU3REVGNUVEMDFEODNENjVCRkREM0RFRURFQ0FCRjYyMjZBRDEwOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsHjT3+feAakZYTyqKfEhuLFnK S2LZLzVlTRai/QzfNO2YWZsr9plpuBQMr7GlF2XQudEK7+yDwGCD+1F14TnsGzen ov33bIFyjDOIX21sdoBdec5AD4+I1aDMGUykPFYmaG2h9YEB6zdn4OiepZNyyxZC d4JaUXLgdInVSceRUcDVvTa2UAZ5T4HlT1pGpnedr7dTlpLn2JZWtBVVqJcjM/B6 jUWTQB5kBiYxb3I15ZJ4ZNxxzeEC5/76p9zcK+FIWs5KR0G9RDwkCcIpMpbv02Wq yqkFJcOo3b7ZwpXn8D8e5ti/S4XhZYunqDndikkUCECIa7fNHKRs7RrzmL7XAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU59717QHYPWW/3T3u3sq/YiatEJYwHwYDVR0j BBgwFoAUKty/KQqYd25vWTUzUch5oVAriEowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l OGRlOTQ2My02OGE3LTQ2MmQtOTQwOC1hN2MzOWNlNmU4ZmYvMC8yQURDQkYyOTBB OTg3NzZFNkY1OTM1MzM1MUM4NzlBMTUwMkI4ODRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkFEQ0JGMjkwQTk4Nzc2RTZGNTkzNTMzNTFDODc5QTE1MDJC ODg0QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4ZGU5NDYzLTY4YTctNDYyZC05 NDA4LWE3YzM5Y2U2ZThmZi8wLzMxMzAzMzJlMzUzNDJlMzgzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDM1MzEzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc2UzANBgkqhkiG 9w0BAQsFAAOCAQEATUYHmYZH9VIwONKL837SwhsT+Hkc/cl4Iu8NtbLOclArbFeo v2asYNjMd+OzLZ1/oxURzioIlENcMWEE8IfD/vc5voqIDICKzKBDrLyEWSjNbxx/ aDriH/s7NCH/U6vEN5RADzy8bkPXHLUxdCr+9YyPT4UMrrBk3dBnc3lqm+ULzmTS l8sr2L80jfhzlv/w8D/gBb4/GDYN7X2uc4fv4d60zWOwp2t49FFThaBWW1OiyTuU 8J0y/LZiSjlV4yrn9VFmPmMHh+k4dacIUi/ilCH7uXg3N6hCGLXeLQYwOQmmJ7zV zCGdHIbDWSE6ehyXuuxFgXHvoKjEaEPB6VqZxg== -----END CERTIFICATE-----Generated at Sun Apr 6 13:34:19 2025 by rpki-client