$ rpki-client -vvf repo-rpki.idnic.net/repo/e99b604f-1578-4a0b-8f7a-58d9f13c9769/0/3130332e3138332e35382e302f32332d3233203d3e20313439343039.roa File: 3130332e3138332e35382e302f32332d3233203d3e20313439343039.roa (raw, json) Hash identifier: wDDHmfXbcVqw0smbG6As8acn9RHt973MQSaDFYdjQNM= Subject key identifier: 37:E1:5F:2D:74:95:C8:E5:E4:0B:93:B8:49:C1:B2:C1:69:5A:15:65 Certificate issuer: /CN=D1553F19BBD3B70719E720005FDB3145CC910A1F Certificate serial: 67D884F68FA167B1069133FCF34BA24263F59FA1 Authority key identifier: D1:55:3F:19:BB:D3:B7:07:19:E7:20:00:5F:DB:31:45:CC:91:0A:1F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1553F19BBD3B70719E720005FDB3145CC910A1F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e99b604f-1578-4a0b-8f7a-58d9f13c9769/0/3130332e3138332e35382e302f32332d3233203d3e20313439343039.roa Signing time: Wed 18 Dec 2024 20:00:02 +0000 ROA not before: Wed 18 Dec 2024 19:55:02 +0000 ROA not after: Wed 17 Dec 2025 20:00:02 +0000 asID: 149409 IP address blocks: 103.183.58.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e99b604f-1578-4a0b-8f7a-58d9f13c9769/0/D1553F19BBD3B70719E720005FDB3145CC910A1F.crl rsync://repo-rpki.idnic.net/repo/e99b604f-1578-4a0b-8f7a-58d9f13c9769/0/D1553F19BBD3B70719E720005FDB3145CC910A1F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1553F19BBD3B70719E720005FDB3145CC910A1F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 00:15:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:d8:84:f6:8f:a1:67:b1:06:91:33:fc:f3:4b:a2:42:63:f5:9f:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1553F19BBD3B70719E720005FDB3145CC910A1F Validity Not Before: Dec 18 19:55:02 2024 GMT Not After : Dec 17 20:00:02 2025 GMT Subject: CN=37E15F2D7495C8E5E40B93B849C1B2C1695A1565 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:43:9c:aa:0f:88:f3:37:a4:d5:a8:27:d1:09: 27:83:01:b3:84:0c:0c:dc:6b:d7:b7:e7:1c:89:7f: 67:dd:af:e6:8c:91:0c:40:fb:b3:27:1a:56:81:91: 61:5c:05:7c:4e:4b:eb:af:bc:02:8c:f7:87:e7:64: cb:f7:f2:12:59:63:1b:bb:cc:50:9e:66:69:ed:67: 1a:50:80:5c:c6:82:00:91:25:8e:71:bf:93:31:7e: c5:82:5a:b1:44:ca:2d:b6:c7:f2:e8:b5:26:ff:77: 29:2e:a1:57:dd:48:0c:dd:22:bc:2f:b1:4c:eb:80: f1:43:18:9a:32:1d:59:c4:d1:c3:fb:2a:09:2e:b5: be:2d:8c:32:e2:e9:c1:de:3f:87:6a:19:14:db:bb: 7f:6b:ee:1a:4c:2c:db:7c:0f:ad:d5:2f:53:d9:92: a9:48:af:2e:69:28:ba:08:d7:6b:78:72:1b:b6:ef: a2:da:4e:c3:3f:d9:d9:70:4f:63:b6:45:3a:64:61: 01:d5:da:6f:3d:70:b1:5c:78:d7:de:b8:b6:1f:ea: 86:d9:92:76:5c:13:18:90:a4:08:ce:c9:66:12:cd: 0b:ed:9c:ae:15:43:b1:d8:07:e9:ff:b6:2b:d5:1f: a8:a3:94:ba:ee:51:82:ec:bf:ab:a9:49:70:5c:7c: 26:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:E1:5F:2D:74:95:C8:E5:E4:0B:93:B8:49:C1:B2:C1:69:5A:15:65 X509v3 Authority Key Identifier: keyid:D1:55:3F:19:BB:D3:B7:07:19:E7:20:00:5F:DB:31:45:CC:91:0A:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e99b604f-1578-4a0b-8f7a-58d9f13c9769/0/D1553F19BBD3B70719E720005FDB3145CC910A1F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1553F19BBD3B70719E720005FDB3145CC910A1F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e99b604f-1578-4a0b-8f7a-58d9f13c9769/0/3130332e3138332e35382e302f32332d3233203d3e20313439343039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.183.58.0/23 Signature Algorithm: sha256WithRSAEncryption 08:c4:66:08:b3:70:41:dd:db:7e:00:2f:2c:04:92:d7:c3:ce: bf:59:94:55:6c:23:f6:70:67:7c:02:21:5b:93:b8:95:00:bf: 58:ec:3e:15:91:be:46:25:bb:06:a2:38:d6:a9:31:2b:7b:8a: 9d:df:8a:c3:de:19:16:93:6e:06:56:e0:e5:d7:21:09:3f:28: 42:2b:70:24:c5:2d:be:bd:b8:a7:12:99:84:f8:67:b9:15:8c: 6f:4b:06:36:42:55:73:8a:78:78:ab:19:59:6d:64:3d:b4:5f: 38:79:9d:a1:e9:9c:ea:80:7d:43:cd:4e:d7:91:b1:5e:b9:f7: 36:d6:4f:7a:12:69:c9:9c:51:e8:8c:a7:38:03:94:00:e6:50: 87:35:a1:e4:06:35:2c:39:f0:13:40:39:c3:c1:39:a2:f6:a7: 16:dd:b5:c4:aa:b1:01:87:44:78:9c:67:a6:ee:ba:3b:0f:f0: b5:7e:bb:99:80:7f:e9:29:bf:f6:be:9a:b6:e3:08:b8:54:5c: 90:2a:50:b9:13:b8:97:c3:bb:2b:da:65:4b:70:47:5f:52:f3: 25:7c:8f:b5:ae:3f:2f:39:ea:ea:0d:5f:ca:06:cf:00:57:e9: 92:6d:89:43:da:66:74:02:08:64:c9:8c:51:05:4b:41:11:48: 8a:6b:b1:e2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZ9iE9o+hZ7EGkTP880uiQmP1n6EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE1NTNGMTlCQkQzQjcwNzE5RTcyMDAwNUZEQjMxNDVD QzkxMEExRjAeFw0yNDEyMTgxOTU1MDJaFw0yNTEyMTcyMDAwMDJaMDMxMTAvBgNV BAMTKDM3RTE1RjJENzQ5NUM4RTVFNDBCOTNCODQ5QzFCMkMxNjk1QTE1NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTQ5yqD4jzN6TVqCfRCSeDAbOE DAzca9e35xyJf2fdr+aMkQxA+7MnGlaBkWFcBXxOS+uvvAKM94fnZMv38hJZYxu7 zFCeZmntZxpQgFzGggCRJY5xv5MxfsWCWrFEyi22x/LotSb/dykuoVfdSAzdIrwv sUzrgPFDGJoyHVnE0cP7Kgkutb4tjDLi6cHeP4dqGRTbu39r7hpMLNt8D63VL1PZ kqlIry5pKLoI12t4chu276LaTsM/2dlwT2O2RTpkYQHV2m89cLFceNfeuLYf6obZ knZcExiQpAjOyWYSzQvtnK4VQ7HYB+n/tivVH6ijlLruUYLsv6upSXBcfCa3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUN+FfLXSVyOXkC5O4ScGywWlaFWUwHwYDVR0j BBgwFoAU0VU/GbvTtwcZ5yAAX9sxRcyRCh8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l OTliNjA0Zi0xNTc4LTRhMGItOGY3YS01OGQ5ZjEzYzk3NjkvMC9EMTU1M0YxOUJC RDNCNzA3MTlFNzIwMDA1RkRCMzE0NUNDOTEwQTFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDE1NTNGMTlCQkQzQjcwNzE5RTcyMDAwNUZEQjMxNDVDQzkx MEExRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U5OWI2MDRmLTE1NzgtNGEwYi04 ZjdhLTU4ZDlmMTNjOTc2OS8wLzMxMzAzMzJlMzEzODMzMmUzNTM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDM5MzQzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7c6MA0GCSqG SIb3DQEBCwUAA4IBAQAIxGYIs3BB3dt+AC8sBJLXw86/WZRVbCP2cGd8AiFbk7iV AL9Y7D4Vkb5GJbsGojjWqTEre4qd34rD3hkWk24GVuDl1yEJPyhCK3AkxS2+vbin EpmE+Ge5FYxvSwY2QlVzinh4qxlZbWQ9tF84eZ2h6ZzqgH1DzU7XkbFeufc21k96 EmnJnFHojKc4A5QA5lCHNaHkBjUsOfATQDnDwTmi9qcW3bXEqrEBh0R4nGem7ro7 D/C1fruZgH/pKb/2vpq24wi4VFyQKlC5E7iXw7sr2mVLcEdfUvMlfI+1rj8vOerq DV/KBs8AV+mSbYlD2mZ0AghkyYxRBUtBEUiKa7Hi -----END CERTIFICATE-----Generated at Thu Apr 17 23:37:59 2025 by rpki-client