$ rpki-client -vvf repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/3130332e3137302e3138362e302f32342d3234203d3e20313432333635.roa File: 3130332e3137302e3138362e302f32342d3234203d3e20313432333635.roa (raw, json) Hash identifier: sovGmY1LNDEBP90HtbkYGEyytjx7NJaqlPRFRk+DmlQ= Subject key identifier: B5:82:BA:A9:71:AE:43:3A:CD:F6:F7:96:02:8E:2A:D8:9C:BE:55:E1 Certificate issuer: /CN=D4DD8244BC2EB2B187B4181226714505DF8F4452 Certificate serial: 20EADBB8DF293941F44D02C99F6EA91C4633DC7A Authority key identifier: D4:DD:82:44:BC:2E:B2:B1:87:B4:18:12:26:71:45:05:DF:8F:44:52 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/3130332e3137302e3138362e302f32342d3234203d3e20313432333635.roa Signing time: Mon 03 Jun 2024 15:00:01 +0000 ROA not before: Mon 03 Jun 2024 14:55:01 +0000 ROA not after: Mon 02 Jun 2025 15:00:01 +0000 asID: 142365 IP address blocks: 103.170.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.crl rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 12:43:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:ea:db:b8:df:29:39:41:f4:4d:02:c9:9f:6e:a9:1c:46:33:dc:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4DD8244BC2EB2B187B4181226714505DF8F4452 Validity Not Before: Jun 3 14:55:01 2024 GMT Not After : Jun 2 15:00:01 2025 GMT Subject: CN=B582BAA971AE433ACDF6F796028E2AD89CBE55E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c8:cb:67:f6:76:b8:53:ed:67:ca:31:1b:58: ff:35:4c:f9:dd:af:17:35:16:46:70:d2:a4:5e:88: 1b:e1:cb:db:d6:50:56:f3:59:42:2d:ef:66:b1:2a: 8d:33:85:bd:ba:e9:a5:fb:ca:a0:e2:06:b5:68:22: 3b:0e:10:f5:e2:26:ce:d4:19:c1:ea:8d:88:a0:04: 83:2c:26:63:97:9e:4d:74:ce:df:31:fb:38:88:4b: 07:a0:d7:bf:f4:f1:4c:6e:65:13:e6:a7:33:27:e5: c7:5e:3b:d8:29:03:70:cd:17:f9:7d:30:e7:f9:1a: f4:cc:2e:7d:b2:25:94:f2:41:4d:32:c7:6d:48:4a: a0:7f:41:d9:6b:fa:83:64:af:0b:36:86:db:15:83: 29:f8:40:fc:d4:a5:e0:97:8b:ae:40:33:3d:2a:7d: 6c:0a:73:30:36:25:d0:5e:29:35:44:7d:75:c1:cf: 13:6c:ef:7e:fc:40:71:58:58:47:c9:b1:a8:0d:a0: 46:86:a2:07:e0:c1:03:dc:d0:9e:e1:fa:da:ec:82: 67:9c:30:c6:ba:8f:00:b0:20:05:36:5b:49:80:09: 5c:92:1e:06:32:10:fb:e2:82:0b:27:55:eb:d1:27: 16:74:5f:29:63:a0:a1:0d:42:4b:18:6f:d2:b8:e3: 66:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:82:BA:A9:71:AE:43:3A:CD:F6:F7:96:02:8E:2A:D8:9C:BE:55:E1 X509v3 Authority Key Identifier: keyid:D4:DD:82:44:BC:2E:B2:B1:87:B4:18:12:26:71:45:05:DF:8F:44:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/3130332e3137302e3138362e302f32342d3234203d3e20313432333635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.186.0/24 Signature Algorithm: sha256WithRSAEncryption 23:7b:a9:cd:8f:15:c3:d0:6a:70:ed:fe:09:22:5d:80:0f:60: 8e:95:f7:c9:67:fa:ae:b1:f2:7d:d9:ae:f5:f5:a9:7b:28:0a: e7:63:aa:d7:e9:4a:ee:89:26:c7:cb:03:87:a1:2a:cd:4d:b9: c5:dc:3d:90:31:10:04:ba:ab:3b:35:7f:3b:4c:d3:53:81:e7: cd:55:46:f9:da:3c:1c:c7:f3:87:3a:b0:17:71:90:9c:7e:ac: a5:50:7b:c9:53:57:c1:80:a2:92:1e:55:87:d1:24:3a:db:9f: 20:0a:b6:a2:76:b3:5c:8f:4c:b9:8a:dc:d8:29:1c:d9:9d:07: cc:87:e5:c1:55:b4:1c:e1:50:b4:2b:15:9d:5d:0a:7f:73:df: 90:9a:a4:d2:b7:70:a6:ce:59:86:92:a0:10:7f:28:19:2b:da: d9:03:e5:1a:67:33:a3:da:be:46:de:a8:c7:ac:13:37:f1:76: ee:23:2c:e2:f2:d3:3a:7d:27:f3:22:50:33:a2:b5:30:c9:a3: 03:e8:40:24:4c:d8:dc:bb:81:4e:14:1b:73:09:af:23:eb:74: 71:f1:cf:d7:03:a5:c5:5b:d3:10:a2:bd:ed:6e:08:15:05:8c: b7:cb:d8:22:ed:30:d9:4f:bb:63:22:da:17:b8:af:e1:69:b4: fd:73:11:b0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIOrbuN8pOUH0TQLJn26pHEYz3HowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDRERDgyNDRCQzJFQjJCMTg3QjQxODEyMjY3MTQ1MDVE RjhGNDQ1MjAeFw0yNDA2MDMxNDU1MDFaFw0yNTA2MDIxNTAwMDFaMDMxMTAvBgNV BAMTKEI1ODJCQUE5NzFBRTQzM0FDREY2Rjc5NjAyOEUyQUQ4OUNCRTU1RTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIyMtn9na4U+1nyjEbWP81TPnd rxc1FkZw0qReiBvhy9vWUFbzWUIt72axKo0zhb266aX7yqDiBrVoIjsOEPXiJs7U GcHqjYigBIMsJmOXnk10zt8x+ziISweg17/08UxuZRPmpzMn5cdeO9gpA3DNF/l9 MOf5GvTMLn2yJZTyQU0yx21ISqB/Qdlr+oNkrws2htsVgyn4QPzUpeCXi65AMz0q fWwKczA2JdBeKTVEfXXBzxNs7378QHFYWEfJsagNoEaGogfgwQPc0J7h+trsgmec MMa6jwCwIAU2W0mACVySHgYyEPviggsnVevRJxZ0XyljoKENQksYb9K442Z7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUtYK6qXGuQzrN9veWAo4q2Jy+VeEwHwYDVR0j BBgwFoAU1N2CRLwusrGHtBgSJnFFBd+PRFIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YWYwZjQyMy0zYmVkLTQ5MzgtOWY4OS0xNWU2MjY5YmRkY2EvMC9ENEREODI0NEJD MkVCMkIxODdCNDE4MTIyNjcxNDUwNURGOEY0NDUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDRERDgyNDRCQzJFQjJCMTg3QjQxODEyMjY3MTQ1MDVERjhG NDQ1Mi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhZjBmNDIzLTNiZWQtNDkzOC05 Zjg5LTE1ZTYyNjliZGRjYS8wLzMxMzAzMzJlMzEzNzMwMmUzMTM4MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM2MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqrowDQYJ KoZIhvcNAQELBQADggEBACN7qc2PFcPQanDt/gkiXYAPYI6V98ln+q6x8n3ZrvX1 qXsoCudjqtfpSu6JJsfLA4ehKs1NucXcPZAxEAS6qzs1fztM01OB581VRvnaPBzH 84c6sBdxkJx+rKVQe8lTV8GAopIeVYfRJDrbnyAKtqJ2s1yPTLmK3NgpHNmdB8yH 5cFVtBzhULQrFZ1dCn9z35CapNK3cKbOWYaSoBB/KBkr2tkD5RpnM6PavkbeqMes Ezfxdu4jLOLy0zp9J/MiUDOitTDJowPoQCRM2Ny7gU4UG3MJryPrdHHxz9cDpcVb 0xCive1uCBUFjLfL2CLtMNlPu2Mi2he4r+FptP1zEbA= -----END CERTIFICATE-----Generated at Fri Feb 21 11:23:18 2025 by rpki-client