$ rpki-client -vvf repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/3130332e3137302e3138372e302f32342d3234203d3e20313432333635.roa File: 3130332e3137302e3138372e302f32342d3234203d3e20313432333635.roa (raw, json) Hash identifier: mOuWddLIv3rmxXcgYq0Vb/44PX6MbWRtH5/zWdVpQuM= Subject key identifier: D6:22:EF:9C:D2:21:BF:C2:AF:C9:FF:9A:3B:2D:95:12:3D:AD:85:0A Certificate issuer: /CN=D4DD8244BC2EB2B187B4181226714505DF8F4452 Certificate serial: 1FA2B3E631EE672765BAE4AA510564DA1EA19C98 Authority key identifier: D4:DD:82:44:BC:2E:B2:B1:87:B4:18:12:26:71:45:05:DF:8F:44:52 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/3130332e3137302e3138372e302f32342d3234203d3e20313432333635.roa Signing time: Mon 03 Jun 2024 15:00:01 +0000 ROA not before: Mon 03 Jun 2024 14:55:01 +0000 ROA not after: Mon 02 Jun 2025 15:00:01 +0000 asID: 142365 IP address blocks: 103.170.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.crl rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 12:43:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:a2:b3:e6:31:ee:67:27:65:ba:e4:aa:51:05:64:da:1e:a1:9c:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4DD8244BC2EB2B187B4181226714505DF8F4452 Validity Not Before: Jun 3 14:55:01 2024 GMT Not After : Jun 2 15:00:01 2025 GMT Subject: CN=D622EF9CD221BFC2AFC9FF9A3B2D95123DAD850A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:49:3a:44:46:f0:0a:a7:94:61:7e:f1:42:03: 8a:47:c4:cf:c7:e7:53:fb:2c:22:11:b7:69:25:f7: 94:c2:9f:8f:e3:ca:56:84:32:67:55:22:fe:a0:12: 3f:fc:2d:9c:3b:87:51:29:01:17:b8:bf:01:2f:00: 9f:4d:12:ae:3a:e1:1e:c2:3e:50:c1:5f:bc:57:22: f1:70:27:0d:fc:a0:36:b2:a0:92:8e:11:c0:80:d8: 95:8f:1d:c6:2e:45:cd:e8:b7:f6:5a:d3:f4:05:bf: d2:ed:2a:a7:05:ef:ba:ac:cf:3d:ea:57:0e:b1:43: ff:6d:21:ca:57:f1:a1:d2:79:f8:3d:4c:3a:f4:a8: 8e:31:57:c4:94:97:82:98:a5:eb:12:b1:f3:1c:56: fd:bc:0c:46:70:70:60:64:51:27:e9:65:79:c5:82: d2:82:f4:cb:1e:01:3d:8e:9c:cf:b8:3b:d4:12:9d: 57:3c:62:4c:3d:a6:43:23:c7:65:2c:89:eb:01:f8: 0e:8b:49:f4:18:1b:97:75:ce:72:bc:1d:db:99:6c: 0c:f7:74:e9:f6:6b:bf:a9:08:4b:6c:bb:22:09:e3: 04:a1:69:06:9a:0a:97:ae:cb:dc:9d:67:30:fd:54: 1e:1e:4a:a7:0b:e9:73:b0:4c:93:0a:eb:49:51:23: 50:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:22:EF:9C:D2:21:BF:C2:AF:C9:FF:9A:3B:2D:95:12:3D:AD:85:0A X509v3 Authority Key Identifier: keyid:D4:DD:82:44:BC:2E:B2:B1:87:B4:18:12:26:71:45:05:DF:8F:44:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/3130332e3137302e3138372e302f32342d3234203d3e20313432333635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.187.0/24 Signature Algorithm: sha256WithRSAEncryption 41:b4:1b:5d:46:dc:1c:f6:f8:36:23:f5:40:bc:c6:fd:64:c2: f9:1b:f0:87:fd:19:8c:98:c1:02:a6:a8:e4:67:0c:ef:10:91: a9:c1:4a:ff:c5:76:05:27:c5:01:11:83:23:51:d1:0f:00:97: 46:0d:e0:62:10:12:34:a0:fb:e6:40:d9:09:fc:a6:bf:48:4a: 88:6c:08:d6:46:15:0e:42:28:aa:0a:76:bd:2c:e2:1a:f9:e2: 58:8d:9c:3d:1f:32:67:25:ba:9f:36:3e:f4:a4:c7:9e:dc:d0: 3b:6a:4b:24:17:28:41:29:10:92:3e:a1:5a:28:97:25:86:52: 0b:f3:ee:ea:76:66:fe:d8:c0:e2:79:01:2b:12:52:3d:05:33: 11:ad:c5:72:2e:54:c8:84:24:0f:2b:32:8e:a4:4e:02:b7:33: f6:29:20:76:24:6e:4d:ee:f1:77:98:94:2e:91:2e:18:ee:0c: 77:09:19:16:8a:38:c5:ea:a9:35:05:17:03:22:44:af:0f:55: 3a:30:9c:72:1b:ad:5a:11:16:c6:8a:10:e3:2e:65:93:de:aa: 36:d3:be:80:74:45:7f:11:7c:55:4f:bb:6c:8e:e7:e9:90:14: fc:07:a2:71:bc:18:a2:63:4c:df:08:f8:50:6f:5f:c8:bc:ea: 76:08:fa:e3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUH6Kz5jHuZydluuSqUQVk2h6hnJgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDRERDgyNDRCQzJFQjJCMTg3QjQxODEyMjY3MTQ1MDVE RjhGNDQ1MjAeFw0yNDA2MDMxNDU1MDFaFw0yNTA2MDIxNTAwMDFaMDMxMTAvBgNV BAMTKEQ2MjJFRjlDRDIyMUJGQzJBRkM5RkY5QTNCMkQ5NTEyM0RBRDg1MEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfSTpERvAKp5RhfvFCA4pHxM/H 51P7LCIRt2kl95TCn4/jylaEMmdVIv6gEj/8LZw7h1EpARe4vwEvAJ9NEq464R7C PlDBX7xXIvFwJw38oDayoJKOEcCA2JWPHcYuRc3ot/Za0/QFv9LtKqcF77qszz3q Vw6xQ/9tIcpX8aHSefg9TDr0qI4xV8SUl4KYpesSsfMcVv28DEZwcGBkUSfpZXnF gtKC9MseAT2OnM+4O9QSnVc8Ykw9pkMjx2UsiesB+A6LSfQYG5d1znK8HduZbAz3 dOn2a7+pCEtsuyIJ4wShaQaaCpeuy9ydZzD9VB4eSqcL6XOwTJMK60lRI1AFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1iLvnNIhv8Kvyf+aOy2VEj2thQowHwYDVR0j BBgwFoAU1N2CRLwusrGHtBgSJnFFBd+PRFIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YWYwZjQyMy0zYmVkLTQ5MzgtOWY4OS0xNWU2MjY5YmRkY2EvMC9ENEREODI0NEJD MkVCMkIxODdCNDE4MTIyNjcxNDUwNURGOEY0NDUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDRERDgyNDRCQzJFQjJCMTg3QjQxODEyMjY3MTQ1MDVERjhG NDQ1Mi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhZjBmNDIzLTNiZWQtNDkzOC05 Zjg5LTE1ZTYyNjliZGRjYS8wLzMxMzAzMzJlMzEzNzMwMmUzMTM4MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM2MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqrswDQYJ KoZIhvcNAQELBQADggEBAEG0G11G3Bz2+DYj9UC8xv1kwvkb8If9GYyYwQKmqORn DO8QkanBSv/FdgUnxQERgyNR0Q8Al0YN4GIQEjSg++ZA2Qn8pr9ISohsCNZGFQ5C KKoKdr0s4hr54liNnD0fMmclup82PvSkx57c0DtqSyQXKEEpEJI+oVoolyWGUgvz 7up2Zv7YwOJ5ASsSUj0FMxGtxXIuVMiEJA8rMo6kTgK3M/YpIHYkbk3u8XeYlC6R LhjuDHcJGRaKOMXqqTUFFwMiRK8PVTownHIbrVoRFsaKEOMuZZPeqjbTvoB0RX8R fFVPu2yO5+mQFPwHonG8GKJjTN8I+FBvX8i86nYI+uM= -----END CERTIFICATE-----Generated at Fri Feb 21 11:00:05 2025 by rpki-client