$ rpki-client -vvf repo-rpki.idnic.net/repo/ee895ceb-2777-4ad9-92db-4873e485c1f6/0/3130332e3132312e3138302e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3138302e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: fiuKPWuy7RKi+g0sG/LNMj+SSbhL4KU/yazo65GfTmw= Subject key identifier: 3E:90:F7:78:A8:FE:C9:06:4F:9E:E8:70:92:BE:94:09:F0:28:59:73 Certificate issuer: /CN=AE7B61A9C16793784CC25CEC0295516C69FF5E20 Certificate serial: 0B2205396BC6D06E410958A3B28BC6E0F53EC110 Authority key identifier: AE:7B:61:A9:C1:67:93:78:4C:C2:5C:EC:02:95:51:6C:69:FF:5E:20 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE7B61A9C16793784CC25CEC0295516C69FF5E20.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ee895ceb-2777-4ad9-92db-4873e485c1f6/0/3130332e3132312e3138302e302f32332d3234203d3e20313335343738.roa Signing time: Wed 04 Dec 2024 09:03:08 +0000 ROA not before: Wed 04 Dec 2024 08:58:08 +0000 ROA not after: Wed 03 Dec 2025 09:03:08 +0000 asID: 135478 IP address blocks: 103.121.180.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ee895ceb-2777-4ad9-92db-4873e485c1f6/0/AE7B61A9C16793784CC25CEC0295516C69FF5E20.crl rsync://repo-rpki.idnic.net/repo/ee895ceb-2777-4ad9-92db-4873e485c1f6/0/AE7B61A9C16793784CC25CEC0295516C69FF5E20.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE7B61A9C16793784CC25CEC0295516C69FF5E20.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 06:45:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:22:05:39:6b:c6:d0:6e:41:09:58:a3:b2:8b:c6:e0:f5:3e:c1:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE7B61A9C16793784CC25CEC0295516C69FF5E20 Validity Not Before: Dec 4 08:58:08 2024 GMT Not After : Dec 3 09:03:08 2025 GMT Subject: CN=3E90F778A8FEC9064F9EE87092BE9409F0285973 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:4a:3c:06:b1:e2:2e:20:d7:83:cd:09:04:d8: bf:a8:81:76:03:6e:93:8a:7f:6f:db:68:d7:41:02: 04:9c:3c:e7:0e:e4:bd:28:bd:b3:33:1b:da:94:07: 68:3a:cc:b5:a2:a7:53:8c:2e:f3:c4:04:26:fa:9c: 90:b1:71:90:64:d6:03:fa:7e:a2:bf:42:4c:27:96: f2:15:d4:42:77:58:f2:95:28:4c:45:e1:07:ed:ce: b0:9d:7d:27:b6:8d:17:12:f3:0e:fc:bf:2d:e2:a3: 65:4a:c7:8e:2f:2f:19:ca:65:e8:b0:28:d3:ea:55: 08:4c:fd:35:aa:cf:7e:6d:a4:45:06:18:90:f8:82: dc:40:1c:a0:53:60:39:98:d2:74:4f:56:a8:8a:e1: a4:05:e0:92:14:6b:a4:b7:ce:51:d6:c0:6a:00:1c: 2b:73:e5:74:d3:70:22:28:c2:2a:eb:78:83:51:d4: 2a:d9:78:24:9c:97:35:93:1f:4a:70:19:75:4a:6f: 20:a0:af:13:7b:bc:f6:6e:5e:e9:66:e7:c6:79:26: a8:98:a4:3d:ac:13:5c:f3:34:19:92:be:11:82:33: ab:ae:99:58:36:6e:f4:5a:24:12:de:b1:41:01:86: 30:fc:50:bf:83:73:fa:78:1e:ff:df:98:b3:cc:f1: 85:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:90:F7:78:A8:FE:C9:06:4F:9E:E8:70:92:BE:94:09:F0:28:59:73 X509v3 Authority Key Identifier: keyid:AE:7B:61:A9:C1:67:93:78:4C:C2:5C:EC:02:95:51:6C:69:FF:5E:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ee895ceb-2777-4ad9-92db-4873e485c1f6/0/AE7B61A9C16793784CC25CEC0295516C69FF5E20.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE7B61A9C16793784CC25CEC0295516C69FF5E20.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ee895ceb-2777-4ad9-92db-4873e485c1f6/0/3130332e3132312e3138302e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.180.0/23 Signature Algorithm: sha256WithRSAEncryption 01:e4:11:ca:b3:c0:93:12:57:79:75:89:45:f3:08:dc:a5:88: b2:e4:9c:e5:ec:46:65:bd:61:58:c6:27:21:19:a7:7d:63:96: 0a:15:f1:ac:a9:35:69:5d:95:71:33:a4:a3:4f:b5:c8:73:da: 57:40:15:67:6f:08:97:fc:77:ff:a1:67:db:d0:2e:93:39:79: 26:74:9c:5c:88:57:78:6e:df:f2:0b:29:f4:b6:4a:f5:d5:85: 40:29:6f:27:35:19:ed:bd:e0:73:3a:51:5d:08:79:bd:4b:4b: 8d:68:05:1c:07:e3:af:2d:5c:b4:5f:06:f5:d2:8c:b5:e7:6f: 31:0f:52:39:bd:e6:29:98:be:25:ce:d0:bb:91:b5:3e:82:78: 58:e3:55:79:eb:86:f1:89:1f:b1:81:71:96:15:b0:8e:c7:f9: 91:f4:fa:f1:a2:14:d0:db:ac:f9:dd:c4:36:af:09:3c:5d:5b: 78:f6:8c:4b:a9:aa:a3:19:d9:84:28:d3:67:cc:d6:f3:fa:f9: 94:e3:a7:70:6b:33:b4:59:a5:7d:1e:7a:d4:13:4c:5d:45:06: 4b:3e:ff:d4:34:c6:28:de:c8:33:7e:28:07:11:bd:c9:82:a6: e5:fd:fb:ef:d7:6d:b0:98:e3:2b:43:54:c1:20:15:42:40:c2: 36:1f:e4:58 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUCyIFOWvG0G5BCVijsovG4PU+wRAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU3QjYxQTlDMTY3OTM3ODRDQzI1Q0VDMDI5NTUxNkM2 OUZGNUUyMDAeFw0yNDEyMDQwODU4MDhaFw0yNTEyMDMwOTAzMDhaMDMxMTAvBgNV BAMTKDNFOTBGNzc4QThGRUM5MDY0RjlFRTg3MDkyQkU5NDA5RjAyODU5NzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtSjwGseIuINeDzQkE2L+ogXYD bpOKf2/baNdBAgScPOcO5L0ovbMzG9qUB2g6zLWip1OMLvPEBCb6nJCxcZBk1gP6 fqK/QkwnlvIV1EJ3WPKVKExF4QftzrCdfSe2jRcS8w78vy3io2VKx44vLxnKZeiw KNPqVQhM/TWqz35tpEUGGJD4gtxAHKBTYDmY0nRPVqiK4aQF4JIUa6S3zlHWwGoA HCtz5XTTcCIowirreINR1CrZeCSclzWTH0pwGXVKbyCgrxN7vPZuXulm58Z5JqiY pD2sE1zzNBmSvhGCM6uumVg2bvRaJBLesUEBhjD8UL+Dc/p4Hv/fmLPM8YXdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUPpD3eKj+yQZPnuhwkr6UCfAoWXMwHwYDVR0j BBgwFoAUrnthqcFnk3hMwlzsApVRbGn/XiAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZTg5NWNlYi0yNzc3LTRhZDktOTJkYi00ODczZTQ4NWMxZjYvMC9BRTdCNjFBOUMx Njc5Mzc4NENDMjVDRUMwMjk1NTE2QzY5RkY1RTIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUU3QjYxQTlDMTY3OTM3ODRDQzI1Q0VDMDI5NTUxNkM2OUZG NUUyMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VlODk1Y2ViLTI3NzctNGFkOS05 MmRiLTQ4NzNlNDg1YzFmNi8wLzMxMzAzMzJlMzEzMjMxMmUzMTM4MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnebQwDQYJ KoZIhvcNAQELBQADggEBAAHkEcqzwJMSV3l1iUXzCNyliLLknOXsRmW9YVjGJyEZ p31jlgoV8aypNWldlXEzpKNPtchz2ldAFWdvCJf8d/+hZ9vQLpM5eSZ0nFyIV3hu 3/ILKfS2SvXVhUApbyc1Ge294HM6UV0Ieb1LS41oBRwH468tXLRfBvXSjLXnbzEP Ujm95imYviXO0LuRtT6CeFjjVXnrhvGJH7GBcZYVsI7H+ZH0+vGiFNDbrPndxDav CTxdW3j2jEupqqMZ2YQo02fM1vP6+ZTjp3BrM7RZpX0eetQTTF1FBks+/9Q0xije yDN+KAcRvcmCpuX9++/XbbCY4ytDVMEgFUJAwjYf5Fg= -----END CERTIFICATE-----Generated at Sun Apr 6 08:28:07 2025 by rpki-client