$ rpki-client -vvf repo-rpki.idnic.net/repo/efe21c69-7b77-43a0-92a6-f555b6ed1ffc/0/3130332e3136332e3133382e302f32332d3234203d3e203535363838.roa File: 3130332e3136332e3133382e302f32332d3234203d3e203535363838.roa (raw, json) Hash identifier: SleQnUegZrn9t/Esz5KijLNSBfhEPCbzYWCC+8Yfuac= Subject key identifier: DF:8F:90:AE:69:24:AF:39:36:A6:11:4D:B8:77:C3:A2:7F:CA:4B:DB Certificate issuer: /CN=9E22CCCB20898F95647D9A55FA112ABE8CE58EEC Certificate serial: 7CE11CCF73541D0C277BDBFA599312B066511DFF Authority key identifier: 9E:22:CC:CB:20:89:8F:95:64:7D:9A:55:FA:11:2A:BE:8C:E5:8E:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E22CCCB20898F95647D9A55FA112ABE8CE58EEC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/efe21c69-7b77-43a0-92a6-f555b6ed1ffc/0/3130332e3136332e3133382e302f32332d3234203d3e203535363838.roa Signing time: Wed 18 Dec 2024 00:00:01 +0000 ROA not before: Tue 17 Dec 2024 23:55:01 +0000 ROA not after: Wed 17 Dec 2025 00:00:01 +0000 asID: 55688 IP address blocks: 103.163.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/efe21c69-7b77-43a0-92a6-f555b6ed1ffc/0/9E22CCCB20898F95647D9A55FA112ABE8CE58EEC.crl rsync://repo-rpki.idnic.net/repo/efe21c69-7b77-43a0-92a6-f555b6ed1ffc/0/9E22CCCB20898F95647D9A55FA112ABE8CE58EEC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E22CCCB20898F95647D9A55FA112ABE8CE58EEC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 00:43:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:e1:1c:cf:73:54:1d:0c:27:7b:db:fa:59:93:12:b0:66:51:1d:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E22CCCB20898F95647D9A55FA112ABE8CE58EEC Validity Not Before: Dec 17 23:55:01 2024 GMT Not After : Dec 17 00:00:01 2025 GMT Subject: CN=DF8F90AE6924AF3936A6114DB877C3A27FCA4BDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c1:82:e2:bb:03:63:93:a9:7d:3d:74:58:18: ad:ea:cd:8c:2e:e9:6a:1d:ab:ac:22:81:27:3c:6b: 63:25:98:62:f0:92:5b:97:e3:f0:ac:dc:98:1a:24: 92:55:da:83:25:4c:10:27:05:45:3b:7f:03:7a:c5: 71:a3:25:b7:f0:d1:3e:24:8e:2c:b0:4e:da:fa:dd: 38:be:61:ba:b2:13:02:89:c2:57:de:90:d0:87:13: 34:a5:1c:17:2f:02:8c:14:40:30:0e:0c:94:87:95: ad:e8:96:98:12:a8:c4:1e:43:14:01:07:1c:59:7b: 38:5e:93:ac:47:29:00:05:cb:8e:03:82:b5:00:41: 03:16:aa:53:e8:3b:00:48:15:39:01:44:7f:2f:1b: 9d:4d:6e:64:cd:87:8c:05:70:28:75:26:07:45:d2: 1f:57:e2:2a:ec:91:5d:73:9e:aa:f8:1a:56:c7:0d: 3b:a1:73:14:ab:3c:3d:cf:11:43:00:18:dc:1f:2f: c4:09:2f:92:6a:19:9d:f8:77:ec:f0:4d:cd:56:a2: b1:73:f2:ad:e9:57:f8:a6:8c:db:85:af:bb:14:18: ef:29:0b:61:17:ea:47:d9:42:05:37:18:4f:7f:ad: f8:89:59:33:2d:ba:1a:4c:02:bf:e8:3e:4d:6c:2d: 4a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:8F:90:AE:69:24:AF:39:36:A6:11:4D:B8:77:C3:A2:7F:CA:4B:DB X509v3 Authority Key Identifier: keyid:9E:22:CC:CB:20:89:8F:95:64:7D:9A:55:FA:11:2A:BE:8C:E5:8E:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/efe21c69-7b77-43a0-92a6-f555b6ed1ffc/0/9E22CCCB20898F95647D9A55FA112ABE8CE58EEC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E22CCCB20898F95647D9A55FA112ABE8CE58EEC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/efe21c69-7b77-43a0-92a6-f555b6ed1ffc/0/3130332e3136332e3133382e302f32332d3234203d3e203535363838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.138.0/23 Signature Algorithm: sha256WithRSAEncryption 96:da:27:31:0b:e5:c3:e0:76:c1:19:5a:a7:79:87:61:22:b3: f4:37:6a:92:2b:70:3b:73:d0:9e:7c:1f:f8:3f:ed:96:4b:6c: f1:6d:ac:44:06:2f:66:f5:46:e6:1d:ae:97:4e:96:a1:3c:ff: 12:7e:c5:2c:3d:c8:60:ec:39:82:cf:8f:56:e6:8e:62:2b:7a: 98:90:ad:9c:08:07:93:84:9c:52:78:56:35:bc:f9:c8:aa:3d: 3b:2a:7b:50:54:7e:44:cd:6c:2b:36:c3:3c:2a:61:14:61:38: ec:d4:f1:97:4b:19:2d:32:c1:4b:16:a9:bb:cc:a2:bc:36:1e: 91:c8:75:d8:a3:8b:82:6b:6e:45:4a:f3:75:5b:01:1b:1d:d5: 3d:b1:a0:6d:35:0d:be:49:5e:37:fd:95:e8:32:1f:01:ed:35: b3:cd:0e:47:b8:eb:15:23:fd:91:cd:e1:15:79:78:59:31:ab: a5:87:45:1d:a8:16:9f:cb:bc:b3:28:04:57:df:1b:f9:eb:e0: de:fd:a7:30:c8:b9:d3:2f:b8:7a:e3:71:92:5f:0c:e3:94:2b: 32:22:d6:0e:eb:50:0f:7a:7f:e8:dd:3a:b6:c0:fc:ea:f6:40: ec:2a:2a:7f:58:90:fb:4b:eb:12:c7:e1:e2:3c:2a:82:dd:73: a0:48:68:fe -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfOEcz3NUHQwne9v6WZMSsGZRHf8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUUyMkNDQ0IyMDg5OEY5NTY0N0Q5QTU1RkExMTJBQkU4 Q0U1OEVFQzAeFw0yNDEyMTcyMzU1MDFaFw0yNTEyMTcwMDAwMDFaMDMxMTAvBgNV BAMTKERGOEY5MEFFNjkyNEFGMzkzNkE2MTE0REI4NzdDM0EyN0ZDQTRCREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJwYLiuwNjk6l9PXRYGK3qzYwu 6Wodq6wigSc8a2MlmGLwkluX4/Cs3JgaJJJV2oMlTBAnBUU7fwN6xXGjJbfw0T4k jiywTtr63Ti+YbqyEwKJwlfekNCHEzSlHBcvAowUQDAODJSHla3olpgSqMQeQxQB BxxZezhek6xHKQAFy44DgrUAQQMWqlPoOwBIFTkBRH8vG51NbmTNh4wFcCh1JgdF 0h9X4irskV1znqr4GlbHDTuhcxSrPD3PEUMAGNwfL8QJL5JqGZ34d+zwTc1WorFz 8q3pV/imjNuFr7sUGO8pC2EX6kfZQgU3GE9/rfiJWTMtuhpMAr/oPk1sLUoRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU34+Qrmkkrzk2phFNuHfDon/KS9swHwYDVR0j BBgwFoAUniLMyyCJj5VkfZpV+hEqvozljuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZmUyMWM2OS03Yjc3LTQzYTAtOTJhNi1mNTU1YjZlZDFmZmMvMC85RTIyQ0NDQjIw ODk4Rjk1NjQ3RDlBNTVGQTExMkFCRThDRTU4RUVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUUyMkNDQ0IyMDg5OEY5NTY0N0Q5QTU1RkExMTJBQkU4Q0U1 OEVFQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VmZTIxYzY5LTdiNzctNDNhMC05 MmE2LWY1NTViNmVkMWZmYy8wLzMxMzAzMzJlMzEzNjMzMmUzMTMzMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNTM1MzYzODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6OKMA0GCSqG SIb3DQEBCwUAA4IBAQCW2icxC+XD4HbBGVqneYdhIrP0N2qSK3A7c9CefB/4P+2W S2zxbaxEBi9m9UbmHa6XTpahPP8SfsUsPchg7DmCz49W5o5iK3qYkK2cCAeThJxS eFY1vPnIqj07KntQVH5EzWwrNsM8KmEUYTjs1PGXSxktMsFLFqm7zKK8Nh6RyHXY o4uCa25FSvN1WwEbHdU9saBtNQ2+SV43/ZXoMh8B7TWzzQ5HuOsVI/2RzeEVeXhZ Maulh0UdqBafy7yzKARX3xv56+De/acwyLnTL7h643GSXwzjlCsyItYO61APen/o 3Tq2wPzq9kDsKip/WJD7S+sSx+HiPCqC3XOgSGj+ -----END CERTIFICATE-----Generated at Sun Apr 6 05:50:23 2025 by rpki-client