$ rpki-client -vvf repo-rpki.idnic.net/repo/f326e4ca-54e4-48bc-9e79-a62efaead032/0/3130332e3131362e3136382e302f32342d3234203d3e20313337333731.roa File: 3130332e3131362e3136382e302f32342d3234203d3e20313337333731.roa (raw, json) Hash identifier: gC29j+yO4i7uQ2lQ5TlSgcpEgKWPrlDicf9vHKUSroM= Subject key identifier: 2E:D5:CC:F2:9E:A8:B1:C4:4F:2D:0B:FF:32:3E:F4:B3:E4:8A:2C:75 Certificate issuer: /CN=B58E674FE83A74667FEF1B69A07EAAFA02B2ACA2 Certificate serial: 4EACCD36DDA31F2251584349E3AC9D584061B9C1 Authority key identifier: B5:8E:67:4F:E8:3A:74:66:7F:EF:1B:69:A0:7E:AA:FA:02:B2:AC:A2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B58E674FE83A74667FEF1B69A07EAAFA02B2ACA2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f326e4ca-54e4-48bc-9e79-a62efaead032/0/3130332e3131362e3136382e302f32342d3234203d3e20313337333731.roa Signing time: Fri 20 Dec 2024 07:03:01 +0000 ROA not before: Fri 20 Dec 2024 06:58:01 +0000 ROA not after: Fri 19 Dec 2025 07:03:01 +0000 asID: 137371 IP address blocks: 103.116.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f326e4ca-54e4-48bc-9e79-a62efaead032/0/B58E674FE83A74667FEF1B69A07EAAFA02B2ACA2.crl rsync://repo-rpki.idnic.net/repo/f326e4ca-54e4-48bc-9e79-a62efaead032/0/B58E674FE83A74667FEF1B69A07EAAFA02B2ACA2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B58E674FE83A74667FEF1B69A07EAAFA02B2ACA2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 04:29:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:ac:cd:36:dd:a3:1f:22:51:58:43:49:e3:ac:9d:58:40:61:b9:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B58E674FE83A74667FEF1B69A07EAAFA02B2ACA2 Validity Not Before: Dec 20 06:58:01 2024 GMT Not After : Dec 19 07:03:01 2025 GMT Subject: CN=2ED5CCF29EA8B1C44F2D0BFF323EF4B3E48A2C75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:46:20:3e:22:08:4a:f7:50:f8:25:81:5a:1a: de:81:c8:4d:8e:f5:8b:e9:13:04:c1:e5:92:90:23: 86:f0:cc:0c:83:59:b2:dc:ef:5f:84:17:1b:e9:08: ef:b6:cb:3c:bf:2f:e6:9d:9b:af:35:28:c9:8c:73: ec:63:14:68:fa:84:ce:2f:24:24:97:6c:05:68:d9: d8:c9:ae:14:e4:df:c1:39:ab:9e:73:d7:c3:57:c4: 7b:e0:5a:2d:3c:b0:94:da:c6:10:7e:87:af:99:7c: 5d:46:31:9f:a3:c9:16:5b:c1:99:f5:90:09:c0:3f: a6:79:18:f6:38:fe:2b:72:e8:80:73:d4:cb:1d:ae: 6d:d2:fb:5e:ec:ed:1e:9f:9b:0d:51:d1:04:3a:34: 32:a7:bb:e5:64:fa:a2:55:9d:52:fb:58:5f:2e:c8: 48:8f:23:60:ec:f3:d7:ad:fc:c5:7f:99:64:0f:47: e3:cf:a8:10:62:7f:ea:44:c1:dd:31:26:6c:1d:07: 60:f0:23:f0:07:6f:db:9e:fe:f9:02:0d:15:f3:c5: 6f:0c:6a:19:e8:a8:bd:e3:f8:8f:fd:08:ea:a1:9a: 3e:89:2a:24:dd:71:76:bb:17:c5:e2:22:9d:60:ca: 25:78:55:0e:3e:e7:7c:54:b4:5b:33:19:a8:b7:87: 2f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:D5:CC:F2:9E:A8:B1:C4:4F:2D:0B:FF:32:3E:F4:B3:E4:8A:2C:75 X509v3 Authority Key Identifier: keyid:B5:8E:67:4F:E8:3A:74:66:7F:EF:1B:69:A0:7E:AA:FA:02:B2:AC:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f326e4ca-54e4-48bc-9e79-a62efaead032/0/B58E674FE83A74667FEF1B69A07EAAFA02B2ACA2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B58E674FE83A74667FEF1B69A07EAAFA02B2ACA2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f326e4ca-54e4-48bc-9e79-a62efaead032/0/3130332e3131362e3136382e302f32342d3234203d3e20313337333731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.116.168.0/24 Signature Algorithm: sha256WithRSAEncryption 81:20:30:29:b0:07:5d:fe:48:30:20:68:2a:5d:39:22:4b:08: f4:46:0a:8f:f3:95:3a:3c:af:e0:3e:eb:09:bc:f1:52:52:2c: 3f:43:0c:52:5c:ef:78:91:41:de:15:1d:5c:58:12:b8:e4:73: e1:da:7d:cb:bd:25:b6:bb:d1:27:e8:a2:0e:41:55:c6:df:8f: 23:14:7c:1b:ce:88:c3:c4:d4:03:21:63:85:b8:f1:2b:ba:92: 22:04:97:47:d5:5a:9a:3b:b6:4b:ed:28:9b:1a:3f:a5:82:c9: c4:e3:b2:75:d0:f5:7c:b3:20:ca:e4:fc:39:34:a0:15:e8:f6: 70:76:3d:aa:de:90:57:e1:45:24:81:98:cd:40:98:92:a1:2b: 87:ff:e9:f2:32:35:cd:3a:21:27:79:3e:79:0e:0b:14:01:05: 30:88:f0:9f:83:eb:b6:c8:45:50:01:f3:7b:ee:5a:b0:f3:37: cd:44:2c:b6:f7:66:85:59:42:d4:7c:2a:9f:f7:ea:cf:e0:1a: 08:2d:3a:8f:97:a6:0c:c1:7c:66:5d:46:f5:ae:c5:2f:50:76: c4:f3:20:0a:8e:30:dd:07:de:79:ad:fe:23:e0:4b:fd:17:b4: ee:b8:02:8d:6e:d3:c1:e2:01:9e:1f:ad:1d:c2:b3:88:11:09: 3a:cc:64:c7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTqzNNt2jHyJRWENJ46ydWEBhucEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjU4RTY3NEZFODNBNzQ2NjdGRUYxQjY5QTA3RUFBRkEw MkIyQUNBMjAeFw0yNDEyMjAwNjU4MDFaFw0yNTEyMTkwNzAzMDFaMDMxMTAvBgNV BAMTKDJFRDVDQ0YyOUVBOEIxQzQ0RjJEMEJGRjMyM0VGNEIzRTQ4QTJDNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7RiA+IghK91D4JYFaGt6ByE2O 9YvpEwTB5ZKQI4bwzAyDWbLc71+EFxvpCO+2yzy/L+adm681KMmMc+xjFGj6hM4v JCSXbAVo2djJrhTk38E5q55z18NXxHvgWi08sJTaxhB+h6+ZfF1GMZ+jyRZbwZn1 kAnAP6Z5GPY4/ity6IBz1Msdrm3S+17s7R6fmw1R0QQ6NDKnu+Vk+qJVnVL7WF8u yEiPI2Ds89et/MV/mWQPR+PPqBBif+pEwd0xJmwdB2DwI/AHb9ue/vkCDRXzxW8M ahnoqL3j+I/9COqhmj6JKiTdcXa7F8XiIp1gyiV4VQ4+53xUtFszGai3hy83AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQULtXM8p6oscRPLQv/Mj70s+SKLHUwHwYDVR0j BBgwFoAUtY5nT+g6dGZ/7xtpoH6q+gKyrKIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzI2ZTRjYS01NGU0LTQ4YmMtOWU3OS1hNjJlZmFlYWQwMzIvMC9CNThFNjc0RkU4 M0E3NDY2N0ZFRjFCNjlBMDdFQUFGQTAyQjJBQ0EyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjU4RTY3NEZFODNBNzQ2NjdGRUYxQjY5QTA3RUFBRkEwMkIy QUNBMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzMjZlNGNhLTU0ZTQtNDhiYy05 ZTc5LWE2MmVmYWVhZDAzMi8wLzMxMzAzMzJlMzEzMTM2MmUzMTM2MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzM3MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABndKgwDQYJ KoZIhvcNAQELBQADggEBAIEgMCmwB13+SDAgaCpdOSJLCPRGCo/zlTo8r+A+6wm8 8VJSLD9DDFJc73iRQd4VHVxYErjkc+Hafcu9Jba70Sfoog5BVcbfjyMUfBvOiMPE 1AMhY4W48Su6kiIEl0fVWpo7tkvtKJsaP6WCycTjsnXQ9XyzIMrk/Dk0oBXo9nB2 ParekFfhRSSBmM1AmJKhK4f/6fIyNc06ISd5PnkOCxQBBTCI8J+D67bIRVAB83vu WrDzN81ELLb3ZoVZQtR8Kp/36s/gGggtOo+XpgzBfGZdRvWuxS9QdsTzIAqOMN0H 3nmt/iPgS/0XtO64Ao1u08HiAZ4frR3Cs4gRCTrMZMc= -----END CERTIFICATE-----Generated at Sun Apr 6 07:44:02 2025 by rpki-client