$ rpki-client -vvf repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e32382e3130372e302f32342d3234203d3e203538343736.roa File: 3130332e32382e3130372e302f32342d3234203d3e203538343736.roa (raw, json) Hash identifier: P7RUWY6qH7oEO1y5dEH1xpvQBN+949irjZIivcgB6do= Subject key identifier: FA:D6:12:2A:98:5F:37:14:4B:BA:49:EC:D8:EC:ED:C5:89:9B:FF:C4 Certificate issuer: /CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E Certificate serial: 329AADA9A8A7FFE715A772538EA955C8FE420D6C Authority key identifier: B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e32382e3130372e302f32342d3234203d3e203538343736.roa Signing time: Mon 01 Jul 2024 01:05:20 +0000 ROA not before: Mon 01 Jul 2024 01:00:20 +0000 ROA not after: Mon 30 Jun 2025 01:05:20 +0000 asID: 58476 IP address blocks: 103.28.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Mar 2025 17:56:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:9a:ad:a9:a8:a7:ff:e7:15:a7:72:53:8e:a9:55:c8:fe:42:0d:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E Validity Not Before: Jul 1 01:00:20 2024 GMT Not After : Jun 30 01:05:20 2025 GMT Subject: CN=FAD6122A985F37144BBA49ECD8ECEDC5899BFFC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:72:e3:22:1b:37:07:15:43:2a:f7:3b:73:be: e3:3a:e1:f6:43:44:ae:d2:74:13:38:a9:dd:7e:fe: 3e:e4:8d:bc:fe:67:77:d6:1c:d9:e9:6c:7c:01:0f: f8:f8:19:61:40:62:48:74:79:b0:3e:6f:ee:a7:a2: 5b:7f:97:ed:fa:b1:af:bb:de:a5:00:3c:b4:46:ed: 99:63:d4:d2:a8:01:88:7e:e8:cc:0f:50:a3:ca:a4: 64:cd:1e:f3:af:ed:51:0a:70:7d:b5:8e:38:c7:fb: ac:5d:ac:e0:21:08:69:e9:63:f9:96:87:b1:06:2b: 39:8f:ff:32:9b:e7:04:48:65:af:0e:99:11:46:24: 97:5a:13:48:fa:85:44:d3:00:df:d1:62:78:61:06: 9d:f4:ed:d8:4e:2b:e7:93:72:5c:4d:c8:af:87:32: 38:c7:40:7a:9a:8a:35:83:33:a8:76:f6:11:c4:a3: 52:ac:09:6c:82:d0:52:e8:ee:b4:6e:6c:41:23:c6: 5a:1f:30:4e:5f:a9:ef:d3:4a:ff:7e:72:fe:e6:72: 01:02:b3:9a:28:ce:e1:27:d2:bc:e7:96:81:cd:2b: 63:fb:e9:c6:16:63:42:5f:93:d1:db:67:4a:b6:ac: fb:7a:1a:95:b4:48:a6:3d:60:2d:75:dd:87:ab:23: 6b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:D6:12:2A:98:5F:37:14:4B:BA:49:EC:D8:EC:ED:C5:89:9B:FF:C4 X509v3 Authority Key Identifier: keyid:B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e32382e3130372e302f32342d3234203d3e203538343736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.107.0/24 Signature Algorithm: sha256WithRSAEncryption 13:04:6d:7a:83:b8:3a:9f:e5:81:0b:3f:81:69:71:8c:dc:5f: 27:33:9a:ef:e2:7f:1f:9b:9a:9b:ff:72:9b:22:6c:16:64:f0: 94:35:5e:9c:b1:06:bc:ec:09:fe:43:40:43:2d:41:21:a2:1b: e5:fd:d8:71:35:9a:f1:2f:07:85:4b:25:99:e3:d4:4f:fa:b3: 26:44:d2:22:e0:0c:9b:63:03:95:ff:90:8b:8b:ee:61:d0:18: b6:f0:01:00:48:28:9e:0d:43:45:d3:5a:93:73:34:94:82:64: 53:16:e4:f5:df:e0:8c:d8:be:e0:a5:33:1f:d3:df:72:63:67: 10:aa:d0:80:00:03:d0:02:bc:85:11:21:1e:4f:53:43:62:5c: b7:4f:85:9b:78:5f:2a:ce:b2:6c:0f:b0:2c:49:8d:5b:51:d2: 3b:28:a1:6a:d3:7e:e7:99:e0:2d:f7:f1:b3:c8:bc:25:fd:db: 66:c1:ea:93:7c:76:79:f5:e4:23:38:1d:6b:12:fc:2f:04:cb: c4:e2:98:a2:5b:79:6f:01:36:3b:5e:69:f6:fa:a6:69:f4:f9: 94:f9:87:c4:81:a3:ac:37:58:99:21:ce:e8:76:81:df:3e:e6: 4e:7e:2f:5e:e4:a3:6f:86:4c:1d:c0:7c:bf:f9:0f:d8:c1:f8: b1:28:9b:4b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMpqtqain/+cVp3JTjqlVyP5CDWwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE0NEU0RUIyOEY2OUQ5Qjc2QzBDMjQ5OUJGRDdCM0VD NTAzRUYzRTAeFw0yNDA3MDEwMTAwMjBaFw0yNTA2MzAwMTA1MjBaMDMxMTAvBgNV BAMTKEZBRDYxMjJBOTg1RjM3MTQ0QkJBNDlFQ0Q4RUNFREM1ODk5QkZGQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDcuMiGzcHFUMq9ztzvuM64fZD RK7SdBM4qd1+/j7kjbz+Z3fWHNnpbHwBD/j4GWFAYkh0ebA+b+6nolt/l+36sa+7 3qUAPLRG7Zlj1NKoAYh+6MwPUKPKpGTNHvOv7VEKcH21jjjH+6xdrOAhCGnpY/mW h7EGKzmP/zKb5wRIZa8OmRFGJJdaE0j6hUTTAN/RYnhhBp307dhOK+eTclxNyK+H MjjHQHqaijWDM6h29hHEo1KsCWyC0FLo7rRubEEjxlofME5fqe/TSv9+cv7mcgEC s5oozuEn0rznloHNK2P76cYWY0Jfk9HbZ0q2rPt6GpW0SKY9YC113YerI2s/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+tYSKphfNxRLukns2OztxYmb/8QwHwYDVR0j BBgwFoAUsUTk6yj2nZt2wMJJm/17PsUD7z4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m N2Y0OTA2OC1jMGNhLTRhMjEtOWE4YS1lZWQyNmZjZGQxYWEvMC9CMTQ0RTRFQjI4 RjY5RDlCNzZDMEMyNDk5QkZEN0IzRUM1MDNFRjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjE0NEU0RUIyOEY2OUQ5Qjc2QzBDMjQ5OUJGRDdCM0VDNTAz RUYzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3ZjQ5MDY4LWMwY2EtNGEyMS05 YThhLWVlZDI2ZmNkZDFhYS8wLzMxMzAzMzJlMzIzODJlMzEzMDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGccazANBgkqhkiG 9w0BAQsFAAOCAQEAEwRteoO4Op/lgQs/gWlxjNxfJzOa7+J/H5uam/9ymyJsFmTw lDVenLEGvOwJ/kNAQy1BIaIb5f3YcTWa8S8HhUslmePUT/qzJkTSIuAMm2MDlf+Q i4vuYdAYtvABAEgong1DRdNak3M0lIJkUxbk9d/gjNi+4KUzH9PfcmNnEKrQgAAD 0AK8hREhHk9TQ2Jct0+Fm3hfKs6ybA+wLEmNW1HSOyihatN+55ngLffxs8i8Jf3b ZsHqk3x2efXkIzgdaxL8LwTLxOKYolt5bwE2O15p9vqmafT5lPmHxIGjrDdYmSHO 6HaB3z7mTn4vXuSjb4ZMHcB8v/kP2MH4sSibSw== -----END CERTIFICATE-----Generated at Tue Mar 11 05:03:36 2025 by rpki-client