$ rpki-client -vvf repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/3130332e3136392e3133342e302f32332d3233203d3e20313432333338.roa File: 3130332e3136392e3133342e302f32332d3233203d3e20313432333338.roa (raw, json) Hash identifier: o2UD3kyV51bD7C8hSauEceV62JNBo31NQWTgcC8C+Zg= Subject key identifier: 97:06:25:A2:60:C5:87:82:BF:1B:D5:74:77:04:65:68:17:77:C8:B3 Certificate issuer: /CN=42CB30013F9704EFBDCF784FCD60289C7620A373 Certificate serial: 3F83FFF1A7CFDD62DE8B95398B239013E208CAD4 Authority key identifier: 42:CB:30:01:3F:97:04:EF:BD:CF:78:4F:CD:60:28:9C:76:20:A3:73 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CB30013F9704EFBDCF784FCD60289C7620A373.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/3130332e3136392e3133342e302f32332d3233203d3e20313432333338.roa Signing time: Thu 02 May 2024 10:00:02 +0000 ROA not before: Thu 02 May 2024 09:55:02 +0000 ROA not after: Thu 01 May 2025 10:00:02 +0000 asID: 142338 IP address blocks: 103.169.134.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/42CB30013F9704EFBDCF784FCD60289C7620A373.crl rsync://repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/42CB30013F9704EFBDCF784FCD60289C7620A373.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CB30013F9704EFBDCF784FCD60289C7620A373.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 11:46:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:83:ff:f1:a7:cf:dd:62:de:8b:95:39:8b:23:90:13:e2:08:ca:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42CB30013F9704EFBDCF784FCD60289C7620A373 Validity Not Before: May 2 09:55:02 2024 GMT Not After : May 1 10:00:02 2025 GMT Subject: CN=970625A260C58782BF1BD574770465681777C8B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:7a:f3:1a:c7:57:b8:de:8f:c9:c5:0b:5e:a3: 20:34:6a:57:4b:a9:42:6f:41:86:b3:10:3b:b5:f5: 30:d1:6a:91:d6:aa:ae:8c:8c:ce:2b:33:26:9a:d7: bc:39:e5:11:c0:ad:b6:24:e2:29:d0:6f:1d:5e:6b: 33:6f:af:06:a1:26:13:e5:73:92:20:31:e9:6e:61: 43:46:fb:c3:87:da:00:80:aa:64:1e:81:78:c5:fc: 64:b6:be:2a:5c:b8:74:b0:dc:7e:52:fa:94:26:8a: d1:f8:3d:d8:ca:d8:71:5f:4c:9b:89:2c:a5:1a:8a: e8:43:70:40:7b:4c:ee:f8:52:f1:19:77:d5:90:32: 65:a2:6c:aa:c3:5e:6d:b7:e0:f2:f4:31:76:8f:6e: 6c:66:d3:b5:f7:65:4a:46:37:f1:48:c4:70:51:81: 8f:a2:ac:6c:b1:b7:4d:59:84:69:78:55:31:3c:49: 89:36:7c:30:27:93:66:a3:c5:dd:af:d8:b5:62:75: 3b:e3:37:6f:c0:71:03:f2:63:e9:d3:92:9f:d8:c3: 42:c5:8e:d7:b8:06:9d:11:40:75:bb:e1:b0:2a:57: 70:18:3c:2a:46:6f:19:04:3d:0a:02:56:45:7b:c4: ca:18:b6:cd:f0:e4:b2:2a:b6:29:b4:98:de:96:13: bc:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:06:25:A2:60:C5:87:82:BF:1B:D5:74:77:04:65:68:17:77:C8:B3 X509v3 Authority Key Identifier: keyid:42:CB:30:01:3F:97:04:EF:BD:CF:78:4F:CD:60:28:9C:76:20:A3:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/42CB30013F9704EFBDCF784FCD60289C7620A373.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CB30013F9704EFBDCF784FCD60289C7620A373.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/3130332e3136392e3133342e302f32332d3233203d3e20313432333338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.134.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:f3:d8:c6:a2:b9:02:f3:8a:aa:bf:6b:4f:01:bf:aa:09:a4: 7b:e6:d5:69:84:3c:76:d8:9c:8e:87:e4:1d:7c:70:0b:16:c3: 8a:51:b7:c8:b2:35:ae:55:fc:91:43:1d:0c:2a:2f:f5:40:a4: 7b:91:73:e8:64:87:93:e0:06:2d:b9:0e:c0:be:41:79:8e:6e: 68:0c:42:62:80:cb:9a:3a:96:5a:09:92:77:58:41:b6:ad:2e: bb:c5:4f:b6:81:cd:06:3b:4d:21:ae:06:51:4e:36:b5:18:49: 27:b1:9d:99:e3:3b:53:3c:63:53:c7:11:ef:e5:28:92:aa:24: 3f:6e:a7:c2:7f:cb:a9:10:45:a0:5d:4f:97:70:d9:d7:93:4d: 3c:4e:4e:75:a8:05:9b:f5:65:8f:b9:93:7d:0f:1c:7f:c5:6f: b8:2c:51:01:dc:11:29:7f:df:04:59:8a:9d:65:9b:d9:52:45: b8:c6:75:6a:af:71:2c:e0:cc:09:e7:07:2d:33:ba:ff:e4:0c: 29:91:70:27:87:8a:17:73:23:5a:11:26:be:ae:d2:11:a7:ab: d3:cb:f6:d5:a5:7e:28:36:0b:99:34:96:40:58:40:31:70:2d: 03:27:c2:ac:e9:a6:b2:dd:8d:65:6e:37:f5:0c:fd:b7:87:d2: f0:ef:e0:8f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUP4P/8afP3WLei5U5iyOQE+IIytQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJDQjMwMDEzRjk3MDRFRkJEQ0Y3ODRGQ0Q2MDI4OUM3 NjIwQTM3MzAeFw0yNDA1MDIwOTU1MDJaFw0yNTA1MDExMDAwMDJaMDMxMTAvBgNV BAMTKDk3MDYyNUEyNjBDNTg3ODJCRjFCRDU3NDc3MDQ2NTY4MTc3N0M4QjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXevMax1e43o/JxQteoyA0aldL qUJvQYazEDu19TDRapHWqq6MjM4rMyaa17w55RHArbYk4inQbx1eazNvrwahJhPl c5IgMeluYUNG+8OH2gCAqmQegXjF/GS2vipcuHSw3H5S+pQmitH4PdjK2HFfTJuJ LKUaiuhDcEB7TO74UvEZd9WQMmWibKrDXm234PL0MXaPbmxm07X3ZUpGN/FIxHBR gY+irGyxt01ZhGl4VTE8SYk2fDAnk2ajxd2v2LVidTvjN2/AcQPyY+nTkp/Yw0LF jte4Bp0RQHW74bAqV3AYPCpGbxkEPQoCVkV7xMoYts3w5LIqtim0mN6WE7yvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUlwYlomDFh4K/G9V0dwRlaBd3yLMwHwYDVR0j BBgwFoAUQsswAT+XBO+9z3hPzWAonHYgo3MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OTAwM2Q2Yy05NWYxLTQ3YTQtOWQ1ZC1mN2I0OGNhYWE3ZjQvMC80MkNCMzAwMTNG OTcwNEVGQkRDRjc4NEZDRDYwMjg5Qzc2MjBBMzczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDJDQjMwMDEzRjk3MDRFRkJEQ0Y3ODRGQ0Q2MDI4OUM3NjIw QTM3My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5MDAzZDZjLTk1ZjEtNDdhNC05 ZDVkLWY3YjQ4Y2FhYTdmNC8wLzMxMzAzMzJlMzEzNjM5MmUzMTMzMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzIzMzMzMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqYYwDQYJ KoZIhvcNAQELBQADggEBAFvz2MaiuQLziqq/a08Bv6oJpHvm1WmEPHbYnI6H5B18 cAsWw4pRt8iyNa5V/JFDHQwqL/VApHuRc+hkh5PgBi25DsC+QXmObmgMQmKAy5o6 lloJkndYQbatLrvFT7aBzQY7TSGuBlFONrUYSSexnZnjO1M8Y1PHEe/lKJKqJD9u p8J/y6kQRaBdT5dw2deTTTxOTnWoBZv1ZY+5k30PHH/Fb7gsUQHcESl/3wRZip1l m9lSRbjGdWqvcSzgzAnnBy0zuv/kDCmRcCeHihdzI1oRJr6u0hGnq9PL9tWlfig2 C5k0lkBYQDFwLQMnwqzpprLdjWVuN/UM/beH0vDv4I8= -----END CERTIFICATE-----Generated at Fri Feb 21 11:07:12 2025 by rpki-client