$ rpki-client -vvf repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/3130332e3136392e3133342e302f32342d3234203d3e20313432333338.roa File: 3130332e3136392e3133342e302f32342d3234203d3e20313432333338.roa (raw, json) Hash identifier: Q4lh7hWjC8bc6v/wq2VxqnjdzK0RlcUZM7Z4cKuX1pw= Subject key identifier: 30:C2:B7:25:65:0D:47:87:6E:5D:2B:75:FE:93:A5:42:DD:35:45:F7 Certificate issuer: /CN=42CB30013F9704EFBDCF784FCD60289C7620A373 Certificate serial: 714B0943AE2B8E2F21A902C1DEEDD6B704F5E40B Authority key identifier: 42:CB:30:01:3F:97:04:EF:BD:CF:78:4F:CD:60:28:9C:76:20:A3:73 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CB30013F9704EFBDCF784FCD60289C7620A373.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/3130332e3136392e3133342e302f32342d3234203d3e20313432333338.roa Signing time: Thu 02 May 2024 11:02:05 +0000 ROA not before: Thu 02 May 2024 10:57:05 +0000 ROA not after: Thu 01 May 2025 11:02:05 +0000 asID: 142338 IP address blocks: 103.169.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/42CB30013F9704EFBDCF784FCD60289C7620A373.crl rsync://repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/42CB30013F9704EFBDCF784FCD60289C7620A373.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CB30013F9704EFBDCF784FCD60289C7620A373.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 11:46:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:4b:09:43:ae:2b:8e:2f:21:a9:02:c1:de:ed:d6:b7:04:f5:e4:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42CB30013F9704EFBDCF784FCD60289C7620A373 Validity Not Before: May 2 10:57:05 2024 GMT Not After : May 1 11:02:05 2025 GMT Subject: CN=30C2B725650D47876E5D2B75FE93A542DD3545F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:7f:e6:3c:e6:7f:34:fa:37:a9:2f:42:b1:51: 26:6e:b8:83:60:f4:e8:fd:26:84:8f:33:3d:5b:f7: 93:b4:28:0c:f0:80:0f:a8:7f:e7:1c:a9:32:0c:56: 21:d0:1f:06:26:d5:3d:4e:b2:5d:a5:19:2c:cc:90: ca:f9:f5:2a:4a:0e:fd:5c:d1:f7:1e:dd:de:9d:2f: 71:66:e8:1c:fa:0f:fc:37:de:0c:9d:0b:85:50:f9: 5f:28:c7:5d:4c:4d:4a:53:30:be:75:de:74:9d:2c: ae:bc:9e:91:76:40:2d:02:9c:78:3a:53:0c:a9:4e: ee:5b:e2:0a:70:11:c9:2b:94:f0:51:d6:ac:e0:2f: 86:6f:04:2e:f2:ac:e5:c3:85:6a:84:88:a1:33:49: 46:aa:56:ce:3c:2d:f7:3a:9e:83:29:67:c1:3c:95: f4:46:35:6f:91:af:2f:d6:61:74:38:35:f6:ef:1e: c7:69:bd:83:74:e4:96:ae:f8:ad:15:af:47:a8:6b: e9:5d:a3:e9:dc:6a:54:3b:5d:83:80:8c:72:27:3a: 58:ab:65:fe:5f:41:a7:f1:f0:6e:61:a7:a1:c4:94: a7:a6:b9:eb:d7:c3:5d:52:8e:b9:26:6c:64:cd:e2: 3b:98:00:98:ff:07:fe:af:8c:f2:c8:fb:6a:c9:8c: 20:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:C2:B7:25:65:0D:47:87:6E:5D:2B:75:FE:93:A5:42:DD:35:45:F7 X509v3 Authority Key Identifier: keyid:42:CB:30:01:3F:97:04:EF:BD:CF:78:4F:CD:60:28:9C:76:20:A3:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/42CB30013F9704EFBDCF784FCD60289C7620A373.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CB30013F9704EFBDCF784FCD60289C7620A373.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/3130332e3136392e3133342e302f32342d3234203d3e20313432333338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.134.0/24 Signature Algorithm: sha256WithRSAEncryption 60:2e:5d:81:c2:9d:18:63:02:21:90:c5:15:a4:3f:11:dd:9e: 22:b4:36:a9:e6:cd:2f:27:2e:ba:fd:21:90:13:11:f5:a8:5d: 70:05:3b:0c:05:1f:bd:bc:25:59:d4:cf:06:ca:e9:40:09:dc: 08:ee:71:03:b8:55:19:c4:47:80:a0:5f:de:4c:65:7c:33:be: 04:97:25:30:c8:3a:13:90:18:c2:0f:42:32:13:f7:b0:2c:9e: 87:5b:e8:47:ba:64:91:b1:66:e8:06:67:b1:7a:4c:d9:90:00: f3:7e:64:85:9d:39:0e:ca:66:17:f5:e8:0a:af:87:0f:44:56: 0e:7c:be:e0:69:5f:e4:45:5d:6a:7a:4c:1e:6f:df:69:df:4c: b6:ca:27:ff:11:27:3d:27:5e:51:f5:27:ae:33:a6:b0:f8:b7: 40:c4:78:2e:f6:5f:d8:3d:f5:d4:49:f8:88:d6:52:d3:07:19: f0:61:13:ee:81:1c:2e:90:c0:8a:4a:5d:b5:82:3a:58:e3:f0: 55:c5:20:99:fe:63:a5:9d:0b:4a:10:fb:b4:86:02:37:51:6c: 88:1f:74:7f:9a:08:4d:98:6b:d7:b7:e6:bd:d9:55:ce:cb:1a: 40:69:53:3c:83:13:3e:a9:db:d7:a2:11:4c:72:3f:d5:04:08: 10:50:11:c8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcUsJQ64rji8hqQLB3u3WtwT15AswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJDQjMwMDEzRjk3MDRFRkJEQ0Y3ODRGQ0Q2MDI4OUM3 NjIwQTM3MzAeFw0yNDA1MDIxMDU3MDVaFw0yNTA1MDExMTAyMDVaMDMxMTAvBgNV BAMTKDMwQzJCNzI1NjUwRDQ3ODc2RTVEMkI3NUZFOTNBNTQyREQzNTQ1RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKf+Y85n80+jepL0KxUSZuuINg 9Oj9JoSPMz1b95O0KAzwgA+of+ccqTIMViHQHwYm1T1Osl2lGSzMkMr59SpKDv1c 0fce3d6dL3Fm6Bz6D/w33gydC4VQ+V8ox11MTUpTML513nSdLK68npF2QC0CnHg6 UwypTu5b4gpwEckrlPBR1qzgL4ZvBC7yrOXDhWqEiKEzSUaqVs48Lfc6noMpZ8E8 lfRGNW+Rry/WYXQ4NfbvHsdpvYN05Jau+K0Vr0eoa+ldo+ncalQ7XYOAjHInOlir Zf5fQafx8G5hp6HElKemuevXw11SjrkmbGTN4juYAJj/B/6vjPLI+2rJjCDLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUMMK3JWUNR4duXSt1/pOlQt01RfcwHwYDVR0j BBgwFoAUQsswAT+XBO+9z3hPzWAonHYgo3MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OTAwM2Q2Yy05NWYxLTQ3YTQtOWQ1ZC1mN2I0OGNhYWE3ZjQvMC80MkNCMzAwMTNG OTcwNEVGQkRDRjc4NEZDRDYwMjg5Qzc2MjBBMzczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDJDQjMwMDEzRjk3MDRFRkJEQ0Y3ODRGQ0Q2MDI4OUM3NjIw QTM3My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5MDAzZDZjLTk1ZjEtNDdhNC05 ZDVkLWY3YjQ4Y2FhYTdmNC8wLzMxMzAzMzJlMzEzNjM5MmUzMTMzMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzMzMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqYYwDQYJ KoZIhvcNAQELBQADggEBAGAuXYHCnRhjAiGQxRWkPxHdniK0NqnmzS8nLrr9IZAT EfWoXXAFOwwFH728JVnUzwbK6UAJ3AjucQO4VRnER4CgX95MZXwzvgSXJTDIOhOQ GMIPQjIT97Asnodb6Ee6ZJGxZugGZ7F6TNmQAPN+ZIWdOQ7KZhf16Aqvhw9EVg58 vuBpX+RFXWp6TB5v32nfTLbKJ/8RJz0nXlH1J64zprD4t0DEeC72X9g99dRJ+IjW UtMHGfBhE+6BHC6QwIpKXbWCOljj8FXFIJn+Y6WdC0oQ+7SGAjdRbIgfdH+aCE2Y a9e35r3ZVc7LGkBpUzyDEz6p29eiEUxyP9UECBBQEcg= -----END CERTIFICATE-----Generated at Fri Feb 21 11:20:55 2025 by rpki-client