$ rpki-client -vvf repo-rpki.idnic.net/repo/2677b00c-dc2c-419c-a100-50b2fc7b1bc1/0/3130332e3136342e31362e302f32342d3234203d3e203137393935.roa File: 3130332e3136342e31362e302f32342d3234203d3e203137393935.roa (raw, json) Hash identifier: NZRvAk91/qS+2e4QEna7jFq1miR9hnIOcdT25pcAymk= Subject key identifier: 63:91:EB:2F:BB:45:23:2E:E4:9E:AB:0F:B6:25:60:93:31:18:DD:D1 Certificate issuer: /CN=A51BB787CE84E18D5A972818D11BBD38618D7D30 Certificate serial: 10D1076EF1A94E1B0BBFE4AACB2DC4DD2E66C41B Authority key identifier: A5:1B:B7:87:CE:84:E1:8D:5A:97:28:18:D1:1B:BD:38:61:8D:7D:30 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51BB787CE84E18D5A972818D11BBD38618D7D30.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2677b00c-dc2c-419c-a100-50b2fc7b1bc1/0/3130332e3136342e31362e302f32342d3234203d3e203137393935.roa Signing time: Tue 25 Mar 2025 05:00:01 +0000 ROA not before: Tue 25 Mar 2025 04:55:01 +0000 ROA not after: Tue 24 Mar 2026 05:00:01 +0000 asID: 17995 IP address blocks: 103.164.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2677b00c-dc2c-419c-a100-50b2fc7b1bc1/0/A51BB787CE84E18D5A972818D11BBD38618D7D30.crl rsync://repo-rpki.idnic.net/repo/2677b00c-dc2c-419c-a100-50b2fc7b1bc1/0/A51BB787CE84E18D5A972818D11BBD38618D7D30.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51BB787CE84E18D5A972818D11BBD38618D7D30.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:d1:07:6e:f1:a9:4e:1b:0b:bf:e4:aa:cb:2d:c4:dd:2e:66:c4:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A51BB787CE84E18D5A972818D11BBD38618D7D30 Validity Not Before: Mar 25 04:55:01 2025 GMT Not After : Mar 24 05:00:01 2026 GMT Subject: CN=6391EB2FBB45232EE49EAB0FB62560933118DDD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:d1:fc:2d:05:9b:cf:fa:3c:06:55:e1:0c:5e: 89:03:f3:70:4e:d5:82:b0:da:48:f1:01:ed:d2:67: 47:1c:9d:2f:2d:e7:be:9b:59:a1:e8:59:bf:38:bd: 2d:79:b2:05:47:92:0b:75:90:91:5f:98:e3:6a:a5: 9b:9f:65:d1:34:63:84:fb:1c:59:4f:5d:46:f2:11: c3:90:06:ad:0e:89:4d:09:1b:99:a8:1e:7d:85:b8: ca:bf:ef:78:1c:a4:99:58:85:44:77:b2:09:f2:f8: 98:24:79:cb:2d:ab:19:07:de:ef:e8:44:62:ee:41: 76:a5:8d:4a:38:f0:90:bb:c5:c8:e1:8e:62:6f:a1: c7:66:f4:f6:5e:af:45:2c:3a:31:8f:f8:20:a8:c6: 48:b7:b4:01:fd:25:fc:57:0a:04:5d:e6:ec:bb:39: 24:81:43:b2:07:c4:38:41:75:63:9f:ae:89:6d:f0: 15:f6:2e:ff:2a:b5:fe:f6:40:9e:93:71:29:35:25: a9:cc:13:a9:13:3c:15:39:1e:77:04:db:e5:c0:56: 47:32:fb:b2:d1:4b:d5:d1:25:bf:5d:56:59:3d:da: b3:ae:5a:69:23:36:3a:91:0e:66:5e:aa:d8:20:a2: 3e:f2:d8:42:45:7a:48:9a:61:d4:68:39:3c:3a:a0: 9f:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:91:EB:2F:BB:45:23:2E:E4:9E:AB:0F:B6:25:60:93:31:18:DD:D1 X509v3 Authority Key Identifier: keyid:A5:1B:B7:87:CE:84:E1:8D:5A:97:28:18:D1:1B:BD:38:61:8D:7D:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2677b00c-dc2c-419c-a100-50b2fc7b1bc1/0/A51BB787CE84E18D5A972818D11BBD38618D7D30.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51BB787CE84E18D5A972818D11BBD38618D7D30.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2677b00c-dc2c-419c-a100-50b2fc7b1bc1/0/3130332e3136342e31362e302f32342d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.16.0/24 Signature Algorithm: sha256WithRSAEncryption 20:cb:32:3e:21:d5:d0:ee:57:f0:72:32:08:6e:d6:b8:9f:07: 18:cb:05:5e:d9:bc:82:5f:40:5e:fb:61:27:60:bf:97:68:f4: cb:ec:13:39:01:b6:99:fd:b9:a4:1b:5d:6d:6a:16:67:05:84: 9c:c8:76:a9:98:c1:7b:1e:2a:3c:57:21:99:8c:79:64:91:a8: e7:44:ac:67:42:1f:51:84:8a:d0:cd:30:31:aa:e9:3d:e5:8f: 03:0e:c9:5f:bd:71:42:a3:b2:7e:b2:22:da:00:7d:be:a0:5d: f9:58:a5:9a:c3:63:ac:53:91:fe:bb:ea:dc:8f:20:d4:c5:7f: 85:f0:a0:78:40:8c:69:1e:62:fa:11:24:2e:fa:56:d9:a5:67: 47:c7:79:2c:26:55:77:55:47:74:f2:41:86:69:15:44:c9:63: cc:39:3f:b1:09:b8:6e:7e:c8:27:98:c0:d5:7d:93:c6:d6:a7: 49:00:21:74:65:fa:d5:08:ef:38:3d:e1:0d:e5:73:9f:f1:a7: e8:b6:7c:5e:9a:23:7e:f8:09:7b:30:7a:e3:42:8a:d1:67:14: d5:b5:57:2e:81:b3:b7:55:4e:0a:92:1d:33:ea:b5:9e:46:d8: ab:8c:9d:f6:6d:1d:b4:26:5a:45:15:99:b6:dd:93:ca:e5:34: f8:f7:c4:c3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUENEHbvGpThsLv+Sqyy3E3S5mxBswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUxQkI3ODdDRTg0RTE4RDVBOTcyODE4RDExQkJEMzg2 MThEN0QzMDAeFw0yNTAzMjUwNDU1MDFaFw0yNjAzMjQwNTAwMDFaMDMxMTAvBgNV BAMTKDYzOTFFQjJGQkI0NTIzMkVFNDlFQUIwRkI2MjU2MDkzMzExOERERDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDw0fwtBZvP+jwGVeEMXokD83BO 1YKw2kjxAe3SZ0ccnS8t576bWaHoWb84vS15sgVHkgt1kJFfmONqpZufZdE0Y4T7 HFlPXUbyEcOQBq0OiU0JG5moHn2FuMq/73gcpJlYhUR3sgny+JgkecstqxkH3u/o RGLuQXaljUo48JC7xcjhjmJvocdm9PZer0UsOjGP+CCoxki3tAH9JfxXCgRd5uy7 OSSBQ7IHxDhBdWOfrolt8BX2Lv8qtf72QJ6TcSk1JanME6kTPBU5HncE2+XAVkcy +7LRS9XRJb9dVlk92rOuWmkjNjqRDmZeqtggoj7y2EJFekiaYdRoOTw6oJ+LAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUY5HrL7tFIy7knqsPtiVgkzEY3dEwHwYDVR0j BBgwFoAUpRu3h86E4Y1alygY0Ru9OGGNfTAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y Njc3YjAwYy1kYzJjLTQxOWMtYTEwMC01MGIyZmM3YjFiYzEvMC9BNTFCQjc4N0NF ODRFMThENUE5NzI4MThEMTFCQkQzODYxOEQ3RDMwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTUxQkI3ODdDRTg0RTE4RDVBOTcyODE4RDExQkJEMzg2MThE N0QzMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2NzdiMDBjLWRjMmMtNDE5Yy1h MTAwLTUwYjJmYzdiMWJjMS8wLzMxMzAzMzJlMzEzNjM0MmUzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM5MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGekEDANBgkqhkiG 9w0BAQsFAAOCAQEAIMsyPiHV0O5X8HIyCG7WuJ8HGMsFXtm8gl9AXvthJ2C/l2j0 y+wTOQG2mf25pBtdbWoWZwWEnMh2qZjBex4qPFchmYx5ZJGo50SsZ0IfUYSK0M0w MarpPeWPAw7JX71xQqOyfrIi2gB9vqBd+VilmsNjrFOR/rvq3I8g1MV/hfCgeECM aR5i+hEkLvpW2aVnR8d5LCZVd1VHdPJBhmkVRMljzDk/sQm4bn7IJ5jA1X2Txtan SQAhdGX61QjvOD3hDeVzn/Gn6LZ8XpojfvgJezB640KK0WcU1bVXLoGzt1VOCpId M+q1nkbYq4yd9m0dtCZaRRWZtt2TyuU0+PfEww== -----END CERTIFICATE-----Generated at Sat Apr 5 19:04:16 2025 by rpki-client