$ rpki-client -vvf repo-rpki.idnic.net/repo/73f75088-088e-41c0-bfce-edc69beafd4a/0/3130332e3138302e3139342e302f32342d3234203d3e2039333431.roa File: 3130332e3138302e3139342e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: E01mZ15UIJ+QTIPPcGks35isU/hOcW6+FEQB5HchAFc= Subject key identifier: 7B:F6:07:73:EC:BA:F5:CC:40:6D:21:89:92:F3:91:EE:CD:6D:E6:80 Certificate issuer: /CN=FED49ABCDA1C9D097F52AD26D8001C0C36632C89 Certificate serial: 1E2333854BD7C418202A779B75C2C8579B98A96B Authority key identifier: FE:D4:9A:BC:DA:1C:9D:09:7F:52:AD:26:D8:00:1C:0C:36:63:2C:89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED49ABCDA1C9D097F52AD26D8001C0C36632C89.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f75088-088e-41c0-bfce-edc69beafd4a/0/3130332e3138302e3139342e302f32342d3234203d3e2039333431.roa Signing time: Mon 20 Jan 2025 10:00:01 +0000 ROA not before: Mon 20 Jan 2025 09:55:01 +0000 ROA not after: Mon 19 Jan 2026 10:00:01 +0000 asID: 9341 IP address blocks: 103.180.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f75088-088e-41c0-bfce-edc69beafd4a/0/FED49ABCDA1C9D097F52AD26D8001C0C36632C89.crl rsync://repo-rpki.idnic.net/repo/73f75088-088e-41c0-bfce-edc69beafd4a/0/FED49ABCDA1C9D097F52AD26D8001C0C36632C89.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED49ABCDA1C9D097F52AD26D8001C0C36632C89.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 00:15:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:23:33:85:4b:d7:c4:18:20:2a:77:9b:75:c2:c8:57:9b:98:a9:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FED49ABCDA1C9D097F52AD26D8001C0C36632C89 Validity Not Before: Jan 20 09:55:01 2025 GMT Not After : Jan 19 10:00:01 2026 GMT Subject: CN=7BF60773ECBAF5CC406D218992F391EECD6DE680 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d1:15:e1:76:91:26:5b:d9:40:c1:44:e7:1b: fa:9a:49:e0:aa:06:db:be:58:ae:6b:a7:a2:36:00: a2:ed:6f:b8:83:0f:8f:07:8e:53:de:21:6f:a7:4f: dc:98:17:f3:7e:8b:30:ff:1a:37:ec:42:b3:c8:bb: a9:cb:8e:d8:fc:d3:7e:87:dc:d9:b2:ca:e8:c3:31: a5:a7:6b:81:2c:c2:19:28:18:62:2a:e3:69:9e:83: 46:cd:f8:d4:5c:7a:b8:eb:8e:55:93:26:03:e8:21: af:e0:a9:ea:4a:3f:29:73:cc:b8:3b:02:51:e1:ed: 1a:2f:32:91:d0:c8:f4:4c:51:09:39:23:f1:d8:ad: 9c:38:1b:4c:47:ec:de:57:bc:0d:d8:5a:ec:8f:62: bf:55:ed:85:89:81:e5:e0:89:5b:9a:a2:3b:2d:69: 8b:fb:63:ad:52:d0:3f:11:0c:6f:97:64:34:5a:c8: cf:71:16:fc:ac:da:f6:f7:17:95:ac:ff:03:6b:cc: 6f:b0:1c:bc:e5:51:e9:84:9f:3a:a8:c1:bf:17:b3: 15:82:7a:8c:82:99:db:fd:62:af:6b:05:f0:61:7e: b5:ab:4b:43:e9:64:09:3c:76:68:d9:eb:69:1b:8f: 21:86:1f:ed:fa:01:e4:f3:b0:78:b9:bf:85:ae:e3: 42:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:F6:07:73:EC:BA:F5:CC:40:6D:21:89:92:F3:91:EE:CD:6D:E6:80 X509v3 Authority Key Identifier: keyid:FE:D4:9A:BC:DA:1C:9D:09:7F:52:AD:26:D8:00:1C:0C:36:63:2C:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f75088-088e-41c0-bfce-edc69beafd4a/0/FED49ABCDA1C9D097F52AD26D8001C0C36632C89.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED49ABCDA1C9D097F52AD26D8001C0C36632C89.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f75088-088e-41c0-bfce-edc69beafd4a/0/3130332e3138302e3139342e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.180.194.0/24 Signature Algorithm: sha256WithRSAEncryption 99:ea:cb:f3:19:86:99:cb:fe:20:9e:8d:d7:55:f3:44:37:b1: 2e:cf:ee:50:45:ed:76:58:4d:36:04:2e:f5:d5:32:5e:70:36: 79:53:82:ba:40:48:e2:83:b0:91:e1:2b:fd:a4:1b:75:24:f7: cb:fe:3d:d0:38:8b:67:3c:c9:c2:11:f0:f7:12:50:5f:54:36: db:ba:d5:fa:47:41:82:77:66:ab:26:91:e4:db:77:31:34:57: c9:aa:4c:37:92:f8:8e:90:47:ca:de:a6:9b:bd:76:83:d4:1c: ad:a1:74:3c:a0:52:92:c1:35:16:4a:c9:be:1d:89:fe:9c:59: 0a:95:c3:dc:7e:bc:26:32:5f:f9:16:b5:40:2f:ba:da:3b:8d: b2:b4:89:f3:00:73:b6:3f:46:a3:fc:57:a6:71:f0:65:a1:1e: e2:86:ea:65:3b:b0:8f:cc:b5:e2:84:eb:92:47:e4:e4:07:51: d1:56:6c:0c:f8:56:79:cf:28:d7:c6:a4:f4:c5:77:1a:ff:e2: 70:f7:89:69:ea:b8:a4:62:d9:f0:dc:f3:44:7c:74:ab:e4:8f: 21:65:2f:24:f8:ed:a2:e5:f9:a7:8a:6c:37:4d:eb:d5:22:d0: 6f:03:2a:ae:f3:96:90:19:ff:f1:bb:16:58:e4:41:2f:b5:56: 95:01:22:76 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHiMzhUvXxBggKnebdcLIV5uYqWswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkVENDlBQkNEQTFDOUQwOTdGNTJBRDI2RDgwMDFDMEMz NjYzMkM4OTAeFw0yNTAxMjAwOTU1MDFaFw0yNjAxMTkxMDAwMDFaMDMxMTAvBgNV BAMTKDdCRjYwNzczRUNCQUY1Q0M0MDZEMjE4OTkyRjM5MUVFQ0Q2REU2ODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR0RXhdpEmW9lAwUTnG/qaSeCq Btu+WK5rp6I2AKLtb7iDD48HjlPeIW+nT9yYF/N+izD/GjfsQrPIu6nLjtj8036H 3NmyyujDMaWna4EswhkoGGIq42meg0bN+NRcerjrjlWTJgPoIa/gqepKPylzzLg7 AlHh7RovMpHQyPRMUQk5I/HYrZw4G0xH7N5XvA3YWuyPYr9V7YWJgeXgiVuaojst aYv7Y61S0D8RDG+XZDRayM9xFvys2vb3F5Ws/wNrzG+wHLzlUemEnzqowb8XsxWC eoyCmdv9Yq9rBfBhfrWrS0PpZAk8dmjZ62kbjyGGH+36AeTzsHi5v4Wu40K5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUe/YHc+y69cxAbSGJkvOR7s1t5oAwHwYDVR0j BBgwFoAU/tSavNocnQl/Uq0m2AAcDDZjLIkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y3NTA4OC0wODhlLTQxYzAtYmZjZS1lZGM2OWJlYWZkNGEvMC9GRUQ0OUFCQ0RB MUM5RDA5N0Y1MkFEMjZEODAwMUMwQzM2NjMyQzg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkVENDlBQkNEQTFDOUQwOTdGNTJBRDI2RDgwMDFDMEMzNjYz MkM4OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjc1MDg4LTA4OGUtNDFjMC1i ZmNlLWVkYzY5YmVhZmQ0YS8wLzMxMzAzMzJlMzEzODMwMmUzMTM5MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGe0wjANBgkqhkiG 9w0BAQsFAAOCAQEAmerL8xmGmcv+IJ6N11XzRDexLs/uUEXtdlhNNgQu9dUyXnA2 eVOCukBI4oOwkeEr/aQbdST3y/490DiLZzzJwhHw9xJQX1Q227rV+kdBgndmqyaR 5Nt3MTRXyapMN5L4jpBHyt6mm712g9QcraF0PKBSksE1FkrJvh2J/pxZCpXD3H68 JjJf+Ra1QC+62juNsrSJ8wBztj9Go/xXpnHwZaEe4obqZTuwj8y14oTrkkfk5AdR 0VZsDPhWec8o18ak9MV3Gv/icPeJaeq4pGLZ8NzzRHx0q+SPIWUvJPjtouX5p4ps N03r1SLQbwMqrvOWkBn/8bsWWORBL7VWlQEidg== -----END CERTIFICATE-----Generated at Sat Apr 5 16:44:33 2025 by rpki-client