$ rpki-client -vvf repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/3130332e3133342e35302e302f32342d3234203d3e20313332383239.roa File: 3130332e3133342e35302e302f32342d3234203d3e20313332383239.roa (raw, json) Hash identifier: 7HCsscFWHwPhWZMbOcuZYtCZgWu1kaGruUGGQu1z3Bg= Subject key identifier: BA:E3:5D:18:82:04:F2:8E:32:66:FD:3C:E5:2D:2D:84:CD:95:BE:4C Certificate issuer: /CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Certificate serial: 11847294579168F9382528E25E1ECDBE5E4E9324 Authority key identifier: 28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/3130332e3133342e35302e302f32342d3234203d3e20313332383239.roa Signing time: Wed 19 Mar 2025 08:01:24 +0000 ROA not before: Wed 19 Mar 2025 07:56:24 +0000 ROA not after: Wed 18 Mar 2026 08:01:24 +0000 asID: 132829 IP address blocks: 103.134.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 02:35:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:84:72:94:57:91:68:f9:38:25:28:e2:5e:1e:cd:be:5e:4e:93:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Validity Not Before: Mar 19 07:56:24 2025 GMT Not After : Mar 18 08:01:24 2026 GMT Subject: CN=BAE35D188204F28E3266FD3CE52D2D84CD95BE4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:9d:41:cd:03:9e:e3:19:ce:86:b5:2c:a8:41: eb:9f:27:1d:16:be:09:3d:12:51:bd:b9:51:d1:24: 4d:3d:8d:53:b4:a3:ac:2b:a0:5a:3e:4a:5b:b1:5a: ea:db:1e:4a:37:e4:f4:f9:3b:7c:23:75:9f:77:08: 80:12:e2:6a:b4:cd:8c:28:62:89:44:90:2f:c8:13: d0:7a:a8:e5:27:1e:f9:58:fe:65:4b:10:cb:ad:ae: 7b:3a:30:8d:d6:63:a3:d0:68:5a:83:55:53:03:73: 3c:be:9d:40:63:4d:41:53:ef:8f:cf:3a:b3:3f:ef: 4d:bf:3b:f5:a6:72:eb:08:4f:cb:1d:6b:e7:97:da: 0d:01:1d:4a:51:88:64:24:e8:7f:16:75:58:a8:99: 2a:46:3d:0a:15:02:f0:7b:5e:2d:79:e2:31:c2:34: 81:14:ed:1f:dd:76:e2:61:1c:f7:93:ec:82:69:80: d9:11:7e:5f:11:40:a9:91:c2:29:e9:73:f0:34:b4: 4d:43:50:08:6d:93:3d:4a:d3:24:e7:df:20:bb:55: eb:a5:40:85:0f:6f:e3:fe:23:88:5a:1d:15:20:5f: ef:7a:52:b1:96:53:ef:1b:c2:b2:a3:c3:01:67:ca: 83:79:8e:e3:27:d6:af:50:85:2a:e9:dd:ab:35:fa: e4:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:E3:5D:18:82:04:F2:8E:32:66:FD:3C:E5:2D:2D:84:CD:95:BE:4C X509v3 Authority Key Identifier: keyid:28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/3130332e3133342e35302e302f32342d3234203d3e20313332383239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.50.0/24 Signature Algorithm: sha256WithRSAEncryption 44:d4:31:50:d2:dc:a8:98:92:6d:f4:3b:08:b4:56:0f:30:be: 88:2c:ef:d9:c1:dc:a7:9b:10:cd:9b:2f:fe:b9:df:d0:b8:6d: ae:97:27:0c:3f:d7:59:30:1e:96:65:52:ef:8f:5a:55:f5:23: f4:15:e7:92:a7:ff:e0:03:06:8b:25:32:49:47:f6:14:c2:01: ce:f2:88:05:97:ed:bc:37:8b:77:2a:94:d6:c2:b4:23:92:d4: 2d:f1:2f:2b:17:98:ac:a5:d2:31:d6:4e:1a:10:29:aa:0a:40: 99:99:5b:a2:86:7d:aa:ef:ed:14:53:78:3b:6f:a4:05:04:69: b4:bb:aa:93:d2:14:58:2d:9f:b0:52:4c:77:21:57:65:db:94: 47:1d:52:24:ae:5f:ea:90:f2:1f:97:f3:1d:a1:cc:14:74:d3: f4:f6:36:31:f6:2c:83:d9:64:cf:c0:65:08:06:9f:cb:cc:be: 11:d9:db:33:1e:9d:e7:49:47:89:d0:4f:86:e5:2e:86:a2:5e: a6:dc:b3:3d:e7:35:f9:ab:a2:e4:25:3d:66:a3:18:8b:37:ab: 13:eb:bb:47:53:e8:d4:eb:1f:68:f9:5f:b1:61:24:85:59:bb: 9b:8e:12:61:18:15:96:8d:f3:82:69:ad:88:f9:69:ae:7f:77: bb:cf:44:13 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEYRylFeRaPk4JSjiXh7Nvl5OkyQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0 NDRERjJFQTAeFw0yNTAzMTkwNzU2MjRaFw0yNjAzMTgwODAxMjRaMDMxMTAvBgNV BAMTKEJBRTM1RDE4ODIwNEYyOEUzMjY2RkQzQ0U1MkQyRDg0Q0Q5NUJFNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhnUHNA57jGc6GtSyoQeufJx0W vgk9ElG9uVHRJE09jVO0o6wroFo+SluxWurbHko35PT5O3wjdZ93CIAS4mq0zYwo YolEkC/IE9B6qOUnHvlY/mVLEMutrns6MI3WY6PQaFqDVVMDczy+nUBjTUFT74/P OrM/702/O/WmcusIT8sda+eX2g0BHUpRiGQk6H8WdViomSpGPQoVAvB7Xi154jHC NIEU7R/dduJhHPeT7IJpgNkRfl8RQKmRwinpc/A0tE1DUAhtkz1K0yTn3yC7Veul QIUPb+P+I4haHRUgX+96UrGWU+8bwrKjwwFnyoN5juMn1q9QhSrp3as1+uS1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuuNdGIIE8o4yZv085S0thM2VvkwwHwYDVR0j BBgwFoAUKEuK2tPgmOm/vqxqkSnvpkRN8uowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 Yzg1YzZiOS0zNGY5LTRhODUtOWNlYS1jMTZlOThhOGI1ZTAvMC8yODRCOEFEQUQz RTA5OEU5QkZCRUFDNkE5MTI5RUZBNjQ0NERGMkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0NDRE RjJFQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljODVjNmI5LTM0ZjktNGE4NS05 Y2VhLWMxNmU5OGE4YjVlMC8wLzMxMzAzMzJlMzEzMzM0MmUzNTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMyMzgzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4YyMA0GCSqG SIb3DQEBCwUAA4IBAQBE1DFQ0tyomJJt9DsItFYPML6ILO/ZwdynmxDNmy/+ud/Q uG2ulycMP9dZMB6WZVLvj1pV9SP0FeeSp//gAwaLJTJJR/YUwgHO8ogFl+28N4t3 KpTWwrQjktQt8S8rF5ispdIx1k4aECmqCkCZmVuihn2q7+0UU3g7b6QFBGm0u6qT 0hRYLZ+wUkx3IVdl25RHHVIkrl/qkPIfl/MdocwUdNP09jYx9iyD2WTPwGUIBp/L zL4R2dszHp3nSUeJ0E+G5S6Gol6m3LM95zX5q6LkJT1moxiLN6sT67tHU+jU6x9o +V+xYSSFWbubjhJhGBWWjfOCaa2I+Wmuf3e7z0QT -----END CERTIFICATE-----Generated at Sat Apr 5 19:05:52 2025 by rpki-client