$ rpki-client -vvf repo-rpki.idnic.net/repo/010fef48-1ee8-4342-a541-2510fb15b96b/0/3130332e3136362e36352e302f32342d3234203d3e20313431393333.roa File: 3130332e3136362e36352e302f32342d3234203d3e20313431393333.roa (raw, json) Hash identifier: JPLl/hy4axlRwDQrEu4V49OB2Rke2spaKxfeyHQ9IW4= Subject key identifier: DF:CF:E9:E9:72:9A:7F:AE:7A:57:27:23:19:D6:E9:15:76:B8:8B:2A Certificate issuer: /CN=79FE7055A022B9483725E25688019B44DD3B94A7 Certificate serial: 3B79F0C85D6086FCF917FF250DCC712FCF112818 Authority key identifier: 79:FE:70:55:A0:22:B9:48:37:25:E2:56:88:01:9B:44:DD:3B:94:A7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/79FE7055A022B9483725E25688019B44DD3B94A7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/010fef48-1ee8-4342-a541-2510fb15b96b/0/3130332e3136362e36352e302f32342d3234203d3e20313431393333.roa Signing time: Thu 27 Feb 2025 03:02:54 +0000 ROA not before: Thu 27 Feb 2025 02:57:54 +0000 ROA not after: Thu 26 Feb 2026 03:02:54 +0000 asID: 141933 IP address blocks: 103.166.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/010fef48-1ee8-4342-a541-2510fb15b96b/0/79FE7055A022B9483725E25688019B44DD3B94A7.crl rsync://repo-rpki.idnic.net/repo/010fef48-1ee8-4342-a541-2510fb15b96b/0/79FE7055A022B9483725E25688019B44DD3B94A7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/79FE7055A022B9483725E25688019B44DD3B94A7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 06:12:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:79:f0:c8:5d:60:86:fc:f9:17:ff:25:0d:cc:71:2f:cf:11:28:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=79FE7055A022B9483725E25688019B44DD3B94A7 Validity Not Before: Feb 27 02:57:54 2025 GMT Not After : Feb 26 03:02:54 2026 GMT Subject: CN=DFCFE9E9729A7FAE7A57272319D6E91576B88B2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f1:18:e8:dc:70:1a:a2:37:1b:c1:01:89:c8: f9:d7:aa:6e:09:62:03:10:ab:23:5c:7e:d4:0e:3e: bf:df:9c:de:5c:af:57:01:1c:99:ec:80:2a:dd:84: a7:c9:26:bf:84:e2:39:78:7f:f6:33:4f:18:e6:ed: aa:4f:e9:79:ea:bb:38:02:99:5c:77:b6:5c:32:fd: 82:d6:ba:d1:a2:35:a5:84:e3:77:22:7a:0b:c2:c0: ee:49:93:d7:1c:bc:47:cd:93:63:c7:4a:ac:62:f3: d9:c7:15:5f:3c:c8:af:87:48:09:2a:60:40:60:df: 5c:34:5d:d0:29:40:93:ef:9e:d7:48:75:cf:0a:41: 84:a4:fb:ca:08:3c:44:ec:8a:06:96:29:04:64:4a: cd:7a:d2:8a:31:62:71:9f:81:35:ae:c2:e1:cb:c2: ac:9e:5e:cc:1e:7e:02:29:06:9d:2b:01:ad:23:66: 39:bc:58:06:c5:7a:05:56:4a:b0:80:b6:4e:69:7a: 4f:8b:c0:d1:15:ae:45:37:1d:f1:6e:0c:54:16:94: 79:76:ee:e7:f9:81:b7:d3:de:36:f4:ab:a0:95:50: f8:09:e2:9e:40:f0:8c:a0:70:65:11:f5:8c:da:7b: e3:69:ee:79:de:46:32:58:f0:eb:ff:9c:5f:1f:49: 30:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:CF:E9:E9:72:9A:7F:AE:7A:57:27:23:19:D6:E9:15:76:B8:8B:2A X509v3 Authority Key Identifier: keyid:79:FE:70:55:A0:22:B9:48:37:25:E2:56:88:01:9B:44:DD:3B:94:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/010fef48-1ee8-4342-a541-2510fb15b96b/0/79FE7055A022B9483725E25688019B44DD3B94A7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/79FE7055A022B9483725E25688019B44DD3B94A7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/010fef48-1ee8-4342-a541-2510fb15b96b/0/3130332e3136362e36352e302f32342d3234203d3e20313431393333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.65.0/24 Signature Algorithm: sha256WithRSAEncryption 44:f8:71:3f:59:c9:ed:12:71:62:38:79:a1:d4:f0:40:39:64: 20:0e:a2:45:f0:76:92:84:9a:29:ac:25:b6:30:cf:74:df:09: 4c:8b:2c:04:2a:ff:0d:aa:f4:68:79:cf:b0:dd:18:a5:9d:8a: ef:34:bb:83:33:bf:c4:03:47:78:5b:22:88:9f:ba:6f:c5:1a: 7d:86:41:d4:83:a1:4c:21:4e:5d:7d:dc:13:92:15:39:af:ea: 5a:f5:05:88:c0:15:96:02:52:b7:63:9c:fb:1f:0e:74:3b:15: d7:06:bd:de:db:95:f1:ad:67:73:22:0b:0f:92:e4:71:d2:21: 01:bb:92:48:f5:4f:86:88:4c:16:1d:5e:4e:da:5f:21:3d:a6: 90:38:80:85:72:e2:78:e4:fd:fe:f8:01:0f:91:e2:0d:61:61: 73:05:29:83:c4:95:c1:c6:25:13:b1:8d:c6:1e:80:64:4b:aa: 99:53:54:57:10:a2:5c:47:63:4f:bc:2b:ad:bb:27:64:a3:73: f0:d9:4e:a5:74:d0:51:53:e5:cc:2a:0f:fe:54:61:0b:07:9a: ff:05:28:3a:e4:b3:4c:ea:21:f7:7d:86:eb:3c:2f:64:85:bd: 5c:e7:d8:d6:1a:cf:30:a2:bb:69:36:a7:b8:52:a6:d9:62:a8: be:80:b5:f1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUO3nwyF1ghvz5F/8lDcxxL88RKBgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzlGRTcwNTVBMDIyQjk0ODM3MjVFMjU2ODgwMTlCNDRE RDNCOTRBNzAeFw0yNTAyMjcwMjU3NTRaFw0yNjAyMjYwMzAyNTRaMDMxMTAvBgNV BAMTKERGQ0ZFOUU5NzI5QTdGQUU3QTU3MjcyMzE5RDZFOTE1NzZCODhCMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR8Rjo3HAaojcbwQGJyPnXqm4J YgMQqyNcftQOPr/fnN5cr1cBHJnsgCrdhKfJJr+E4jl4f/YzTxjm7apP6XnquzgC mVx3tlwy/YLWutGiNaWE43ciegvCwO5Jk9ccvEfNk2PHSqxi89nHFV88yK+HSAkq YEBg31w0XdApQJPvntdIdc8KQYSk+8oIPETsigaWKQRkSs160ooxYnGfgTWuwuHL wqyeXswefgIpBp0rAa0jZjm8WAbFegVWSrCAtk5pek+LwNEVrkU3HfFuDFQWlHl2 7uf5gbfT3jb0q6CVUPgJ4p5A8IygcGUR9Yzae+Np7nneRjJY8Ov/nF8fSTCnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU38/p6XKaf656VycjGdbpFXa4iyowHwYDVR0j BBgwFoAUef5wVaAiuUg3JeJWiAGbRN07lKcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MTBmZWY0OC0xZWU4LTQzNDItYTU0MS0yNTEwZmIxNWI5NmIvMC83OUZFNzA1NUEw MjJCOTQ4MzcyNUUyNTY4ODAxOUI0NEREM0I5NEE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzlGRTcwNTVBMDIyQjk0ODM3MjVFMjU2ODgwMTlCNDRERDNC OTRBNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAxMGZlZjQ4LTFlZTgtNDM0Mi1h NTQxLTI1MTBmYjE1Yjk2Yi8wLzMxMzAzMzJlMzEzNjM2MmUzNjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzkzMzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6ZBMA0GCSqG SIb3DQEBCwUAA4IBAQBE+HE/WcntEnFiOHmh1PBAOWQgDqJF8HaShJoprCW2MM90 3wlMiywEKv8NqvRoec+w3RilnYrvNLuDM7/EA0d4WyKIn7pvxRp9hkHUg6FMIU5d fdwTkhU5r+pa9QWIwBWWAlK3Y5z7Hw50OxXXBr3e25XxrWdzIgsPkuRx0iEBu5JI 9U+GiEwWHV5O2l8hPaaQOICFcuJ45P3++AEPkeINYWFzBSmDxJXBxiUTsY3GHoBk S6qZU1RXEKJcR2NPvCutuydko3Pw2U6ldNBRU+XMKg/+VGELB5r/BSg65LNM6iH3 fYbrPC9khb1c59jWGs8wortpNqe4UqbZYqi+gLXx -----END CERTIFICATE-----Generated at Sun Apr 6 08:28:16 2025 by rpki-client