$ rpki-client -vvf repo-rpki.idnic.net/repo/018e2e74-f6c7-49f4-ad58-f00cde3eda60/0/3130332e3133342e35352e302f32342d3234203d3e20313338303531.roa File: 3130332e3133342e35352e302f32342d3234203d3e20313338303531.roa (raw, json) Hash identifier: 6z++MpDq3aN0vzrKOFnR3M3TfXGzn/Ja004d5rCDado= Subject key identifier: F4:D2:7F:3B:F5:C7:41:28:82:73:F2:BD:BF:D3:21:3F:5E:23:D4:F2 Certificate issuer: /CN=9B123580240DE1580D07828D18D711FDE8163C25 Certificate serial: 140C330F6D7AAA95D13FCE9C4A5E496887A32D07 Authority key identifier: 9B:12:35:80:24:0D:E1:58:0D:07:82:8D:18:D7:11:FD:E8:16:3C:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B123580240DE1580D07828D18D711FDE8163C25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/018e2e74-f6c7-49f4-ad58-f00cde3eda60/0/3130332e3133342e35352e302f32342d3234203d3e20313338303531.roa Signing time: Wed 08 Jan 2025 04:00:00 +0000 ROA not before: Wed 08 Jan 2025 03:55:00 +0000 ROA not after: Wed 07 Jan 2026 04:00:00 +0000 asID: 138051 IP address blocks: 103.134.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/018e2e74-f6c7-49f4-ad58-f00cde3eda60/0/9B123580240DE1580D07828D18D711FDE8163C25.crl rsync://repo-rpki.idnic.net/repo/018e2e74-f6c7-49f4-ad58-f00cde3eda60/0/9B123580240DE1580D07828D18D711FDE8163C25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B123580240DE1580D07828D18D711FDE8163C25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 15:40:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:0c:33:0f:6d:7a:aa:95:d1:3f:ce:9c:4a:5e:49:68:87:a3:2d:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B123580240DE1580D07828D18D711FDE8163C25 Validity Not Before: Jan 8 03:55:00 2025 GMT Not After : Jan 7 04:00:00 2026 GMT Subject: CN=F4D27F3BF5C741288273F2BDBFD3213F5E23D4F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:27:94:59:b8:18:e5:7f:42:50:e8:47:53:fd: fe:6a:d3:b4:5b:3f:ac:b4:b9:a5:cf:45:b8:e8:b3: 3f:03:28:23:ce:94:a7:cd:6f:e5:2b:1b:70:5d:4c: 1c:96:79:31:63:6b:57:20:34:a7:70:dd:8e:af:96: 20:e4:93:91:b1:dd:b7:41:0d:de:ac:46:3d:9b:39: 82:86:0c:03:cb:80:fb:d1:cc:3c:b1:45:74:54:f0: af:f8:15:87:37:3b:ab:9f:f6:43:8b:55:6c:d3:77: f0:0e:17:34:f6:e3:87:b1:fa:9f:4e:76:bb:07:4e: 3c:97:5f:33:c6:86:d2:c3:6a:62:a2:00:8e:3f:7b: 46:46:90:a9:d9:a2:1e:bc:db:f1:42:db:fd:09:01: 0b:c4:c3:ba:f9:ac:cb:f2:0f:42:c2:a9:87:d9:05: 34:e5:2d:b4:e0:2c:11:28:27:bf:46:04:0c:0f:1c: 12:ab:89:32:a1:a2:8c:0b:7d:60:67:73:f3:78:d4: b3:2c:37:b2:b5:9b:68:a5:0c:69:4c:56:a2:9d:24: 99:b6:c9:31:a8:11:dc:cb:22:96:a6:ae:88:32:c1: 1a:d7:9f:cb:f8:40:9e:2e:ec:fb:4d:8b:9d:5c:92: 65:1c:0b:e2:d3:66:fd:ab:c0:49:6c:8f:04:4b:09: 54:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:D2:7F:3B:F5:C7:41:28:82:73:F2:BD:BF:D3:21:3F:5E:23:D4:F2 X509v3 Authority Key Identifier: keyid:9B:12:35:80:24:0D:E1:58:0D:07:82:8D:18:D7:11:FD:E8:16:3C:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/018e2e74-f6c7-49f4-ad58-f00cde3eda60/0/9B123580240DE1580D07828D18D711FDE8163C25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B123580240DE1580D07828D18D711FDE8163C25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/018e2e74-f6c7-49f4-ad58-f00cde3eda60/0/3130332e3133342e35352e302f32342d3234203d3e20313338303531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.55.0/24 Signature Algorithm: sha256WithRSAEncryption 71:19:5d:dc:d6:5a:40:67:43:79:c0:86:30:2f:c7:14:93:7c: 6d:2d:53:47:45:09:6c:df:4f:be:d7:a5:59:96:2e:f0:b8:d4: a9:50:95:da:68:bf:99:ed:d9:59:b3:51:7c:3e:90:fb:36:31: d2:1c:56:7a:ad:ce:ea:d0:45:3b:cc:2c:b5:0d:d1:70:7c:da: 6f:61:e5:05:82:ce:d0:fb:83:21:cc:fb:0d:82:b1:fb:1e:75: 38:f0:ee:8b:6e:01:8a:57:01:0f:c0:9f:79:a2:82:d5:29:1d: c7:ff:92:a3:e9:44:2c:89:ef:3a:61:51:89:48:49:4b:52:ae: a5:62:18:eb:c1:eb:ea:cf:99:82:78:ce:37:90:58:3a:d4:1b: 20:e7:bb:41:15:ac:67:93:de:66:88:81:e5:8b:fe:6a:51:61: 92:0c:4d:d4:26:86:48:57:aa:f0:49:e9:03:20:e0:da:7d:a9: 35:bb:7f:23:f3:a1:c5:1b:fd:72:6e:78:98:48:1c:eb:3f:40: 66:95:90:15:64:5f:65:e3:70:05:7c:5e:4d:a1:4b:4e:44:47: 24:a5:c8:5d:d0:d4:bb:2d:27:04:07:04:75:e5:a4:48:80:03: c9:7d:e5:e5:ba:9a:45:d1:e4:d5:12:5f:af:9f:9a:b1:6b:0b: ce:fe:37:8a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFAwzD216qpXRP86cSl5JaIejLQcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUIxMjM1ODAyNDBERTE1ODBEMDc4MjhEMThENzExRkRF ODE2M0MyNTAeFw0yNTAxMDgwMzU1MDBaFw0yNjAxMDcwNDAwMDBaMDMxMTAvBgNV BAMTKEY0RDI3RjNCRjVDNzQxMjg4MjczRjJCREJGRDMyMTNGNUUyM0Q0RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxJ5RZuBjlf0JQ6EdT/f5q07Rb P6y0uaXPRbjosz8DKCPOlKfNb+UrG3BdTByWeTFja1cgNKdw3Y6vliDkk5Gx3bdB Dd6sRj2bOYKGDAPLgPvRzDyxRXRU8K/4FYc3O6uf9kOLVWzTd/AOFzT244ex+p9O drsHTjyXXzPGhtLDamKiAI4/e0ZGkKnZoh682/FC2/0JAQvEw7r5rMvyD0LCqYfZ BTTlLbTgLBEoJ79GBAwPHBKriTKhoowLfWBnc/N41LMsN7K1m2ilDGlMVqKdJJm2 yTGoEdzLIpamrogywRrXn8v4QJ4u7PtNi51ckmUcC+LTZv2rwElsjwRLCVQjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9NJ/O/XHQSiCc/K9v9MhP14j1PIwHwYDVR0j BBgwFoAUmxI1gCQN4VgNB4KNGNcR/egWPCUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MThlMmU3NC1mNmM3LTQ5ZjQtYWQ1OC1mMDBjZGUzZWRhNjAvMC85QjEyMzU4MDI0 MERFMTU4MEQwNzgyOEQxOEQ3MTFGREU4MTYzQzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUIxMjM1ODAyNDBERTE1ODBEMDc4MjhEMThENzExRkRFODE2 M0MyNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAxOGUyZTc0LWY2YzctNDlmNC1h ZDU4LWYwMGNkZTNlZGE2MC8wLzMxMzAzMzJlMzEzMzM0MmUzNTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4Y3MA0GCSqG SIb3DQEBCwUAA4IBAQBxGV3c1lpAZ0N5wIYwL8cUk3xtLVNHRQls30++16VZli7w uNSpUJXaaL+Z7dlZs1F8PpD7NjHSHFZ6rc7q0EU7zCy1DdFwfNpvYeUFgs7Q+4Mh zPsNgrH7HnU48O6LbgGKVwEPwJ95ooLVKR3H/5Kj6UQsie86YVGJSElLUq6lYhjr wevqz5mCeM43kFg61Bsg57tBFaxnk95miIHli/5qUWGSDE3UJoZIV6rwSekDIODa fak1u38j86HFG/1ybniYSBzrP0BmlZAVZF9l43AFfF5NoUtOREckpchd0NS7LScE BwR15aRIgAPJfeXluppF0eTVEl+vn5qxawvO/jeK -----END CERTIFICATE-----Generated at Sun Apr 6 09:38:34 2025 by rpki-client