$ rpki-client -vvf repo-rpki.idnic.net/repo/02cb0b3a-692d-442e-9308-903c02d5718f/0/3130332e3134302e3138382e302f32332d3234203d3e20313338383831.roa File: 3130332e3134302e3138382e302f32332d3234203d3e20313338383831.roa (raw, json) Hash identifier: AX4Jn83p+r0+t8Humc/TBfXoxrYw8H5KgdJEdvTF/+E= Subject key identifier: A4:BE:DE:33:5B:5D:31:3D:29:C6:EA:2B:5A:5F:B4:97:A6:97:C4:2C Certificate issuer: /CN=02AC8DC3B003059A7040EDCFC881D9C93B064C18 Certificate serial: 63CCCA091FB6525237D22062B860BFF7F6C896C3 Authority key identifier: 02:AC:8D:C3:B0:03:05:9A:70:40:ED:CF:C8:81:D9:C9:3B:06:4C:18 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/02AC8DC3B003059A7040EDCFC881D9C93B064C18.cer Subject info access: rsync://repo-rpki.idnic.net/repo/02cb0b3a-692d-442e-9308-903c02d5718f/0/3130332e3134302e3138382e302f32332d3234203d3e20313338383831.roa Signing time: Fri 03 Jan 2025 05:01:29 +0000 ROA not before: Fri 03 Jan 2025 04:56:29 +0000 ROA not after: Fri 02 Jan 2026 05:01:29 +0000 asID: 138881 IP address blocks: 103.140.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/02cb0b3a-692d-442e-9308-903c02d5718f/0/02AC8DC3B003059A7040EDCFC881D9C93B064C18.crl rsync://repo-rpki.idnic.net/repo/02cb0b3a-692d-442e-9308-903c02d5718f/0/02AC8DC3B003059A7040EDCFC881D9C93B064C18.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/02AC8DC3B003059A7040EDCFC881D9C93B064C18.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 19:50:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:cc:ca:09:1f:b6:52:52:37:d2:20:62:b8:60:bf:f7:f6:c8:96:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02AC8DC3B003059A7040EDCFC881D9C93B064C18 Validity Not Before: Jan 3 04:56:29 2025 GMT Not After : Jan 2 05:01:29 2026 GMT Subject: CN=A4BEDE335B5D313D29C6EA2B5A5FB497A697C42C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:bd:d1:12:95:64:ae:76:ba:97:14:f7:e4:a9: 4d:b6:2b:12:63:ac:44:57:03:85:3a:80:c5:ca:10: 5e:6e:89:a6:b3:93:63:78:df:e2:0d:67:97:f0:1b: aa:7b:04:e1:a8:8b:6a:89:a0:11:1c:f8:2a:4f:e1: 11:91:7f:65:2e:40:08:e1:b7:44:8e:6d:27:e6:29: 27:a0:24:dd:b4:8a:57:4c:4a:7c:61:c0:b6:62:e1: 65:48:07:69:fe:4c:d4:d0:da:45:b1:00:ba:e4:55: ee:fb:cc:6a:5e:f7:2b:47:ef:0a:b3:6b:94:bb:fc: 5c:87:5d:80:41:05:7d:46:44:ec:35:cf:2f:d2:9f: 1c:e6:23:73:4d:cf:ff:84:a4:77:1a:68:1b:41:85: b1:00:33:a2:c5:13:fc:26:5c:ff:26:f8:0d:3d:b3: 8e:f5:b2:0f:e3:6e:9b:11:c4:de:c8:33:f7:3e:1e: b3:e5:cf:11:fb:c8:ad:84:8a:70:04:35:6d:39:57: 86:41:be:a4:95:2b:ec:64:53:e6:fc:0c:27:72:8c: 88:8f:87:12:31:0a:cb:33:fa:25:36:65:f2:97:ee: 50:a0:da:1c:f8:b6:66:bf:5f:3e:03:6c:b3:5f:e3: 1e:7b:07:94:9f:db:4b:a0:5e:aa:84:59:2c:db:90: 14:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:BE:DE:33:5B:5D:31:3D:29:C6:EA:2B:5A:5F:B4:97:A6:97:C4:2C X509v3 Authority Key Identifier: keyid:02:AC:8D:C3:B0:03:05:9A:70:40:ED:CF:C8:81:D9:C9:3B:06:4C:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/02cb0b3a-692d-442e-9308-903c02d5718f/0/02AC8DC3B003059A7040EDCFC881D9C93B064C18.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/02AC8DC3B003059A7040EDCFC881D9C93B064C18.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/02cb0b3a-692d-442e-9308-903c02d5718f/0/3130332e3134302e3138382e302f32332d3234203d3e20313338383831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.188.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:bd:f8:b1:04:16:a0:75:e3:46:0e:35:fb:93:c7:e5:fe:63: 42:01:b2:49:ba:57:e5:e2:1d:fe:02:59:60:37:88:69:fc:d7: 60:e2:96:af:cc:f1:48:be:35:37:56:10:11:07:f7:8d:57:83: a6:c5:10:f1:40:73:df:32:33:99:3b:45:5d:78:0f:4a:86:74: 1c:ce:f4:a7:a8:65:e1:3b:2e:23:3e:0a:99:97:37:4c:60:f0: 06:e5:da:d5:11:0d:b4:72:cc:bc:d3:f5:65:6a:82:3e:5d:c7: 18:2e:49:c0:70:f5:44:78:13:c6:63:e5:c4:37:ef:00:aa:83: 2a:f4:99:ff:41:06:28:71:ba:7b:42:70:b0:55:b8:aa:2b:d6: 28:93:65:92:c4:b1:36:74:8f:61:62:d1:0e:d9:a5:e2:8b:93: 75:0a:5f:82:ba:3e:51:ae:40:64:c9:e8:dd:df:46:8f:23:04: 1d:3f:90:82:96:90:01:b8:a6:a5:10:85:33:9d:0a:7f:85:e5: 10:a4:92:d4:c8:13:e7:bd:f5:ba:ea:e0:65:0c:7e:87:53:93: 20:e2:60:05:7e:32:ba:c9:0a:59:f8:85:72:c0:32:11:19:37: e9:04:1c:d6:9f:91:c6:c0:85:5f:16:d9:41:73:2d:8f:49:19: ac:73:84:6c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUY8zKCR+2UlI30iBiuGC/9/bIlsMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDJBQzhEQzNCMDAzMDU5QTcwNDBFRENGQzg4MUQ5Qzkz QjA2NEMxODAeFw0yNTAxMDMwNDU2MjlaFw0yNjAxMDIwNTAxMjlaMDMxMTAvBgNV BAMTKEE0QkVERTMzNUI1RDMxM0QyOUM2RUEyQjVBNUZCNDk3QTY5N0M0MkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZvdESlWSudrqXFPfkqU22KxJj rERXA4U6gMXKEF5uiaazk2N43+INZ5fwG6p7BOGoi2qJoBEc+CpP4RGRf2UuQAjh t0SObSfmKSegJN20ildMSnxhwLZi4WVIB2n+TNTQ2kWxALrkVe77zGpe9ytH7wqz a5S7/FyHXYBBBX1GROw1zy/SnxzmI3NNz/+EpHcaaBtBhbEAM6LFE/wmXP8m+A09 s471sg/jbpsRxN7IM/c+HrPlzxH7yK2EinAENW05V4ZBvqSVK+xkU+b8DCdyjIiP hxIxCssz+iU2ZfKX7lCg2hz4tma/Xz4DbLNf4x57B5Sf20ugXqqEWSzbkBRtAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUpL7eM1tdMT0pxuorWl+0l6aXxCwwHwYDVR0j BBgwFoAUAqyNw7ADBZpwQO3PyIHZyTsGTBgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MmNiMGIzYS02OTJkLTQ0MmUtOTMwOC05MDNjMDJkNTcxOGYvMC8wMkFDOERDM0Iw MDMwNTlBNzA0MEVEQ0ZDODgxRDlDOTNCMDY0QzE4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDJBQzhEQzNCMDAzMDU5QTcwNDBFRENGQzg4MUQ5QzkzQjA2 NEMxOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyY2IwYjNhLTY5MmQtNDQyZS05 MzA4LTkwM2MwMmQ1NzE4Zi8wLzMxMzAzMzJlMzEzNDMwMmUzMTM4MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzODM4MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnjLwwDQYJ KoZIhvcNAQELBQADggEBAFq9+LEEFqB140YONfuTx+X+Y0IBskm6V+XiHf4CWWA3 iGn812Dilq/M8Ui+NTdWEBEH941Xg6bFEPFAc98yM5k7RV14D0qGdBzO9KeoZeE7 LiM+CpmXN0xg8Abl2tURDbRyzLzT9WVqgj5dxxguScBw9UR4E8Zj5cQ37wCqgyr0 mf9BBihxuntCcLBVuKor1iiTZZLEsTZ0j2Fi0Q7ZpeKLk3UKX4K6PlGuQGTJ6N3f Ro8jBB0/kIKWkAG4pqUQhTOdCn+F5RCkktTIE+e99brq4GUMfodTkyDiYAV+MrrJ Cln4hXLAMhEZN+kEHNafkcbAhV8W2UFzLY9JGaxzhGw= -----END CERTIFICATE-----Generated at Sun Apr 6 06:02:17 2025 by rpki-client