$ rpki-client -vvf repo-rpki.idnic.net/repo/03ba0d38-ca62-4c2b-90e2-8eeeeb831860/0/3130332e3139382e312e302f32342d3234203d3e20313530393436.roa File: 3130332e3139382e312e302f32342d3234203d3e20313530393436.roa (raw, json) Hash identifier: DjjP3nVC6+WK+DgzpZnBmNOr+L0oHeOm56sQH4VwNVI= Subject key identifier: A7:B0:1E:01:6D:6F:98:C4:2C:C7:FD:E1:A5:32:5F:88:10:B6:34:46 Certificate issuer: /CN=E2E2B18618062AFE568198DD60631314C3847291 Certificate serial: 1E0A77F2F104DC649C851AEEBCEFFC086DE7F8A4 Authority key identifier: E2:E2:B1:86:18:06:2A:FE:56:81:98:DD:60:63:13:14:C3:84:72:91 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2E2B18618062AFE568198DD60631314C3847291.cer Subject info access: rsync://repo-rpki.idnic.net/repo/03ba0d38-ca62-4c2b-90e2-8eeeeb831860/0/3130332e3139382e312e302f32342d3234203d3e20313530393436.roa Signing time: Sun 16 Feb 2025 10:00:00 +0000 ROA not before: Sun 16 Feb 2025 09:55:00 +0000 ROA not after: Sun 15 Feb 2026 10:00:00 +0000 asID: 150946 IP address blocks: 103.198.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/03ba0d38-ca62-4c2b-90e2-8eeeeb831860/0/E2E2B18618062AFE568198DD60631314C3847291.crl rsync://repo-rpki.idnic.net/repo/03ba0d38-ca62-4c2b-90e2-8eeeeb831860/0/E2E2B18618062AFE568198DD60631314C3847291.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2E2B18618062AFE568198DD60631314C3847291.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 23:13:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:0a:77:f2:f1:04:dc:64:9c:85:1a:ee:bc:ef:fc:08:6d:e7:f8:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E2E2B18618062AFE568198DD60631314C3847291 Validity Not Before: Feb 16 09:55:00 2025 GMT Not After : Feb 15 10:00:00 2026 GMT Subject: CN=A7B01E016D6F98C42CC7FDE1A5325F8810B63446 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:16:cd:1d:ab:a4:08:f0:01:38:a5:b3:b3:f6: c6:36:57:fc:89:94:22:8e:a2:4a:5b:1f:45:1d:df: 4a:5f:4e:01:d8:7c:3f:f2:54:d9:f0:c2:a9:d2:29: f8:32:98:ef:bb:39:98:d8:5e:aa:0e:00:55:a9:61: 80:48:c5:1b:54:29:40:f9:32:37:90:60:d7:34:2a: 99:f2:0a:ab:2e:89:a8:81:69:0e:4c:09:4f:f6:6e: ca:20:2a:17:f0:50:2f:3b:18:35:57:a2:75:b6:62: 7c:58:02:07:9a:32:f2:4b:05:44:04:87:75:37:65: 19:98:60:6c:38:5d:9f:76:c5:f4:98:cf:38:99:3e: 94:8b:c3:0a:4d:e5:ca:c2:93:07:0c:56:37:40:7d: 82:76:89:5b:6c:c0:0d:36:fa:f3:2b:f7:15:f6:a8: 60:c3:9d:44:7c:fa:6e:54:51:69:ac:1a:1e:20:ba: e9:fb:ed:57:59:05:28:cb:e6:4c:90:72:65:5f:bf: da:fc:74:14:36:aa:7e:50:43:45:85:5d:6f:90:f2: 7c:a7:11:de:f1:01:4f:45:a4:0b:bd:15:8b:24:1b: 2f:f7:2e:7d:a0:1d:ef:6c:47:52:f8:d9:ba:b0:c0: 5c:f2:a6:49:14:be:17:dc:9b:c0:01:b7:16:b2:a0: f3:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:B0:1E:01:6D:6F:98:C4:2C:C7:FD:E1:A5:32:5F:88:10:B6:34:46 X509v3 Authority Key Identifier: keyid:E2:E2:B1:86:18:06:2A:FE:56:81:98:DD:60:63:13:14:C3:84:72:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/03ba0d38-ca62-4c2b-90e2-8eeeeb831860/0/E2E2B18618062AFE568198DD60631314C3847291.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2E2B18618062AFE568198DD60631314C3847291.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/03ba0d38-ca62-4c2b-90e2-8eeeeb831860/0/3130332e3139382e312e302f32342d3234203d3e20313530393436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.198.1.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:2d:3d:6a:28:8e:66:60:64:8e:d7:c1:95:d6:2a:3a:03:e6: fe:ed:da:c6:b5:df:ea:53:dd:bc:74:81:7e:f2:44:34:42:5a: 80:75:8a:0f:69:ec:48:e7:e5:ad:b8:67:76:dc:cb:d1:51:05: 91:6f:15:19:22:cd:4d:80:de:e5:ad:bf:15:5d:f3:1b:aa:b7: bc:c0:bb:dc:51:2a:cf:77:90:ca:03:50:db:41:1d:c6:e0:8c: 00:39:5d:32:28:9a:0b:0d:fa:03:95:16:85:ce:26:4c:6f:c5: d4:57:de:0c:60:7f:d9:d7:3f:17:2c:c9:18:98:ea:4e:39:d6: 07:39:9b:cf:a7:ba:af:d0:7b:8f:85:ec:6f:33:81:86:d6:42: 44:7d:36:85:23:f6:ff:d5:eb:08:88:a7:63:5a:ad:d0:f5:35: a4:b6:ef:ba:55:e5:e6:da:e5:37:49:8b:32:cd:03:19:36:50: 85:f6:8a:29:c9:fb:f0:8c:9e:8b:e8:79:0a:f7:3e:19:a2:41: d0:00:2d:d8:f3:59:74:98:4d:56:2c:8a:df:f9:5f:60:fa:89: 14:0e:d8:60:2d:6d:87:0d:fb:e7:0c:2b:8b:dc:bd:89:4e:a7: 95:41:71:e0:b8:60:47:d5:f5:ca:f3:3e:2b:60:15:fe:1a:73: 32:3f:a1:9d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHgp38vEE3GSchRruvO/8CG3n+KQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTJFMkIxODYxODA2MkFGRTU2ODE5OERENjA2MzEzMTRD Mzg0NzI5MTAeFw0yNTAyMTYwOTU1MDBaFw0yNjAyMTUxMDAwMDBaMDMxMTAvBgNV BAMTKEE3QjAxRTAxNkQ2Rjk4QzQyQ0M3RkRFMUE1MzI1Rjg4MTBCNjM0NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAFs0dq6QI8AE4pbOz9sY2V/yJ lCKOokpbH0Ud30pfTgHYfD/yVNnwwqnSKfgymO+7OZjYXqoOAFWpYYBIxRtUKUD5 MjeQYNc0KpnyCqsuiaiBaQ5MCU/2bsogKhfwUC87GDVXonW2YnxYAgeaMvJLBUQE h3U3ZRmYYGw4XZ92xfSYzziZPpSLwwpN5crCkwcMVjdAfYJ2iVtswA02+vMr9xX2 qGDDnUR8+m5UUWmsGh4guun77VdZBSjL5kyQcmVfv9r8dBQ2qn5QQ0WFXW+Q8nyn Ed7xAU9FpAu9FYskGy/3Ln2gHe9sR1L42bqwwFzypkkUvhfcm8ABtxayoPPzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUp7AeAW1vmMQsx/3hpTJfiBC2NEYwHwYDVR0j BBgwFoAU4uKxhhgGKv5WgZjdYGMTFMOEcpEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w M2JhMGQzOC1jYTYyLTRjMmItOTBlMi04ZWVlZWI4MzE4NjAvMC9FMkUyQjE4NjE4 MDYyQUZFNTY4MTk4REQ2MDYzMTMxNEMzODQ3MjkxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTJFMkIxODYxODA2MkFGRTU2ODE5OERENjA2MzEzMTRDMzg0 NzI5MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAzYmEwZDM4LWNhNjItNGMyYi05 MGUyLThlZWVlYjgzMTg2MC8wLzMxMzAzMzJlMzEzOTM4MmUzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDM5MzQzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfGATANBgkqhkiG 9w0BAQsFAAOCAQEAfi09aiiOZmBkjtfBldYqOgPm/u3axrXf6lPdvHSBfvJENEJa gHWKD2nsSOflrbhndtzL0VEFkW8VGSLNTYDe5a2/FV3zG6q3vMC73FEqz3eQygNQ 20EdxuCMADldMiiaCw36A5UWhc4mTG/F1FfeDGB/2dc/FyzJGJjqTjnWBzmbz6e6 r9B7j4XsbzOBhtZCRH02hSP2/9XrCIinY1qt0PU1pLbvulXl5trlN0mLMs0DGTZQ hfaKKcn78Iyei+h5Cvc+GaJB0AAt2PNZdJhNViyK3/lfYPqJFA7YYC1thw375wwr i9y9iU6nlUFx4LhgR9X1yvM+K2AV/hpzMj+hnQ== -----END CERTIFICATE-----Generated at Sun Apr 6 19:24:57 2025 by rpki-client