$ rpki-client -vvf repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/3130332e32392e3231322e302f32322d3234203d3e203538333737.roa File: 3130332e32392e3231322e302f32322d3234203d3e203538333737.roa (raw, json) Hash identifier: bEv5NJFvGjCqOM99MFNub18kUBXqluJLuz63DD7/xZ4= Subject key identifier: 17:96:BF:70:0D:EE:61:CA:B7:62:76:86:44:94:85:D7:FB:DB:68:7E Certificate issuer: /CN=43A0899A11D5A51202F1304338672AF19B201A74 Certificate serial: 4EE48E36F38A0545228CA7C8F9D102F30FE14F05 Authority key identifier: 43:A0:89:9A:11:D5:A5:12:02:F1:30:43:38:67:2A:F1:9B:20:1A:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43A0899A11D5A51202F1304338672AF19B201A74.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/3130332e32392e3231322e302f32322d3234203d3e203538333737.roa Signing time: Wed 22 Jan 2025 07:00:02 +0000 ROA not before: Wed 22 Jan 2025 06:55:02 +0000 ROA not after: Wed 21 Jan 2026 07:00:02 +0000 asID: 58377 IP address blocks: 103.29.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.crl rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43A0899A11D5A51202F1304338672AF19B201A74.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 07:36:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:e4:8e:36:f3:8a:05:45:22:8c:a7:c8:f9:d1:02:f3:0f:e1:4f:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43A0899A11D5A51202F1304338672AF19B201A74 Validity Not Before: Jan 22 06:55:02 2025 GMT Not After : Jan 21 07:00:02 2026 GMT Subject: CN=1796BF700DEE61CAB7627686449485D7FBDB687E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5f:33:6c:0c:2b:95:17:4c:f0:fa:a1:8a:4b: fc:f3:cd:1f:a0:ff:80:39:57:be:7a:11:46:cf:65: 2d:97:63:39:c6:fc:ac:18:a0:54:9e:50:36:80:81: a6:66:56:86:3b:69:7f:c9:8b:9b:92:3f:b7:2c:11: 55:19:9b:4c:96:df:aa:8d:f4:dc:31:83:04:55:af: 63:e6:2c:de:fd:10:94:e0:d8:63:e7:32:b9:08:5f: 71:0e:a2:70:ff:7b:bf:59:50:a6:42:c8:3b:e2:80: 65:cf:18:0a:65:78:62:85:4f:8e:f5:dc:35:a7:02: bc:2a:29:3b:18:d3:0b:02:be:b6:52:42:ae:7f:27: 22:b5:97:dc:85:03:08:8e:64:48:f3:82:26:84:a7: e2:6f:33:54:d5:b6:c7:3e:9c:c8:93:42:fd:28:1c: 59:ea:22:eb:e1:5f:ad:f6:b9:76:bf:3d:88:a4:74: 26:58:d5:f5:2c:bb:d5:55:ee:56:2a:b8:2f:1e:5e: d1:d4:7d:52:97:3b:0c:32:09:e3:2d:ec:4b:67:e5: 42:2c:5b:eb:c9:d7:a6:22:d6:32:4c:09:dc:f5:6b: 79:af:ef:9b:69:b6:af:ff:ef:a2:ec:0d:40:a1:2e: bc:bd:80:04:3d:37:2f:41:80:9d:30:bc:b4:aa:86: 4c:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:96:BF:70:0D:EE:61:CA:B7:62:76:86:44:94:85:D7:FB:DB:68:7E X509v3 Authority Key Identifier: keyid:43:A0:89:9A:11:D5:A5:12:02:F1:30:43:38:67:2A:F1:9B:20:1A:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43A0899A11D5A51202F1304338672AF19B201A74.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/3130332e32392e3231322e302f32322d3234203d3e203538333737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.29.212.0/22 Signature Algorithm: sha256WithRSAEncryption 75:f1:56:5e:ff:98:6d:04:85:37:e9:30:03:63:58:2a:8c:d8: e5:2f:b2:96:f6:65:52:03:4f:9a:ef:72:e7:e4:25:e8:6b:10: f4:43:13:2e:f5:18:f2:90:47:9e:c3:21:50:71:06:67:d8:59: 2b:f2:77:d9:55:4e:77:54:56:14:db:60:e8:77:b0:07:aa:3c: d6:3a:0d:b2:0a:f5:52:b9:23:1c:68:e4:d9:6d:4e:f8:bd:ab: 57:09:36:e6:f2:4d:b7:1a:fb:ad:2d:55:66:82:fe:bd:ce:9a: 2d:17:f4:3c:d2:43:ad:b5:21:1b:c7:78:0a:4b:e9:db:86:3e: d9:11:55:89:35:4e:e0:d4:a7:aa:09:ac:c6:5e:c4:95:67:b0: 7c:ef:a2:b9:33:a8:af:b8:1f:37:e2:4a:6c:90:ad:92:3a:05: 69:74:14:d7:00:8a:ea:bb:e1:55:bd:e1:20:7a:d6:41:82:bc: 92:9a:08:e7:ef:54:49:ae:b2:8c:8e:f3:60:f4:dc:b0:1c:03: 3c:50:79:c8:52:9b:e5:cf:5f:ad:dc:f1:5d:1d:21:27:00:d5: 89:10:ae:98:bd:4f:72:3c:4d:4e:b9:60:66:7c:a1:65:45:3f: cd:56:8e:5b:36:29:36:a4:fa:52:bc:41:d9:4b:c4:4a:0a:55: 1d:e6:c1:cd -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTuSONvOKBUUijKfI+dEC8w/hTwUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNBMDg5OUExMUQ1QTUxMjAyRjEzMDQzMzg2NzJBRjE5 QjIwMUE3NDAeFw0yNTAxMjIwNjU1MDJaFw0yNjAxMjEwNzAwMDJaMDMxMTAvBgNV BAMTKDE3OTZCRjcwMERFRTYxQ0FCNzYyNzY4NjQ0OTQ4NUQ3RkJEQjY4N0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKXzNsDCuVF0zw+qGKS/zzzR+g /4A5V756EUbPZS2XYznG/KwYoFSeUDaAgaZmVoY7aX/Ji5uSP7csEVUZm0yW36qN 9NwxgwRVr2PmLN79EJTg2GPnMrkIX3EOonD/e79ZUKZCyDvigGXPGApleGKFT471 3DWnArwqKTsY0wsCvrZSQq5/JyK1l9yFAwiOZEjzgiaEp+JvM1TVtsc+nMiTQv0o HFnqIuvhX632uXa/PYikdCZY1fUsu9VV7lYquC8eXtHUfVKXOwwyCeMt7Etn5UIs W+vJ16Yi1jJMCdz1a3mv75tptq//76LsDUChLry9gAQ9Ny9BgJ0wvLSqhkynAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUF5a/cA3uYcq3YnaGRJSF1/vbaH4wHwYDVR0j BBgwFoAUQ6CJmhHVpRIC8TBDOGcq8ZsgGnQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDAxYjJkMS0wMWNhLTQwZTgtYmY3Ny05ODYxNTk4NjdhMDQvMC80M0EwODk5QTEx RDVBNTEyMDJGMTMwNDMzODY3MkFGMTlCMjAxQTc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDNBMDg5OUExMUQ1QTUxMjAyRjEzMDQzMzg2NzJBRjE5QjIw MUE3NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0MDFiMmQxLTAxY2EtNDBlOC1i Zjc3LTk4NjE1OTg2N2EwNC8wLzMxMzAzMzJlMzIzOTJlMzIzMTMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzODMzMzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcd1DANBgkqhkiG 9w0BAQsFAAOCAQEAdfFWXv+YbQSFN+kwA2NYKozY5S+ylvZlUgNPmu9y5+Ql6GsQ 9EMTLvUY8pBHnsMhUHEGZ9hZK/J32VVOd1RWFNtg6HewB6o81joNsgr1UrkjHGjk 2W1O+L2rVwk25vJNtxr7rS1VZoL+vc6aLRf0PNJDrbUhG8d4Ckvp24Y+2RFViTVO 4NSnqgmsxl7ElWewfO+iuTOor7gfN+JKbJCtkjoFaXQU1wCK6rvhVb3hIHrWQYK8 kpoI5+9USa6yjI7zYPTcsBwDPFB5yFKb5c9frdzxXR0hJwDViRCumL1PcjxNTrlg ZnyhZUU/zVaOWzYpNqT6UrxB2UvESgpVHebBzQ== -----END CERTIFICATE-----Generated at Sun Apr 6 06:00:54 2025 by rpki-client