$ rpki-client -vvf repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/3130332e3130302e3137332e302f32342d3234203d3e20313336383431.roa File: 3130332e3130302e3137332e302f32342d3234203d3e20313336383431.roa (raw, json) Hash identifier: Yo/r10NdHpCyWdp4iTpRbnPv2TKKyCyVTnBiO8AmbDc= Subject key identifier: 60:57:9A:EE:70:9D:5E:C0:4F:E3:A7:E6:08:98:F4:49:6F:04:3B:6B Certificate issuer: /CN=645C9D445B2796662EE98A03E50C124F3E962CAB Certificate serial: 27551FF62E76F6FD98AD9C10F8C1756F739634E5 Authority key identifier: 64:5C:9D:44:5B:27:96:66:2E:E9:8A:03:E5:0C:12:4F:3E:96:2C:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/3130332e3130302e3137332e302f32342d3234203d3e20313336383431.roa Signing time: Tue 04 Mar 2025 06:00:58 +0000 ROA not before: Tue 04 Mar 2025 05:55:58 +0000 ROA not after: Tue 03 Mar 2026 06:00:58 +0000 asID: 136841 IP address blocks: 103.100.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.crl rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 08:22:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:55:1f:f6:2e:76:f6:fd:98:ad:9c:10:f8:c1:75:6f:73:96:34:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=645C9D445B2796662EE98A03E50C124F3E962CAB Validity Not Before: Mar 4 05:55:58 2025 GMT Not After : Mar 3 06:00:58 2026 GMT Subject: CN=60579AEE709D5EC04FE3A7E60898F4496F043B6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4e:07:d5:17:cd:c3:b2:d9:44:79:51:54:e7: 41:62:5a:30:93:12:ba:0c:e1:c7:d6:e6:9a:3e:a2: 53:b2:9c:cc:e6:b1:46:2a:fd:e7:49:61:0e:22:c3: 16:ed:a0:6e:5c:aa:1a:70:f1:69:79:24:c6:0a:3f: d7:ae:67:5b:c2:6a:97:a1:e8:7c:c7:b9:f1:31:77: b7:38:45:9d:ab:32:aa:08:a3:a8:03:7a:d3:3a:7e: 19:74:ff:e2:b7:8c:7f:f3:44:aa:22:98:1b:e5:10: f6:f2:5b:d9:e0:b4:a1:51:69:38:a9:82:85:39:51: c6:48:8c:90:06:2c:83:6b:5b:90:21:2d:09:15:fd: a1:15:4f:de:c8:c1:af:16:4c:da:e0:a5:e9:56:15: e6:83:0b:d7:44:99:6e:cb:33:80:8a:05:c2:76:26: 9d:a4:32:4c:e2:69:c1:15:04:d0:34:8b:77:5a:07: 80:4b:15:20:d6:b3:92:d2:98:26:b5:77:17:5d:c8: f5:5d:8a:b8:33:dc:bb:c5:79:2a:e3:79:b4:43:f7: cd:79:8d:2d:a8:41:05:c9:19:94:1b:f7:c7:79:40: 8b:e6:9f:ac:4a:c0:82:10:36:54:85:8d:62:35:6e: e9:51:d8:dc:b2:c2:84:50:ef:fb:8b:61:96:45:99: dd:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:57:9A:EE:70:9D:5E:C0:4F:E3:A7:E6:08:98:F4:49:6F:04:3B:6B X509v3 Authority Key Identifier: keyid:64:5C:9D:44:5B:27:96:66:2E:E9:8A:03:E5:0C:12:4F:3E:96:2C:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/3130332e3130302e3137332e302f32342d3234203d3e20313336383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.100.173.0/24 Signature Algorithm: sha256WithRSAEncryption 10:f2:50:31:5b:ca:46:72:f1:b9:b0:63:e9:92:62:11:f4:cb: 4a:61:9d:57:ce:07:a1:9e:3d:77:20:13:e9:bf:31:a7:87:a9: 92:92:c7:44:90:05:78:bd:00:fb:9f:c1:83:57:52:7e:00:1c: 11:49:11:3a:12:50:63:e4:3f:10:7c:15:fe:91:ef:d7:95:6b: 1d:23:2e:21:5a:65:9e:05:31:5e:43:97:77:d3:dc:60:2e:61: ef:86:53:d6:dd:55:a5:86:b9:45:1d:d3:e4:91:7a:4f:f0:7b: 9f:6f:da:2f:7d:c9:bb:66:d3:a9:1f:01:ab:11:cd:dd:94:66: 2d:04:ea:1d:59:d8:68:ac:df:fd:cc:58:0e:b4:fe:fb:a1:64: 15:2e:33:7f:ef:67:bb:d3:d9:1f:f3:96:93:2b:79:eb:10:41: 8d:7a:60:68:db:6c:9d:e2:84:b4:0a:30:9a:78:20:db:82:4a: c6:2d:50:47:15:25:fe:c5:33:7b:de:4d:cd:d9:1e:14:96:83: 47:23:23:5a:17:03:e8:5e:27:56:cf:d5:a0:0a:8b:c2:c9:b1: ec:85:c8:f3:c4:86:a2:c8:08:dc:a0:62:4e:76:46:e4:34:7f: bb:ce:4e:c3:1b:b0:53:84:a5:ba:26:7f:04:19:bc:9f:86:c7: 12:c8:4f:d9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJ1Uf9i529v2YrZwQ+MF1b3OWNOUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEyNEYz RTk2MkNBQjAeFw0yNTAzMDQwNTU1NThaFw0yNjAzMDMwNjAwNThaMDMxMTAvBgNV BAMTKDYwNTc5QUVFNzA5RDVFQzA0RkUzQTdFNjA4OThGNDQ5NkYwNDNCNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2TgfVF83DstlEeVFU50FiWjCT EroM4cfW5po+olOynMzmsUYq/edJYQ4iwxbtoG5cqhpw8Wl5JMYKP9euZ1vCapeh 6HzHufExd7c4RZ2rMqoIo6gDetM6fhl0/+K3jH/zRKoimBvlEPbyW9ngtKFRaTip goU5UcZIjJAGLINrW5AhLQkV/aEVT97Iwa8WTNrgpelWFeaDC9dEmW7LM4CKBcJ2 Jp2kMkziacEVBNA0i3daB4BLFSDWs5LSmCa1dxddyPVdirgz3LvFeSrjebRD9815 jS2oQQXJGZQb98d5QIvmn6xKwIIQNlSFjWI1bulR2NyywoRQ7/uLYZZFmd1rAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUYFea7nCdXsBP46fmCJj0SW8EO2swHwYDVR0j BBgwFoAUZFydRFsnlmYu6YoD5QwSTz6WLKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NzMwNGI4My0zMGFhLTRiYmYtOWZkNy0yZmNlYWRiZjAwMzAvMC82NDVDOUQ0NDVC Mjc5NjY2MkVFOThBMDNFNTBDMTI0RjNFOTYyQ0FCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEyNEYzRTk2 MkNBQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA3MzA0YjgzLTMwYWEtNGJiZi05 ZmQ3LTJmY2VhZGJmMDAzMC8wLzMxMzAzMzJlMzEzMDMwMmUzMTM3MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZK0wDQYJ KoZIhvcNAQELBQADggEBABDyUDFbykZy8bmwY+mSYhH0y0phnVfOB6GePXcgE+m/ MaeHqZKSx0SQBXi9APufwYNXUn4AHBFJEToSUGPkPxB8Ff6R79eVax0jLiFaZZ4F MV5Dl3fT3GAuYe+GU9bdVaWGuUUd0+SRek/we59v2i99ybtm06kfAasRzd2UZi0E 6h1Z2Gis3/3MWA60/vuhZBUuM3/vZ7vT2R/zlpMreesQQY16YGjbbJ3ihLQKMJp4 INuCSsYtUEcVJf7FM3veTc3ZHhSWg0cjI1oXA+heJ1bP1aAKi8LJseyFyPPEhqLI CNygYk52RuQ0f7vOTsMbsFOEpbomfwQZvJ+GxxLIT9k= -----END CERTIFICATE-----Generated at Sun Apr 6 07:34:47 2025 by rpki-client