$ rpki-client -vvf repo-rpki.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/3130332e3130372e3133372e302f32342d3234203d3e20313530393332.roa File: 3130332e3130372e3133372e302f32342d3234203d3e20313530393332.roa (raw, json) Hash identifier: zcf0fxuemOf4RxDYg/wXb/E8ywGLbCGXefaol950bi0= Subject key identifier: 8E:6A:5D:E1:90:04:E0:D8:A9:F9:96:81:1B:7E:31:D7:58:FE:7C:03 Certificate issuer: /CN=CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8 Certificate serial: 02E24B9D51DDA0AABCEEF447E32924AD1742865B Authority key identifier: CC:2F:A8:A6:92:DD:D4:4F:4E:A7:0E:AE:AC:32:04:D5:3E:64:55:C8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/3130332e3130372e3133372e302f32342d3234203d3e20313530393332.roa Signing time: Thu 27 Feb 2025 16:00:02 +0000 ROA not before: Thu 27 Feb 2025 15:55:02 +0000 ROA not after: Thu 26 Feb 2026 16:00:02 +0000 asID: 150932 IP address blocks: 103.107.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8.crl rsync://repo-rpki.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 12:51:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:e2:4b:9d:51:dd:a0:aa:bc:ee:f4:47:e3:29:24:ad:17:42:86:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8 Validity Not Before: Feb 27 15:55:02 2025 GMT Not After : Feb 26 16:00:02 2026 GMT Subject: CN=8E6A5DE19004E0D8A9F996811B7E31D758FE7C03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3c:d9:fb:5f:c8:72:c0:86:09:74:1f:16:08: 55:a2:cc:8f:9a:78:93:cd:e1:e0:86:bc:e4:80:af: a2:17:58:33:a1:31:7f:3a:8d:8e:37:8f:06:bc:c0: 75:17:ba:f3:4e:62:5f:9b:23:01:af:27:e2:6c:42: 6a:72:1e:f0:f3:3d:cc:87:0f:f4:1f:84:b6:24:b5: 5d:a4:29:69:21:38:83:06:5a:f7:27:67:1e:2a:88: a9:f2:02:85:81:6b:bc:8f:93:a7:0d:04:3a:20:57: 2f:95:42:4e:5b:2d:96:62:5d:9f:4e:6e:79:ef:d7: 8f:c3:d2:5a:0f:d0:2d:84:23:56:d2:14:e3:4d:2e: f9:a4:7d:53:7d:e2:26:41:65:06:4f:da:99:a1:98: 21:0d:20:28:4a:74:42:c3:be:c3:df:03:a4:04:e6: 3c:3a:03:08:79:a1:1c:8e:8f:9f:5c:04:b4:a9:17: 6b:ec:6b:de:1e:a1:21:e8:21:49:41:cd:08:8c:d5: 19:22:d2:44:59:97:ea:23:60:bb:13:55:1f:52:65: f0:2f:c6:9f:5b:b4:89:e4:2d:78:83:54:71:a6:9b: 08:6f:0d:7f:39:89:c6:b2:a7:02:4d:07:74:be:8b: b1:63:70:37:07:52:2b:50:13:e0:74:ff:11:06:91: d1:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:6A:5D:E1:90:04:E0:D8:A9:F9:96:81:1B:7E:31:D7:58:FE:7C:03 X509v3 Authority Key Identifier: keyid:CC:2F:A8:A6:92:DD:D4:4F:4E:A7:0E:AE:AC:32:04:D5:3E:64:55:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/3130332e3130372e3133372e302f32342d3234203d3e20313530393332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.107.137.0/24 Signature Algorithm: sha256WithRSAEncryption b3:3c:92:3a:8f:50:01:a0:5d:78:64:f8:bc:b4:2d:53:c6:c4: 26:1c:9c:03:74:ba:6a:95:f3:fd:d5:8d:85:fa:93:dd:ab:c1: 24:25:ce:c3:31:5a:6c:74:e3:69:04:f5:7e:a6:19:46:66:40: ae:95:6c:ab:20:9c:83:3f:3b:5b:d1:3d:ef:40:d5:2a:04:9c: ab:f2:a0:92:21:58:be:de:5d:f6:9b:7c:25:6f:2b:29:22:aa: aa:a3:94:cb:b0:ae:17:c0:d7:d0:52:44:17:de:82:b9:08:8e: 99:ce:4c:b9:48:0a:cd:10:fe:ab:71:03:a4:18:ce:ec:ec:98: 6f:ea:02:75:71:a2:8d:03:85:47:81:b1:42:fd:53:72:ea:86: 2f:e9:da:81:18:ee:ad:6e:f0:f0:36:00:2f:16:bd:58:5b:60: 6b:76:1d:10:89:a9:10:c3:db:3b:a8:7d:74:b2:a6:a4:91:22: dd:4e:ab:85:b9:65:d0:0c:72:19:0b:5a:0b:7e:99:44:1b:97: 0e:3c:b3:9f:d8:49:df:48:26:63:a4:74:f3:62:58:4e:9e:86: 1d:f2:59:96:d6:3a:af:97:78:f2:7f:10:4f:82:e5:3b:92:d7: 3c:cc:6c:bd:9d:e9:fe:eb:cd:27:3a:1d:87:44:0b:ad:6e:25: b3:4b:06:36 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAuJLnVHdoKq87vRH4ykkrRdChlswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0MyRkE4QTY5MkRERDQ0RjRFQTcwRUFFQUMzMjA0RDUz RTY0NTVDODAeFw0yNTAyMjcxNTU1MDJaFw0yNjAyMjYxNjAwMDJaMDMxMTAvBgNV BAMTKDhFNkE1REUxOTAwNEUwRDhBOUY5OTY4MTFCN0UzMUQ3NThGRTdDMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFPNn7X8hywIYJdB8WCFWizI+a eJPN4eCGvOSAr6IXWDOhMX86jY43jwa8wHUXuvNOYl+bIwGvJ+JsQmpyHvDzPcyH D/QfhLYktV2kKWkhOIMGWvcnZx4qiKnyAoWBa7yPk6cNBDogVy+VQk5bLZZiXZ9O bnnv14/D0loP0C2EI1bSFONNLvmkfVN94iZBZQZP2pmhmCENIChKdELDvsPfA6QE 5jw6Awh5oRyOj59cBLSpF2vsa94eoSHoIUlBzQiM1Rki0kRZl+ojYLsTVR9SZfAv xp9btInkLXiDVHGmmwhvDX85icaypwJNB3S+i7FjcDcHUitQE+B0/xEGkdEzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjmpd4ZAE4Nip+ZaBG34x11j+fAMwHwYDVR0j BBgwFoAUzC+oppLd1E9Opw6urDIE1T5kVcgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YWYzMTU5OS04YjA4LTRmZmQtYTA1Ni03OTVlOGFhMGE1ODYvMC9DQzJGQThBNjky RERENDRGNEVBNzBFQUVBQzMyMDRENTNFNjQ1NUM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0MyRkE4QTY5MkRERDQ0RjRFQTcwRUFFQUMzMjA0RDUzRTY0 NTVDOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhZjMxNTk5LThiMDgtNGZmZC1h MDU2LTc5NWU4YWEwYTU4Ni8wLzMxMzAzMzJlMzEzMDM3MmUzMTMzMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzOTMzMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABna4kwDQYJ KoZIhvcNAQELBQADggEBALM8kjqPUAGgXXhk+Ly0LVPGxCYcnAN0umqV8/3VjYX6 k92rwSQlzsMxWmx042kE9X6mGUZmQK6VbKsgnIM/O1vRPe9A1SoEnKvyoJIhWL7e XfabfCVvKykiqqqjlMuwrhfA19BSRBfegrkIjpnOTLlICs0Q/qtxA6QYzuzsmG/q AnVxoo0DhUeBsUL9U3Lqhi/p2oEY7q1u8PA2AC8WvVhbYGt2HRCJqRDD2zuofXSy pqSRIt1Oq4W5ZdAMchkLWgt+mUQblw48s5/YSd9IJmOkdPNiWE6ehh3yWZbWOq+X ePJ/EE+C5TuS1zzMbL2d6f7rzSc6HYdEC61uJbNLBjY= -----END CERTIFICATE-----Generated at Mon Apr 21 04:06:17 2025 by rpki-client