$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133382e302f32342d3234203d3e20313431383932.roa File: 3130332e3131322e3133382e302f32342d3234203d3e20313431383932.roa (raw, json) Hash identifier: 7d6L1YnpzkSH3cjd/bratlHXMkaO39mRUgOEKpnPFL4= Subject key identifier: 89:A0:74:91:9B:3F:08:4A:1F:FA:F7:13:77:3C:77:F1:65:BB:5C:2D Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 03AD566268F416E27701901B055D952DB9571E33 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133382e302f32342d3234203d3e20313431383932.roa Signing time: Tue 21 Jan 2025 14:00:00 +0000 ROA not before: Tue 21 Jan 2025 13:55:00 +0000 ROA not after: Tue 20 Jan 2026 14:00:00 +0000 asID: 141892 IP address blocks: 103.112.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 19:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:ad:56:62:68:f4:16:e2:77:01:90:1b:05:5d:95:2d:b9:57:1e:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Jan 21 13:55:00 2025 GMT Not After : Jan 20 14:00:00 2026 GMT Subject: CN=89A074919B3F084A1FFAF713773C77F165BB5C2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:b8:62:d8:e3:0e:69:38:1f:f1:80:a2:07:1c: 91:98:a9:01:5f:b9:a6:ad:d9:f9:4f:cc:69:4b:a8: 64:7e:a9:9a:e8:13:75:0f:e9:de:75:d0:a0:1f:0a: 89:70:cc:a5:6b:e3:15:3e:4d:68:04:e0:3c:21:03: 6b:ee:80:1f:ea:de:5b:c8:e1:98:c7:c2:b0:d3:81: 76:df:23:7b:9e:55:32:61:ab:7e:2b:7e:8c:70:5e: a7:66:81:98:4d:f8:e2:2e:f2:63:c5:60:ff:48:18: 2e:07:8e:46:54:b3:7e:86:7e:d3:ed:a4:94:92:88: 5c:3b:c5:e7:bf:6d:a2:c5:d3:85:eb:14:55:ce:cd: 34:c6:55:28:44:c7:e1:43:b4:57:18:3a:83:f6:7b: 69:3c:d6:d2:f0:07:ae:4e:e1:f7:21:03:68:72:33: a6:cb:f3:23:02:97:4a:c0:1f:0b:c6:11:6d:7a:9c: e2:8f:a3:10:6a:a6:07:8c:5b:57:46:da:a6:10:f7: 5b:ed:11:a3:93:77:f1:da:3c:0b:84:f4:b9:a9:18: 6e:33:e7:69:01:5e:73:e5:ea:66:5a:86:ad:72:cd: 8b:48:5c:15:c9:70:94:51:81:b2:a9:7b:ba:6e:dd: ba:df:aa:46:82:fe:aa:c9:83:b0:1f:d9:c9:97:43: 82:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:A0:74:91:9B:3F:08:4A:1F:FA:F7:13:77:3C:77:F1:65:BB:5C:2D X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133382e302f32342d3234203d3e20313431383932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.138.0/24 Signature Algorithm: sha256WithRSAEncryption 11:9f:af:88:21:6f:ec:b0:b4:16:09:7f:e7:41:2a:74:e4:0a: fd:a2:5c:58:96:0f:1d:0d:ff:fa:83:69:76:0f:67:18:9d:ac: 05:0a:ba:42:9d:a3:f2:d6:99:3f:27:06:4d:5e:ae:4c:8d:bd: 62:de:a6:63:dc:60:81:da:d5:c8:97:bf:01:df:27:d8:7c:a3: 3c:64:df:ec:7b:0f:18:2f:97:28:d4:de:25:24:4d:92:38:04: 0f:54:73:8f:29:ec:6d:1b:eb:b2:c1:33:35:ce:a8:a7:29:81: d4:2e:94:76:a7:e2:87:6b:34:a6:8c:c5:e0:1f:24:7a:95:b4: 11:0b:ae:e4:69:92:32:15:ac:7a:b2:18:07:26:ab:45:e8:db: 91:6a:3c:fe:4f:47:ad:8f:52:4f:48:fb:6f:04:44:d3:61:e9: 71:e1:da:42:d7:ac:79:44:22:cd:3b:27:fb:fa:c9:3f:95:d8: 00:6c:16:a3:e5:e9:92:31:a8:89:32:a1:c9:37:84:bd:24:1a: c2:6d:80:f7:56:34:cc:30:79:1a:79:2d:a2:83:01:95:ac:5d: 24:28:42:04:ce:43:8f:27:b2:ba:a0:ac:c9:14:96:4c:48:6e: f2:4d:56:19:5c:f6:99:86:5f:3b:09:ee:3d:34:4e:f0:89:4f: 40:b8:bd:5f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUA61WYmj0FuJ3AZAbBV2VLblXHjMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNTAxMjExMzU1MDBaFw0yNjAxMjAxNDAwMDBaMDMxMTAvBgNV BAMTKDg5QTA3NDkxOUIzRjA4NEExRkZBRjcxMzc3M0M3N0YxNjVCQjVDMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhuGLY4w5pOB/xgKIHHJGYqQFf uaat2flPzGlLqGR+qZroE3UP6d510KAfColwzKVr4xU+TWgE4DwhA2vugB/q3lvI 4ZjHwrDTgXbfI3ueVTJhq34rfoxwXqdmgZhN+OIu8mPFYP9IGC4HjkZUs36GftPt pJSSiFw7xee/baLF04XrFFXOzTTGVShEx+FDtFcYOoP2e2k81tLwB65O4fchA2hy M6bL8yMCl0rAHwvGEW16nOKPoxBqpgeMW1dG2qYQ91vtEaOTd/HaPAuE9LmpGG4z 52kBXnPl6mZahq1yzYtIXBXJcJRRgbKpe7pu3brfqkaC/qrJg7Af2cmXQ4K/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUiaB0kZs/CEof+vcTdzx38WW7XC0wHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMxMzAzMzJlMzEzMTMyMmUzMTMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzODM5MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABncIowDQYJ KoZIhvcNAQELBQADggEBABGfr4ghb+ywtBYJf+dBKnTkCv2iXFiWDx0N//qDaXYP ZxidrAUKukKdo/LWmT8nBk1erkyNvWLepmPcYIHa1ciXvwHfJ9h8ozxk3+x7Dxgv lyjU3iUkTZI4BA9Uc48p7G0b67LBMzXOqKcpgdQulHan4odrNKaMxeAfJHqVtBEL ruRpkjIVrHqyGAcmq0Xo25FqPP5PR62PUk9I+28ERNNh6XHh2kLXrHlEIs07J/v6 yT+V2ABsFqPl6ZIxqIkyock3hL0kGsJtgPdWNMwweRp5LaKDAZWsXSQoQgTOQ48n srqgrMkUlkxIbvJNVhlc9pmGXzsJ7j00TvCJT0C4vV8= -----END CERTIFICATE-----Generated at Sun Apr 6 17:11:43 2025 by rpki-client