$ rpki-client -vvf repo-rpki.idnic.net/repo/0c54be9a-9b5d-4c64-b4e8-61c74e9ecedc/0/3130332e3132352e31352e302f32342d3234203d3e20313335363336.roa File: 3130332e3132352e31352e302f32342d3234203d3e20313335363336.roa (raw, json) Hash identifier: jfBPikwcOXfyCAw2T4LtcRftqdJoZDQGQR3Ub10AvuI= Subject key identifier: 0B:94:89:4D:B5:86:E1:E2:CF:47:A9:F3:64:ED:00:A0:1D:67:0D:2D Certificate issuer: /CN=07043FF6B66099F2CBFBBB64672822F3014937E8 Certificate serial: 18628B865FEDBE6069566ADBAE30AAA2FFDDD7A0 Authority key identifier: 07:04:3F:F6:B6:60:99:F2:CB:FB:BB:64:67:28:22:F3:01:49:37:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/07043FF6B66099F2CBFBBB64672822F3014937E8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c54be9a-9b5d-4c64-b4e8-61c74e9ecedc/0/3130332e3132352e31352e302f32342d3234203d3e20313335363336.roa Signing time: Thu 27 Feb 2025 04:00:00 +0000 ROA not before: Thu 27 Feb 2025 03:55:00 +0000 ROA not after: Thu 26 Feb 2026 04:00:00 +0000 asID: 135636 IP address blocks: 103.125.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c54be9a-9b5d-4c64-b4e8-61c74e9ecedc/0/07043FF6B66099F2CBFBBB64672822F3014937E8.crl rsync://repo-rpki.idnic.net/repo/0c54be9a-9b5d-4c64-b4e8-61c74e9ecedc/0/07043FF6B66099F2CBFBBB64672822F3014937E8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/07043FF6B66099F2CBFBBB64672822F3014937E8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 05:29:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:62:8b:86:5f:ed:be:60:69:56:6a:db:ae:30:aa:a2:ff:dd:d7:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07043FF6B66099F2CBFBBB64672822F3014937E8 Validity Not Before: Feb 27 03:55:00 2025 GMT Not After : Feb 26 04:00:00 2026 GMT Subject: CN=0B94894DB586E1E2CF47A9F364ED00A01D670D2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:64:31:b3:20:fa:a7:77:44:8c:ee:68:4a:3c: c1:7b:72:a1:bc:53:b6:be:c1:24:32:a8:32:61:6e: 59:34:67:b9:33:ae:ff:a4:5a:fd:5d:8a:8a:d8:48: 86:80:f1:8b:1a:7f:c8:98:52:52:fe:90:79:80:b3: c4:87:9c:19:a9:76:c5:5f:08:a9:a9:2f:64:34:1b: 97:6d:51:11:8d:01:ae:1a:61:04:e0:08:1a:c5:49: 6f:d8:89:f3:68:56:60:43:81:82:84:48:9b:91:ae: 50:b6:a8:1c:4d:bd:44:6e:e2:92:a4:26:73:19:ae: 89:76:45:0f:a7:d2:c2:18:f5:83:c3:e4:0b:e7:b3: 91:f0:67:18:10:31:38:e0:4e:37:5a:a9:c4:08:36: c4:1c:ba:74:2c:fd:8a:9c:67:d8:e3:56:cf:2a:97: 10:5c:dd:0e:9a:16:74:d5:ae:da:cc:d2:69:dc:e5: 88:bf:b9:af:7c:fd:b3:8f:27:7a:4e:7d:c5:af:30: d2:a4:52:2c:f8:ed:82:f0:be:e4:2b:01:95:61:4e: 23:e1:7d:a8:19:bc:e8:13:85:02:b5:55:4e:88:e9: 5a:5a:a5:23:ac:c1:fa:95:74:59:f7:84:06:39:50: 43:b7:8e:9b:f2:eb:93:2e:50:6f:e6:e5:53:bc:12: 16:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:94:89:4D:B5:86:E1:E2:CF:47:A9:F3:64:ED:00:A0:1D:67:0D:2D X509v3 Authority Key Identifier: keyid:07:04:3F:F6:B6:60:99:F2:CB:FB:BB:64:67:28:22:F3:01:49:37:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c54be9a-9b5d-4c64-b4e8-61c74e9ecedc/0/07043FF6B66099F2CBFBBB64672822F3014937E8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/07043FF6B66099F2CBFBBB64672822F3014937E8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c54be9a-9b5d-4c64-b4e8-61c74e9ecedc/0/3130332e3132352e31352e302f32342d3234203d3e20313335363336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.15.0/24 Signature Algorithm: sha256WithRSAEncryption 72:a8:6a:61:c2:0c:59:f6:e2:58:84:34:8a:1b:97:e5:5a:8e: dd:3e:22:c1:cf:e0:5b:f7:d1:b6:51:5b:c1:eb:46:88:cb:e6: a1:c6:35:33:31:1e:2a:5b:56:9a:3b:54:46:8a:ff:01:bc:6c: de:ff:90:97:db:dc:cc:24:3a:72:16:a9:97:d1:d3:e3:4d:e4: 86:ab:d1:7e:26:3e:76:6b:ce:33:10:19:e7:a4:87:99:4e:7c: 0d:af:d3:d8:22:60:96:72:0b:e5:27:d0:92:bd:1f:0a:53:93: 7e:5f:b5:71:96:de:4d:51:f8:06:db:0f:fb:e8:f0:de:8a:a2: e9:78:f4:b0:99:d2:10:ac:af:37:10:b5:7a:01:3a:15:7a:95: d2:b0:ac:9d:b3:87:44:ed:46:1f:96:53:ff:95:c3:d5:b2:0d: 6c:7c:4c:44:e2:4e:cd:66:dd:aa:77:04:8d:21:ed:60:22:c7: 85:67:f4:8b:9f:58:2d:da:42:ea:aa:dc:04:a4:86:55:22:72: 47:c3:86:77:f1:d2:b3:18:48:5f:77:13:c0:19:94:0c:e1:ea: b9:4b:bd:76:7a:07:2a:88:68:f7:3a:36:65:e7:70:ad:f7:6b: 29:86:91:a7:eb:9f:89:82:2b:47:48:05:40:69:a8:f2:de:bc: 3e:a4:eb:78 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGGKLhl/tvmBpVmrbrjCqov/d16AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDcwNDNGRjZCNjYwOTlGMkNCRkJCQjY0NjcyODIyRjMw MTQ5MzdFODAeFw0yNTAyMjcwMzU1MDBaFw0yNjAyMjYwNDAwMDBaMDMxMTAvBgNV BAMTKDBCOTQ4OTREQjU4NkUxRTJDRjQ3QTlGMzY0RUQwMEEwMUQ2NzBEMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBZDGzIPqnd0SM7mhKPMF7cqG8 U7a+wSQyqDJhblk0Z7kzrv+kWv1diorYSIaA8Ysaf8iYUlL+kHmAs8SHnBmpdsVf CKmpL2Q0G5dtURGNAa4aYQTgCBrFSW/YifNoVmBDgYKESJuRrlC2qBxNvURu4pKk JnMZrol2RQ+n0sIY9YPD5Avns5HwZxgQMTjgTjdaqcQINsQcunQs/YqcZ9jjVs8q lxBc3Q6aFnTVrtrM0mnc5Yi/ua98/bOPJ3pOfcWvMNKkUiz47YLwvuQrAZVhTiPh fagZvOgThQK1VU6I6VpapSOswfqVdFn3hAY5UEO3jpvy65MuUG/m5VO8EhZJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUC5SJTbWG4eLPR6nzZO0AoB1nDS0wHwYDVR0j BBgwFoAUBwQ/9rZgmfLL+7tkZygi8wFJN+gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzU0YmU5YS05YjVkLTRjNjQtYjRlOC02MWM3NGU5ZWNlZGMvMC8wNzA0M0ZGNkI2 NjA5OUYyQ0JGQkJCNjQ2NzI4MjJGMzAxNDkzN0U4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDcwNDNGRjZCNjYwOTlGMkNCRkJCQjY0NjcyODIyRjMwMTQ5 MzdFOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjNTRiZTlhLTliNWQtNGM2NC1i NGU4LTYxYzc0ZTllY2VkYy8wLzMxMzAzMzJlMzEzMjM1MmUzMTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzYzMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ30PMA0GCSqG SIb3DQEBCwUAA4IBAQByqGphwgxZ9uJYhDSKG5flWo7dPiLBz+Bb99G2UVvB60aI y+ahxjUzMR4qW1aaO1RGiv8BvGze/5CX29zMJDpyFqmX0dPjTeSGq9F+Jj52a84z EBnnpIeZTnwNr9PYImCWcgvlJ9CSvR8KU5N+X7Vxlt5NUfgG2w/76PDeiqLpePSw mdIQrK83ELV6AToVepXSsKyds4dE7UYfllP/lcPVsg1sfExE4k7NZt2qdwSNIe1g IseFZ/SLn1gt2kLqqtwEpIZVInJHw4Z38dKzGEhfdxPAGZQM4eq5S712egcqiGj3 OjZl53Ct92sphpGn65+JgitHSAVAaajy3rw+pOt4 -----END CERTIFICATE-----Generated at Sun Apr 6 13:34:10 2025 by rpki-client