$ rpki-client -vvf repo-rpki.idnic.net/repo/0dd078fe-0930-45dc-b403-3ce4e863f8b5/0/3130332e3136382e3134392e302f32342d3234203d3e20313432333135.roa File: 3130332e3136382e3134392e302f32342d3234203d3e20313432333135.roa (raw, json) Hash identifier: HlXbf2sqo1wPRmjyAMq3IzqSfph/qeQjUmYJ52xMgz8= Subject key identifier: 86:CE:36:D5:29:64:5B:70:AB:18:4D:1F:2A:24:41:9F:43:17:0E:72 Certificate issuer: /CN=EFCC7BEA840185763FF7624CF3DDE00563137A27 Certificate serial: 299DC43F1C3EC9524700FEA3C34BE9CBF3640101 Authority key identifier: EF:CC:7B:EA:84:01:85:76:3F:F7:62:4C:F3:DD:E0:05:63:13:7A:27 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFCC7BEA840185763FF7624CF3DDE00563137A27.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0dd078fe-0930-45dc-b403-3ce4e863f8b5/0/3130332e3136382e3134392e302f32342d3234203d3e20313432333135.roa Signing time: Wed 02 Apr 2025 08:00:00 +0000 ROA not before: Wed 02 Apr 2025 07:55:00 +0000 ROA not after: Wed 01 Apr 2026 08:00:00 +0000 asID: 142315 IP address blocks: 103.168.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0dd078fe-0930-45dc-b403-3ce4e863f8b5/0/EFCC7BEA840185763FF7624CF3DDE00563137A27.crl rsync://repo-rpki.idnic.net/repo/0dd078fe-0930-45dc-b403-3ce4e863f8b5/0/EFCC7BEA840185763FF7624CF3DDE00563137A27.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFCC7BEA840185763FF7624CF3DDE00563137A27.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:9d:c4:3f:1c:3e:c9:52:47:00:fe:a3:c3:4b:e9:cb:f3:64:01:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EFCC7BEA840185763FF7624CF3DDE00563137A27 Validity Not Before: Apr 2 07:55:00 2025 GMT Not After : Apr 1 08:00:00 2026 GMT Subject: CN=86CE36D529645B70AB184D1F2A24419F43170E72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7d:fa:f3:80:06:74:e3:8b:06:54:13:3e:d2: f4:d9:e8:76:37:9c:d6:0c:7e:a6:ea:97:fb:59:58: 6f:10:40:83:b6:3a:b0:1f:68:bc:bf:12:fd:c5:01: 5f:0f:ea:67:3c:54:74:9e:68:4a:a9:33:d8:be:69: 4f:b5:50:08:9d:7b:10:eb:0c:8b:45:66:ff:a9:0e: b2:a8:c5:b0:e5:61:66:fd:f4:28:58:95:77:3e:56: 16:f2:be:d6:3b:7b:2b:e2:19:72:e3:64:a9:b5:e1: 9a:df:ea:cc:0b:a8:ad:48:f4:4b:73:f1:2e:5a:fc: f0:22:19:be:d5:82:52:5a:14:a9:3a:cc:9e:2e:eb: fa:41:85:c6:97:72:d2:f5:b5:e6:d2:08:bd:46:a2: f7:52:75:f3:1a:8f:95:17:b5:d7:b2:05:71:6d:bf: 3b:c2:44:66:9b:15:d9:a9:4e:67:96:d1:22:a3:47: 95:44:19:d7:48:fe:b0:f1:a5:ae:d2:e5:44:f0:1e: f3:74:d7:0a:a4:63:9d:ff:23:a0:5b:c7:a9:67:b7: 42:24:ad:21:9c:fc:f1:dc:fc:81:0e:42:e2:52:12: 8f:77:2d:4e:e6:02:5b:8d:9d:73:f1:ca:8b:68:84: 05:25:12:78:e1:e6:38:97:e0:8e:92:7c:c7:1a:33: ea:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:CE:36:D5:29:64:5B:70:AB:18:4D:1F:2A:24:41:9F:43:17:0E:72 X509v3 Authority Key Identifier: keyid:EF:CC:7B:EA:84:01:85:76:3F:F7:62:4C:F3:DD:E0:05:63:13:7A:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0dd078fe-0930-45dc-b403-3ce4e863f8b5/0/EFCC7BEA840185763FF7624CF3DDE00563137A27.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFCC7BEA840185763FF7624CF3DDE00563137A27.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0dd078fe-0930-45dc-b403-3ce4e863f8b5/0/3130332e3136382e3134392e302f32342d3234203d3e20313432333135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.149.0/24 Signature Algorithm: sha256WithRSAEncryption 15:20:9f:20:ae:51:e0:c4:88:42:bc:cb:7b:ef:ed:c5:e4:52: 7e:2f:07:de:27:ee:94:2a:fd:11:ec:11:15:0d:a5:42:b9:2e: bc:ab:ea:d1:83:c2:81:ab:45:16:03:ae:b7:91:01:92:53:86: 72:a5:62:a8:af:45:de:3d:19:90:12:4f:71:84:10:1a:63:9d: e8:a7:d1:7b:75:58:d1:3b:05:39:4a:79:f2:9c:4f:16:68:97: e0:c7:15:d1:47:d7:6a:a0:60:12:98:50:0c:79:f4:fb:e8:a5: 06:d5:2e:47:3f:f0:b3:5f:fe:ef:79:f4:d2:c0:b7:dc:0c:5b: 04:5f:41:e4:4f:02:59:c6:7c:a6:eb:e2:e8:cf:e8:81:33:03: ee:bb:cc:67:6a:8d:2c:45:cc:79:e8:b5:69:24:b3:b3:38:17: f0:ae:e8:f3:a5:60:cc:00:f4:7a:c0:52:86:b6:a7:58:50:2b: 7f:7d:bf:db:fb:b8:03:ed:0c:9a:a6:91:1c:97:d1:33:79:d6: 7c:a6:48:5c:2d:f8:4c:9e:f3:28:32:e7:4e:b7:84:23:fc:ea: 75:25:79:78:a5:cd:31:f7:53:47:c3:2f:cc:fb:d7:31:65:86: 32:a8:90:cc:d6:22:e5:06:8a:14:17:1e:a1:5a:a5:87:ea:56: ab:f4:12:44 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKZ3EPxw+yVJHAP6jw0vpy/NkAQEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUZDQzdCRUE4NDAxODU3NjNGRjc2MjRDRjNEREUwMDU2 MzEzN0EyNzAeFw0yNTA0MDIwNzU1MDBaFw0yNjA0MDEwODAwMDBaMDMxMTAvBgNV BAMTKDg2Q0UzNkQ1Mjk2NDVCNzBBQjE4NEQxRjJBMjQ0MTlGNDMxNzBFNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/ffrzgAZ044sGVBM+0vTZ6HY3 nNYMfqbql/tZWG8QQIO2OrAfaLy/Ev3FAV8P6mc8VHSeaEqpM9i+aU+1UAidexDr DItFZv+pDrKoxbDlYWb99ChYlXc+VhbyvtY7eyviGXLjZKm14Zrf6swLqK1I9Etz 8S5a/PAiGb7VglJaFKk6zJ4u6/pBhcaXctL1tebSCL1GovdSdfMaj5UXtdeyBXFt vzvCRGabFdmpTmeW0SKjR5VEGddI/rDxpa7S5UTwHvN01wqkY53/I6Bbx6lnt0Ik rSGc/PHc/IEOQuJSEo93LU7mAluNnXPxyotohAUlEnjh5jiX4I6SfMcaM+rtAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUhs421SlkW3CrGE0fKiRBn0MXDnIwHwYDVR0j BBgwFoAU78x76oQBhXY/92JM893gBWMTeicwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZGQwNzhmZS0wOTMwLTQ1ZGMtYjQwMy0zY2U0ZTg2M2Y4YjUvMC9FRkNDN0JFQTg0 MDE4NTc2M0ZGNzYyNENGM0RERTAwNTYzMTM3QTI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUZDQzdCRUE4NDAxODU3NjNGRjc2MjRDRjNEREUwMDU2MzEz N0EyNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBkZDA3OGZlLTA5MzAtNDVkYy1i NDAzLTNjZTRlODYzZjhiNS8wLzMxMzAzMzJlMzEzNjM4MmUzMTM0MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzMxMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqJUwDQYJ KoZIhvcNAQELBQADggEBABUgnyCuUeDEiEK8y3vv7cXkUn4vB94n7pQq/RHsERUN pUK5Lryr6tGDwoGrRRYDrreRAZJThnKlYqivRd49GZAST3GEEBpjnein0Xt1WNE7 BTlKefKcTxZol+DHFdFH12qgYBKYUAx59PvopQbVLkc/8LNf/u959NLAt9wMWwRf QeRPAlnGfKbr4ujP6IEzA+67zGdqjSxFzHnotWkks7M4F/Cu6POlYMwA9HrAUoa2 p1hQK399v9v7uAPtDJqmkRyX0TN51nymSFwt+Eye8ygy5063hCP86nUleXilzTH3 U0fDL8z71zFlhjKokMzWIuUGihQXHqFapYfqVqv0EkQ= -----END CERTIFICATE-----Generated at Sun Apr 6 05:57:06 2025 by rpki-client