$ rpki-client -vvf repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/3130332e3133342e31382e302f32342d3234203d3e20313332363334.roa File: 3130332e3133342e31382e302f32342d3234203d3e20313332363334.roa (raw, json) Hash identifier: Z0N6isYAhB+e8rxLvCh1RIXjBWd+TKJHWZOCO+4YKaI= Subject key identifier: FD:11:22:48:01:8F:FD:63:E4:A9:A7:41:57:36:CD:1E:3D:00:FF:5C Certificate issuer: /CN=9FC1BED6B099F4E57BAD9FA6F092421927472311 Certificate serial: 258B7DC943FC7607947F3915F013A1DDF40F582B Authority key identifier: 9F:C1:BE:D6:B0:99:F4:E5:7B:AD:9F:A6:F0:92:42:19:27:47:23:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FC1BED6B099F4E57BAD9FA6F092421927472311.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/3130332e3133342e31382e302f32342d3234203d3e20313332363334.roa Signing time: Thu 09 Jan 2025 09:54:28 +0000 ROA not before: Thu 09 Jan 2025 09:49:28 +0000 ROA not after: Thu 08 Jan 2026 09:54:28 +0000 asID: 132634 IP address blocks: 103.134.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/9FC1BED6B099F4E57BAD9FA6F092421927472311.crl rsync://repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/9FC1BED6B099F4E57BAD9FA6F092421927472311.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FC1BED6B099F4E57BAD9FA6F092421927472311.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 11:16:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:8b:7d:c9:43:fc:76:07:94:7f:39:15:f0:13:a1:dd:f4:0f:58:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FC1BED6B099F4E57BAD9FA6F092421927472311 Validity Not Before: Jan 9 09:49:28 2025 GMT Not After : Jan 8 09:54:28 2026 GMT Subject: CN=FD112248018FFD63E4A9A7415736CD1E3D00FF5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:90:cd:c8:05:f4:35:50:f1:06:3a:02:53:1a: 4f:9f:46:9c:55:eb:22:b6:97:68:8a:4a:19:4a:67: 7b:4d:75:ca:2f:18:06:d3:01:8f:13:2b:48:7d:ea: e4:3d:c6:bb:c5:a9:9c:1c:4a:f4:ca:8e:dd:c2:e5: 54:b0:c1:93:1f:3b:e1:de:b6:10:44:dd:7d:3f:da: 83:8f:ce:52:bd:0b:a0:81:01:d1:a9:99:3e:96:9c: b3:ae:e0:da:6d:1a:ab:69:73:04:ed:ed:da:6f:52: 5b:25:5a:5b:d3:b4:da:df:02:23:94:9c:ab:1c:cc: 0f:29:45:81:0b:be:eb:21:3d:20:07:a2:28:92:1b: 65:ba:37:c7:15:22:4e:72:9a:29:c6:9d:89:57:41: 67:ac:ed:23:f2:b6:68:1e:6f:9b:42:de:a5:b7:a6: 3c:7a:1a:55:43:bb:04:b7:fb:09:27:ee:75:76:97: d8:29:ef:f3:f1:d8:e3:49:19:06:47:c2:14:52:73: 69:97:93:4d:8a:ae:5f:65:3d:81:d8:85:0c:71:b7: c1:c7:d3:1c:79:8e:eb:ff:2e:be:c3:2d:64:55:a5: f1:9e:04:b2:27:ca:e4:14:50:3f:09:9d:96:2b:10: 94:47:83:8d:af:35:1b:6f:17:ac:70:3e:fe:86:63: 25:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:11:22:48:01:8F:FD:63:E4:A9:A7:41:57:36:CD:1E:3D:00:FF:5C X509v3 Authority Key Identifier: keyid:9F:C1:BE:D6:B0:99:F4:E5:7B:AD:9F:A6:F0:92:42:19:27:47:23:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/9FC1BED6B099F4E57BAD9FA6F092421927472311.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FC1BED6B099F4E57BAD9FA6F092421927472311.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/3130332e3133342e31382e302f32342d3234203d3e20313332363334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.18.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:cf:37:af:15:ec:9c:29:04:d7:90:72:35:b0:94:86:e1:c5: 05:7c:97:c0:0f:f7:72:c5:e7:75:88:3b:42:91:95:2c:c1:5a: 3d:10:cb:13:02:d0:ef:d5:c5:49:a8:fd:29:54:d0:8c:c9:78: 76:50:8b:02:1e:80:59:b9:b5:ea:f8:8b:af:a5:8b:18:46:b9: 8d:c7:12:8d:b3:dc:25:05:17:61:94:ca:df:0c:70:8e:a9:cf: 60:83:1b:6c:dd:dc:92:85:15:33:ef:d3:18:27:e0:28:04:f8: ea:1b:7e:a4:a8:a6:16:37:06:b6:0e:48:03:d4:22:10:e6:29: 6b:05:12:61:9b:87:e2:0a:6b:4d:5f:ec:88:2d:ce:25:46:36: 29:30:53:69:92:c6:04:a2:d1:75:38:7c:27:41:7d:ff:a5:b5: 48:ec:51:9c:86:13:18:86:c4:17:d4:a4:88:b9:31:99:eb:a7: 85:58:c1:1a:0b:02:7e:04:42:d6:c8:b4:0a:fa:1b:ad:bd:25: 91:50:e5:83:ad:8f:c1:9e:fa:72:a4:ca:ea:79:95:b3:ca:20: 07:ac:03:28:0c:8d:11:af:12:25:bb:35:95:9c:6d:09:ec:6a: ec:5d:1d:88:e6:61:cc:a3:71:ac:64:a8:20:9d:6c:ac:7d:32: ff:b7:45:dd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJYt9yUP8dgeUfzkV8BOh3fQPWCswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZDMUJFRDZCMDk5RjRFNTdCQUQ5RkE2RjA5MjQyMTky NzQ3MjMxMTAeFw0yNTAxMDkwOTQ5MjhaFw0yNjAxMDgwOTU0MjhaMDMxMTAvBgNV BAMTKEZEMTEyMjQ4MDE4RkZENjNFNEE5QTc0MTU3MzZDRDFFM0QwMEZGNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0kM3IBfQ1UPEGOgJTGk+fRpxV 6yK2l2iKShlKZ3tNdcovGAbTAY8TK0h96uQ9xrvFqZwcSvTKjt3C5VSwwZMfO+He thBE3X0/2oOPzlK9C6CBAdGpmT6WnLOu4NptGqtpcwTt7dpvUlslWlvTtNrfAiOU nKsczA8pRYELvushPSAHoiiSG2W6N8cVIk5yminGnYlXQWes7SPytmgeb5tC3qW3 pjx6GlVDuwS3+wkn7nV2l9gp7/Px2ONJGQZHwhRSc2mXk02Krl9lPYHYhQxxt8HH 0xx5juv/Lr7DLWRVpfGeBLInyuQUUD8JnZYrEJRHg42vNRtvF6xwPv6GYyVzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/REiSAGP/WPkqadBVzbNHj0A/1wwHwYDVR0j BBgwFoAUn8G+1rCZ9OV7rZ+m8JJCGSdHIxEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZjAwMjI4Zi02ZTI1LTRjOTYtOWNlNS0yZDUwMjI5YTFkMTgvMC85RkMxQkVENkIw OTlGNEU1N0JBRDlGQTZGMDkyNDIxOTI3NDcyMzExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUZDMUJFRDZCMDk5RjRFNTdCQUQ5RkE2RjA5MjQyMTkyNzQ3 MjMxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBmMDAyMjhmLTZlMjUtNGM5Ni05 Y2U1LTJkNTAyMjlhMWQxOC8wLzMxMzAzMzJlMzEzMzM0MmUzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMyMzYzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4YSMA0GCSqG SIb3DQEBCwUAA4IBAQBKzzevFeycKQTXkHI1sJSG4cUFfJfAD/dyxed1iDtCkZUs wVo9EMsTAtDv1cVJqP0pVNCMyXh2UIsCHoBZubXq+IuvpYsYRrmNxxKNs9wlBRdh lMrfDHCOqc9ggxts3dyShRUz79MYJ+AoBPjqG36kqKYWNwa2DkgD1CIQ5ilrBRJh m4fiCmtNX+yILc4lRjYpMFNpksYEotF1OHwnQX3/pbVI7FGchhMYhsQX1KSIuTGZ 66eFWMEaCwJ+BELWyLQK+hutvSWRUOWDrY/BnvpypMrqeZWzyiAHrAMoDI0RrxIl uzWVnG0J7GrsXR2I5mHMo3GsZKggnWysfTL/t0Xd -----END CERTIFICATE-----Generated at Sun Apr 6 07:43:58 2025 by rpki-client