$ rpki-client -vvf repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/3130332e3133342e31392e302f32342d3234203d3e20313332363334.roa File: 3130332e3133342e31392e302f32342d3234203d3e20313332363334.roa (raw, json) Hash identifier: Iad/pFnY5v/nY50Xd0qR07twAz4pd0+B5syrBkizf7M= Subject key identifier: 67:DC:BE:5C:31:EE:16:33:64:F4:26:58:F9:51:56:83:7B:61:74:B0 Certificate issuer: /CN=9FC1BED6B099F4E57BAD9FA6F092421927472311 Certificate serial: 40000A5CAA7CA8D9A2C46CD47088CDE607293314 Authority key identifier: 9F:C1:BE:D6:B0:99:F4:E5:7B:AD:9F:A6:F0:92:42:19:27:47:23:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FC1BED6B099F4E57BAD9FA6F092421927472311.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/3130332e3133342e31392e302f32342d3234203d3e20313332363334.roa Signing time: Thu 09 Jan 2025 09:43:30 +0000 ROA not before: Thu 09 Jan 2025 09:38:30 +0000 ROA not after: Thu 08 Jan 2026 09:43:30 +0000 asID: 132634 IP address blocks: 103.134.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/9FC1BED6B099F4E57BAD9FA6F092421927472311.crl rsync://repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/9FC1BED6B099F4E57BAD9FA6F092421927472311.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FC1BED6B099F4E57BAD9FA6F092421927472311.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 11:16:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:00:0a:5c:aa:7c:a8:d9:a2:c4:6c:d4:70:88:cd:e6:07:29:33:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FC1BED6B099F4E57BAD9FA6F092421927472311 Validity Not Before: Jan 9 09:38:30 2025 GMT Not After : Jan 8 09:43:30 2026 GMT Subject: CN=67DCBE5C31EE163364F42658F95156837B6174B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d5:a6:c8:b7:b7:58:55:a6:a4:1a:fb:8f:98: d5:13:bd:a1:d8:db:eb:2e:92:af:14:89:6e:f1:b9: e6:41:92:99:2a:ab:81:d9:1f:db:60:7e:27:d4:d5: 06:fa:09:da:1c:a2:c0:dc:5d:33:bf:5b:bb:f5:0b: 4b:93:16:b5:f3:e5:97:15:93:3f:6d:61:04:73:3b: e1:12:8c:31:05:f6:d7:c6:6b:4b:5c:55:36:72:8c: 1c:ba:5d:8c:62:90:cd:5b:e7:f4:26:3e:a4:d7:f5: 66:22:89:58:fa:62:39:53:f9:ea:13:18:b9:8a:65: 0f:12:f8:7c:aa:51:66:1a:be:55:6b:d5:0b:97:74: b2:0b:11:3d:15:c6:80:99:db:2d:53:5b:c7:f7:85: a0:14:72:e9:d6:85:83:84:86:2e:01:f2:67:15:59: b3:d4:5d:7d:fc:e2:2e:0b:d9:75:15:b3:2f:44:de: fa:b5:eb:31:5b:ed:68:18:69:9d:0f:66:14:41:70: d7:ea:b3:64:95:5f:aa:ed:bd:c4:61:60:f8:9c:8c: 8d:fb:dc:ea:19:81:5a:9f:1c:b4:7b:80:af:76:5c: d0:65:3a:7e:bb:b7:10:85:91:f7:dc:69:af:b8:8c: f7:61:be:4f:13:00:33:b3:50:6f:f4:06:a6:51:58: f2:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:DC:BE:5C:31:EE:16:33:64:F4:26:58:F9:51:56:83:7B:61:74:B0 X509v3 Authority Key Identifier: keyid:9F:C1:BE:D6:B0:99:F4:E5:7B:AD:9F:A6:F0:92:42:19:27:47:23:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/9FC1BED6B099F4E57BAD9FA6F092421927472311.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FC1BED6B099F4E57BAD9FA6F092421927472311.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0f00228f-6e25-4c96-9ce5-2d50229a1d18/0/3130332e3133342e31392e302f32342d3234203d3e20313332363334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.19.0/24 Signature Algorithm: sha256WithRSAEncryption 25:33:51:91:31:84:82:cd:2b:25:37:c5:e6:7f:0b:12:bb:2c: fb:3e:02:14:9d:7b:54:96:5f:11:1d:08:2e:c0:59:33:a2:93: c0:63:21:f3:e8:20:45:6f:c5:3b:38:98:53:64:b9:ab:66:b0: 40:dc:e7:a7:59:89:9c:4e:8f:df:2e:55:70:fc:2b:d4:45:0a: a7:f8:14:fc:8a:b4:ba:9b:70:cc:c7:90:4d:82:24:d3:ba:cc: 9b:49:9d:70:61:a0:2e:91:60:f3:27:8d:2c:66:27:06:dc:6a: 83:b0:5c:aa:f8:ff:2d:3d:01:7e:ba:04:77:51:6b:59:9f:87: 51:77:32:74:a5:5d:5b:2d:33:9a:fc:9d:54:f7:98:12:dc:da: 2b:eb:01:ab:98:86:ca:98:90:d4:7b:a9:07:7b:f4:96:70:8b: 76:d0:06:3b:51:31:ee:98:1d:be:2c:18:db:ff:fb:04:bd:70: 2c:35:00:a2:67:cb:ab:66:bd:00:4d:5f:80:33:94:e6:7a:d5: 9b:d3:bc:0c:ed:29:99:c6:55:83:4a:14:84:fa:64:02:68:29: 0f:0b:29:3b:d2:c9:61:6e:e7:be:65:70:ff:7f:ce:14:fc:a2: 38:e8:4a:c0:a0:3e:f9:ac:ec:a5:fe:dd:65:20:38:2f:52:88: 24:77:c7:39 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQAAKXKp8qNmixGzUcIjN5gcpMxQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZDMUJFRDZCMDk5RjRFNTdCQUQ5RkE2RjA5MjQyMTky NzQ3MjMxMTAeFw0yNTAxMDkwOTM4MzBaFw0yNjAxMDgwOTQzMzBaMDMxMTAvBgNV BAMTKDY3RENCRTVDMzFFRTE2MzM2NEY0MjY1OEY5NTE1NjgzN0I2MTc0QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr1abIt7dYVaakGvuPmNUTvaHY 2+sukq8UiW7xueZBkpkqq4HZH9tgfifU1Qb6CdocosDcXTO/W7v1C0uTFrXz5ZcV kz9tYQRzO+ESjDEF9tfGa0tcVTZyjBy6XYxikM1b5/QmPqTX9WYiiVj6YjlT+eoT GLmKZQ8S+HyqUWYavlVr1QuXdLILET0VxoCZ2y1TW8f3haAUcunWhYOEhi4B8mcV WbPUXX384i4L2XUVsy9E3vq16zFb7WgYaZ0PZhRBcNfqs2SVX6rtvcRhYPicjI37 3OoZgVqfHLR7gK92XNBlOn67txCFkffcaa+4jPdhvk8TADOzUG/0BqZRWPLBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZ9y+XDHuFjNk9CZY+VFWg3thdLAwHwYDVR0j BBgwFoAUn8G+1rCZ9OV7rZ+m8JJCGSdHIxEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZjAwMjI4Zi02ZTI1LTRjOTYtOWNlNS0yZDUwMjI5YTFkMTgvMC85RkMxQkVENkIw OTlGNEU1N0JBRDlGQTZGMDkyNDIxOTI3NDcyMzExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUZDMUJFRDZCMDk5RjRFNTdCQUQ5RkE2RjA5MjQyMTkyNzQ3 MjMxMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBmMDAyMjhmLTZlMjUtNGM5Ni05 Y2U1LTJkNTAyMjlhMWQxOC8wLzMxMzAzMzJlMzEzMzM0MmUzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMyMzYzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4YTMA0GCSqG SIb3DQEBCwUAA4IBAQAlM1GRMYSCzSslN8XmfwsSuyz7PgIUnXtUll8RHQguwFkz opPAYyHz6CBFb8U7OJhTZLmrZrBA3OenWYmcTo/fLlVw/CvURQqn+BT8irS6m3DM x5BNgiTTusybSZ1wYaAukWDzJ40sZicG3GqDsFyq+P8tPQF+ugR3UWtZn4dRdzJ0 pV1bLTOa/J1U95gS3Nor6wGrmIbKmJDUe6kHe/SWcIt20AY7UTHumB2+LBjb//sE vXAsNQCiZ8urZr0ATV+AM5TmetWb07wM7SmZxlWDShSE+mQCaCkPCyk70slhbue+ ZXD/f84U/KI46ErAoD75rOyl/t1lIDgvUogkd8c5 -----END CERTIFICATE-----Generated at Sun Apr 6 07:43:39 2025 by rpki-client