$ rpki-client -vvf repo-rpki.idnic.net/repo/10ff022a-9b16-4b4c-98a2-534994f589d0/0/3130332e3137322e37302e302f32332d3234203d3e20313432333836.roa File: 3130332e3137322e37302e302f32332d3234203d3e20313432333836.roa (raw, json) Hash identifier: 1/5F/Fe2PkpRkHNw+n97pPHSrmMag78XpgU4CUEJyIA= Subject key identifier: F7:D1:24:B1:86:2B:87:74:02:F1:8D:7F:70:41:3A:84:0C:F6:4A:F9 Certificate issuer: /CN=7E46C2EE5082354F1494DE6AEA6CDA642769EDF1 Certificate serial: 63AAF1C768C142D020CD9C7003FF885BE94FDD15 Authority key identifier: 7E:46:C2:EE:50:82:35:4F:14:94:DE:6A:EA:6C:DA:64:27:69:ED:F1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E46C2EE5082354F1494DE6AEA6CDA642769EDF1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/10ff022a-9b16-4b4c-98a2-534994f589d0/0/3130332e3137322e37302e302f32332d3234203d3e20313432333836.roa Signing time: Tue 25 Mar 2025 10:00:00 +0000 ROA not before: Tue 25 Mar 2025 09:55:00 +0000 ROA not after: Tue 24 Mar 2026 10:00:00 +0000 asID: 142386 IP address blocks: 103.172.70.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/10ff022a-9b16-4b4c-98a2-534994f589d0/0/7E46C2EE5082354F1494DE6AEA6CDA642769EDF1.crl rsync://repo-rpki.idnic.net/repo/10ff022a-9b16-4b4c-98a2-534994f589d0/0/7E46C2EE5082354F1494DE6AEA6CDA642769EDF1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E46C2EE5082354F1494DE6AEA6CDA642769EDF1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:aa:f1:c7:68:c1:42:d0:20:cd:9c:70:03:ff:88:5b:e9:4f:dd:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E46C2EE5082354F1494DE6AEA6CDA642769EDF1 Validity Not Before: Mar 25 09:55:00 2025 GMT Not After : Mar 24 10:00:00 2026 GMT Subject: CN=F7D124B1862B877402F18D7F70413A840CF64AF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4f:26:bd:da:01:37:f9:51:c4:d1:4d:58:da: 71:25:fc:98:43:d0:54:4f:d0:0c:41:ca:d6:1d:a9: 40:6b:05:b2:ad:e4:8e:73:cd:09:fe:86:64:9b:ff: 5c:6a:34:4d:52:12:02:89:9e:c3:40:c5:ca:c2:cb: 02:54:b7:69:24:9a:b4:46:b9:99:11:16:38:55:1d: 07:f6:c6:f0:e6:4c:86:32:3a:01:f1:c6:17:2b:28: a7:64:ef:17:85:35:84:b0:69:1e:00:8e:64:e0:36: 15:c4:16:b7:8a:e5:3d:89:0d:ae:e6:18:39:94:ea: 68:14:96:86:78:41:14:1e:c5:27:79:7c:bf:b6:fd: 92:df:b8:d0:b1:9d:1b:be:1c:59:00:cc:5d:73:2d: 95:e4:55:96:ca:cd:40:56:77:88:d0:b1:e4:72:90: c4:41:da:68:df:a1:2a:fc:7e:51:71:be:18:9b:38: 07:da:ae:94:8e:78:e6:72:9a:7c:cd:08:62:a5:be: 8d:c1:4f:9e:03:ec:f0:42:5e:72:1e:00:3e:41:cd: 3d:55:a3:2c:32:c1:65:46:04:56:1b:d2:42:01:b5: 42:39:cf:fa:14:ee:2f:1d:6f:60:e0:79:01:fd:d6: e3:8d:86:53:b6:02:fe:73:70:f5:66:64:1a:fa:d7: 14:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:D1:24:B1:86:2B:87:74:02:F1:8D:7F:70:41:3A:84:0C:F6:4A:F9 X509v3 Authority Key Identifier: keyid:7E:46:C2:EE:50:82:35:4F:14:94:DE:6A:EA:6C:DA:64:27:69:ED:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/10ff022a-9b16-4b4c-98a2-534994f589d0/0/7E46C2EE5082354F1494DE6AEA6CDA642769EDF1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E46C2EE5082354F1494DE6AEA6CDA642769EDF1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/10ff022a-9b16-4b4c-98a2-534994f589d0/0/3130332e3137322e37302e302f32332d3234203d3e20313432333836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.70.0/23 Signature Algorithm: sha256WithRSAEncryption 72:2d:ec:24:03:46:ce:80:1c:05:15:3b:28:0f:70:c5:67:73: 47:99:68:91:aa:96:eb:ff:63:89:ef:6b:32:72:de:a5:b3:d0: e8:59:b0:ba:2e:b1:90:3b:d7:5c:98:53:1d:8b:3a:71:e9:a6: 31:83:37:f4:77:6e:6c:d2:ae:e7:d6:6e:6b:71:ff:48:77:2e: f4:1d:af:05:41:19:7b:42:84:43:fa:64:e4:2e:05:9d:7d:6f: 3a:01:d7:c4:1e:e2:12:2f:5a:ba:1b:c8:92:0b:0f:42:49:44: 88:30:3e:ae:3a:5b:a9:ab:c9:9d:64:36:6b:87:8d:76:7d:d2: 09:e4:2b:6a:bc:95:61:b7:e0:df:09:5c:2b:0d:5d:46:40:4b: 1d:51:06:f2:82:04:33:6d:d6:dd:42:b0:ff:1b:6e:2e:8c:82: fd:b0:a3:73:52:20:f6:0f:c9:45:10:5d:87:4f:79:d5:f7:fa: 42:7b:d4:70:48:ad:d9:fd:6d:b3:3b:9f:e9:a7:81:b6:e8:b0: 13:fd:26:03:ea:71:99:a4:6e:2f:b4:ed:87:87:05:36:c3:23: 80:6b:fa:b1:ba:35:56:0e:1d:02:25:c9:20:b6:1b:67:99:fe: 92:00:1b:8e:1d:41:a2:fc:53:c0:9e:5a:dc:4f:2a:ac:c4:74: ac:32:56:8f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUY6rxx2jBQtAgzZxwA/+IW+lP3RUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0U0NkMyRUU1MDgyMzU0RjE0OTRERTZBRUE2Q0RBNjQy NzY5RURGMTAeFw0yNTAzMjUwOTU1MDBaFw0yNjAzMjQxMDAwMDBaMDMxMTAvBgNV BAMTKEY3RDEyNEIxODYyQjg3NzQwMkYxOEQ3RjcwNDEzQTg0MENGNjRBRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHTya92gE3+VHE0U1Y2nEl/JhD 0FRP0AxBytYdqUBrBbKt5I5zzQn+hmSb/1xqNE1SEgKJnsNAxcrCywJUt2kkmrRG uZkRFjhVHQf2xvDmTIYyOgHxxhcrKKdk7xeFNYSwaR4AjmTgNhXEFreK5T2JDa7m GDmU6mgUloZ4QRQexSd5fL+2/ZLfuNCxnRu+HFkAzF1zLZXkVZbKzUBWd4jQseRy kMRB2mjfoSr8flFxvhibOAfarpSOeOZymnzNCGKlvo3BT54D7PBCXnIeAD5BzT1V oywywWVGBFYb0kIBtUI5z/oU7i8db2DgeQH91uONhlO2Av5zcPVmZBr61xQvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU99EksYYrh3QC8Y1/cEE6hAz2SvkwHwYDVR0j BBgwFoAUfkbC7lCCNU8UlN5q6mzaZCdp7fEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MGZmMDIyYS05YjE2LTRiNGMtOThhMi01MzQ5OTRmNTg5ZDAvMC83RTQ2QzJFRTUw ODIzNTRGMTQ5NERFNkFFQTZDREE2NDI3NjlFREYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0U0NkMyRUU1MDgyMzU0RjE0OTRERTZBRUE2Q0RBNjQyNzY5 RURGMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEwZmYwMjJhLTliMTYtNGI0Yy05 OGEyLTUzNDk5NGY1ODlkMC8wLzMxMzAzMzJlMzEzNzMyMmUzNzMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzODM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6xGMA0GCSqG SIb3DQEBCwUAA4IBAQByLewkA0bOgBwFFTsoD3DFZ3NHmWiRqpbr/2OJ72syct6l s9DoWbC6LrGQO9dcmFMdizpx6aYxgzf0d25s0q7n1m5rcf9Idy70Ha8FQRl7QoRD +mTkLgWdfW86AdfEHuISL1q6G8iSCw9CSUSIMD6uOlupq8mdZDZrh412fdIJ5Ctq vJVht+DfCVwrDV1GQEsdUQbyggQzbdbdQrD/G24ujIL9sKNzUiD2D8lFEF2HT3nV 9/pCe9RwSK3Z/W2zO5/pp4G26LAT/SYD6nGZpG4vtO2HhwU2wyOAa/qxujVWDh0C Jckgthtnmf6SABuOHUGi/FPAnlrcTyqsxHSsMlaP -----END CERTIFICATE-----Generated at Sun Apr 6 11:01:19 2025 by rpki-client