$ rpki-client -vvf repo-rpki.idnic.net/repo/12ea77b5-88f7-4085-b331-975024cd046d/0/3130332e3130332e3134372e302f32342d3234203d3e20313336383631.roa File: 3130332e3130332e3134372e302f32342d3234203d3e20313336383631.roa (raw, json) Hash identifier: GRVghrICNAdxouBIwXYTRSPY6doN9zN/lvPgtUZIKw0= Subject key identifier: 23:CC:3B:5B:14:C9:F9:EA:F0:01:3C:16:6C:94:C5:3A:7A:B8:14:02 Certificate issuer: /CN=74D4F2785CA261D018C909BA622D8244292BCB3E Certificate serial: 463E2F5F5C9DC932037709A5A1A81BDA2EF7CC2F Authority key identifier: 74:D4:F2:78:5C:A2:61:D0:18:C9:09:BA:62:2D:82:44:29:2B:CB:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/74D4F2785CA261D018C909BA622D8244292BCB3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/12ea77b5-88f7-4085-b331-975024cd046d/0/3130332e3130332e3134372e302f32342d3234203d3e20313336383631.roa Signing time: Wed 07 May 2025 11:15:33 +0000 ROA not before: Wed 07 May 2025 11:10:33 +0000 ROA not after: Wed 06 May 2026 11:15:33 +0000 asID: 136861 IP address blocks: 103.103.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/12ea77b5-88f7-4085-b331-975024cd046d/0/74D4F2785CA261D018C909BA622D8244292BCB3E.crl rsync://repo-rpki.idnic.net/repo/12ea77b5-88f7-4085-b331-975024cd046d/0/74D4F2785CA261D018C909BA622D8244292BCB3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/74D4F2785CA261D018C909BA622D8244292BCB3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:56:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:3e:2f:5f:5c:9d:c9:32:03:77:09:a5:a1:a8:1b:da:2e:f7:cc:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74D4F2785CA261D018C909BA622D8244292BCB3E Validity Not Before: May 7 11:10:33 2025 GMT Not After : May 6 11:15:33 2026 GMT Subject: CN=23CC3B5B14C9F9EAF0013C166C94C53A7AB81402 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:06:f6:45:17:37:25:08:ab:bc:4f:65:5a:4f: df:8b:b3:b5:37:0a:3f:c5:f2:03:dd:c0:50:61:99: f2:18:ee:da:5f:43:55:c4:68:41:ee:f7:f8:3b:20: 07:c9:0b:26:44:03:8e:3f:e2:5f:9a:4c:d3:42:fe: c7:23:c7:71:cb:a1:65:8e:45:a8:1c:5d:79:3f:bc: 05:03:2e:70:95:c3:a9:29:f9:cf:c5:2d:3e:90:b9: 32:c1:74:d5:dd:84:d2:80:a2:f0:ec:d1:9c:3c:ea: 15:dd:2e:0e:8f:9c:ed:a4:ad:5a:fb:c9:95:dd:43: 9b:de:37:78:b3:23:9e:1f:2d:9b:19:18:16:ed:56: da:60:11:4b:32:c4:bb:0f:57:d9:ec:74:00:2b:f7: b6:2c:c1:7b:09:24:5c:54:0b:11:21:fd:4a:eb:42: 48:86:44:97:de:3d:84:a6:26:6f:e0:bc:d1:b9:f7: 93:78:dc:61:19:93:12:1f:fa:ce:a1:62:e2:c4:36: 6a:b2:77:5c:9c:13:40:7e:a9:11:43:33:7a:78:ec: 4b:6b:a9:25:63:7c:db:62:0c:e0:18:53:d1:64:a6: d4:1e:cd:74:d5:75:bc:83:91:85:da:cd:90:2d:70: e6:a8:23:c9:36:ce:cf:4a:4e:1d:5d:7d:e6:dd:35: 7e:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:CC:3B:5B:14:C9:F9:EA:F0:01:3C:16:6C:94:C5:3A:7A:B8:14:02 X509v3 Authority Key Identifier: keyid:74:D4:F2:78:5C:A2:61:D0:18:C9:09:BA:62:2D:82:44:29:2B:CB:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/12ea77b5-88f7-4085-b331-975024cd046d/0/74D4F2785CA261D018C909BA622D8244292BCB3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/74D4F2785CA261D018C909BA622D8244292BCB3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/12ea77b5-88f7-4085-b331-975024cd046d/0/3130332e3130332e3134372e302f32342d3234203d3e20313336383631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.103.147.0/24 Signature Algorithm: sha256WithRSAEncryption 33:76:74:63:cb:ee:76:39:81:87:34:95:c6:7e:39:b2:32:ba: 55:e0:fc:58:06:2f:68:25:55:40:d5:c6:42:d7:d9:82:99:38: 32:a5:06:16:c6:c2:09:bf:32:66:1f:48:6b:1a:29:46:ac:ce: a7:df:69:00:48:de:69:4c:e4:08:9b:62:cd:cc:b5:58:e3:b5: 4f:62:c7:48:34:bf:25:57:fc:a1:06:ad:eb:aa:cc:67:88:43: 7a:b7:31:fe:aa:27:1f:7d:86:0e:57:91:9c:6e:bb:bf:b9:cc: 89:c7:41:03:13:7a:3e:dd:df:c9:74:ee:34:1a:8e:30:0f:cc: 31:63:ed:5f:53:ed:b1:4b:b5:f0:64:ce:79:40:e2:e6:cb:5c: 19:f9:c9:67:ab:78:1b:17:c6:9d:f9:31:18:46:be:ca:70:77: 71:4d:f0:01:07:59:8a:78:40:03:bc:c3:ff:72:c9:ac:dd:4c: 10:5d:51:63:e8:ae:a4:8d:43:ce:3c:83:97:6c:3d:d4:54:29: df:fa:aa:b2:49:00:2d:d1:1b:9b:47:73:ce:bf:e6:cb:eb:3e: 42:67:ef:35:f7:c8:80:0d:3e:28:bc:70:23:50:79:29:b6:7a: 6e:02:9e:87:2d:b1:ab:50:5c:5d:ed:e0:29:4a:e7:fe:3d:e5: cc:72:00:94 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURj4vX1ydyTIDdwmloagb2i73zC8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzRENEYyNzg1Q0EyNjFEMDE4QzkwOUJBNjIyRDgyNDQy OTJCQ0IzRTAeFw0yNTA1MDcxMTEwMzNaFw0yNjA1MDYxMTE1MzNaMDMxMTAvBgNV BAMTKDIzQ0MzQjVCMTRDOUY5RUFGMDAxM0MxNjZDOTRDNTNBN0FCODE0MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyBvZFFzclCKu8T2VaT9+Ls7U3 Cj/F8gPdwFBhmfIY7tpfQ1XEaEHu9/g7IAfJCyZEA44/4l+aTNNC/scjx3HLoWWO RagcXXk/vAUDLnCVw6kp+c/FLT6QuTLBdNXdhNKAovDs0Zw86hXdLg6PnO2krVr7 yZXdQ5veN3izI54fLZsZGBbtVtpgEUsyxLsPV9nsdAAr97YswXsJJFxUCxEh/Urr QkiGRJfePYSmJm/gvNG595N43GEZkxIf+s6hYuLENmqyd1ycE0B+qRFDM3p47Etr qSVjfNtiDOAYU9FkptQezXTVdbyDkYXazZAtcOaoI8k2zs9KTh1dfebdNX6NAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUI8w7WxTJ+erwATwWbJTFOnq4FAIwHwYDVR0j BBgwFoAUdNTyeFyiYdAYyQm6Yi2CRCkryz4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MmVhNzdiNS04OGY3LTQwODUtYjMzMS05NzUwMjRjZDA0NmQvMC83NEQ0RjI3ODVD QTI2MUQwMThDOTA5QkE2MjJEODI0NDI5MkJDQjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzRENEYyNzg1Q0EyNjFEMDE4QzkwOUJBNjIyRDgyNDQyOTJC Q0IzRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEyZWE3N2I1LTg4ZjctNDA4NS1i MzMxLTk3NTAyNGNkMDQ2ZC8wLzMxMzAzMzJlMzEzMDMzMmUzMTM0MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM2MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZ5MwDQYJ KoZIhvcNAQELBQADggEBADN2dGPL7nY5gYc0lcZ+ObIyulXg/FgGL2glVUDVxkLX 2YKZODKlBhbGwgm/MmYfSGsaKUaszqffaQBI3mlM5AibYs3MtVjjtU9ix0g0vyVX /KEGreuqzGeIQ3q3Mf6qJx99hg5XkZxuu7+5zInHQQMTej7d38l07jQajjAPzDFj 7V9T7bFLtfBkznlA4ubLXBn5yWereBsXxp35MRhGvspwd3FN8AEHWYp4QAO8w/9y yazdTBBdUWPorqSNQ848g5dsPdRUKd/6qrJJAC3RG5tHc86/5svrPkJn7zX3yIAN Pii8cCNQeSm2em4CnoctsatQXF3t4ClK5/495cxyAJQ= -----END CERTIFICATE-----Generated at Thu Jun 5 18:41:19 2025 by rpki-client