$ rpki-client -vvf repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131362e302f32322d3234203d3e203539323831.roa File: 3130332e3232382e3131362e302f32322d3234203d3e203539323831.roa (raw, json) Hash identifier: 0on0Zr09JZO2uwExsn4al/aKrzhro4Rbk1hM7yfdFaI= Subject key identifier: D5:F4:B0:B5:2C:EE:62:40:E7:91:48:29:49:0C:DB:01:35:4F:5A:4F Certificate issuer: /CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Certificate serial: 47B0BF2D95CCA6FCC452912F20CCA3E70BB573A4 Authority key identifier: 84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131362e302f32322d3234203d3e203539323831.roa Signing time: Fri 27 Dec 2024 10:00:00 +0000 ROA not before: Fri 27 Dec 2024 09:55:00 +0000 ROA not after: Fri 26 Dec 2025 10:00:00 +0000 asID: 59281 IP address blocks: 103.228.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 15:43:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:b0:bf:2d:95:cc:a6:fc:c4:52:91:2f:20:cc:a3:e7:0b:b5:73:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Validity Not Before: Dec 27 09:55:00 2024 GMT Not After : Dec 26 10:00:00 2025 GMT Subject: CN=D5F4B0B52CEE6240E7914829490CDB01354F5A4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:de:82:60:ce:90:7d:a2:fc:c1:08:34:24:51: 63:fa:30:fd:32:85:d0:5d:26:5e:d1:8a:84:56:8c: ac:fe:2d:23:f8:03:83:11:3a:9f:66:df:57:80:7d: 83:5f:8c:c6:9a:4d:4b:7c:8e:c0:3d:40:5d:d8:70: 5d:24:09:7e:e0:0a:8b:06:ea:29:ad:07:8f:92:27: f8:45:a8:0f:95:ce:31:87:c9:e2:b3:09:34:27:77: f0:d4:d9:6f:ad:51:fe:66:c4:b8:04:9b:f1:08:c3: 73:6a:7f:be:43:ed:c8:b2:d7:d1:a4:f3:ed:3c:83: f9:a5:62:95:74:61:12:c9:3c:51:19:d9:f3:f5:b9: 35:70:a9:20:42:80:fb:fc:9d:fe:07:b4:45:99:10: 12:1b:77:86:35:ad:f6:52:52:b6:ae:87:b5:aa:27: a4:21:97:04:81:7b:8c:64:3f:cf:66:fd:42:df:30: f0:ab:53:01:0c:b8:5a:bc:2d:63:75:21:48:44:1a: 08:24:ce:56:0e:ab:eb:e6:af:e5:e5:51:0e:94:0b: 9c:7b:fd:d1:9a:1f:6c:54:4f:75:d7:bc:c4:29:00: 17:fc:d7:76:b0:c1:61:14:f6:82:f8:18:d9:82:8f: 7e:07:db:fa:42:5b:77:98:a2:99:e7:04:cd:aa:00: 60:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:F4:B0:B5:2C:EE:62:40:E7:91:48:29:49:0C:DB:01:35:4F:5A:4F X509v3 Authority Key Identifier: keyid:84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131362e302f32322d3234203d3e203539323831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.228.116.0/22 Signature Algorithm: sha256WithRSAEncryption 38:d5:5c:4a:c8:3c:a2:2b:a0:93:9c:4d:9b:3a:b1:04:e1:23: da:d6:13:d5:09:a7:2a:ce:50:17:9e:67:fe:ca:17:af:9c:2b: 48:f8:03:af:38:f1:b5:de:50:87:c5:7d:03:b4:0d:43:a7:ff: 0e:81:1d:5c:09:9a:2b:be:70:a4:e9:80:7a:6a:d7:73:d4:3a: 33:57:b0:9e:96:94:03:0d:dc:fa:98:df:25:b8:ea:44:ce:07: 37:9e:a4:b6:0e:07:12:d2:07:66:a2:45:5c:61:3c:05:3e:92: 5d:6d:12:4a:62:56:1c:35:eb:ae:e8:01:71:4d:cd:40:06:33: dd:93:ce:80:fc:35:8b:76:ee:ad:6a:36:ba:28:5f:7d:52:d0: ce:d2:9d:8a:41:45:b7:bc:e4:72:ef:4f:b9:61:0a:36:80:1f: 98:00:5c:5e:d4:11:30:f8:25:64:07:68:b8:e6:35:fc:78:f3: ac:36:32:3a:75:76:c8:01:d2:6a:e6:70:c5:2e:02:54:8b:e7: 1a:6b:f0:89:33:a2:ee:7d:36:a3:cf:a7:14:28:e8:fe:ca:20: b2:7c:79:45:a2:a2:b4:a9:10:7e:ca:29:af:aa:05:a4:b1:14: e5:af:ba:d0:7e:02:fc:cd:dc:1b:ed:db:b5:0a:f5:4d:4e:f3: a8:7d:b3:9a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUR7C/LZXMpvzEUpEvIMyj5wu1c6QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0 ODUzMEU5RTAeFw0yNDEyMjcwOTU1MDBaFw0yNTEyMjYxMDAwMDBaMDMxMTAvBgNV BAMTKEQ1RjRCMEI1MkNFRTYyNDBFNzkxNDgyOTQ5MENEQjAxMzU0RjVBNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy3oJgzpB9ovzBCDQkUWP6MP0y hdBdJl7RioRWjKz+LSP4A4MROp9m31eAfYNfjMaaTUt8jsA9QF3YcF0kCX7gCosG 6imtB4+SJ/hFqA+VzjGHyeKzCTQnd/DU2W+tUf5mxLgEm/EIw3Nqf75D7ciy19Gk 8+08g/mlYpV0YRLJPFEZ2fP1uTVwqSBCgPv8nf4HtEWZEBIbd4Y1rfZSUrauh7Wq J6QhlwSBe4xkP89m/ULfMPCrUwEMuFq8LWN1IUhEGggkzlYOq+vmr+XlUQ6UC5x7 /dGaH2xUT3XXvMQpABf813awwWEU9oL4GNmCj34H2/pCW3eYopnnBM2qAGCVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU1fSwtSzuYkDnkUgpSQzbATVPWk8wHwYDVR0j BBgwFoAUhGmHSuJo4s1OmhN+3VWZx0hTDp4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2EyZDI1Yi1jYjE4LTQ1YmUtOWZhMS0xNTRjYTE1NzkyMjMvMC84NDY5ODc0QUUy NjhFMkNENEU5QTEzN0VERDU1OTlDNzQ4NTMwRTlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0ODUz MEU5RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3YTJkMjViLWNiMTgtNDViZS05 ZmExLTE1NGNhMTU3OTIyMy8wLzMxMzAzMzJlMzIzMjM4MmUzMTMxMzYyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM5MzIzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+R0MA0GCSqG SIb3DQEBCwUAA4IBAQA41VxKyDyiK6CTnE2bOrEE4SPa1hPVCacqzlAXnmf+yhev nCtI+AOvOPG13lCHxX0DtA1Dp/8OgR1cCZorvnCk6YB6atdz1DozV7CelpQDDdz6 mN8luOpEzgc3nqS2DgcS0gdmokVcYTwFPpJdbRJKYlYcNeuu6AFxTc1ABjPdk86A /DWLdu6taja6KF99UtDO0p2KQUW3vORy70+5YQo2gB+YAFxe1BEw+CVkB2i45jX8 ePOsNjI6dXbIAdJq5nDFLgJUi+caa/CJM6LufTajz6cUKOj+yiCyfHlFoqK0qRB+ yimvqgWksRTlr7rQfgL8zdwb7du1CvVNTvOofbOa -----END CERTIFICATE-----Generated at Fri Apr 11 21:30:35 2025 by rpki-client