$ rpki-client -vvf repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131362e302f32332d3233203d3e203536323432.roa File: 3130332e3232382e3131362e302f32332d3233203d3e203536323432.roa (raw, json) Hash identifier: 6BZFe33/a07P77heVgE/RRa/s7Eo4pTfBbM0ftWFlFs= Subject key identifier: D0:C1:C8:11:60:B6:42:B4:21:DE:60:20:FE:81:1F:E3:3A:E2:78:E7 Certificate issuer: /CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Certificate serial: 7EA5F53611B58661B524F5FA84E9C30F55F531F8 Authority key identifier: 84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131362e302f32332d3233203d3e203536323432.roa Signing time: Sat 11 Jan 2025 08:00:00 +0000 ROA not before: Sat 11 Jan 2025 07:55:00 +0000 ROA not after: Sat 10 Jan 2026 08:00:00 +0000 asID: 56242 IP address blocks: 103.228.116.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 11:29:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:a5:f5:36:11:b5:86:61:b5:24:f5:fa:84:e9:c3:0f:55:f5:31:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Validity Not Before: Jan 11 07:55:00 2025 GMT Not After : Jan 10 08:00:00 2026 GMT Subject: CN=D0C1C81160B642B421DE6020FE811FE33AE278E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:92:69:2e:81:d5:2e:81:c1:d2:57:ea:d1:dd: dd:12:a3:1e:08:b1:a2:2d:bd:10:b1:4a:f9:47:d2: 81:57:91:b7:28:ba:98:f1:71:c8:fc:4b:ca:a3:ce: fa:78:c1:68:c8:3a:1e:94:dd:dc:dc:74:7e:22:93: a7:03:09:62:c3:0b:ff:d2:d8:9a:5e:4f:03:66:a9: 98:e3:e1:06:4d:3f:68:38:2f:f5:09:ba:0e:59:89: 17:8e:f7:92:2c:6a:33:4f:d9:50:8d:3b:1b:b4:0d: e5:16:85:cb:b5:56:95:da:d7:5d:85:21:68:e7:49: 36:02:4f:88:f2:17:40:9e:99:0f:54:42:21:ea:b6: f7:c2:e5:d8:ef:92:e5:8d:a6:47:da:15:f3:91:70: 7e:64:3c:9f:16:09:db:30:18:df:63:7c:1f:cd:5b: bb:50:31:ac:ba:d2:1b:87:1e:39:08:9f:83:98:f9: dc:70:08:94:1c:17:45:3a:6b:02:b8:da:27:ce:a0: 0f:af:31:6f:ce:bf:3c:bb:79:e1:3c:e5:d5:f3:73: 6e:12:80:82:3d:bd:97:33:27:23:17:cf:63:62:d3: fa:3d:82:3f:d5:f3:2e:98:9b:8a:af:b5:db:93:7a: c3:97:e7:f6:e6:92:16:84:7a:3a:c0:6f:b4:a5:09: 7d:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:C1:C8:11:60:B6:42:B4:21:DE:60:20:FE:81:1F:E3:3A:E2:78:E7 X509v3 Authority Key Identifier: keyid:84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131362e302f32332d3233203d3e203536323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.228.116.0/23 Signature Algorithm: sha256WithRSAEncryption d4:08:59:79:30:13:d9:2e:12:70:ea:8e:09:69:ea:d6:78:41: 71:d7:02:d1:45:3e:b8:09:d9:d4:7e:84:cf:3b:b1:52:49:c6: 30:d3:ab:0a:a8:0c:27:93:b4:41:2c:a3:d3:7b:47:3b:46:7c: 37:2c:27:7a:ca:86:ed:74:bc:61:d8:f5:7d:24:5f:bc:fb:4f: 36:c9:f9:bc:11:0c:d6:a5:10:94:58:a0:14:83:6d:dc:1b:06: f2:69:6a:c9:af:71:fd:ac:66:59:de:47:fb:87:2b:95:74:2d: 83:66:ae:c6:16:05:fc:2a:b0:d1:fa:c7:fd:fd:79:e6:dd:fe: e9:77:45:28:a0:ec:20:6e:8e:31:c5:5c:58:c1:da:51:ea:87: b0:7b:09:9f:2d:77:78:bd:ac:0d:8c:57:e1:e1:d8:a4:c1:eb: ad:17:a3:3e:76:3c:8b:e8:e1:ad:8e:e3:7c:a4:e0:8d:f3:0b: da:8b:31:ba:d8:10:6f:5d:94:8f:53:d3:14:ac:d0:06:0a:1a: 90:3d:fa:1d:6c:7b:fd:db:4e:ca:42:75:42:20:3e:46:f4:7f: 08:01:e1:0b:1c:1f:9b:e6:f1:50:3a:e7:64:79:2d:85:b3:5e: 62:0d:5e:e8:01:0c:71:cf:35:98:9e:9a:84:e2:ba:0a:95:0b: 9a:e6:67:a3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfqX1NhG1hmG1JPX6hOnDD1X1MfgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0 ODUzMEU5RTAeFw0yNTAxMTEwNzU1MDBaFw0yNjAxMTAwODAwMDBaMDMxMTAvBgNV BAMTKEQwQzFDODExNjBCNjQyQjQyMURFNjAyMEZFODExRkUzM0FFMjc4RTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXkmkugdUugcHSV+rR3d0Sox4I saItvRCxSvlH0oFXkbcoupjxccj8S8qjzvp4wWjIOh6U3dzcdH4ik6cDCWLDC//S 2JpeTwNmqZjj4QZNP2g4L/UJug5ZiReO95IsajNP2VCNOxu0DeUWhcu1VpXa112F IWjnSTYCT4jyF0CemQ9UQiHqtvfC5djvkuWNpkfaFfORcH5kPJ8WCdswGN9jfB/N W7tQMay60huHHjkIn4OY+dxwCJQcF0U6awK42ifOoA+vMW/Ovzy7eeE85dXzc24S gII9vZczJyMXz2Ni0/o9gj/V8y6Ym4qvtduTesOX5/bmkhaEejrAb7SlCX27AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0MHIEWC2QrQh3mAg/oEf4zrieOcwHwYDVR0j BBgwFoAUhGmHSuJo4s1OmhN+3VWZx0hTDp4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2EyZDI1Yi1jYjE4LTQ1YmUtOWZhMS0xNTRjYTE1NzkyMjMvMC84NDY5ODc0QUUy NjhFMkNENEU5QTEzN0VERDU1OTlDNzQ4NTMwRTlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0ODUz MEU5RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3YTJkMjViLWNiMTgtNDViZS05 ZmExLTE1NGNhMTU3OTIyMy8wLzMxMzAzMzJlMzIzMjM4MmUzMTMxMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM2MzIzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ+R0MA0GCSqG SIb3DQEBCwUAA4IBAQDUCFl5MBPZLhJw6o4JaerWeEFx1wLRRT64CdnUfoTPO7FS ScYw06sKqAwnk7RBLKPTe0c7Rnw3LCd6yobtdLxh2PV9JF+8+082yfm8EQzWpRCU WKAUg23cGwbyaWrJr3H9rGZZ3kf7hyuVdC2DZq7GFgX8KrDR+sf9/Xnm3f7pd0Uo oOwgbo4xxVxYwdpR6oewewmfLXd4vawNjFfh4dikweutF6M+djyL6OGtjuN8pOCN 8wvaizG62BBvXZSPU9MUrNAGChqQPfodbHv9207KQnVCID5G9H8IAeELHB+b5vFQ OudkeS2Fs15iDV7oAQxxzzWYnpqE4roKlQua5mej -----END CERTIFICATE-----Generated at Thu Apr 10 10:09:02 2025 by rpki-client