$ rpki-client -vvf repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131382e302f32332d3233203d3e203536323432.roa File: 3130332e3232382e3131382e302f32332d3233203d3e203536323432.roa (raw, json) Hash identifier: 1wEjJgzGmGFQx1qLaHwF1vXvoQd7g22cQT5tuVMpCSs= Subject key identifier: 1E:C4:BC:2C:3B:A7:A3:4B:7D:C9:F5:07:1E:D9:54:81:C8:51:2D:1D Certificate issuer: /CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Certificate serial: 1AF692CA161632D0E197895549D98EDC1D7B109F Authority key identifier: 84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131382e302f32332d3233203d3e203536323432.roa Signing time: Sat 11 Jan 2025 08:00:00 +0000 ROA not before: Sat 11 Jan 2025 07:55:00 +0000 ROA not after: Sat 10 Jan 2026 08:00:00 +0000 asID: 56242 IP address blocks: 103.228.118.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 11:29:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:f6:92:ca:16:16:32:d0:e1:97:89:55:49:d9:8e:dc:1d:7b:10:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Validity Not Before: Jan 11 07:55:00 2025 GMT Not After : Jan 10 08:00:00 2026 GMT Subject: CN=1EC4BC2C3BA7A34B7DC9F5071ED95481C8512D1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:6c:12:14:a0:bb:4c:2a:d5:1b:fd:4e:da:fe: 4a:7a:85:3d:0c:03:7d:8f:d5:11:32:c8:b1:15:0e: 49:56:9a:ef:12:0d:2a:c6:e9:65:47:dc:aa:68:a9: 83:75:07:26:f1:e3:66:f1:6a:d0:57:7e:0f:95:7f: f6:70:49:ab:d0:a5:b3:54:cc:b3:0e:93:ca:8c:f1: 4d:6e:60:96:51:0a:3c:41:cd:a6:2d:b7:21:63:b0: 14:63:8b:a7:86:b1:bd:49:cd:79:b6:e7:5e:78:1e: 01:d7:9a:97:8e:c8:b4:85:97:42:3f:12:91:7d:23: 95:e3:6d:77:a8:67:21:de:ba:46:f6:bd:68:b2:27: c1:81:63:f1:69:b2:ac:1a:3b:9f:37:9e:72:99:a8: 7b:1e:73:96:dc:66:87:04:21:15:8b:51:1a:23:20: de:a2:79:9e:1c:e9:d2:89:54:16:f0:78:fc:56:34: 83:19:25:4d:fb:ba:be:68:45:67:ce:d0:62:29:81: 27:06:67:a9:fe:30:7f:5f:33:1a:e0:06:9f:60:4b: 8a:58:de:4a:0f:de:bf:5e:d2:e0:7b:4c:2f:46:ab: 80:48:11:2d:22:2b:7e:6e:0b:ea:b4:66:45:e7:45: 83:96:8c:e0:f8:10:75:ff:a6:26:02:04:2d:43:38: e3:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:C4:BC:2C:3B:A7:A3:4B:7D:C9:F5:07:1E:D9:54:81:C8:51:2D:1D X509v3 Authority Key Identifier: keyid:84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131382e302f32332d3233203d3e203536323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.228.118.0/23 Signature Algorithm: sha256WithRSAEncryption 07:11:fb:9d:7d:39:4e:35:32:64:0f:08:a2:14:76:97:7e:f9: 5b:95:de:e9:49:b1:25:9e:35:69:04:39:d0:5b:40:9b:b8:68: 06:73:68:27:5c:77:6b:04:00:98:fd:70:64:24:5d:5d:22:17: cb:0b:0c:57:36:79:0d:72:8f:f3:43:ed:91:b4:68:65:0f:8b: 6b:f0:5e:7d:06:06:7f:3a:27:12:06:94:ab:2f:2d:25:59:ba: 5a:a7:46:fb:36:00:b7:ca:0b:5c:56:1f:57:90:2a:eb:65:cc: 4b:93:fb:15:81:9e:d8:f0:a9:b6:83:39:c6:07:72:74:99:46: a2:48:4a:19:ee:67:bf:d5:f4:65:a1:2c:fe:7d:d8:ea:1a:8e: 74:44:c5:f6:0b:0a:43:95:fa:9a:a9:bb:85:b2:60:90:92:26: 7f:de:68:2a:ba:95:9c:4d:4f:f3:6d:22:29:db:70:a0:c8:38: 43:72:5f:46:d3:d7:80:02:ea:cc:7c:1d:8e:1c:12:24:72:3e: 9d:b9:f2:82:b8:a0:fd:cb:d7:92:a3:fa:c6:9c:d0:73:90:7e: 46:f1:cb:9b:90:83:56:60:f3:9b:fc:df:e6:9f:e9:7c:06:f2: 8c:98:ec:74:7e:9a:f7:4b:51:58:17:05:78:08:cf:a8:4c:dc: e0:a0:b6:32 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGvaSyhYWMtDhl4lVSdmO3B17EJ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0 ODUzMEU5RTAeFw0yNTAxMTEwNzU1MDBaFw0yNjAxMTAwODAwMDBaMDMxMTAvBgNV BAMTKDFFQzRCQzJDM0JBN0EzNEI3REM5RjUwNzFFRDk1NDgxQzg1MTJEMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBbBIUoLtMKtUb/U7a/kp6hT0M A32P1REyyLEVDklWmu8SDSrG6WVH3KpoqYN1Bybx42bxatBXfg+Vf/ZwSavQpbNU zLMOk8qM8U1uYJZRCjxBzaYttyFjsBRji6eGsb1JzXm25154HgHXmpeOyLSFl0I/ EpF9I5XjbXeoZyHeukb2vWiyJ8GBY/FpsqwaO583nnKZqHsec5bcZocEIRWLURoj IN6ieZ4c6dKJVBbwePxWNIMZJU37ur5oRWfO0GIpgScGZ6n+MH9fMxrgBp9gS4pY 3koP3r9e0uB7TC9Gq4BIES0iK35uC+q0ZkXnRYOWjOD4EHX/piYCBC1DOOM9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHsS8LDuno0t9yfUHHtlUgchRLR0wHwYDVR0j BBgwFoAUhGmHSuJo4s1OmhN+3VWZx0hTDp4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2EyZDI1Yi1jYjE4LTQ1YmUtOWZhMS0xNTRjYTE1NzkyMjMvMC84NDY5ODc0QUUy NjhFMkNENEU5QTEzN0VERDU1OTlDNzQ4NTMwRTlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0ODUz MEU5RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3YTJkMjViLWNiMTgtNDViZS05 ZmExLTE1NGNhMTU3OTIyMy8wLzMxMzAzMzJlMzIzMjM4MmUzMTMxMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM2MzIzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ+R2MA0GCSqG SIb3DQEBCwUAA4IBAQAHEfudfTlONTJkDwiiFHaXfvlbld7pSbElnjVpBDnQW0Cb uGgGc2gnXHdrBACY/XBkJF1dIhfLCwxXNnkNco/zQ+2RtGhlD4tr8F59BgZ/OicS BpSrLy0lWbpap0b7NgC3ygtcVh9XkCrrZcxLk/sVgZ7Y8Km2gznGB3J0mUaiSEoZ 7me/1fRloSz+fdjqGo50RMX2CwpDlfqaqbuFsmCQkiZ/3mgqupWcTU/zbSIp23Cg yDhDcl9G09eAAurMfB2OHBIkcj6dufKCuKD9y9eSo/rGnNBzkH5G8cubkINWYPOb /N/mn+l8BvKMmOx0fpr3S1FYFwV4CM+oTNzgoLYy -----END CERTIFICATE-----Generated at Thu Apr 10 10:06:31 2025 by rpki-client