$ rpki-client -vvf repo-rpki.idnic.net/repo/1aac1bb9-45f6-4667-b194-9a69a4a4d755/0/3130332e3137312e3234342e302f32332d3233203d3e20313431363734.roa File: 3130332e3137312e3234342e302f32332d3233203d3e20313431363734.roa (raw, json) Hash identifier: Onu18k9bkI/QpIHEFgXL53rkk7oGwVMpnmchVwvY9Ag= Subject key identifier: 69:8A:59:40:E7:6A:20:5D:2B:62:77:E9:80:B3:E5:F5:7E:7C:35:7B Certificate issuer: /CN=9CE14E1AAA058B35B9AD5B97412E4E1A0DB2FD8E Certificate serial: 68610FABB1805C33914EF5DC36C7170DF1D068D4 Authority key identifier: 9C:E1:4E:1A:AA:05:8B:35:B9:AD:5B:97:41:2E:4E:1A:0D:B2:FD:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9CE14E1AAA058B35B9AD5B97412E4E1A0DB2FD8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1aac1bb9-45f6-4667-b194-9a69a4a4d755/0/3130332e3137312e3234342e302f32332d3233203d3e20313431363734.roa Signing time: Fri 18 Apr 2025 16:00:48 +0000 ROA not before: Fri 18 Apr 2025 15:55:48 +0000 ROA not after: Fri 17 Apr 2026 16:00:48 +0000 asID: 141674 IP address blocks: 103.171.244.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1aac1bb9-45f6-4667-b194-9a69a4a4d755/0/9CE14E1AAA058B35B9AD5B97412E4E1A0DB2FD8E.crl rsync://repo-rpki.idnic.net/repo/1aac1bb9-45f6-4667-b194-9a69a4a4d755/0/9CE14E1AAA058B35B9AD5B97412E4E1A0DB2FD8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9CE14E1AAA058B35B9AD5B97412E4E1A0DB2FD8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 00:59:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:61:0f:ab:b1:80:5c:33:91:4e:f5:dc:36:c7:17:0d:f1:d0:68:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9CE14E1AAA058B35B9AD5B97412E4E1A0DB2FD8E Validity Not Before: Apr 18 15:55:48 2025 GMT Not After : Apr 17 16:00:48 2026 GMT Subject: CN=698A5940E76A205D2B6277E980B3E5F57E7C357B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ca:f0:77:21:22:57:55:6e:34:ba:ec:ec:66: 74:9d:9e:95:2d:30:a2:35:e3:fc:15:4c:cb:c1:fc: 89:e7:c2:57:80:73:e0:05:90:db:cb:cd:6a:f6:a6: 72:1d:93:fe:87:14:a1:20:6e:59:fa:f6:a4:fc:39: 91:a7:15:45:77:15:e6:02:c9:43:1a:3d:3b:9c:33: 31:13:d2:d9:bd:4b:72:c4:ce:ad:a3:dc:e5:16:94: b2:11:e3:26:74:8e:eb:07:08:ec:97:d8:ef:f4:f0: b1:d3:fe:a7:8b:51:7a:b3:5d:91:67:ae:62:ed:d8: 58:c3:ba:c4:99:85:42:ba:4b:e2:b4:2c:a7:5f:cd: f9:42:aa:d7:5f:4d:08:ba:06:34:ba:18:62:4b:05: 8b:c3:83:dd:26:56:e4:ce:d6:7b:47:9c:d9:d1:fa: 9d:bf:b4:ee:6d:ca:23:98:14:30:f2:8f:0f:4c:a1: 0c:a3:7d:3d:80:51:ad:89:1a:55:8e:07:19:33:c9: d7:91:f6:e1:01:4a:f1:de:14:fc:4a:eb:d5:77:ea: f0:bd:76:e9:8d:45:1d:af:73:52:d7:93:2e:38:04: 62:0b:b4:e7:f9:db:25:9a:22:a1:5f:d4:56:66:f7: 99:5d:8f:e9:42:cb:ce:37:64:16:33:01:12:a2:ae: 67:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:8A:59:40:E7:6A:20:5D:2B:62:77:E9:80:B3:E5:F5:7E:7C:35:7B X509v3 Authority Key Identifier: keyid:9C:E1:4E:1A:AA:05:8B:35:B9:AD:5B:97:41:2E:4E:1A:0D:B2:FD:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1aac1bb9-45f6-4667-b194-9a69a4a4d755/0/9CE14E1AAA058B35B9AD5B97412E4E1A0DB2FD8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9CE14E1AAA058B35B9AD5B97412E4E1A0DB2FD8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1aac1bb9-45f6-4667-b194-9a69a4a4d755/0/3130332e3137312e3234342e302f32332d3233203d3e20313431363734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.244.0/23 Signature Algorithm: sha256WithRSAEncryption 16:b4:25:db:7f:ef:e5:fa:4e:30:b5:aa:80:eb:a9:98:e1:b2: 2b:1c:da:3f:b8:1c:0d:b0:d5:34:c0:44:13:8b:0c:ef:65:36: 15:5b:8f:1f:42:70:4f:e0:93:ca:e3:a6:df:76:3f:77:e1:72: 67:d9:81:a3:9d:0b:ff:4c:25:d0:42:59:07:89:54:92:1b:a3: 66:7f:82:eb:5a:fc:f5:d4:88:9c:e6:be:13:58:6a:f5:27:db: 26:e9:b4:47:5a:d2:d9:34:db:bc:d0:84:f6:58:ef:bf:d4:a4: 45:5f:e9:e4:b5:9f:83:e2:2d:fc:38:9b:f0:51:94:25:36:63: e8:9c:fb:e6:ee:74:09:85:aa:00:3c:3b:a7:1d:8b:47:88:f2: 24:bd:a2:ce:cc:fd:96:42:8c:f1:bb:0e:4b:83:48:74:39:51: c7:14:70:7c:03:67:eb:47:23:eb:8b:fd:d0:80:79:22:c0:e4: 88:74:87:e8:7e:c4:5e:d9:6a:cb:b7:7a:7c:94:35:f8:44:6e: 09:c7:ed:00:62:57:eb:60:a8:39:3f:34:33:3b:f7:07:37:28: 31:60:c3:95:bb:eb:15:67:90:ac:99:87:73:b5:95:c8:90:a3: ad:40:65:a0:a9:f3:01:19:e7:5d:0e:a5:62:a5:ce:38:63:f0: 3f:07:8e:1f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUaGEPq7GAXDORTvXcNscXDfHQaNQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUNFMTRFMUFBQTA1OEIzNUI5QUQ1Qjk3NDEyRTRFMUEw REIyRkQ4RTAeFw0yNTA0MTgxNTU1NDhaFw0yNjA0MTcxNjAwNDhaMDMxMTAvBgNV BAMTKDY5OEE1OTQwRTc2QTIwNUQyQjYyNzdFOTgwQjNFNUY1N0U3QzM1N0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6yvB3ISJXVW40uuzsZnSdnpUt MKI14/wVTMvB/InnwleAc+AFkNvLzWr2pnIdk/6HFKEgbln69qT8OZGnFUV3FeYC yUMaPTucMzET0tm9S3LEzq2j3OUWlLIR4yZ0jusHCOyX2O/08LHT/qeLUXqzXZFn rmLt2FjDusSZhUK6S+K0LKdfzflCqtdfTQi6BjS6GGJLBYvDg90mVuTO1ntHnNnR +p2/tO5tyiOYFDDyjw9MoQyjfT2AUa2JGlWOBxkzydeR9uEBSvHeFPxK69V36vC9 dumNRR2vc1LXky44BGILtOf52yWaIqFf1FZm95ldj+lCy843ZBYzARKirmdnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUaYpZQOdqIF0rYnfpgLPl9X58NXswHwYDVR0j BBgwFoAUnOFOGqoFizW5rVuXQS5OGg2y/Y4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YWFjMWJiOS00NWY2LTQ2NjctYjE5NC05YTY5YTRhNGQ3NTUvMC85Q0UxNEUxQUFB MDU4QjM1QjlBRDVCOTc0MTJFNEUxQTBEQjJGRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUNFMTRFMUFBQTA1OEIzNUI5QUQ1Qjk3NDEyRTRFMUEwREIy RkQ4RS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhYWMxYmI5LTQ1ZjYtNDY2Ny1i MTk0LTlhNjlhNGE0ZDc1NS8wLzMxMzAzMzJlMzEzNzMxMmUzMjM0MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzNjM3MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnq/QwDQYJ KoZIhvcNAQELBQADggEBABa0Jdt/7+X6TjC1qoDrqZjhsisc2j+4HA2w1TTARBOL DO9lNhVbjx9CcE/gk8rjpt92P3fhcmfZgaOdC/9MJdBCWQeJVJIbo2Z/guta/PXU iJzmvhNYavUn2ybptEda0tk027zQhPZY77/UpEVf6eS1n4PiLfw4m/BRlCU2Y+ic ++budAmFqgA8O6cdi0eI8iS9os7M/ZZCjPG7DkuDSHQ5UccUcHwDZ+tHI+uL/dCA eSLA5Ih0h+h+xF7Zasu3enyUNfhEbgnH7QBiV+tgqDk/NDM79wc3KDFgw5W76xVn kKyZh3O1lciQo61AZaCp8wEZ510OpWKlzjhj8D8Hjh8= -----END CERTIFICATE-----Generated at Sat Apr 19 12:42:48 2025 by rpki-client