$ rpki-client -vvf repo-rpki.idnic.net/repo/1ad39450-4584-4882-b5a7-2cbc0e577474/0/3130332e36372e38342e302f32332d3234203d3e20313532303034.roa File: 3130332e36372e38342e302f32332d3234203d3e20313532303034.roa (raw, json) Hash identifier: ujKy4y6eTgCx3koB4L5AzxCnHk5i7qlGXSpQBRXv4Eg= Subject key identifier: 5A:D6:BD:77:3F:2A:1A:1C:97:4D:AB:42:BC:C3:9A:69:46:DA:00:EF Certificate issuer: /CN=35603F2919BB405970CB4BAB181C2B63764E0771 Certificate serial: 40A0295A89634ECDA43416E4AB89F3861AD2FCBD Authority key identifier: 35:60:3F:29:19:BB:40:59:70:CB:4B:AB:18:1C:2B:63:76:4E:07:71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35603F2919BB405970CB4BAB181C2B63764E0771.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ad39450-4584-4882-b5a7-2cbc0e577474/0/3130332e36372e38342e302f32332d3234203d3e20313532303034.roa Signing time: Fri 04 Apr 2025 02:00:00 +0000 ROA not before: Fri 04 Apr 2025 01:55:00 +0000 ROA not after: Fri 03 Apr 2026 02:00:00 +0000 asID: 152004 IP address blocks: 103.67.84.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ad39450-4584-4882-b5a7-2cbc0e577474/0/35603F2919BB405970CB4BAB181C2B63764E0771.crl rsync://repo-rpki.idnic.net/repo/1ad39450-4584-4882-b5a7-2cbc0e577474/0/35603F2919BB405970CB4BAB181C2B63764E0771.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35603F2919BB405970CB4BAB181C2B63764E0771.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 10:06:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:a0:29:5a:89:63:4e:cd:a4:34:16:e4:ab:89:f3:86:1a:d2:fc:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35603F2919BB405970CB4BAB181C2B63764E0771 Validity Not Before: Apr 4 01:55:00 2025 GMT Not After : Apr 3 02:00:00 2026 GMT Subject: CN=5AD6BD773F2A1A1C974DAB42BCC39A6946DA00EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:81:0e:79:95:fa:82:e7:46:5c:49:77:c6:c6: 8c:7b:52:32:2c:20:64:a2:63:26:9b:64:0e:ae:20: 14:77:17:2f:5d:af:8b:e4:f5:37:d4:b5:a6:40:15: b8:70:fe:ff:7a:9a:f4:a5:ae:c6:b8:c0:40:17:66: 92:c9:38:0c:05:77:a2:1e:ff:e5:8b:72:0d:23:90: 15:d9:78:9a:fb:8f:ba:46:44:97:70:90:85:c7:cf: 94:10:bd:3e:a9:35:78:3b:bf:79:bd:bd:ef:27:80: be:f3:4e:67:62:38:df:15:ec:05:0d:ed:b2:aa:93: 15:c4:11:15:19:f7:3e:82:df:9d:2e:e7:1e:99:0e: 45:6d:73:45:af:1b:8c:bd:1f:6c:30:9e:a7:bd:ba: 90:d4:e3:11:4b:40:0f:85:c2:a3:93:86:3b:f2:42: 49:b7:f7:5f:ce:26:93:b0:09:59:db:d4:17:b2:55: b1:94:39:83:8c:c3:a6:14:2f:be:74:e7:7c:7a:d2: 94:82:7f:e0:9f:93:db:a6:e2:31:26:3a:0c:b1:45: 5d:4e:a6:7d:51:33:4b:23:4e:60:96:e7:69:fb:19: e0:c3:9f:35:64:37:6d:b4:56:c5:57:95:b1:d7:e6: 20:3b:55:50:83:71:81:8d:9e:8e:2f:8a:ed:64:3d: 3d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:D6:BD:77:3F:2A:1A:1C:97:4D:AB:42:BC:C3:9A:69:46:DA:00:EF X509v3 Authority Key Identifier: keyid:35:60:3F:29:19:BB:40:59:70:CB:4B:AB:18:1C:2B:63:76:4E:07:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ad39450-4584-4882-b5a7-2cbc0e577474/0/35603F2919BB405970CB4BAB181C2B63764E0771.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35603F2919BB405970CB4BAB181C2B63764E0771.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ad39450-4584-4882-b5a7-2cbc0e577474/0/3130332e36372e38342e302f32332d3234203d3e20313532303034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.67.84.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:ff:d5:40:59:29:3d:14:78:d6:dc:fb:2d:70:46:a1:70:1f: d2:ca:91:8a:6a:1b:4d:78:15:ea:d6:fa:f7:fa:ba:01:c9:0a: 09:54:34:9f:0c:30:6b:cc:4e:5b:29:fd:a5:ad:69:c5:c9:45: dd:9f:0c:9b:7d:e2:9a:ea:94:ac:b7:e1:d0:5b:73:e9:69:33: 90:40:7f:37:d2:a3:c1:3e:28:b9:07:24:16:e9:b2:92:37:e0: e0:fa:86:96:59:11:c2:42:04:17:8f:96:c2:ad:0f:c0:2e:a1: cf:ab:a5:a0:9c:d9:6b:18:0a:38:46:ef:c7:bf:55:1a:f6:7f: 2f:9e:56:b8:85:46:d3:af:2d:18:e1:fe:b8:15:d7:8e:e9:7d: 02:d6:24:99:8a:ca:b5:57:e0:13:4d:e9:9f:31:85:61:02:3f: 49:5b:30:dc:bc:16:dd:66:d2:d1:ac:4c:58:37:20:db:d1:22: 1a:20:c8:6d:57:d6:38:71:fc:2e:02:d4:41:14:a4:56:cb:6a: c8:ad:d6:d0:1e:fc:a2:62:ec:24:9e:2b:8a:ad:6d:13:c7:5a: 9d:05:65:79:d0:96:34:9e:c0:67:78:9b:15:94:a7:54:33:dd: b3:d0:c0:d7:30:aa:41:fc:66:e1:69:96:86:a6:f7:50:08:53: 20:e1:f2:99 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQKApWoljTs2kNBbkq4nzhhrS/L0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzU2MDNGMjkxOUJCNDA1OTcwQ0I0QkFCMTgxQzJCNjM3 NjRFMDc3MTAeFw0yNTA0MDQwMTU1MDBaFw0yNjA0MDMwMjAwMDBaMDMxMTAvBgNV BAMTKDVBRDZCRDc3M0YyQTFBMUM5NzREQUI0MkJDQzM5QTY5NDZEQTAwRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlgQ55lfqC50ZcSXfGxox7UjIs IGSiYyabZA6uIBR3Fy9dr4vk9TfUtaZAFbhw/v96mvSlrsa4wEAXZpLJOAwFd6Ie /+WLcg0jkBXZeJr7j7pGRJdwkIXHz5QQvT6pNXg7v3m9ve8ngL7zTmdiON8V7AUN 7bKqkxXEERUZ9z6C350u5x6ZDkVtc0WvG4y9H2wwnqe9upDU4xFLQA+FwqOThjvy Qkm391/OJpOwCVnb1BeyVbGUOYOMw6YUL75053x60pSCf+Cfk9um4jEmOgyxRV1O pn1RM0sjTmCW52n7GeDDnzVkN220VsVXlbHX5iA7VVCDcYGNno4viu1kPT1PAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWta9dz8qGhyXTatCvMOaaUbaAO8wHwYDVR0j BBgwFoAUNWA/KRm7QFlwy0urGBwrY3ZOB3EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YWQzOTQ1MC00NTg0LTQ4ODItYjVhNy0yY2JjMGU1Nzc0NzQvMC8zNTYwM0YyOTE5 QkI0MDU5NzBDQjRCQUIxODFDMkI2Mzc2NEUwNzcxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzU2MDNGMjkxOUJCNDA1OTcwQ0I0QkFCMTgxQzJCNjM3NjRF MDc3MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhZDM5NDUwLTQ1ODQtNDg4Mi1i NWE3LTJjYmMwZTU3NzQ3NC8wLzMxMzAzMzJlMzYzNzJlMzgzNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWdDVDANBgkqhkiG 9w0BAQsFAAOCAQEAiv/VQFkpPRR41tz7LXBGoXAf0sqRimobTXgV6tb69/q6AckK CVQ0nwwwa8xOWyn9pa1pxclF3Z8Mm33imuqUrLfh0Ftz6WkzkEB/N9KjwT4ouQck Fumykjfg4PqGllkRwkIEF4+Wwq0PwC6hz6uloJzZaxgKOEbvx79VGvZ/L55WuIVG 068tGOH+uBXXjul9AtYkmYrKtVfgE03pnzGFYQI/SVsw3LwW3WbS0axMWDcg29Ei GiDIbVfWOHH8LgLUQRSkVstqyK3W0B78omLsJJ4riq1tE8danQVledCWNJ7AZ3ib FZSnVDPds9DA1zCqQfxm4WmWhqb3UAhTIOHymQ== -----END CERTIFICATE-----Generated at Sun Apr 6 13:59:17 2025 by rpki-client