$ rpki-client -vvf repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/3130332e3133342e3234362e302f32342d3234203d3e20313331373733.roa File: 3130332e3133342e3234362e302f32342d3234203d3e20313331373733.roa (raw, json) Hash identifier: 54f1hlVAyBoUYAJvfubN5BMRlDVY7RrMT0X14y7mHmo= Subject key identifier: 99:84:84:0F:F4:97:AD:2E:96:2F:B7:D4:5C:CE:A7:D7:07:EE:D4:2C Certificate issuer: /CN=37EECBD045CA279ED50372AC86831099D2FD896F Certificate serial: 50F85F113E9D74ADED2D13D05B824522781A6017 Authority key identifier: 37:EE:CB:D0:45:CA:27:9E:D5:03:72:AC:86:83:10:99:D2:FD:89:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37EECBD045CA279ED50372AC86831099D2FD896F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/3130332e3133342e3234362e302f32342d3234203d3e20313331373733.roa Signing time: Thu 06 Mar 2025 09:01:36 +0000 ROA not before: Thu 06 Mar 2025 08:56:36 +0000 ROA not after: Thu 05 Mar 2026 09:01:36 +0000 asID: 131773 IP address blocks: 103.134.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/37EECBD045CA279ED50372AC86831099D2FD896F.crl rsync://repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/37EECBD045CA279ED50372AC86831099D2FD896F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37EECBD045CA279ED50372AC86831099D2FD896F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 05:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:f8:5f:11:3e:9d:74:ad:ed:2d:13:d0:5b:82:45:22:78:1a:60:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37EECBD045CA279ED50372AC86831099D2FD896F Validity Not Before: Mar 6 08:56:36 2025 GMT Not After : Mar 5 09:01:36 2026 GMT Subject: CN=9984840FF497AD2E962FB7D45CCEA7D707EED42C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:64:d6:7d:0c:12:c3:1c:67:2e:9d:42:f9:af: 52:ad:ce:3c:69:24:21:35:8f:23:14:22:95:1f:09: 5d:95:c1:f5:aa:18:c5:9d:2c:27:58:ce:5a:0b:4a: 2e:fa:85:e4:8d:4c:97:ba:a3:5b:45:6f:f8:c3:28: f1:34:38:1d:98:e8:6f:d9:48:9c:5b:9c:9b:4e:33: ff:ea:27:ba:1d:6d:b6:2d:71:89:b7:23:bd:f0:af: 3f:35:77:4d:b6:9c:c6:98:11:c2:1e:91:ad:19:f4: 35:b5:e7:33:49:6f:5b:26:4b:89:96:e4:4c:d3:2f: 5f:5b:0a:c7:49:38:7e:68:4d:c7:21:98:16:14:fa: ae:94:eb:84:9c:81:f7:d6:5e:f9:48:6c:d0:f3:0a: 62:05:32:14:d4:30:59:41:88:2d:16:3e:74:3b:d1: 34:25:6a:ad:8a:e4:e1:6b:8a:c2:ee:e6:7a:f3:02: af:60:ef:c6:1d:65:55:31:e7:7c:a4:0b:55:cc:d6: f5:a9:86:bb:c2:e3:39:04:90:34:88:d2:ce:d7:86: cb:20:66:0f:50:4c:c0:d2:72:de:6b:76:df:87:de: 37:b2:15:ab:d6:04:1e:99:bc:78:61:8d:64:c9:d0: 94:53:58:91:14:da:7f:3a:4c:80:4d:20:8e:c9:73: 2d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:84:84:0F:F4:97:AD:2E:96:2F:B7:D4:5C:CE:A7:D7:07:EE:D4:2C X509v3 Authority Key Identifier: keyid:37:EE:CB:D0:45:CA:27:9E:D5:03:72:AC:86:83:10:99:D2:FD:89:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/37EECBD045CA279ED50372AC86831099D2FD896F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37EECBD045CA279ED50372AC86831099D2FD896F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/3130332e3133342e3234362e302f32342d3234203d3e20313331373733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.246.0/24 Signature Algorithm: sha256WithRSAEncryption bb:94:df:4c:86:07:29:49:3c:68:1a:1d:ef:6c:a1:0d:11:35: 68:6d:75:e3:bc:a6:52:8d:53:69:c8:90:04:76:9a:24:2f:7d: a5:9e:a5:3f:6f:93:8f:bf:7f:90:93:0e:5f:a7:62:d8:58:2c: ea:29:79:ad:d5:fd:93:6b:5f:d7:85:4e:79:d7:00:e8:21:c3: 63:be:c8:22:01:14:24:a4:22:5c:29:89:39:e9:e9:20:de:74: 05:34:3a:27:1a:3a:ba:26:27:62:1e:2e:f6:d7:92:13:cb:e6: d7:d4:b4:b1:7b:c9:23:96:a7:9f:15:f8:71:5c:3f:fd:75:03: ed:8c:df:dc:c9:88:a6:13:c4:74:9f:69:06:bd:d0:e2:e6:b7: a7:56:22:77:a1:40:ff:3e:8e:aa:b9:46:a8:cd:13:d9:02:ee: 1f:f3:bd:14:c7:90:4d:a3:48:d5:57:ee:f5:7f:c9:29:10:d8: 4b:ae:a4:35:91:1e:e8:17:33:f7:ad:30:56:77:e9:68:ca:ea: 11:df:be:9a:2a:11:de:f9:a9:6a:cb:b0:0c:66:c4:52:87:3c: 55:60:9f:2e:54:40:1e:e0:43:cb:a2:94:4a:ba:b0:89:2c:01: 34:76:fe:eb:d1:33:e9:c6:42:4d:5d:b4:14:cc:01:e5:92:0d: 8b:13:8b:ed -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUPhfET6ddK3tLRPQW4JFIngaYBcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzdFRUNCRDA0NUNBMjc5RUQ1MDM3MkFDODY4MzEwOTlE MkZEODk2RjAeFw0yNTAzMDYwODU2MzZaFw0yNjAzMDUwOTAxMzZaMDMxMTAvBgNV BAMTKDk5ODQ4NDBGRjQ5N0FEMkU5NjJGQjdENDVDQ0VBN0Q3MDdFRUQ0MkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBZNZ9DBLDHGcunUL5r1Ktzjxp JCE1jyMUIpUfCV2VwfWqGMWdLCdYzloLSi76heSNTJe6o1tFb/jDKPE0OB2Y6G/Z SJxbnJtOM//qJ7odbbYtcYm3I73wrz81d022nMaYEcIeka0Z9DW15zNJb1smS4mW 5EzTL19bCsdJOH5oTcchmBYU+q6U64ScgffWXvlIbNDzCmIFMhTUMFlBiC0WPnQ7 0TQlaq2K5OFrisLu5nrzAq9g78YdZVUx53ykC1XM1vWphrvC4zkEkDSI0s7Xhssg Zg9QTMDSct5rdt+H3jeyFavWBB6ZvHhhjWTJ0JRTWJEU2n86TIBNII7Jcy31AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUmYSED/SXrS6WL7fUXM6n1wfu1CwwHwYDVR0j BBgwFoAUN+7L0EXKJ57VA3KshoMQmdL9iW8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MjdkZTA3MS0zYWFhLTRlMmUtOTc0ZS1hNzhjODE3MjlmMDYvMC8zN0VFQ0JEMDQ1 Q0EyNzlFRDUwMzcyQUM4NjgzMTA5OUQyRkQ4OTZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzdFRUNCRDA0NUNBMjc5RUQ1MDM3MkFDODY4MzEwOTlEMkZE ODk2Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyN2RlMDcxLTNhYWEtNGUyZS05 NzRlLWE3OGM4MTcyOWYwNi8wLzMxMzAzMzJlMzEzMzM0MmUzMjM0MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM3MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnhvYwDQYJ KoZIhvcNAQELBQADggEBALuU30yGBylJPGgaHe9soQ0RNWhtdeO8plKNU2nIkAR2 miQvfaWepT9vk4+/f5CTDl+nYthYLOopea3V/ZNrX9eFTnnXAOghw2O+yCIBFCSk IlwpiTnp6SDedAU0OicaOromJ2IeLvbXkhPL5tfUtLF7ySOWp58V+HFcP/11A+2M 39zJiKYTxHSfaQa90OLmt6dWInehQP8+jqq5RqjNE9kC7h/zvRTHkE2jSNVX7vV/ ySkQ2EuupDWRHugXM/etMFZ36WjK6hHfvpoqEd75qWrLsAxmxFKHPFVgny5UQB7g Q8uilEq6sIksATR2/uvRM+nGQk1dtBTMAeWSDYsTi+0= -----END CERTIFICATE-----Generated at Sun Apr 6 06:01:01 2025 by rpki-client