$ rpki-client -vvf repo-rpki.idnic.net/repo/24207523-d5f5-4acc-b0ac-bfb0954fa4e0/0/3130332e31362e37392e302f32342d3234203d3e20313331373835.roa File: 3130332e31362e37392e302f32342d3234203d3e20313331373835.roa (raw, json) Hash identifier: dq2C0qn2bszea5JrNdqQBrs3uxaP2+6us75MTw8i5Kc= Subject key identifier: 91:2D:BA:85:A4:E1:FB:B4:64:F6:37:91:73:2C:91:48:6B:3C:B8:08 Certificate issuer: /CN=6D4B1748DE52DCE397B868772E128F7C58ACA8AB Certificate serial: 53BE9BF4929B5E995F20960831CDA838ADD8D861 Authority key identifier: 6D:4B:17:48:DE:52:DC:E3:97:B8:68:77:2E:12:8F:7C:58:AC:A8:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D4B1748DE52DCE397B868772E128F7C58ACA8AB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/24207523-d5f5-4acc-b0ac-bfb0954fa4e0/0/3130332e31362e37392e302f32342d3234203d3e20313331373835.roa Signing time: Sat 01 Feb 2025 12:00:01 +0000 ROA not before: Sat 01 Feb 2025 11:55:01 +0000 ROA not after: Sat 31 Jan 2026 12:00:01 +0000 asID: 131785 IP address blocks: 103.16.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/24207523-d5f5-4acc-b0ac-bfb0954fa4e0/0/6D4B1748DE52DCE397B868772E128F7C58ACA8AB.crl rsync://repo-rpki.idnic.net/repo/24207523-d5f5-4acc-b0ac-bfb0954fa4e0/0/6D4B1748DE52DCE397B868772E128F7C58ACA8AB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D4B1748DE52DCE397B868772E128F7C58ACA8AB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 12:54:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:be:9b:f4:92:9b:5e:99:5f:20:96:08:31:cd:a8:38:ad:d8:d8:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D4B1748DE52DCE397B868772E128F7C58ACA8AB Validity Not Before: Feb 1 11:55:01 2025 GMT Not After : Jan 31 12:00:01 2026 GMT Subject: CN=912DBA85A4E1FBB464F63791732C91486B3CB808 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0a:49:f2:15:56:61:ed:79:4d:e6:ab:14:ba: c9:4e:fb:6f:af:c6:c3:7c:76:1b:bb:ca:cf:b9:e2: 1c:40:27:4d:ca:aa:cc:b2:99:fd:08:76:40:dc:15: 4e:42:68:04:52:38:0e:78:3c:82:11:b2:38:72:03: 5b:1a:ac:7b:72:4a:f0:02:ff:dd:42:17:05:05:f9: db:e8:86:09:a5:0f:99:91:bf:b0:44:74:28:de:6d: eb:09:3b:3a:d9:64:aa:84:45:66:b4:09:9b:14:52: 14:23:89:45:75:a9:85:b7:37:d4:49:01:3a:8c:1b: f2:2c:03:47:e2:ed:b0:95:36:31:c6:a2:8d:89:09: 2b:7d:4d:ac:9f:f8:16:9c:d6:2c:13:32:e5:be:f7: c7:28:a8:4d:e2:a7:32:58:09:22:78:66:c3:f4:53: 10:a9:74:f2:6c:4a:78:8b:d0:fb:40:dd:42:1e:2c: fc:05:c5:69:36:b7:05:cf:81:81:52:ba:e0:cf:53: 65:0d:7c:8e:b7:0c:80:72:b6:93:43:e3:67:c6:30: 79:f1:a9:30:47:3d:c9:d9:78:3f:4e:e8:53:3a:d5: 55:45:35:c3:b9:a0:a7:97:a4:3c:d7:2f:7c:a9:46: e1:59:8a:7f:91:0f:f0:fa:40:e4:08:97:1f:46:16: 7c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:2D:BA:85:A4:E1:FB:B4:64:F6:37:91:73:2C:91:48:6B:3C:B8:08 X509v3 Authority Key Identifier: keyid:6D:4B:17:48:DE:52:DC:E3:97:B8:68:77:2E:12:8F:7C:58:AC:A8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/24207523-d5f5-4acc-b0ac-bfb0954fa4e0/0/6D4B1748DE52DCE397B868772E128F7C58ACA8AB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D4B1748DE52DCE397B868772E128F7C58ACA8AB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/24207523-d5f5-4acc-b0ac-bfb0954fa4e0/0/3130332e31362e37392e302f32342d3234203d3e20313331373835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.16.79.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:72:78:57:a5:1c:48:6a:cc:c4:64:45:38:ca:f9:1c:eb:6c: 4d:1a:62:b8:2b:0e:19:f6:89:82:ad:30:c6:63:64:a3:5b:e1: f3:ca:c9:21:16:79:4f:03:f9:7c:6c:24:7e:65:b4:74:7d:43: 96:13:85:b0:82:02:42:ab:b4:b1:63:94:95:8f:b7:04:11:0c: 0e:2b:bb:b7:1c:66:85:34:7d:84:08:a9:91:15:f8:21:0d:ac: 79:38:9f:35:f5:c6:34:67:65:b0:4e:c3:ef:19:28:1d:42:f6: cc:46:ad:9b:79:96:59:3b:61:36:24:cc:dc:71:27:22:1d:d6: ac:79:b2:73:0e:09:a8:04:6c:42:c6:a0:85:77:59:9e:e2:b0: 69:6e:0a:c8:de:b7:84:69:d5:84:10:95:e6:af:f1:ce:6e:29: c7:e6:15:7d:6b:2d:de:1e:34:df:f0:1d:62:1e:d6:1b:1f:dc: f8:f4:19:2d:a3:48:f2:ce:52:9e:24:b0:f0:c6:3c:62:c0:15: 6d:30:c3:8c:62:33:38:b7:25:94:05:28:ca:ca:ff:ae:ae:1a: fb:09:49:43:29:0b:2f:ce:63:c9:f7:95:cf:12:11:b4:9a:bf: 0b:9d:32:85:ba:7e:29:07:af:54:76:cf:6c:56:c6:3b:e4:7f: 88:2a:70:52 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUU76b9JKbXplfIJYIMc2oOK3Y2GEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkQ0QjE3NDhERTUyRENFMzk3Qjg2ODc3MkUxMjhGN0M1 OEFDQThBQjAeFw0yNTAyMDExMTU1MDFaFw0yNjAxMzExMjAwMDFaMDMxMTAvBgNV BAMTKDkxMkRCQTg1QTRFMUZCQjQ2NEY2Mzc5MTczMkM5MTQ4NkIzQ0I4MDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3CknyFVZh7XlN5qsUuslO+2+v xsN8dhu7ys+54hxAJ03Kqsyymf0IdkDcFU5CaARSOA54PIIRsjhyA1sarHtySvAC /91CFwUF+dvohgmlD5mRv7BEdCjebesJOzrZZKqERWa0CZsUUhQjiUV1qYW3N9RJ ATqMG/IsA0fi7bCVNjHGoo2JCSt9Tayf+Bac1iwTMuW+98coqE3ipzJYCSJ4ZsP0 UxCpdPJsSniL0PtA3UIeLPwFxWk2twXPgYFSuuDPU2UNfI63DIBytpND42fGMHnx qTBHPcnZeD9O6FM61VVFNcO5oKeXpDzXL3ypRuFZin+RD/D6QOQIlx9GFnypAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUkS26haTh+7Rk9jeRcyyRSGs8uAgwHwYDVR0j BBgwFoAUbUsXSN5S3OOXuGh3LhKPfFisqKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDIwNzUyMy1kNWY1LTRhY2MtYjBhYy1iZmIwOTU0ZmE0ZTAvMC82RDRCMTc0OERF NTJEQ0UzOTdCODY4NzcyRTEyOEY3QzU4QUNBOEFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkQ0QjE3NDhERTUyRENFMzk3Qjg2ODc3MkUxMjhGN0M1OEFD QThBQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0MjA3NTIzLWQ1ZjUtNGFjYy1i MGFjLWJmYjA5NTRmYTRlMC8wLzMxMzAzMzJlMzEzNjJlMzczOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMTM3MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcQTzANBgkqhkiG 9w0BAQsFAAOCAQEADXJ4V6UcSGrMxGRFOMr5HOtsTRpiuCsOGfaJgq0wxmNko1vh 88rJIRZ5TwP5fGwkfmW0dH1DlhOFsIICQqu0sWOUlY+3BBEMDiu7txxmhTR9hAip kRX4IQ2seTifNfXGNGdlsE7D7xkoHUL2zEatm3mWWTthNiTM3HEnIh3WrHmycw4J qARsQsaghXdZnuKwaW4KyN63hGnVhBCV5q/xzm4px+YVfWst3h403/AdYh7WGx/c +PQZLaNI8s5SniSw8MY8YsAVbTDDjGIzOLcllAUoysr/rq4a+wlJQykLL85jyfeV zxIRtJq/C50yhbp+KQevVHbPbFbGO+R/iCpwUg== -----END CERTIFICATE-----Generated at Mon Apr 21 10:59:39 2025 by rpki-client