$ rpki-client -vvf repo-rpki.idnic.net/repo/27ee6bf3-2bda-4ca4-a5e7-6e70632404b4/0/3130332e3231372e37362e302f32342d3234203d3e20313431393035.roa File: 3130332e3231372e37362e302f32342d3234203d3e20313431393035.roa (raw, json) Hash identifier: nXIgwMlbCEiRLhTmQpk3ILcP6WiZR0pqc4IDqdZRoJI= Subject key identifier: BB:7B:B1:9E:0C:E1:33:05:70:BB:0E:6A:04:F0:0E:DF:CC:B1:6A:9F Certificate issuer: /CN=4AAA6F5B5D0E6858FC56A304655C7BB397518DCC Certificate serial: 064B8AD748FEB38BC4CC3FFF4A593C57D2EDA371 Authority key identifier: 4A:AA:6F:5B:5D:0E:68:58:FC:56:A3:04:65:5C:7B:B3:97:51:8D:CC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AAA6F5B5D0E6858FC56A304655C7BB397518DCC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27ee6bf3-2bda-4ca4-a5e7-6e70632404b4/0/3130332e3231372e37362e302f32342d3234203d3e20313431393035.roa Signing time: Tue 28 Jan 2025 04:02:10 +0000 ROA not before: Tue 28 Jan 2025 03:57:10 +0000 ROA not after: Tue 27 Jan 2026 04:02:10 +0000 asID: 141905 IP address blocks: 103.217.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27ee6bf3-2bda-4ca4-a5e7-6e70632404b4/0/4AAA6F5B5D0E6858FC56A304655C7BB397518DCC.crl rsync://repo-rpki.idnic.net/repo/27ee6bf3-2bda-4ca4-a5e7-6e70632404b4/0/4AAA6F5B5D0E6858FC56A304655C7BB397518DCC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AAA6F5B5D0E6858FC56A304655C7BB397518DCC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 13:42:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:4b:8a:d7:48:fe:b3:8b:c4:cc:3f:ff:4a:59:3c:57:d2:ed:a3:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AAA6F5B5D0E6858FC56A304655C7BB397518DCC Validity Not Before: Jan 28 03:57:10 2025 GMT Not After : Jan 27 04:02:10 2026 GMT Subject: CN=BB7BB19E0CE1330570BB0E6A04F00EDFCCB16A9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:fd:42:ba:9d:b2:fa:c8:2d:da:38:d9:c8:48: 8a:f3:09:b7:60:81:cd:4e:92:81:ad:be:77:b0:73: 96:08:9b:a1:4a:88:0e:a6:96:51:ca:ab:83:88:c1: 90:61:e9:91:eb:8b:0f:3f:99:3d:0a:ae:23:df:b1: 0c:8d:9b:59:65:45:b8:7e:04:45:bf:6d:6a:17:87: b0:15:cb:34:8d:45:c2:20:e5:3d:d6:6c:62:8f:7b: 56:0b:3d:c0:d9:14:c9:c7:da:0b:9d:98:9b:f5:0a: 04:f2:5c:d0:5a:39:6c:74:c8:e0:da:46:97:48:27: 1b:d6:94:65:1c:b5:de:5e:9c:02:00:3e:04:e6:b7: b3:22:72:0d:3a:5e:b6:c7:bf:57:1b:14:bd:7b:4f: 01:bc:17:55:0e:69:8d:cc:a8:b4:87:38:0f:d4:c1: 9a:82:b9:62:71:62:12:d8:3f:d2:06:49:93:3b:ed: 12:19:9c:c8:db:b3:45:0c:78:37:ef:eb:41:2e:73: f7:ea:e9:4a:d0:ad:1d:24:ad:a6:32:95:67:03:9f: 5d:c1:94:66:c0:86:4b:6b:da:fc:27:38:81:56:f5: 81:96:7a:9f:8c:43:55:c3:2f:63:ae:c8:b3:5b:80: 13:5a:9b:8b:f3:bd:81:36:12:eb:55:db:ea:eb:f6: 3d:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:7B:B1:9E:0C:E1:33:05:70:BB:0E:6A:04:F0:0E:DF:CC:B1:6A:9F X509v3 Authority Key Identifier: keyid:4A:AA:6F:5B:5D:0E:68:58:FC:56:A3:04:65:5C:7B:B3:97:51:8D:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27ee6bf3-2bda-4ca4-a5e7-6e70632404b4/0/4AAA6F5B5D0E6858FC56A304655C7BB397518DCC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AAA6F5B5D0E6858FC56A304655C7BB397518DCC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27ee6bf3-2bda-4ca4-a5e7-6e70632404b4/0/3130332e3231372e37362e302f32342d3234203d3e20313431393035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.217.76.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:c5:ee:30:5e:d7:cb:87:27:7c:b0:0d:68:e2:12:5a:5a:51: 24:38:50:5a:7b:37:9b:4c:a9:97:fd:ef:d6:66:e5:8c:9f:d6: 0d:ec:c0:70:ea:ad:aa:38:f4:21:8b:17:b7:0e:7e:a6:09:4d: 2b:1f:20:78:61:ad:40:ae:0c:3f:8d:bb:02:8e:1a:04:38:54: 40:ef:a8:32:e4:53:35:ff:5d:f7:12:cf:8b:38:7a:77:12:21: bc:2b:68:ab:24:73:29:ae:54:64:c4:dc:cb:7f:44:8a:e6:b4: e2:94:47:6e:21:2d:cb:d9:f4:66:56:7e:ef:7b:3a:2f:77:d8: a3:51:c0:20:c4:42:b4:fd:08:3d:5e:d1:3c:b9:c8:dc:92:c2: 1c:aa:58:2f:9c:51:f3:bc:93:4a:fa:ab:a0:9e:d8:00:ec:86: 89:eb:8d:db:c6:11:b7:16:c8:91:8c:f7:71:1a:48:b2:a7:ee: 2c:7e:be:cb:e8:25:ab:9e:bc:5c:5c:cc:47:64:dc:89:41:fb: 1b:42:13:82:83:9a:c1:14:00:b7:2e:f7:75:b0:a9:37:fe:fa: d3:0c:12:97:50:1e:f3:6d:9f:8f:16:35:c1:1f:4c:8d:30:b9: db:c6:a2:4e:4b:d8:e4:97:5a:da:03:b8:f8:25:37:46:19:c3: 5c:60:02:5a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBkuK10j+s4vEzD//Slk8V9Lto3EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFBQTZGNUI1RDBFNjg1OEZDNTZBMzA0NjU1QzdCQjM5 NzUxOERDQzAeFw0yNTAxMjgwMzU3MTBaFw0yNjAxMjcwNDAyMTBaMDMxMTAvBgNV BAMTKEJCN0JCMTlFMENFMTMzMDU3MEJCMEU2QTA0RjAwRURGQ0NCMTZBOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh/UK6nbL6yC3aONnISIrzCbdg gc1OkoGtvnewc5YIm6FKiA6mllHKq4OIwZBh6ZHriw8/mT0KriPfsQyNm1llRbh+ BEW/bWoXh7AVyzSNRcIg5T3WbGKPe1YLPcDZFMnH2gudmJv1CgTyXNBaOWx0yODa RpdIJxvWlGUctd5enAIAPgTmt7Micg06XrbHv1cbFL17TwG8F1UOaY3MqLSHOA/U wZqCuWJxYhLYP9IGSZM77RIZnMjbs0UMeDfv60Euc/fq6UrQrR0kraYylWcDn13B lGbAhktr2vwnOIFW9YGWep+MQ1XDL2OuyLNbgBNam4vzvYE2EutV2+rr9j0HAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUu3uxngzhMwVwuw5qBPAO38yxap8wHwYDVR0j BBgwFoAUSqpvW10OaFj8VqMEZVx7s5dRjcwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2VlNmJmMy0yYmRhLTRjYTQtYTVlNy02ZTcwNjMyNDA0YjQvMC80QUFBNkY1QjVE MEU2ODU4RkM1NkEzMDQ2NTVDN0JCMzk3NTE4RENDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFBQTZGNUI1RDBFNjg1OEZDNTZBMzA0NjU1QzdCQjM5NzUx OERDQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZWU2YmYzLTJiZGEtNGNhNC1h NWU3LTZlNzA2MzI0MDRiNC8wLzMxMzAzMzJlMzIzMTM3MmUzNzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzkzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9lMMA0GCSqG SIb3DQEBCwUAA4IBAQB/xe4wXtfLhyd8sA1o4hJaWlEkOFBaezebTKmX/e/WZuWM n9YN7MBw6q2qOPQhixe3Dn6mCU0rHyB4Ya1Argw/jbsCjhoEOFRA76gy5FM1/133 Es+LOHp3EiG8K2irJHMprlRkxNzLf0SK5rTilEduIS3L2fRmVn7vezovd9ijUcAg xEK0/Qg9XtE8ucjcksIcqlgvnFHzvJNK+qugntgA7IaJ643bxhG3FsiRjPdxGkiy p+4sfr7L6CWrnrxcXMxHZNyJQfsbQhOCg5rBFAC3Lvd1sKk3/vrTDBKXUB7zbZ+P FjXBH0yNMLnbxqJOS9jkl1raA7j4JTdGGcNcYAJa -----END CERTIFICATE-----Generated at Sun Apr 6 05:58:26 2025 by rpki-client