$ rpki-client -vvf repo-rpki.idnic.net/repo/28c77eee-9bcc-401e-8f4d-5f2367562757/0/3130332e36392e3137372e302f32342d3234203d3e20313335343435.roa File: 3130332e36392e3137372e302f32342d3234203d3e20313335343435.roa (raw, json) Hash identifier: Wq79twJ+9YzQKBjwXi/sFlzpPqc/K91eUGfTowbwJEs= Subject key identifier: EC:22:7A:C6:50:03:BC:E3:3D:D2:1E:70:17:9F:2E:4A:35:63:66:7A Certificate issuer: /CN=A0F4AEBBE045B09C16953782AF306D83B0DC97D3 Certificate serial: 0AB0E3F9D47C49C19C7C7079679548C43C93D79A Authority key identifier: A0:F4:AE:BB:E0:45:B0:9C:16:95:37:82:AF:30:6D:83:B0:DC:97:D3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0F4AEBBE045B09C16953782AF306D83B0DC97D3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/28c77eee-9bcc-401e-8f4d-5f2367562757/0/3130332e36392e3137372e302f32342d3234203d3e20313335343435.roa Signing time: Fri 03 Jan 2025 09:01:57 +0000 ROA not before: Fri 03 Jan 2025 08:56:57 +0000 ROA not after: Fri 02 Jan 2026 09:01:57 +0000 asID: 135445 IP address blocks: 103.69.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/28c77eee-9bcc-401e-8f4d-5f2367562757/0/A0F4AEBBE045B09C16953782AF306D83B0DC97D3.crl rsync://repo-rpki.idnic.net/repo/28c77eee-9bcc-401e-8f4d-5f2367562757/0/A0F4AEBBE045B09C16953782AF306D83B0DC97D3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0F4AEBBE045B09C16953782AF306D83B0DC97D3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:32:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:b0:e3:f9:d4:7c:49:c1:9c:7c:70:79:67:95:48:c4:3c:93:d7:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0F4AEBBE045B09C16953782AF306D83B0DC97D3 Validity Not Before: Jan 3 08:56:57 2025 GMT Not After : Jan 2 09:01:57 2026 GMT Subject: CN=EC227AC65003BCE33DD21E70179F2E4A3563667A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:43:f0:7d:67:d6:04:2b:61:34:0a:7c:c6:be: 09:62:a0:d5:12:99:85:84:3a:f3:72:92:27:8f:5e: 67:0d:72:c7:c1:b5:28:2c:cc:3a:46:1e:00:f0:f9: c2:15:fe:72:86:6a:40:09:97:bd:f5:7b:c5:7a:70: 7a:3a:1a:ce:81:47:1b:04:1c:e1:c7:38:0e:19:c8: 8f:9b:fe:ec:fe:f2:40:ac:cc:2b:c9:5b:7b:f2:0e: 13:1a:25:7f:7f:ae:f1:72:4c:cb:03:f8:cf:6c:ef: ad:47:74:54:67:5e:aa:de:60:8b:63:d2:a1:4b:05: b0:d5:93:70:53:7d:7a:f6:a4:bf:ea:36:f8:4c:80: e5:75:21:bc:d9:69:13:5a:79:0e:f4:9d:50:4d:33: eb:40:97:d8:f7:bd:5a:e2:8c:08:12:19:b2:e3:c2: 3e:d5:e0:cf:7f:4f:74:2d:a9:87:e2:1c:42:82:6b: 4e:9f:b3:c6:db:11:27:90:ac:c0:5b:21:67:3e:37: 47:50:9c:c6:67:d3:05:aa:45:ec:5f:6c:a2:89:16: 37:4a:55:fb:e5:32:07:d9:7f:98:df:40:94:7a:0d: 19:a6:0c:bf:f9:f6:44:ae:97:51:39:7f:0e:25:9e: 75:0e:8b:1e:6c:24:e0:6e:ed:e8:ac:7e:97:98:40: 0c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:22:7A:C6:50:03:BC:E3:3D:D2:1E:70:17:9F:2E:4A:35:63:66:7A X509v3 Authority Key Identifier: keyid:A0:F4:AE:BB:E0:45:B0:9C:16:95:37:82:AF:30:6D:83:B0:DC:97:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/28c77eee-9bcc-401e-8f4d-5f2367562757/0/A0F4AEBBE045B09C16953782AF306D83B0DC97D3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0F4AEBBE045B09C16953782AF306D83B0DC97D3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/28c77eee-9bcc-401e-8f4d-5f2367562757/0/3130332e36392e3137372e302f32342d3234203d3e20313335343435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.69.177.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:99:54:fd:06:79:58:35:ca:fe:ee:a2:02:7c:5b:a7:ab:a1: c8:5f:ff:c4:b3:9b:40:5c:e6:ae:b4:57:ca:ad:04:97:ad:eb: 4d:3d:94:fb:83:d5:e1:ed:d5:ec:88:b7:86:c9:e7:78:93:bf: a8:bb:69:70:87:d2:68:bf:10:4e:2d:19:26:57:c0:9e:73:92: 7c:92:3c:e3:ad:54:cd:67:cb:58:b7:81:8e:bf:ed:c0:db:ca: 18:8f:6c:97:cf:13:dd:28:7a:9d:68:ec:9e:72:bc:e9:b0:56: 17:d2:99:73:7e:a1:c7:69:20:8b:5c:5f:5a:42:2d:64:90:03: 4d:9d:d3:58:40:40:f2:23:63:dc:89:a0:22:06:a0:d0:fc:60: e6:93:0a:d6:51:08:27:6c:10:38:b3:36:04:4a:a2:b6:f8:e8: 66:bd:f6:76:d1:1e:29:20:c3:5f:a3:38:ca:c9:41:b7:84:6b: 39:95:f2:c5:b8:63:d4:d6:c4:7a:4a:51:77:df:1a:13:58:7f: 82:f0:d1:3e:85:82:26:4a:f4:b1:6e:1e:50:63:3e:b2:5e:2a: a5:a7:66:c6:43:04:b5:ae:00:ab:9f:9a:cd:40:cd:d0:74:8f: 54:37:65:a3:cb:43:b8:6b:c7:b3:78:3c:98:60:a0:c5:65:27: 83:79:c6:04 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCrDj+dR8ScGcfHB5Z5VIxDyT15owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBGNEFFQkJFMDQ1QjA5QzE2OTUzNzgyQUYzMDZEODNC MERDOTdEMzAeFw0yNTAxMDMwODU2NTdaFw0yNjAxMDIwOTAxNTdaMDMxMTAvBgNV BAMTKEVDMjI3QUM2NTAwM0JDRTMzREQyMUU3MDE3OUYyRTRBMzU2MzY2N0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1Q/B9Z9YEK2E0CnzGvglioNUS mYWEOvNykiePXmcNcsfBtSgszDpGHgDw+cIV/nKGakAJl731e8V6cHo6Gs6BRxsE HOHHOA4ZyI+b/uz+8kCszCvJW3vyDhMaJX9/rvFyTMsD+M9s761HdFRnXqreYItj 0qFLBbDVk3BTfXr2pL/qNvhMgOV1IbzZaRNaeQ70nVBNM+tAl9j3vVrijAgSGbLj wj7V4M9/T3QtqYfiHEKCa06fs8bbESeQrMBbIWc+N0dQnMZn0wWqRexfbKKJFjdK VfvlMgfZf5jfQJR6DRmmDL/59kSul1E5fw4lnnUOix5sJOBu7eisfpeYQAwFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7CJ6xlADvOM90h5wF58uSjVjZnowHwYDVR0j BBgwFoAUoPSuu+BFsJwWlTeCrzBtg7Dcl9MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OGM3N2VlZS05YmNjLTQwMWUtOGY0ZC01ZjIzNjc1NjI3NTcvMC9BMEY0QUVCQkUw NDVCMDlDMTY5NTM3ODJBRjMwNkQ4M0IwREM5N0QzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTBGNEFFQkJFMDQ1QjA5QzE2OTUzNzgyQUYzMDZEODNCMERD OTdEMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI4Yzc3ZWVlLTliY2MtNDAxZS04 ZjRkLTVmMjM2NzU2Mjc1Ny8wLzMxMzAzMzJlMzYzOTJlMzEzNzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0WxMA0GCSqG SIb3DQEBCwUAA4IBAQBcmVT9BnlYNcr+7qICfFunq6HIX//Es5tAXOautFfKrQSX retNPZT7g9Xh7dXsiLeGyed4k7+ou2lwh9JovxBOLRkmV8Cec5J8kjzjrVTNZ8tY t4GOv+3A28oYj2yXzxPdKHqdaOyecrzpsFYX0plzfqHHaSCLXF9aQi1kkANNndNY QEDyI2PciaAiBqDQ/GDmkwrWUQgnbBA4szYESqK2+OhmvfZ20R4pIMNfozjKyUG3 hGs5lfLFuGPU1sR6SlF33xoTWH+C8NE+hYImSvSxbh5QYz6yXiqlp2bGQwS1rgCr n5rNQM3QdI9UN2Wjy0O4a8ezeDyYYKDFZSeDecYE -----END CERTIFICATE-----Generated at Thu Apr 10 06:42:34 2025 by rpki-client