$ rpki-client -vvf repo-rpki.idnic.net/repo/29b3be62-3597-4fe8-a795-fc9ba1202344/0/3130332e32302e3231392e302f32342d3234203d3e20313439393638.roa File: 3130332e32302e3231392e302f32342d3234203d3e20313439393638.roa (raw, json) Hash identifier: O7tUFKX21rX6gYwZ1ZrwxitGOTUDY0G4VWaDfkWzuZ4= Subject key identifier: F7:46:30:D3:5C:E7:5B:37:A3:6F:49:07:8E:DB:DD:80:3D:21:A4:4A Certificate issuer: /CN=B4381C63674B5D9A9B8C44C13CF19E7DD321F7C0 Certificate serial: 327D9841934C52A540173F6D1050848A8FAB673E Authority key identifier: B4:38:1C:63:67:4B:5D:9A:9B:8C:44:C1:3C:F1:9E:7D:D3:21:F7:C0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B4381C63674B5D9A9B8C44C13CF19E7DD321F7C0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29b3be62-3597-4fe8-a795-fc9ba1202344/0/3130332e32302e3231392e302f32342d3234203d3e20313439393638.roa Signing time: Wed 01 Jan 2025 03:00:33 +0000 ROA not before: Wed 01 Jan 2025 02:55:33 +0000 ROA not after: Wed 31 Dec 2025 03:00:33 +0000 asID: 149968 IP address blocks: 103.20.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29b3be62-3597-4fe8-a795-fc9ba1202344/0/B4381C63674B5D9A9B8C44C13CF19E7DD321F7C0.crl rsync://repo-rpki.idnic.net/repo/29b3be62-3597-4fe8-a795-fc9ba1202344/0/B4381C63674B5D9A9B8C44C13CF19E7DD321F7C0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B4381C63674B5D9A9B8C44C13CF19E7DD321F7C0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 14:16:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:7d:98:41:93:4c:52:a5:40:17:3f:6d:10:50:84:8a:8f:ab:67:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4381C63674B5D9A9B8C44C13CF19E7DD321F7C0 Validity Not Before: Jan 1 02:55:33 2025 GMT Not After : Dec 31 03:00:33 2025 GMT Subject: CN=F74630D35CE75B37A36F49078EDBDD803D21A44A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f3:cc:e9:56:32:8e:b3:fc:9d:d3:ba:03:ab: 65:7d:97:69:0e:ea:5c:1a:fb:7f:f6:a2:f2:34:dc: e4:e8:26:21:d9:44:69:e6:aa:b7:df:9e:70:37:92: 1f:ff:77:2e:d9:45:5a:1f:cb:0e:7e:20:43:9c:2d: 99:7d:a8:7b:1e:bc:c4:86:b9:35:b9:cc:8d:f2:7a: a7:07:ed:a5:f7:4d:c4:1f:d6:34:93:8e:fc:3b:28: f8:55:8a:22:1b:8b:99:42:70:e0:34:37:71:2f:8f: 4a:1c:24:90:15:c8:54:f5:fd:5c:79:69:34:30:50: 7a:e9:63:08:10:df:c7:3c:0b:2b:20:8b:4f:4b:2b: 9a:11:06:dc:ba:61:c5:f0:f9:6c:38:b9:b8:05:ce: e7:ce:99:91:33:37:c9:8a:3c:01:4c:50:12:92:bd: a7:5c:77:df:cc:e6:38:46:8b:39:e2:ed:35:93:f0: fa:b7:77:ea:c1:29:28:db:b8:6b:e0:e5:3a:b2:26: f8:37:55:e5:ec:af:64:a2:dc:55:83:ad:aa:5f:94: 2a:47:02:b6:be:85:c4:69:70:86:ef:41:c7:c0:44: d7:05:2d:d4:64:7f:69:79:b4:f1:a2:19:a6:af:db: 78:a4:4a:e1:37:5c:e7:88:af:57:20:a8:68:f4:bf: 53:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:46:30:D3:5C:E7:5B:37:A3:6F:49:07:8E:DB:DD:80:3D:21:A4:4A X509v3 Authority Key Identifier: keyid:B4:38:1C:63:67:4B:5D:9A:9B:8C:44:C1:3C:F1:9E:7D:D3:21:F7:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29b3be62-3597-4fe8-a795-fc9ba1202344/0/B4381C63674B5D9A9B8C44C13CF19E7DD321F7C0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B4381C63674B5D9A9B8C44C13CF19E7DD321F7C0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29b3be62-3597-4fe8-a795-fc9ba1202344/0/3130332e32302e3231392e302f32342d3234203d3e20313439393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.219.0/24 Signature Algorithm: sha256WithRSAEncryption d6:a4:1d:1e:df:70:c8:6d:f5:f2:d3:03:c4:fb:7a:2f:b3:20: db:8b:e5:38:ec:9b:6e:a4:97:57:d4:40:8f:7c:20:53:e6:9d: 7f:54:58:54:2c:a0:51:37:ac:ff:11:c4:93:be:9d:8e:5e:28: 99:39:0d:8b:60:9f:37:a9:20:6d:a1:c3:04:a2:78:6d:db:5e: 76:28:88:db:79:c2:85:fb:5f:54:a7:84:4b:2e:c8:13:96:bc: da:93:fb:7a:11:bb:b2:c6:0c:e5:58:58:fa:fa:bb:05:d0:7e: 26:e0:3c:a8:42:ff:22:47:6f:fc:c1:df:85:a7:c9:25:41:ff: 2c:8f:c3:b8:78:f3:28:39:b9:02:a8:ec:a6:78:ec:6c:f2:0f: 4b:a7:da:55:aa:a7:fe:01:6f:81:39:29:65:e0:19:31:6c:06: fd:0b:44:c3:3f:59:22:8d:6d:43:55:3f:9c:df:8f:4c:c8:01: f7:39:32:8c:16:45:52:d6:f4:87:71:ec:3b:b0:7d:a6:95:a6: 22:ab:9e:ff:c3:b4:40:1b:5a:59:51:2a:bb:3e:f5:2b:ed:7b: 4a:77:7a:f8:c9:54:5c:dc:06:e2:52:06:b2:82:e7:2b:13:7f: fb:ec:83:33:88:e8:c1:8d:e9:06:50:9b:0d:ec:d2:90:90:cb: d5:71:8c:e8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMn2YQZNMUqVAFz9tEFCEio+rZz4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjQzODFDNjM2NzRCNUQ5QTlCOEM0NEMxM0NGMTlFN0RE MzIxRjdDMDAeFw0yNTAxMDEwMjU1MzNaFw0yNTEyMzEwMzAwMzNaMDMxMTAvBgNV BAMTKEY3NDYzMEQzNUNFNzVCMzdBMzZGNDkwNzhFREJERDgwM0QyMUE0NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi88zpVjKOs/yd07oDq2V9l2kO 6lwa+3/2ovI03OToJiHZRGnmqrffnnA3kh//dy7ZRVofyw5+IEOcLZl9qHsevMSG uTW5zI3yeqcH7aX3TcQf1jSTjvw7KPhViiIbi5lCcOA0N3Evj0ocJJAVyFT1/Vx5 aTQwUHrpYwgQ38c8Cysgi09LK5oRBty6YcXw+Ww4ubgFzufOmZEzN8mKPAFMUBKS vadcd9/M5jhGizni7TWT8Pq3d+rBKSjbuGvg5TqyJvg3VeXsr2Si3FWDrapflCpH Ara+hcRpcIbvQcfARNcFLdRkf2l5tPGiGaav23ikSuE3XOeIr1cgqGj0v1OJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU90Yw01znWzejb0kHjtvdgD0hpEowHwYDVR0j BBgwFoAUtDgcY2dLXZqbjETBPPGefdMh98AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWIzYmU2Mi0zNTk3LTRmZTgtYTc5NS1mYzliYTEyMDIzNDQvMC9CNDM4MUM2MzY3 NEI1RDlBOUI4QzQ0QzEzQ0YxOUU3REQzMjFGN0MwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjQzODFDNjM2NzRCNUQ5QTlCOEM0NEMxM0NGMTlFN0REMzIx RjdDMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YjNiZTYyLTM1OTctNGZlOC1h Nzk1LWZjOWJhMTIwMjM0NC8wLzMxMzAzMzJlMzIzMDJlMzIzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzkzNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxTbMA0GCSqG SIb3DQEBCwUAA4IBAQDWpB0e33DIbfXy0wPE+3ovsyDbi+U47JtupJdX1ECPfCBT 5p1/VFhULKBRN6z/EcSTvp2OXiiZOQ2LYJ83qSBtocMEonht2152KIjbecKF+19U p4RLLsgTlrzak/t6EbuyxgzlWFj6+rsF0H4m4DyoQv8iR2/8wd+Fp8klQf8sj8O4 ePMoObkCqOymeOxs8g9Lp9pVqqf+AW+BOSll4BkxbAb9C0TDP1kijW1DVT+c349M yAH3OTKMFkVS1vSHcew7sH2mlaYiq57/w7RAG1pZUSq7PvUr7XtKd3r4yVRc3Abi UgaygucrE3/77IMziOjBjekGUJsN7NKQkMvVcYzo -----END CERTIFICATE-----Generated at Sun Apr 6 07:51:23 2025 by rpki-client