$ rpki-client -vvf repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/3130332e3136352e3134382e302f32342d3234203d3e20313431393230.roa File: 3130332e3136352e3134382e302f32342d3234203d3e20313431393230.roa (raw, json) Hash identifier: PEcDYL2YEDwvOwIh2isXFSsdo3mWol6RplkSJ7kPOGI= Subject key identifier: 8E:E0:74:1E:07:02:17:D3:61:99:8D:DC:64:95:4A:54:C2:FE:98:75 Certificate issuer: /CN=E4CEC11F244BF0DABEC136F839FD537B2DBBED0F Certificate serial: 2AAEA3CD3BF73391DA5D04154AA6A203EB829BD1 Authority key identifier: E4:CE:C1:1F:24:4B:F0:DA:BE:C1:36:F8:39:FD:53:7B:2D:BB:ED:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/3130332e3136352e3134382e302f32342d3234203d3e20313431393230.roa Signing time: Tue 18 Mar 2025 10:00:02 +0000 ROA not before: Tue 18 Mar 2025 09:55:02 +0000 ROA not after: Tue 17 Mar 2026 10:00:02 +0000 asID: 141920 IP address blocks: 103.165.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.crl rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 01:31:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:ae:a3:cd:3b:f7:33:91:da:5d:04:15:4a:a6:a2:03:eb:82:9b:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E4CEC11F244BF0DABEC136F839FD537B2DBBED0F Validity Not Before: Mar 18 09:55:02 2025 GMT Not After : Mar 17 10:00:02 2026 GMT Subject: CN=8EE0741E070217D361998DDC64954A54C2FE9875 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:37:2f:29:78:f0:60:c2:f0:8e:39:94:41:de: a8:c8:f8:a3:8b:ac:71:a1:c4:b2:d8:d2:a1:bb:d1: ab:23:64:93:74:94:dd:b8:ca:a2:eb:a0:bc:2d:bb: 99:81:9e:8d:e7:54:a5:e5:a6:ea:96:8f:e2:c1:b8: ab:37:dc:d7:90:38:7d:f7:e6:a8:65:21:ab:f2:e6: 17:b5:df:ad:8f:64:95:f9:5d:cb:87:4b:b4:6d:5b: a9:85:7d:5b:bc:70:c2:67:06:f1:9a:86:65:0a:40: ac:8d:13:b2:54:0f:b8:0c:2c:e9:08:70:2b:b6:82: 19:72:aa:1d:ba:ea:d0:51:c8:e4:64:cd:44:e2:d5: cc:9e:73:88:af:9a:63:9d:48:18:dc:cf:32:68:6b: d1:8f:4f:7f:e7:15:e7:3e:70:34:f1:ac:f9:8d:09: 1d:9e:06:bf:fd:03:2f:a8:c0:b8:08:39:cc:98:e8: f1:fd:60:67:f9:69:c9:82:fa:85:63:12:88:13:88: 7f:a2:4f:70:b0:36:e5:8c:7d:8d:8a:95:86:be:6b: 92:9b:52:f4:5b:0d:a9:88:85:0d:d4:ed:d0:e7:b9: b4:3c:b4:8c:86:48:0b:60:38:61:28:50:e0:f3:cb: 7e:8f:60:93:bf:c5:9a:0b:85:5a:5c:2d:8d:5e:43: de:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:E0:74:1E:07:02:17:D3:61:99:8D:DC:64:95:4A:54:C2:FE:98:75 X509v3 Authority Key Identifier: keyid:E4:CE:C1:1F:24:4B:F0:DA:BE:C1:36:F8:39:FD:53:7B:2D:BB:ED:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/3130332e3136352e3134382e302f32342d3234203d3e20313431393230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.148.0/24 Signature Algorithm: sha256WithRSAEncryption 50:9c:7b:f3:f9:c7:56:83:72:04:c1:5f:56:95:cb:47:e6:01: ad:cf:cb:e1:f6:b0:75:09:70:2c:28:64:72:2a:8b:60:35:3f: be:f4:c2:4d:28:41:2e:3b:be:a8:5c:47:d5:81:21:fd:55:d4: ae:af:f1:1b:43:73:e8:8b:0c:b6:2a:d9:b3:b0:6d:76:94:a7: 0d:00:95:76:fa:d9:23:4c:1c:a2:62:d3:d9:57:ad:4c:f6:15: 8d:ea:d1:45:09:ba:14:d6:f8:9f:05:57:87:ad:b9:0d:eb:97: 9a:b6:3f:12:ac:c9:95:d6:d7:cf:70:81:10:50:3e:82:fb:cc: 7a:11:94:88:c3:0f:6d:17:28:3d:65:8d:aa:40:46:03:02:93: 86:95:98:d4:7d:99:13:57:da:09:a1:c4:7b:44:49:6b:9a:11: 4d:3f:bc:b9:d9:f3:0b:af:86:79:6b:85:47:7f:69:5d:6b:c2: 39:91:27:e4:cf:5f:81:3d:f7:33:74:28:b6:09:b7:e0:77:8b: f7:4c:d2:95:a6:49:58:c8:1b:11:80:49:94:56:ca:02:13:a1: 30:47:68:a2:b8:2e:ff:aa:98:36:13:4c:0d:ed:50:7c:83:02: 77:04:be:de:b7:50:1b:38:8c:09:f8:4d:64:4d:ff:69:14:3a: 44:0e:8c:bf -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKq6jzTv3M5HaXQQVSqaiA+uCm9EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTRDRUMxMUYyNDRCRjBEQUJFQzEzNkY4MzlGRDUzN0Iy REJCRUQwRjAeFw0yNTAzMTgwOTU1MDJaFw0yNjAzMTcxMDAwMDJaMDMxMTAvBgNV BAMTKDhFRTA3NDFFMDcwMjE3RDM2MTk5OEREQzY0OTU0QTU0QzJGRTk4NzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXNy8pePBgwvCOOZRB3qjI+KOL rHGhxLLY0qG70asjZJN0lN24yqLroLwtu5mBno3nVKXlpuqWj+LBuKs33NeQOH33 5qhlIavy5he1362PZJX5XcuHS7RtW6mFfVu8cMJnBvGahmUKQKyNE7JUD7gMLOkI cCu2ghlyqh266tBRyORkzUTi1cyec4ivmmOdSBjczzJoa9GPT3/nFec+cDTxrPmN CR2eBr/9Ay+owLgIOcyY6PH9YGf5acmC+oVjEogTiH+iT3CwNuWMfY2KlYa+a5Kb UvRbDamIhQ3U7dDnubQ8tIyGSAtgOGEoUODzy36PYJO/xZoLhVpcLY1eQ96JAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjuB0HgcCF9NhmY3cZJVKVML+mHUwHwYDVR0j BBgwFoAU5M7BHyRL8Nq+wTb4Of1Tey277Q8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MmYzZjVkOS1jZmI4LTQxMjMtYTJiMS1iMGI1Mjk5ZjljNmUvMC9FNENFQzExRjI0 NEJGMERBQkVDMTM2RjgzOUZENTM3QjJEQkJFRDBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTRDRUMxMUYyNDRCRjBEQUJFQzEzNkY4MzlGRDUzN0IyREJC RUQwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMyZjNmNWQ5LWNmYjgtNDEyMy1h MmIxLWIwYjUyOTlmOWM2ZS8wLzMxMzAzMzJlMzEzNjM1MmUzMTM0MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTMyMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpZQwDQYJ KoZIhvcNAQELBQADggEBAFCce/P5x1aDcgTBX1aVy0fmAa3Py+H2sHUJcCwoZHIq i2A1P770wk0oQS47vqhcR9WBIf1V1K6v8RtDc+iLDLYq2bOwbXaUpw0AlXb62SNM HKJi09lXrUz2FY3q0UUJuhTW+J8FV4etuQ3rl5q2PxKsyZXW189wgRBQPoL7zHoR lIjDD20XKD1ljapARgMCk4aVmNR9mRNX2gmhxHtESWuaEU0/vLnZ8wuvhnlrhUd/ aV1rwjmRJ+TPX4E99zN0KLYJt+B3i/dM0pWmSVjIGxGASZRWygIToTBHaKK4Lv+q mDYTTA3tUHyDAncEvt63UBs4jAn4TWRN/2kUOkQOjL8= -----END CERTIFICATE-----Generated at Sun Apr 6 05:57:25 2025 by rpki-client