$ rpki-client -vvf repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/3130332e3137372e3231392e302f32342d3234203d3e20313331373639.roa File: 3130332e3137372e3231392e302f32342d3234203d3e20313331373639.roa (raw, json) Hash identifier: fU1tQ4gaeWNhq2F1RA67XHvI+/xcbSrzocYJJCxhg9Q= Subject key identifier: CC:7E:E3:29:F4:8E:43:B9:12:FE:44:6D:04:4F:F6:90:F3:0B:D6:AA Certificate issuer: /CN=2AAFA81414EDCB1032235F2240FE06773F3E6F16 Certificate serial: 2791D9427B6F409EF949C024532228EF12FE1CFF Authority key identifier: 2A:AF:A8:14:14:ED:CB:10:32:23:5F:22:40:FE:06:77:3F:3E:6F:16 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/3130332e3137372e3231392e302f32342d3234203d3e20313331373639.roa Signing time: Mon 03 Feb 2025 09:00:00 +0000 ROA not before: Mon 03 Feb 2025 08:55:00 +0000 ROA not after: Mon 02 Feb 2026 09:00:00 +0000 asID: 131769 IP address blocks: 103.177.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 05:40:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:91:d9:42:7b:6f:40:9e:f9:49:c0:24:53:22:28:ef:12:fe:1c:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2AAFA81414EDCB1032235F2240FE06773F3E6F16 Validity Not Before: Feb 3 08:55:00 2025 GMT Not After : Feb 2 09:00:00 2026 GMT Subject: CN=CC7EE329F48E43B912FE446D044FF690F30BD6AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:10:3e:ec:5e:3a:d6:a9:0e:83:33:84:ce:6b: 2d:03:34:ba:71:cb:6e:84:18:e1:5d:51:e2:9c:4a: a7:16:e5:ab:bd:8c:7e:47:f0:6d:33:79:e6:c7:d5: fb:64:36:2b:4a:81:91:3d:99:f9:6c:3c:f8:bf:ee: 4e:08:84:8e:a0:dc:46:50:69:80:72:3d:b0:be:18: 9a:4c:ae:30:3b:0b:55:dd:14:38:bf:d2:bc:0f:53: 7b:11:4b:01:d8:55:64:d3:61:ca:b3:63:b8:20:d5: d0:79:f5:b4:74:9e:9f:dd:4a:fb:b9:03:59:0c:1f: 1d:56:c2:50:6d:f1:88:38:56:ed:5b:15:1a:e2:7d: 3c:b8:58:9e:aa:5f:1f:13:4c:b3:e6:14:aa:2a:e5: 64:87:1b:b9:9b:19:0d:0d:c3:7c:59:0e:c3:df:af: 5c:07:fa:58:af:59:7d:53:20:75:84:27:7f:f3:ac: bb:8f:10:fd:fe:ca:42:64:9b:72:da:92:7a:32:8c: f0:5a:76:b1:7f:55:11:cb:da:3c:9c:36:4e:f4:98: e6:40:ba:36:7d:d2:c6:29:ee:73:75:ca:62:b2:35: 67:f9:da:90:0a:f3:7a:25:f4:c2:8e:12:f5:0a:61: f3:40:85:cd:0a:8c:e5:aa:01:d6:38:6d:92:12:1c: b2:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:7E:E3:29:F4:8E:43:B9:12:FE:44:6D:04:4F:F6:90:F3:0B:D6:AA X509v3 Authority Key Identifier: keyid:2A:AF:A8:14:14:ED:CB:10:32:23:5F:22:40:FE:06:77:3F:3E:6F:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/3130332e3137372e3231392e302f32342d3234203d3e20313331373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.219.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:28:e9:1b:a5:58:f8:7a:55:1a:4d:65:8a:09:11:9f:29:d5: bf:fb:af:87:eb:11:a5:6f:b1:83:07:7a:86:bf:68:18:f9:ab: a9:37:84:8e:df:24:7f:a3:d6:8a:10:e0:50:df:5a:dd:c3:01: a7:12:fa:ad:2d:91:2a:68:88:b8:75:a8:e9:1d:41:1d:e0:e4: 08:0d:15:e4:00:14:54:50:58:c1:f8:8e:6f:b8:e9:ee:3f:9d: 0a:9e:5f:35:4a:53:b1:f2:32:9b:06:af:12:f2:da:40:a2:c9: 77:42:db:88:c0:fe:22:80:00:4f:dc:ad:a8:83:5e:aa:96:0d: 17:c2:0a:17:ef:07:8f:51:6d:b8:c1:4c:ee:57:98:4b:4f:ba: ab:c3:8c:db:a9:23:8d:fc:6e:cb:6d:be:5b:52:15:63:ca:eb: 46:6d:93:11:08:39:e8:d7:eb:2e:b5:21:7b:ce:98:30:36:c7: 71:47:82:82:e4:89:16:67:51:29:60:4d:31:ba:2e:e5:3e:24: 8f:d3:3d:d4:df:82:f0:70:9e:83:75:05:d6:09:46:a7:33:5d: 74:f2:73:18:a3:c9:c4:78:6d:03:6e:af:ec:b9:fa:00:76:68: 28:85:cf:17:c1:c5:e2:8b:28:7f:48:9e:29:07:b4:47:22:48: 50:b2:cd:b4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJ5HZQntvQJ75ScAkUyIo7xL+HP8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2Nzcz RjNFNkYxNjAeFw0yNTAyMDMwODU1MDBaFw0yNjAyMDIwOTAwMDBaMDMxMTAvBgNV BAMTKENDN0VFMzI5RjQ4RTQzQjkxMkZFNDQ2RDA0NEZGNjkwRjMwQkQ2QUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5ED7sXjrWqQ6DM4TOay0DNLpx y26EGOFdUeKcSqcW5au9jH5H8G0zeebH1ftkNitKgZE9mflsPPi/7k4IhI6g3EZQ aYByPbC+GJpMrjA7C1XdFDi/0rwPU3sRSwHYVWTTYcqzY7gg1dB59bR0np/dSvu5 A1kMHx1WwlBt8Yg4Vu1bFRrifTy4WJ6qXx8TTLPmFKoq5WSHG7mbGQ0Nw3xZDsPf r1wH+livWX1TIHWEJ3/zrLuPEP3+ykJkm3LaknoyjPBadrF/VRHL2jycNk70mOZA ujZ90sYp7nN1ymKyNWf52pAK83ol9MKOEvUKYfNAhc0KjOWqAdY4bZISHLL9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUzH7jKfSOQ7kS/kRtBE/2kPML1qowHwYDVR0j BBgwFoAUKq+oFBTtyxAyI18iQP4Gdz8+bxYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YWI4ZTYwZi1mOTkzLTQ1MzQtOWRhMC1mMjg1YTg2MDNmNjkvMC8yQUFGQTgxNDE0 RURDQjEwMzIyMzVGMjI0MEZFMDY3NzNGM0U2RjE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2NzczRjNF NkYxNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhYjhlNjBmLWY5OTMtNDUzNC05 ZGEwLWYyODVhODYwM2Y2OS8wLzMxMzAzMzJlMzEzNzM3MmUzMjMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnsdswDQYJ KoZIhvcNAQELBQADggEBACoo6RulWPh6VRpNZYoJEZ8p1b/7r4frEaVvsYMHeoa/ aBj5q6k3hI7fJH+j1ooQ4FDfWt3DAacS+q0tkSpoiLh1qOkdQR3g5AgNFeQAFFRQ WMH4jm+46e4/nQqeXzVKU7HyMpsGrxLy2kCiyXdC24jA/iKAAE/craiDXqqWDRfC ChfvB49RbbjBTO5XmEtPuqvDjNupI438bsttvltSFWPK60ZtkxEIOejX6y61IXvO mDA2x3FHgoLkiRZnUSlgTTG6LuU+JI/TPdTfgvBwnoN1BdYJRqczXXTycxijycR4 bQNur+y5+gB2aCiFzxfBxeKLKH9InikHtEciSFCyzbQ= -----END CERTIFICATE-----Generated at Sun Apr 6 15:58:41 2025 by rpki-client