$ rpki-client -vvf repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/3130332e3136362e3233342e302f32342d3234203d3e20313430343037.roa File: 3130332e3136362e3233342e302f32342d3234203d3e20313430343037.roa (raw, json) Hash identifier: sMfIE/u5AzCpsIXByAsN/oEvGS84+QQDQwr2MsQjPBU= Subject key identifier: 54:25:3B:8B:3E:F6:23:0F:EA:BB:14:8A:0B:7F:FD:3C:CE:21:B7:11 Certificate issuer: /CN=DF19949CE17DC116E7B7C2248C933405B7A1AEF2 Certificate serial: 7452820DC3DDB434EF0C985A85C91B72508EB12D Authority key identifier: DF:19:94:9C:E1:7D:C1:16:E7:B7:C2:24:8C:93:34:05:B7:A1:AE:F2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/3130332e3136362e3233342e302f32342d3234203d3e20313430343037.roa Signing time: Thu 02 Jan 2025 06:00:53 +0000 ROA not before: Thu 02 Jan 2025 05:55:53 +0000 ROA not after: Thu 01 Jan 2026 06:00:53 +0000 asID: 140407 IP address blocks: 103.166.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.crl rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 01:04:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:52:82:0d:c3:dd:b4:34:ef:0c:98:5a:85:c9:1b:72:50:8e:b1:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF19949CE17DC116E7B7C2248C933405B7A1AEF2 Validity Not Before: Jan 2 05:55:53 2025 GMT Not After : Jan 1 06:00:53 2026 GMT Subject: CN=54253B8B3EF6230FEABB148A0B7FFD3CCE21B711 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:7e:e5:ce:63:6a:9c:d6:e0:61:0c:02:c9:80: 82:69:da:2b:17:de:c7:82:ea:e3:77:f3:ca:6e:b7: 8d:34:d0:2d:e6:9d:c4:f9:94:91:f0:ee:54:10:21: 15:06:03:6c:14:0e:2a:6a:c5:45:15:c3:46:e8:37: 18:78:b2:a8:5f:d6:77:d8:ef:a6:0a:93:84:c2:cc: 30:de:b7:1e:38:f3:f4:80:f3:b9:12:e7:8c:fd:50: 89:99:15:4e:90:bd:b6:29:f4:29:88:c4:20:8e:83: 63:62:3d:a2:51:0b:ea:21:ff:0b:78:0b:a1:ac:bc: ce:c7:fd:30:ae:2c:44:e6:16:4e:03:7b:46:a6:ad: f1:cc:32:db:0d:29:2b:31:04:9e:a2:82:f1:45:ee: 3c:fd:a0:5f:51:3f:a3:a4:ab:93:d5:2e:e1:28:be: 18:e4:1c:b1:67:fb:9d:85:e7:8e:b0:30:dd:e9:62: 96:a8:8f:21:6c:c6:64:e0:39:4c:30:59:cb:e3:83: 11:b7:ed:a9:30:3d:c8:76:59:22:e3:93:b7:61:7c: 67:fd:81:0e:6b:83:9a:6b:87:74:3b:d4:b8:81:3d: 28:cf:a9:dc:e1:5b:db:d5:29:a1:b4:4d:3f:39:42: b4:91:6e:1d:2c:8e:b9:9c:cc:ba:ed:9b:09:0b:08: 00:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:25:3B:8B:3E:F6:23:0F:EA:BB:14:8A:0B:7F:FD:3C:CE:21:B7:11 X509v3 Authority Key Identifier: keyid:DF:19:94:9C:E1:7D:C1:16:E7:B7:C2:24:8C:93:34:05:B7:A1:AE:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/3130332e3136362e3233342e302f32342d3234203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.234.0/24 Signature Algorithm: sha256WithRSAEncryption 24:3f:d5:fb:bc:91:ba:38:8b:01:81:e1:12:b0:9a:69:71:7e: de:e3:21:49:9a:34:02:24:e4:52:04:66:5c:e2:12:02:74:9d: fe:85:8a:66:ee:30:07:85:21:34:1a:28:01:ed:ed:e9:30:6e: 9a:2e:72:1d:8e:5c:d6:10:75:2a:14:52:21:91:08:22:46:63: 4a:d3:27:2c:08:af:a6:8e:78:57:79:ec:a6:7e:a9:dd:e9:10: ff:37:d4:86:c1:41:eb:87:8e:96:b7:be:15:8e:0a:0b:bb:26: 5d:c2:9a:bf:a7:51:37:39:0f:a5:a1:b7:27:6b:73:04:a9:0c: 58:85:5e:c2:30:84:82:51:b5:4d:92:95:5e:9a:ab:06:ec:7d: 8a:be:a1:c9:d1:67:b1:1f:96:c1:d1:0a:f2:78:27:48:8e:35: b0:08:9d:53:e9:2c:f6:7b:56:15:e3:6f:5d:78:31:f0:c9:88: 67:5e:a8:0f:c2:86:6f:38:5c:ef:b2:f6:9b:d8:3b:db:19:6a: 03:1d:d3:ee:27:21:2f:2c:fc:9e:87:38:cb:75:ac:58:98:6b: 2d:e7:a4:3c:d3:b2:00:7c:b1:96:f3:a7:36:a2:85:65:00:96: 65:dc:14:6b:5b:c3:df:2b:80:7d:8d:15:dd:25:69:99:7c:ea: 58:a5:fe:0d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdFKCDcPdtDTvDJhahckbclCOsS0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREYxOTk0OUNFMTdEQzExNkU3QjdDMjI0OEM5MzM0MDVC N0ExQUVGMjAeFw0yNTAxMDIwNTU1NTNaFw0yNjAxMDEwNjAwNTNaMDMxMTAvBgNV BAMTKDU0MjUzQjhCM0VGNjIzMEZFQUJCMTQ4QTBCN0ZGRDNDQ0UyMUI3MTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3fuXOY2qc1uBhDALJgIJp2isX 3seC6uN388put4000C3mncT5lJHw7lQQIRUGA2wUDipqxUUVw0boNxh4sqhf1nfY 76YKk4TCzDDetx448/SA87kS54z9UImZFU6QvbYp9CmIxCCOg2NiPaJRC+oh/wt4 C6GsvM7H/TCuLETmFk4De0amrfHMMtsNKSsxBJ6igvFF7jz9oF9RP6Okq5PVLuEo vhjkHLFn+52F546wMN3pYpaojyFsxmTgOUwwWcvjgxG37akwPch2WSLjk7dhfGf9 gQ5rg5prh3Q71LiBPSjPqdzhW9vVKaG0TT85QrSRbh0sjrmczLrtmwkLCAArAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUVCU7iz72Iw/quxSKC3/9PM4htxEwHwYDVR0j BBgwFoAU3xmUnOF9wRbnt8IkjJM0BbehrvIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YWVmNzg2Yi02MjI2LTQ0YWYtODUyZC0xZmIwNDVjNGRlYjMvMC9ERjE5OTQ5Q0Ux N0RDMTE2RTdCN0MyMjQ4QzkzMzQwNUI3QTFBRUYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREYxOTk0OUNFMTdEQzExNkU3QjdDMjI0OEM5MzM0MDVCN0Ex QUVGMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhZWY3ODZiLTYyMjYtNDRhZi04 NTJkLTFmYjA0NWM0ZGViMy8wLzMxMzAzMzJlMzEzNjM2MmUzMjMzMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpuowDQYJ KoZIhvcNAQELBQADggEBACQ/1fu8kbo4iwGB4RKwmmlxft7jIUmaNAIk5FIEZlzi EgJ0nf6FimbuMAeFITQaKAHt7ekwbpouch2OXNYQdSoUUiGRCCJGY0rTJywIr6aO eFd57KZ+qd3pEP831IbBQeuHjpa3vhWOCgu7Jl3Cmr+nUTc5D6WhtydrcwSpDFiF XsIwhIJRtU2SlV6aqwbsfYq+ocnRZ7EflsHRCvJ4J0iONbAInVPpLPZ7VhXjb114 MfDJiGdeqA/Chm84XO+y9pvYO9sZagMd0+4nIS8s/J6HOMt1rFiYay3npDzTsgB8 sZbzpzaihWUAlmXcFGtbw98rgH2NFd0laZl86lil/g0= -----END CERTIFICATE-----Generated at Sun Apr 6 08:30:42 2025 by rpki-client