$ rpki-client -vvf repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/3130332e3235352e3136342e302f32342d3234203d3e20313531393934.roa File: 3130332e3235352e3136342e302f32342d3234203d3e20313531393934.roa (raw, json) Hash identifier: +WwlmKdoXMg38Ivud82/QXjyd3ODqNLzlXpK9Yw3uY4= Subject key identifier: 3C:19:03:56:84:F9:4F:58:99:37:24:14:F5:4C:6F:DF:D4:F0:04:0A Certificate issuer: /CN=A4D9099C365D8BB9FA96A2A51FA4C61F105EF848 Certificate serial: 73736FDD44E4ABDF38AB1C231A5674C451F64022 Authority key identifier: A4:D9:09:9C:36:5D:8B:B9:FA:96:A2:A5:1F:A4:C6:1F:10:5E:F8:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/3130332e3235352e3136342e302f32342d3234203d3e20313531393934.roa Signing time: Mon 10 Mar 2025 16:00:42 +0000 ROA not before: Mon 10 Mar 2025 15:55:42 +0000 ROA not after: Mon 09 Mar 2026 16:00:42 +0000 asID: 151994 IP address blocks: 103.255.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.crl rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 08:53:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:73:6f:dd:44:e4:ab:df:38:ab:1c:23:1a:56:74:c4:51:f6:40:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A4D9099C365D8BB9FA96A2A51FA4C61F105EF848 Validity Not Before: Mar 10 15:55:42 2025 GMT Not After : Mar 9 16:00:42 2026 GMT Subject: CN=3C19035684F94F5899372414F54C6FDFD4F0040A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:1f:68:ad:56:d5:62:7b:12:8c:e7:2b:d8:56: 10:9b:9a:db:6d:8e:e3:32:ea:1a:5b:4c:fd:31:32: 84:36:57:53:52:d1:d4:00:82:ce:a4:ec:ac:bb:14: 29:7d:b5:bb:a9:e1:54:83:91:44:2c:d2:40:71:1c: 52:0a:e8:ff:38:c3:67:a4:ef:02:6b:3e:12:e2:92: d0:98:1d:a3:38:ad:48:af:8f:87:c1:dd:3d:5a:00: 1f:8b:68:4c:5a:39:62:20:8d:90:39:3f:9b:1c:59: a6:c8:ed:0b:a0:36:70:9b:29:e3:93:72:5e:8e:38: 26:8b:e9:6f:06:5e:40:79:57:65:ce:b9:21:eb:a2: c3:e9:a6:ad:69:b1:1d:d4:79:f3:8c:0f:14:9a:d3: 6b:03:00:b8:96:83:01:18:fc:a7:42:1e:f5:6f:3a: 09:b0:5b:33:1f:c0:35:4e:99:82:33:fa:ee:e4:a8: 1e:da:c1:d1:28:44:5d:a7:e3:15:f1:cb:1b:cf:0e: 30:99:6e:17:5f:22:85:40:6e:d3:74:70:5f:d6:52: a6:0b:a3:17:58:0d:ee:58:c2:23:6f:e9:bd:d1:03: fb:97:3c:c1:27:c8:b4:b5:e0:75:2e:ea:6f:b5:81: 10:24:c7:e2:ec:a2:7b:b1:7b:b9:63:6a:d3:65:52: b0:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:19:03:56:84:F9:4F:58:99:37:24:14:F5:4C:6F:DF:D4:F0:04:0A X509v3 Authority Key Identifier: keyid:A4:D9:09:9C:36:5D:8B:B9:FA:96:A2:A5:1F:A4:C6:1F:10:5E:F8:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/3130332e3235352e3136342e302f32342d3234203d3e20313531393934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.255.164.0/24 Signature Algorithm: sha256WithRSAEncryption 49:a1:09:ae:1a:8e:ed:35:75:fa:90:82:76:71:ee:c5:cf:0e: 26:9c:69:1a:e7:ac:f4:78:f6:a3:84:ae:1e:b5:8d:14:23:ac: 4f:c7:e7:47:8e:06:80:b0:21:82:08:1c:c1:ab:08:41:fd:60: 02:f4:27:55:fa:59:9f:a5:8c:59:04:dc:b6:2d:7a:5b:0a:4d: 83:f3:a8:0b:9f:d4:12:6b:2e:20:dd:e1:94:97:f4:97:3d:fe: 5e:06:9a:5f:4f:8a:95:82:fb:d3:1a:cb:8e:b3:c2:f1:36:b6: 7b:05:4f:45:c6:00:40:a4:bd:f6:e1:c5:09:aa:d8:b4:7a:76: 0c:fa:37:a9:8f:73:8a:7f:b7:51:d0:07:2e:30:46:c6:20:ef: af:5f:31:b7:3c:bb:9e:12:1b:7d:99:eb:c3:60:c1:8f:56:a9: 22:d3:86:5f:4e:37:01:2d:8e:26:2c:a7:eb:f0:f8:47:66:fb: 48:da:70:0f:e4:95:76:1a:35:89:cd:74:d4:3c:2a:2a:5f:46: c6:cd:54:2b:7a:a1:bb:6f:b7:42:f1:a6:26:33:72:79:04:a4: 7f:10:8d:cd:61:f3:09:94:d6:2e:38:a2:fd:a1:dd:cc:2b:4e: a9:f2:08:17:a6:00:a5:40:d7:d4:40:4b:92:7e:52:bf:2b:a0: db:f8:5b:92 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUc3Nv3UTkq984qxwjGlZ0xFH2QCIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTREOTA5OUMzNjVEOEJCOUZBOTZBMkE1MUZBNEM2MUYx MDVFRjg0ODAeFw0yNTAzMTAxNTU1NDJaFw0yNjAzMDkxNjAwNDJaMDMxMTAvBgNV BAMTKDNDMTkwMzU2ODRGOTRGNTg5OTM3MjQxNEY1NEM2RkRGRDRGMDA0MEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGH2itVtViexKM5yvYVhCbmttt juMy6hpbTP0xMoQ2V1NS0dQAgs6k7Ky7FCl9tbup4VSDkUQs0kBxHFIK6P84w2ek 7wJrPhLiktCYHaM4rUivj4fB3T1aAB+LaExaOWIgjZA5P5scWabI7QugNnCbKeOT cl6OOCaL6W8GXkB5V2XOuSHrosPppq1psR3UefOMDxSa02sDALiWgwEY/KdCHvVv OgmwWzMfwDVOmYIz+u7kqB7awdEoRF2n4xXxyxvPDjCZbhdfIoVAbtN0cF/WUqYL oxdYDe5YwiNv6b3RA/uXPMEnyLS14HUu6m+1gRAkx+Lsonuxe7ljatNlUrCTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUPBkDVoT5T1iZNyQU9Uxv39TwBAowHwYDVR0j BBgwFoAUpNkJnDZdi7n6lqKlH6TGHxBe+EgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzQ3ZWY1Yy01YmJhLTRjZDEtOGRjOS0xNzNlMjc1MWY0ZjQvMC9BNEQ5MDk5QzM2 NUQ4QkI5RkE5NkEyQTUxRkE0QzYxRjEwNUVGODQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTREOTA5OUMzNjVEOEJCOUZBOTZBMkE1MUZBNEM2MUYxMDVF Rjg0OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjNDdlZjVjLTViYmEtNGNkMS04 ZGM5LTE3M2UyNzUxZjRmNC8wLzMxMzAzMzJlMzIzNTM1MmUzMTM2MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzOTM5MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn/6QwDQYJ KoZIhvcNAQELBQADggEBAEmhCa4aju01dfqQgnZx7sXPDiacaRrnrPR49qOErh61 jRQjrE/H50eOBoCwIYIIHMGrCEH9YAL0J1X6WZ+ljFkE3LYtelsKTYPzqAuf1BJr LiDd4ZSX9Jc9/l4Gml9PipWC+9May46zwvE2tnsFT0XGAECkvfbhxQmq2LR6dgz6 N6mPc4p/t1HQBy4wRsYg769fMbc8u54SG32Z68NgwY9WqSLThl9ONwEtjiYsp+vw +Edm+0jacA/klXYaNYnNdNQ8KipfRsbNVCt6obtvt0LxpiYzcnkEpH8Qjc1h8wmU 1i44ov2h3cwrTqnyCBemAKVA19RAS5J+Ur8roNv4W5I= -----END CERTIFICATE-----Generated at Sun Apr 6 08:24:42 2025 by rpki-client