$ rpki-client -vvf repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/3130332e3235352e3136352e302f32342d3234203d3e20313531393934.roa File: 3130332e3235352e3136352e302f32342d3234203d3e20313531393934.roa (raw, json) Hash identifier: /VKdsaTHmCyGCE586MO51z4LSl8AS7ykHk2hmgDFEO4= Subject key identifier: A7:71:B7:50:38:A6:C8:0B:DF:B8:01:66:BB:63:F1:F9:C6:DD:3D:03 Certificate issuer: /CN=A4D9099C365D8BB9FA96A2A51FA4C61F105EF848 Certificate serial: 1905B8E3BE6238DA8CAECCBBB06AB3FE29C6CF4F Authority key identifier: A4:D9:09:9C:36:5D:8B:B9:FA:96:A2:A5:1F:A4:C6:1F:10:5E:F8:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/3130332e3235352e3136352e302f32342d3234203d3e20313531393934.roa Signing time: Mon 10 Mar 2025 16:00:42 +0000 ROA not before: Mon 10 Mar 2025 15:55:42 +0000 ROA not after: Mon 09 Mar 2026 16:00:42 +0000 asID: 151994 IP address blocks: 103.255.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.crl rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:57:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:05:b8:e3:be:62:38:da:8c:ae:cc:bb:b0:6a:b3:fe:29:c6:cf:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A4D9099C365D8BB9FA96A2A51FA4C61F105EF848 Validity Not Before: Mar 10 15:55:42 2025 GMT Not After : Mar 9 16:00:42 2026 GMT Subject: CN=A771B75038A6C80BDFB80166BB63F1F9C6DD3D03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f0:c2:74:bc:2f:c0:f8:f0:78:d2:a1:e0:b2: c6:b2:a4:4a:3e:fd:a3:5c:0e:5d:02:c3:e9:9d:13: 89:e6:0b:34:8e:4e:22:3f:20:d8:b1:14:3b:e8:ee: df:1d:82:33:5e:e9:5f:4d:bb:c6:9a:27:ee:bd:a6: 50:34:13:bb:49:cc:13:b1:dd:14:c2:cd:10:1e:1f: da:ab:5c:39:e4:56:5e:77:25:d2:96:72:54:22:f5: e2:a3:f4:41:f8:a1:42:3d:3e:9e:a7:ec:24:7f:bf: dc:49:6e:d3:c5:9a:2d:9a:70:36:64:da:06:1b:b2: 4f:5b:94:d8:41:57:17:7c:25:6c:37:54:a7:73:c4: ad:bd:ca:7d:44:e4:f1:0a:03:6b:4f:a8:a8:ad:17: 82:aa:8f:9b:ec:21:88:d7:ce:7b:ce:a7:71:68:34: 25:f7:02:2f:a0:57:5b:46:bd:b5:37:f0:c7:d4:ce: 3d:a6:0d:8b:f7:c8:85:b7:ef:60:cc:a6:18:ef:a5: 2f:30:ea:e5:8d:88:6a:ff:17:8f:b4:a1:33:37:30: 45:a6:4c:5c:63:ff:9d:e4:22:7f:e5:b6:f6:51:cb: a7:c9:f7:03:0c:91:b0:58:a6:39:9b:96:63:1a:fb: ad:be:3a:fe:4c:d4:56:5a:dc:d9:d0:39:e3:a4:71: c4:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:71:B7:50:38:A6:C8:0B:DF:B8:01:66:BB:63:F1:F9:C6:DD:3D:03 X509v3 Authority Key Identifier: keyid:A4:D9:09:9C:36:5D:8B:B9:FA:96:A2:A5:1F:A4:C6:1F:10:5E:F8:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A4D9099C365D8BB9FA96A2A51FA4C61F105EF848.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c47ef5c-5bba-4cd1-8dc9-173e2751f4f4/0/3130332e3235352e3136352e302f32342d3234203d3e20313531393934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.255.165.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:fb:32:3f:04:c3:96:5f:10:cc:03:ff:2a:a0:c2:1c:dd:e6: 1b:bc:74:ba:10:a4:d0:f9:9b:4d:5c:d9:f4:45:b9:41:b0:6e: 8d:b7:1c:1d:2c:06:f6:3f:56:e5:9c:6a:b7:2c:d5:99:e9:23: f4:4a:d1:39:b4:80:66:3e:7e:c2:79:29:38:8d:37:86:f5:9a: 8b:96:4b:ca:48:7c:93:57:55:4f:fd:4e:5d:83:0c:f4:c4:68: da:27:5b:b4:26:27:6d:5d:84:bb:ee:3e:47:3a:bb:b7:23:bf: 1c:04:6d:9c:64:94:79:40:46:27:42:6f:5b:57:f2:1f:fa:e2: 65:66:97:cc:8d:08:89:53:e0:4c:5d:8f:3f:c6:c2:4d:1d:01: ae:c5:38:7a:f8:fa:e3:72:20:75:29:88:16:cc:5b:e9:f0:16: f0:74:96:07:18:c7:47:32:b9:77:a2:ad:12:0f:49:3b:88:8b: d2:57:1b:16:df:96:b8:b8:2b:84:44:ff:3e:c5:4b:8c:aa:15: 9e:94:6d:20:7f:dd:b1:f0:b3:a3:c0:ff:1c:41:0d:31:13:3e: 0d:96:ef:e8:eb:bc:ec:d7:45:45:fa:86:b1:ac:9b:79:ac:a9: 20:26:47:c1:1c:11:49:5a:f8:68:53:71:5a:5b:6f:d9:12:64: 79:42:56:45 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGQW4475iONqMrsy7sGqz/inGz08wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTREOTA5OUMzNjVEOEJCOUZBOTZBMkE1MUZBNEM2MUYx MDVFRjg0ODAeFw0yNTAzMTAxNTU1NDJaFw0yNjAzMDkxNjAwNDJaMDMxMTAvBgNV BAMTKEE3NzFCNzUwMzhBNkM4MEJERkI4MDE2NkJCNjNGMUY5QzZERDNEMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv8MJ0vC/A+PB40qHgssaypEo+ /aNcDl0Cw+mdE4nmCzSOTiI/INixFDvo7t8dgjNe6V9Nu8aaJ+69plA0E7tJzBOx 3RTCzRAeH9qrXDnkVl53JdKWclQi9eKj9EH4oUI9Pp6n7CR/v9xJbtPFmi2acDZk 2gYbsk9blNhBVxd8JWw3VKdzxK29yn1E5PEKA2tPqKitF4Kqj5vsIYjXznvOp3Fo NCX3Ai+gV1tGvbU38MfUzj2mDYv3yIW372DMphjvpS8w6uWNiGr/F4+0oTM3MEWm TFxj/53kIn/ltvZRy6fJ9wMMkbBYpjmblmMa+62+Ov5M1FZa3NnQOeOkccQXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUp3G3UDimyAvfuAFmu2Px+cbdPQMwHwYDVR0j BBgwFoAUpNkJnDZdi7n6lqKlH6TGHxBe+EgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzQ3ZWY1Yy01YmJhLTRjZDEtOGRjOS0xNzNlMjc1MWY0ZjQvMC9BNEQ5MDk5QzM2 NUQ4QkI5RkE5NkEyQTUxRkE0QzYxRjEwNUVGODQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTREOTA5OUMzNjVEOEJCOUZBOTZBMkE1MUZBNEM2MUYxMDVF Rjg0OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjNDdlZjVjLTViYmEtNGNkMS04 ZGM5LTE3M2UyNzUxZjRmNC8wLzMxMzAzMzJlMzIzNTM1MmUzMTM2MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzOTM5MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn/6UwDQYJ KoZIhvcNAQELBQADggEBAIr7Mj8Ew5ZfEMwD/yqgwhzd5hu8dLoQpND5m01c2fRF uUGwbo23HB0sBvY/VuWcarcs1ZnpI/RK0Tm0gGY+fsJ5KTiNN4b1mouWS8pIfJNX VU/9Tl2DDPTEaNonW7QmJ21dhLvuPkc6u7cjvxwEbZxklHlARidCb1tX8h/64mVm l8yNCIlT4Exdjz/Gwk0dAa7FOHr4+uNyIHUpiBbMW+nwFvB0lgcYx0cyuXeirRIP STuIi9JXGxbflri4K4RE/z7FS4yqFZ6UbSB/3bHws6PA/xxBDTETPg2W7+jrvOzX RUX6hrGsm3msqSAmR8EcEUla+GhTcVpbb9kSZHlCVkU= -----END CERTIFICATE-----Generated at Wed Apr 9 10:14:49 2025 by rpki-client