$ rpki-client -vvf repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139362e302f32332d3233203d3e20313430343730.roa File: 3130332e3135392e3139362e302f32332d3233203d3e20313430343730.roa (raw, json) Hash identifier: K1+FytjoejdmG1Rus/G2hZCtW5hkde5AWHgsou+ZdZo= Subject key identifier: 7F:2D:7A:65:23:B5:8A:BF:1D:BA:06:0D:81:71:B5:08:60:35:DE:95 Certificate issuer: /CN=F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D Certificate serial: 1BC3A4F546AD00081C4C0F3DB8846F43E11A1603 Authority key identifier: F7:A5:C0:89:7A:1A:B3:1B:FD:31:BE:0A:F2:1D:82:5C:5A:A6:97:2D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139362e302f32332d3233203d3e20313430343730.roa Signing time: Thu 13 Feb 2025 10:00:02 +0000 ROA not before: Thu 13 Feb 2025 09:55:02 +0000 ROA not after: Thu 12 Feb 2026 10:00:02 +0000 asID: 140470 IP address blocks: 103.159.196.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.crl rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 06:12:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:c3:a4:f5:46:ad:00:08:1c:4c:0f:3d:b8:84:6f:43:e1:1a:16:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D Validity Not Before: Feb 13 09:55:02 2025 GMT Not After : Feb 12 10:00:02 2026 GMT Subject: CN=7F2D7A6523B58ABF1DBA060D8171B5086035DE95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:4e:f9:e7:0b:28:8a:96:13:09:89:de:e1:44: d9:57:64:68:fb:62:16:28:94:a3:63:d7:53:f3:e0: cf:f2:47:38:e4:27:7c:f0:4e:61:2d:51:83:3c:8b: 9f:c9:18:12:c5:35:4a:ae:f7:1d:05:5f:07:f5:28: bf:88:33:58:39:20:de:e1:f4:b8:1e:cf:4e:00:3a: 97:b8:4c:1e:6e:5b:c8:d9:bb:1a:c8:60:b2:ba:30: da:17:cd:d2:3f:e7:31:18:6b:0b:57:58:ee:b0:3e: 53:4e:b5:ff:0c:83:b3:8c:a8:3c:10:3f:8f:f3:6a: 6c:0c:7c:27:2a:ef:2e:1f:44:4f:00:fb:66:22:1d: d6:3b:37:24:7e:9f:34:95:dc:44:02:83:41:fe:eb: 85:08:a4:23:e5:e6:23:9b:d3:54:5c:d6:3e:51:d7: 28:b2:4b:ff:1f:43:b9:dc:f9:36:4a:d0:93:c2:39: 08:b6:30:74:2b:c2:38:12:8c:eb:1f:93:bb:89:27: b1:6b:b0:4c:b3:f7:5e:67:cb:a9:39:8d:fd:4b:4c: 4f:06:fa:a2:f2:b8:8f:97:b3:13:17:d0:0a:25:30: d2:21:69:27:4f:52:a9:46:1b:9a:5e:e0:51:e3:ad: ea:95:29:c7:e4:e0:7a:24:0e:38:01:c4:54:d6:5e: 92:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:2D:7A:65:23:B5:8A:BF:1D:BA:06:0D:81:71:B5:08:60:35:DE:95 X509v3 Authority Key Identifier: keyid:F7:A5:C0:89:7A:1A:B3:1B:FD:31:BE:0A:F2:1D:82:5C:5A:A6:97:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139362e302f32332d3233203d3e20313430343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.196.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:a7:73:e0:83:74:bc:94:f1:78:1a:30:df:ca:9e:4d:1e:7a: c7:3f:ef:7e:10:82:89:e4:08:48:6b:95:86:67:34:6a:10:08: 63:b0:1d:4f:66:f9:87:6e:20:a8:78:b0:45:78:37:e3:b8:b8: 18:e0:c0:4b:73:4a:23:82:00:53:ca:df:5e:f5:b3:8a:b7:1e: 8c:e1:b0:28:98:22:c8:d2:2d:4b:17:70:b8:07:aa:dc:2b:7d: d5:9a:8c:61:e5:7b:f2:a0:2a:20:d7:ed:60:56:b3:38:e2:57: 5b:79:24:71:56:81:4d:4d:ad:25:39:a5:33:c6:be:8a:71:d5: 60:c1:84:5d:d0:83:31:00:9d:cc:5b:6b:6c:cf:0d:72:72:43: 97:48:7e:f0:06:11:d4:e5:71:5d:55:6f:7a:3c:3a:ff:d8:32: 9d:1a:24:67:19:01:5d:26:7b:10:90:c4:06:2f:26:f4:08:e9: 33:ae:3a:c4:49:76:06:6b:07:7b:11:e3:1d:21:f2:89:5c:09: 74:c3:43:37:84:da:ed:46:02:4c:0a:a2:76:55:16:cd:d3:82: 1e:bf:b1:ab:a5:d8:5a:1e:c8:ff:14:68:cd:55:ba:47:76:3f: 59:35:cc:9b:ee:9e:fc:d5:22:e7:e8:ab:25:c1:a4:b5:85:69: 72:df:ff:b4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUG8Ok9UatAAgcTA89uIRvQ+EaFgMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjdBNUMwODk3QTFBQjMxQkZEMzFCRTBBRjIxRDgyNUM1 QUE2OTcyRDAeFw0yNTAyMTMwOTU1MDJaFw0yNjAyMTIxMDAwMDJaMDMxMTAvBgNV BAMTKDdGMkQ3QTY1MjNCNThBQkYxREJBMDYwRDgxNzFCNTA4NjAzNURFOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUTvnnCyiKlhMJid7hRNlXZGj7 YhYolKNj11Pz4M/yRzjkJ3zwTmEtUYM8i5/JGBLFNUqu9x0FXwf1KL+IM1g5IN7h 9Lgez04AOpe4TB5uW8jZuxrIYLK6MNoXzdI/5zEYawtXWO6wPlNOtf8Mg7OMqDwQ P4/zamwMfCcq7y4fRE8A+2YiHdY7NyR+nzSV3EQCg0H+64UIpCPl5iOb01Rc1j5R 1yiyS/8fQ7nc+TZK0JPCOQi2MHQrwjgSjOsfk7uJJ7FrsEyz915ny6k5jf1LTE8G +qLyuI+XsxMX0AolMNIhaSdPUqlGG5pe4FHjreqVKcfk4HokDjgBxFTWXpLfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUfy16ZSO1ir8dugYNgXG1CGA13pUwHwYDVR0j BBgwFoAU96XAiXoasxv9Mb4K8h2CXFqmly0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Y2RkNTc3NC0zMGRkLTRhMDAtYjFhOS05YjEyODI2OTMwYzIvMC9GN0E1QzA4OTdB MUFCMzFCRkQzMUJFMEFGMjFEODI1QzVBQTY5NzJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjdBNUMwODk3QTFBQjMxQkZEMzFCRTBBRjIxRDgyNUM1QUE2 OTcyRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjZGQ1Nzc0LTMwZGQtNGEwMC1i MWE5LTliMTI4MjY5MzBjMi8wLzMxMzAzMzJlMzEzNTM5MmUzMTM5MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzNDM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnn8QwDQYJ KoZIhvcNAQELBQADggEBAHunc+CDdLyU8XgaMN/Knk0eesc/734QgonkCEhrlYZn NGoQCGOwHU9m+YduIKh4sEV4N+O4uBjgwEtzSiOCAFPK3171s4q3HozhsCiYIsjS LUsXcLgHqtwrfdWajGHle/KgKiDX7WBWszjiV1t5JHFWgU1NrSU5pTPGvopx1WDB hF3QgzEAncxba2zPDXJyQ5dIfvAGEdTlcV1Vb3o8Ov/YMp0aJGcZAV0mexCQxAYv JvQI6TOuOsRJdgZrB3sR4x0h8olcCXTDQzeE2u1GAkwKonZVFs3Tgh6/saul2Foe yP8UaM1Vukd2P1k1zJvunvzVIufoqyXBpLWFaXLf/7Q= -----END CERTIFICATE-----Generated at Sun Apr 6 07:45:59 2025 by rpki-client