$ rpki-client -vvf repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139362e302f32342d3234203d3e20313430343730.roa File: 3130332e3135392e3139362e302f32342d3234203d3e20313430343730.roa (raw, json) Hash identifier: g1aV9FkDrLUpjctEPjCk3eEqDOG7iPplwBZej8bhpjM= Subject key identifier: E6:DD:35:A0:98:11:AD:83:AD:51:BD:26:02:1C:3F:C4:0E:ED:90:1A Certificate issuer: /CN=F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D Certificate serial: 126D97C1F868867A2189755144D337E9DFE65472 Authority key identifier: F7:A5:C0:89:7A:1A:B3:1B:FD:31:BE:0A:F2:1D:82:5C:5A:A6:97:2D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139362e302f32342d3234203d3e20313430343730.roa Signing time: Thu 13 Feb 2025 10:00:02 +0000 ROA not before: Thu 13 Feb 2025 09:55:02 +0000 ROA not after: Thu 12 Feb 2026 10:00:02 +0000 asID: 140470 IP address blocks: 103.159.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.crl rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 06:12:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:6d:97:c1:f8:68:86:7a:21:89:75:51:44:d3:37:e9:df:e6:54:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D Validity Not Before: Feb 13 09:55:02 2025 GMT Not After : Feb 12 10:00:02 2026 GMT Subject: CN=E6DD35A09811AD83AD51BD26021C3FC40EED901A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9b:0b:52:ee:72:42:ef:84:0a:7d:26:4e:09: 89:48:46:57:ce:15:16:8e:a3:51:91:b2:00:79:59: f9:8c:77:22:f6:29:d1:35:fd:46:55:7a:5c:ae:ce: b5:41:ec:1a:0e:3a:fe:05:86:a3:72:d5:68:a9:b9: 27:19:85:2a:23:75:44:cf:47:01:05:71:d6:d6:0e: 4a:52:9b:b9:aa:f8:48:0f:12:92:3b:eb:7d:a2:1c: 24:41:36:e8:b0:48:64:d5:e5:d1:52:b5:c6:39:77: 70:69:99:6b:b0:a8:b5:51:5f:7b:3c:8e:d6:91:59: 7f:53:51:cc:8d:78:ef:f9:b9:d7:fc:64:60:b3:a6: fd:51:0a:8e:3a:9d:d8:ad:2e:c6:fe:de:26:2c:1f: d0:e5:ab:d4:7c:74:99:7c:6b:4d:62:07:d6:23:b9: f5:c8:a3:50:a0:47:b1:59:c4:35:15:7d:d4:42:b9: 56:f1:15:4b:1b:8e:0a:a1:df:03:6a:c7:f3:6d:8e: 08:43:47:c2:ac:a7:03:68:16:40:99:ee:6c:cc:6f: 5c:23:a2:e1:dd:57:0a:30:35:63:ba:a9:a2:0b:5e: f4:ad:7c:c2:21:e4:de:26:72:30:5e:cd:54:b4:9c: 4f:d6:ec:e5:2c:55:8e:1e:ad:be:54:b6:79:a2:13: 00:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:DD:35:A0:98:11:AD:83:AD:51:BD:26:02:1C:3F:C4:0E:ED:90:1A X509v3 Authority Key Identifier: keyid:F7:A5:C0:89:7A:1A:B3:1B:FD:31:BE:0A:F2:1D:82:5C:5A:A6:97:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139362e302f32342d3234203d3e20313430343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.196.0/24 Signature Algorithm: sha256WithRSAEncryption 02:b0:21:d5:49:af:fd:8e:6b:03:cc:a3:b1:e6:a7:bc:0c:a5: ff:e2:01:97:f8:04:fe:dc:3d:37:c5:fb:77:5f:a3:ed:84:f1: dc:d5:e2:84:1e:16:b3:d0:52:73:f6:90:98:9c:f7:ed:b4:c0: 9e:6e:23:25:74:e8:79:2d:3e:be:73:fd:5a:bc:b2:dd:58:84: 05:cd:81:d5:74:60:33:e0:91:da:09:65:1e:f3:dd:0d:29:0e: db:03:e1:ab:0e:0d:3f:37:48:69:7c:f4:66:4b:0f:cb:29:cf: a0:ee:70:40:bd:9b:36:d0:3d:c1:a5:34:89:39:94:8c:4e:6b: c2:6d:20:94:62:ed:46:bc:ba:8d:08:e7:fa:c5:f7:5b:83:b5: 3a:f9:c1:44:f8:76:ed:93:f3:2a:2e:26:24:57:d6:4a:a9:0e: 36:b1:78:35:87:03:0a:01:c2:15:e7:06:c4:e8:29:c3:50:34: 4e:3e:17:07:e4:3b:92:a1:bf:82:71:8f:a2:57:7d:13:df:3e: 3d:59:ab:07:f4:12:ec:34:84:a1:38:e9:b0:77:49:d2:4b:e0: e1:38:19:e2:7e:88:4e:94:23:08:06:79:5d:92:ce:f4:f1:bc: e2:93:25:aa:07:6e:1c:26:30:e2:5a:f0:ea:56:93:42:a7:f4: 22:d2:3a:25 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUEm2XwfhohnohiXVRRNM36d/mVHIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjdBNUMwODk3QTFBQjMxQkZEMzFCRTBBRjIxRDgyNUM1 QUE2OTcyRDAeFw0yNTAyMTMwOTU1MDJaFw0yNjAyMTIxMDAwMDJaMDMxMTAvBgNV BAMTKEU2REQzNUEwOTgxMUFEODNBRDUxQkQyNjAyMUMzRkM0MEVFRDkwMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9mwtS7nJC74QKfSZOCYlIRlfO FRaOo1GRsgB5WfmMdyL2KdE1/UZVelyuzrVB7BoOOv4FhqNy1WipuScZhSojdUTP RwEFcdbWDkpSm7mq+EgPEpI7632iHCRBNuiwSGTV5dFStcY5d3BpmWuwqLVRX3s8 jtaRWX9TUcyNeO/5udf8ZGCzpv1RCo46nditLsb+3iYsH9Dlq9R8dJl8a01iB9Yj ufXIo1CgR7FZxDUVfdRCuVbxFUsbjgqh3wNqx/NtjghDR8KspwNoFkCZ7mzMb1wj ouHdVwowNWO6qaILXvStfMIh5N4mcjBezVS0nE/W7OUsVY4erb5UtnmiEwCNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU5t01oJgRrYOtUb0mAhw/xA7tkBowHwYDVR0j BBgwFoAU96XAiXoasxv9Mb4K8h2CXFqmly0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Y2RkNTc3NC0zMGRkLTRhMDAtYjFhOS05YjEyODI2OTMwYzIvMC9GN0E1QzA4OTdB MUFCMzFCRkQzMUJFMEFGMjFEODI1QzVBQTY5NzJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjdBNUMwODk3QTFBQjMxQkZEMzFCRTBBRjIxRDgyNUM1QUE2 OTcyRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjZGQ1Nzc0LTMwZGQtNGEwMC1i MWE5LTliMTI4MjY5MzBjMi8wLzMxMzAzMzJlMzEzNTM5MmUzMTM5MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnn8QwDQYJ KoZIhvcNAQELBQADggEBAAKwIdVJr/2OawPMo7Hmp7wMpf/iAZf4BP7cPTfF+3df o+2E8dzV4oQeFrPQUnP2kJic9+20wJ5uIyV06HktPr5z/Vq8st1YhAXNgdV0YDPg kdoJZR7z3Q0pDtsD4asODT83SGl89GZLD8spz6DucEC9mzbQPcGlNIk5lIxOa8Jt IJRi7Ua8uo0I5/rF91uDtTr5wUT4du2T8youJiRX1kqpDjaxeDWHAwoBwhXnBsTo KcNQNE4+FwfkO5Khv4Jxj6JXfRPfPj1Zqwf0Euw0hKE46bB3SdJL4OE4GeJ+iE6U IwgGeV2SzvTxvOKTJaoHbhwmMOJa8OpWk0Kn9CLSOiU= -----END CERTIFICATE-----Generated at Sun Apr 6 07:49:37 2025 by rpki-client