$ rpki-client -vvf repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/3130332e3136342e36392e302f32342d3234203d3e20313439343039.roa File: 3130332e3136342e36392e302f32342d3234203d3e20313439343039.roa (raw, json) Hash identifier: 5QM/JvrrdrcJn8om672slx53F1dYb7s2fji858A5oXY= Subject key identifier: A3:18:A1:60:60:F4:68:38:27:6B:E9:B9:BB:A5:09:1E:FD:DB:D1:AF Certificate issuer: /CN=157A25D171E1AD2FAB695F49BDC2555755B6ED7D Certificate serial: 1FF567BBCCCF1C0811BD1205052CC5A543707748 Authority key identifier: 15:7A:25:D1:71:E1:AD:2F:AB:69:5F:49:BD:C2:55:57:55:B6:ED:7D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/3130332e3136342e36392e302f32342d3234203d3e20313439343039.roa Signing time: Sun 27 Oct 2024 15:00:53 +0000 ROA not before: Sun 27 Oct 2024 14:55:53 +0000 ROA not after: Sun 26 Oct 2025 15:00:53 +0000 asID: 149409 IP address blocks: 103.164.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.crl rsync://repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Mar 2025 02:53:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:f5:67:bb:cc:cf:1c:08:11:bd:12:05:05:2c:c5:a5:43:70:77:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=157A25D171E1AD2FAB695F49BDC2555755B6ED7D Validity Not Before: Oct 27 14:55:53 2024 GMT Not After : Oct 26 15:00:53 2025 GMT Subject: CN=A318A16060F46838276BE9B9BBA5091EFDDBD1AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:8c:3c:ef:09:90:63:53:6b:f4:82:2b:c6:61: 51:9c:01:4c:95:f6:78:03:a3:a5:f8:9f:12:08:43: 4a:b7:25:39:88:b4:2c:5c:22:a2:0c:da:24:82:0f: 07:e5:19:7e:75:3f:42:fa:ef:99:34:19:38:c2:a8: a6:03:19:25:17:c9:61:7c:25:2e:6e:e2:1b:5e:c6: 79:29:a6:b3:46:ef:fb:0b:71:38:cb:5c:0b:93:56: f0:4d:ae:b5:3c:34:98:5b:68:08:ff:dd:da:44:bf: ea:12:27:31:ad:ef:61:18:6d:2e:b2:dd:b8:3e:8f: 50:05:14:60:51:e6:c0:bc:4e:72:f7:27:75:fb:74: 9e:15:27:60:12:99:7f:88:5f:fc:3b:94:0a:e7:85: 6d:87:52:c8:31:9f:23:f2:d1:ca:5e:e7:26:02:fa: 0b:18:87:b4:94:ab:93:2b:bd:2c:e8:1e:b1:29:d2: 25:21:87:58:7d:bd:e5:82:cc:18:a6:ac:73:f3:03: 34:90:aa:34:b3:25:f1:c1:87:cf:b5:36:17:09:49: 29:bf:c5:dc:7c:38:1a:87:20:cc:74:d7:8e:05:b9: b1:82:a9:a8:ec:89:db:60:9d:76:0e:50:a8:1d:22: 6c:69:5b:48:4a:bf:99:6c:1d:37:76:b8:ef:43:3f: b1:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:18:A1:60:60:F4:68:38:27:6B:E9:B9:BB:A5:09:1E:FD:DB:D1:AF X509v3 Authority Key Identifier: keyid:15:7A:25:D1:71:E1:AD:2F:AB:69:5F:49:BD:C2:55:57:55:B6:ED:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/3130332e3136342e36392e302f32342d3234203d3e20313439343039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.69.0/24 Signature Algorithm: sha256WithRSAEncryption 71:a1:1e:09:b1:47:7f:0e:19:4e:98:e0:7e:e7:37:e7:b6:2c: 76:e6:e5:73:3b:e6:48:e1:f0:34:ff:14:55:31:85:19:27:e2: 30:08:bf:ab:d4:28:64:9d:f3:d1:ab:20:b2:ee:5c:31:8c:42: 25:6f:30:a5:7d:4b:03:fb:51:e5:c2:8b:b3:dc:53:f8:f3:a1: ee:35:02:3d:5b:52:c1:62:18:6c:5b:c8:b4:63:be:ee:1c:a2: 91:4f:e3:8e:09:44:14:e0:ee:16:0d:98:08:fd:99:a4:8f:c8: 39:c4:f7:c0:d9:04:a1:3a:db:3a:6a:91:c3:bf:2c:cf:d7:29: 4f:d6:98:04:df:4d:11:95:94:51:f1:9e:0a:92:71:ab:26:99: 7f:14:9a:69:29:b7:4e:14:e6:0f:80:34:b7:dc:a7:36:ca:74: cc:11:49:a5:f0:d0:45:4a:5f:ef:ef:00:e5:0a:de:19:91:04: b2:60:ba:b3:de:45:5b:19:11:ce:ff:62:e6:83:f9:6c:68:83: 18:95:f9:a8:09:07:76:38:6c:5b:53:d9:56:26:cf:b2:6a:b7: 24:54:98:01:5a:43:b3:df:a5:89:60:35:62:5d:e6:34:7a:44: f9:bc:e5:b4:f2:54:c0:a4:9e:28:27:7f:05:76:7b:22:9d:b4: d9:48:be:5d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUH/Vnu8zPHAgRvRIFBSzFpUNwd0gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU3QTI1RDE3MUUxQUQyRkFCNjk1RjQ5QkRDMjU1NTc1 NUI2RUQ3RDAeFw0yNDEwMjcxNDU1NTNaFw0yNTEwMjYxNTAwNTNaMDMxMTAvBgNV BAMTKEEzMThBMTYwNjBGNDY4MzgyNzZCRTlCOUJCQTUwOTFFRkREQkQxQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQjDzvCZBjU2v0givGYVGcAUyV 9ngDo6X4nxIIQ0q3JTmItCxcIqIM2iSCDwflGX51P0L675k0GTjCqKYDGSUXyWF8 JS5u4htexnkpprNG7/sLcTjLXAuTVvBNrrU8NJhbaAj/3dpEv+oSJzGt72EYbS6y 3bg+j1AFFGBR5sC8TnL3J3X7dJ4VJ2ASmX+IX/w7lArnhW2HUsgxnyPy0cpe5yYC +gsYh7SUq5MrvSzoHrEp0iUhh1h9veWCzBimrHPzAzSQqjSzJfHBh8+1NhcJSSm/ xdx8OBqHIMx0144FubGCqajsidtgnXYOUKgdImxpW0hKv5lsHTd2uO9DP7FnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUoxihYGD0aDgna+m5u6UJHv3b0a8wHwYDVR0j BBgwFoAUFXol0XHhrS+raV9JvcJVV1W27X0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGI2YjNiYy1mYTY1LTQ5ZjMtYWY2MS0wZDVkYzM5MzM0YTEvMC8xNTdBMjVEMTcx RTFBRDJGQUI2OTVGNDlCREMyNTU1NzU1QjZFRDdELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU3QTI1RDE3MUUxQUQyRkFCNjk1RjQ5QkRDMjU1NTc1NUI2 RUQ3RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkYjZiM2JjLWZhNjUtNDlmMy1h ZjYxLTBkNWRjMzkzMzRhMS8wLzMxMzAzMzJlMzEzNjM0MmUzNjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzQzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6RFMA0GCSqG SIb3DQEBCwUAA4IBAQBxoR4JsUd/DhlOmOB+5zfntix25uVzO+ZI4fA0/xRVMYUZ J+IwCL+r1ChknfPRqyCy7lwxjEIlbzClfUsD+1Hlwouz3FP486HuNQI9W1LBYhhs W8i0Y77uHKKRT+OOCUQU4O4WDZgI/Zmkj8g5xPfA2QShOts6apHDvyzP1ylP1pgE 300RlZRR8Z4KknGrJpl/FJppKbdOFOYPgDS33Kc2ynTMEUml8NBFSl/v7wDlCt4Z kQSyYLqz3kVbGRHO/2Lmg/lsaIMYlfmoCQd2OGxbU9lWJs+yarckVJgBWkOz36WJ YDViXeY0ekT5vOW08lTApJ4oJ38FdnsinbTZSL5d -----END CERTIFICATE-----Generated at Tue Mar 11 05:04:53 2025 by rpki-client