$ rpki-client -vvf repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e3130342e3133322e302f32342d3234203d3e20313333383233.roa File: 3130332e3130342e3133322e302f32342d3234203d3e20313333383233.roa (raw, json) Hash identifier: hNHUUdaz/xmcgWweg8dc6qW4ZUh/HEb8USitKT+fel0= Subject key identifier: 75:B6:DC:CA:3E:6E:03:00:85:42:0A:6F:1F:92:A3:6F:3C:1C:31:F2 Certificate issuer: /CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Certificate serial: 5110E2910B66959450A8ADF4D731A8303C6FC686 Authority key identifier: 22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e3130342e3133322e302f32342d3234203d3e20313333383233.roa Signing time: Fri 07 Mar 2025 07:19:08 +0000 ROA not before: Fri 07 Mar 2025 07:14:08 +0000 ROA not after: Fri 06 Mar 2026 07:19:08 +0000 asID: 133823 IP address blocks: 103.104.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 17 Mar 2025 11:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:10:e2:91:0b:66:95:94:50:a8:ad:f4:d7:31:a8:30:3c:6f:c6:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=229F9618AE3F0667EC17C977F266B2BE74C81AB7 Validity Not Before: Mar 7 07:14:08 2025 GMT Not After : Mar 6 07:19:08 2026 GMT Subject: CN=75B6DCCA3E6E030085420A6F1F92A36F3C1C31F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:47:6d:0c:2b:38:f3:f4:05:c2:83:df:d0:90: 45:42:cb:86:6d:40:36:54:75:f9:9c:e1:4a:1b:d3: fe:c6:55:16:90:ed:6f:52:f4:58:13:42:54:1d:54: 58:79:3c:b8:47:a8:0a:55:53:27:2b:1f:29:d8:da: 6a:d0:f8:d4:bc:05:54:1e:d9:29:bc:8d:d6:96:1d: e3:86:0f:12:50:75:1e:bc:b8:0d:4f:c5:b8:2f:28: 82:e6:ba:7c:e5:e5:a4:74:d6:dd:98:59:a2:43:f9: 5e:86:a0:5c:a4:aa:aa:e2:50:f0:a7:d9:c3:f8:eb: f7:b7:cd:21:ec:e1:28:a2:37:0f:3a:e3:c8:16:94: 03:63:37:88:c9:f8:03:4f:52:16:e2:a4:15:88:2f: 42:6b:25:1f:51:fe:a9:96:31:95:12:5d:a1:15:d7: a8:1b:1a:0e:13:42:53:5e:a4:a6:b2:90:e9:fe:d4: 7b:08:85:a7:b8:74:58:32:94:5c:31:0a:52:81:f5: 3a:b5:2a:56:d3:48:c8:5d:21:b4:c3:1b:a5:2f:e9: 95:0c:6e:35:56:d0:b7:e9:a8:eb:79:c6:9d:25:f5: 70:a4:eb:da:ec:8c:96:15:77:d7:20:e5:56:40:16: d5:19:90:e6:d9:fa:62:87:b4:a4:e4:7a:6a:e8:22: ee:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:B6:DC:CA:3E:6E:03:00:85:42:0A:6F:1F:92:A3:6F:3C:1C:31:F2 X509v3 Authority Key Identifier: keyid:22:9F:96:18:AE:3F:06:67:EC:17:C9:77:F2:66:B2:BE:74:C8:1A:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/229F9618AE3F0667EC17C977F266B2BE74C81AB7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229F9618AE3F0667EC17C977F266B2BE74C81AB7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44791b1f-6da9-400d-8b14-992aae63746c/0/3130332e3130342e3133322e302f32342d3234203d3e20313333383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.104.132.0/24 Signature Algorithm: sha256WithRSAEncryption 74:e1:86:55:1c:07:27:a1:2f:16:a4:c8:f5:b5:68:e4:59:29: e3:09:95:1d:d9:0d:3b:66:31:42:a2:90:17:91:20:16:c1:83: 99:62:5d:bf:9f:eb:38:af:b7:8e:c8:1f:9a:c4:8f:6d:ea:83: 22:f0:f7:f6:76:63:83:8c:a0:3b:b2:fc:fc:27:0d:22:74:ea: 98:60:d6:d8:d2:ea:e5:4e:d4:e9:24:7f:a0:56:00:f6:cc:f6: 43:30:e8:58:aa:c5:bf:2e:d0:cb:b4:55:b0:ad:cc:09:d4:10: c9:5a:d1:4f:d0:d3:d3:56:c0:01:84:03:6d:59:fe:fa:ae:f4: 39:f9:ca:24:d5:41:29:80:5f:99:d1:71:90:d4:1f:2d:3c:10: cb:77:c8:19:62:82:d2:64:87:3a:93:b8:e5:2c:3d:6a:ec:d7: 26:68:af:6a:62:8a:59:44:8f:a1:da:1c:58:52:a1:3e:ff:20: c4:32:48:5a:1f:2c:24:06:0b:8c:6d:98:d1:34:42:83:30:0a: f3:a4:e7:cb:a3:0f:7a:19:c2:02:19:38:63:01:ce:8a:f3:0d: 79:e7:f7:fc:73:8d:86:cd:2f:a9:28:b7:72:1f:54:04:be:e7: f5:f6:8b:56:cd:4a:b3:2f:d2:cf:53:a6:c3:5b:3f:2b:e5:24: ac:c4:f1:4f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUURDikQtmlZRQqK301zGoMDxvxoYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3 NEM4MUFCNzAeFw0yNTAzMDcwNzE0MDhaFw0yNjAzMDYwNzE5MDhaMDMxMTAvBgNV BAMTKDc1QjZEQ0NBM0U2RTAzMDA4NTQyMEE2RjFGOTJBMzZGM0MxQzMxRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWR20MKzjz9AXCg9/QkEVCy4Zt QDZUdfmc4Uob0/7GVRaQ7W9S9FgTQlQdVFh5PLhHqApVUycrHynY2mrQ+NS8BVQe 2Sm8jdaWHeOGDxJQdR68uA1PxbgvKILmunzl5aR01t2YWaJD+V6GoFykqqriUPCn 2cP46/e3zSHs4SiiNw8648gWlANjN4jJ+ANPUhbipBWIL0JrJR9R/qmWMZUSXaEV 16gbGg4TQlNepKaykOn+1HsIhae4dFgylFwxClKB9Tq1KlbTSMhdIbTDG6Uv6ZUM bjVW0LfpqOt5xp0l9XCk69rsjJYVd9cg5VZAFtUZkObZ+mKHtKTkemroIu4VAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUdbbcyj5uAwCFQgpvH5KjbzwcMfIwHwYDVR0j BBgwFoAUIp+WGK4/BmfsF8l38mayvnTIGrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDc5MWIxZi02ZGE5LTQwMGQtOGIxNC05OTJhYWU2Mzc0NmMvMC8yMjlGOTYxOEFF M0YwNjY3RUMxN0M5NzdGMjY2QjJCRTc0QzgxQUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI5Rjk2MThBRTNGMDY2N0VDMTdDOTc3RjI2NkIyQkU3NEM4 MUFCNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0NzkxYjFmLTZkYTktNDAwZC04 YjE0LTk5MmFhZTYzNzQ2Yy8wLzMxMzAzMzJlMzEzMDM0MmUzMTMzMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzODMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnaIQwDQYJ KoZIhvcNAQELBQADggEBAHThhlUcByehLxakyPW1aORZKeMJlR3ZDTtmMUKikBeR IBbBg5liXb+f6zivt47IH5rEj23qgyLw9/Z2Y4OMoDuy/PwnDSJ06phg1tjS6uVO 1Okkf6BWAPbM9kMw6Fiqxb8u0Mu0VbCtzAnUEMla0U/Q09NWwAGEA21Z/vqu9Dn5 yiTVQSmAX5nRcZDUHy08EMt3yBligtJkhzqTuOUsPWrs1yZor2piillEj6HaHFhS oT7/IMQySFofLCQGC4xtmNE0QoMwCvOk58ujD3oZwgIZOGMBzorzDXnn9/xzjYbN L6kot3IfVAS+5/X2i1bNSrMv0s9TpsNbPyvlJKzE8U8= -----END CERTIFICATE-----Generated at Sat Mar 15 05:49:12 2025 by rpki-client