$ rpki-client -vvf repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/3130332e3133302e38322e302f32342d3234203d3e20313530393636.roa File: 3130332e3133302e38322e302f32342d3234203d3e20313530393636.roa (raw, json) Hash identifier: WdwAhrLb01WctAevsLo2E5F0+guZcHnuWIL6/QTKVQY= Subject key identifier: 45:DB:6B:5D:FE:57:81:98:75:F5:1B:70:4F:D3:CA:C2:92:30:B5:36 Certificate issuer: /CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24 Certificate serial: 4F9FD6BA1B700E920C931D7559146BEFD6563221 Authority key identifier: 89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/3130332e3133302e38322e302f32342d3234203d3e20313530393636.roa Signing time: Sat 01 Mar 2025 10:00:01 +0000 ROA not before: Sat 01 Mar 2025 09:55:01 +0000 ROA not after: Sat 28 Feb 2026 10:00:01 +0000 asID: 150966 IP address blocks: 103.130.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 21:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:9f:d6:ba:1b:70:0e:92:0c:93:1d:75:59:14:6b:ef:d6:56:32:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24 Validity Not Before: Mar 1 09:55:01 2025 GMT Not After : Feb 28 10:00:01 2026 GMT Subject: CN=45DB6B5DFE57819875F51B704FD3CAC29230B536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:74:5e:dc:9c:d5:67:e7:cf:ec:1f:9e:25:39: 1d:8e:3b:6e:56:66:4f:58:bd:55:6d:0a:1d:48:71: 2f:c0:98:9e:1a:9a:4a:6d:9b:2f:f1:24:0a:dd:20: 70:a0:90:5a:1f:b2:82:ac:23:b5:a2:90:91:58:d2: b9:9a:8b:41:f4:ac:d6:7b:20:80:8b:35:52:36:2e: 68:7f:1e:99:32:2a:38:4e:27:a5:b3:49:0f:3b:3d: 9a:6e:16:0c:a0:b7:5e:a6:84:6e:52:97:28:89:9c: 55:d3:be:2d:72:da:b5:bb:23:be:fa:a5:e2:c6:2b: 1b:3e:69:ef:2c:e2:e8:22:97:19:3a:47:07:a1:70: b5:1f:e3:ca:be:41:8b:89:9b:6a:ff:16:d3:5f:bd: bc:67:46:f3:2e:04:fd:e2:41:c3:6e:dd:e3:84:f7: 20:1d:c8:24:96:ef:ef:ed:48:db:96:9c:b9:ae:0d: 7c:55:49:2b:34:f0:88:b2:c6:27:90:87:7b:b1:db: df:34:39:48:de:52:27:0d:a8:b7:e0:52:15:f1:5c: 58:54:83:fe:4c:6a:24:8b:de:3f:ef:c3:7a:43:8c: 27:a8:ff:42:ae:7d:af:53:f9:43:0a:aa:36:8d:b2: 37:0d:3b:ac:b4:d9:2a:49:57:e4:a5:e4:f8:21:21: 65:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:DB:6B:5D:FE:57:81:98:75:F5:1B:70:4F:D3:CA:C2:92:30:B5:36 X509v3 Authority Key Identifier: keyid:89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/3130332e3133302e38322e302f32342d3234203d3e20313530393636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.130.82.0/24 Signature Algorithm: sha256WithRSAEncryption 76:51:af:8e:b6:71:9e:05:4d:2e:f1:dd:c4:1b:1d:66:86:ed: 45:51:e0:5f:4c:30:11:de:37:71:60:cd:52:f0:a8:28:8c:ed: a5:7d:b5:c9:af:11:36:5f:83:b6:e9:08:1c:cd:d8:e8:6c:c0: 8a:92:03:49:ba:3a:10:d3:3b:e7:60:5a:57:eb:80:c9:f3:dc: 00:cc:a9:27:54:e3:d3:6b:3f:c3:2e:fc:ef:de:17:3f:82:a3: 8f:6b:18:d3:20:48:6d:ab:c2:eb:84:2a:37:b8:03:f8:17:67: dd:ca:b9:70:5c:db:7c:36:6a:c1:88:f2:bb:e8:9b:15:4c:9d: 90:e4:f3:a9:2a:7c:96:c6:08:3b:a2:1c:23:76:a8:89:aa:56: d1:f1:fd:e7:b9:81:0b:98:62:d8:52:ff:18:00:2d:7e:5f:1c: 69:79:23:52:38:3f:14:2d:e2:bd:69:86:92:e3:2e:64:3a:16: 5a:f4:1d:02:9a:96:40:0f:c7:ac:1f:96:cd:78:49:d8:f0:9c: b3:93:7f:98:a7:95:9f:d8:a6:16:de:0f:d7:f0:61:96:d7:88: 72:81:da:19:ea:3d:82:cf:55:ee:e5:0c:d0:2d:b1:36:25:e5: 09:45:92:86:41:6d:11:35:69:46:98:b8:c3:2c:38:8e:98:46: 26:b5:fa:52 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUT5/WuhtwDpIMkx11WRRr79ZWMiEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJCOUY0 RTRBMkMyNDAeFw0yNTAzMDEwOTU1MDFaFw0yNjAyMjgxMDAwMDFaMDMxMTAvBgNV BAMTKDQ1REI2QjVERkU1NzgxOTg3NUY1MUI3MDRGRDNDQUMyOTIzMEI1MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsdF7cnNVn58/sH54lOR2OO25W Zk9YvVVtCh1IcS/AmJ4amkptmy/xJArdIHCgkFofsoKsI7WikJFY0rmai0H0rNZ7 IICLNVI2Lmh/HpkyKjhOJ6WzSQ87PZpuFgygt16mhG5SlyiJnFXTvi1y2rW7I776 peLGKxs+ae8s4ugilxk6RwehcLUf48q+QYuJm2r/FtNfvbxnRvMuBP3iQcNu3eOE 9yAdyCSW7+/tSNuWnLmuDXxVSSs08IiyxieQh3ux2980OUjeUicNqLfgUhXxXFhU g/5MaiSL3j/vw3pDjCeo/0Kufa9T+UMKqjaNsjcNO6y02SpJV+Sl5PghIWUxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURdtrXf5XgZh19RtwT9PKwpIwtTYwHwYDVR0j BBgwFoAUiYnQQxRTVW8i2IKiGyu7n05KLCQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YTg3MDY0Yi01ZjI3LTQyNzAtOTBlNC05OWY0M2FlODRkYjcvMC84OTg5RDA0MzE0 NTM1NTZGMjJEODgyQTIxQjJCQkI5RjRFNEEyQzI0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJCOUY0RTRB MkMyNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRhODcwNjRiLTVmMjctNDI3MC05 MGU0LTk5ZjQzYWU4NGRiNy8wLzMxMzAzMzJlMzEzMzMwMmUzODMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4JSMA0GCSqG SIb3DQEBCwUAA4IBAQB2Ua+OtnGeBU0u8d3EGx1mhu1FUeBfTDAR3jdxYM1S8Kgo jO2lfbXJrxE2X4O26QgczdjobMCKkgNJujoQ0zvnYFpX64DJ89wAzKknVOPTaz/D Lvzv3hc/gqOPaxjTIEhtq8LrhCo3uAP4F2fdyrlwXNt8NmrBiPK76JsVTJ2Q5POp KnyWxgg7ohwjdqiJqlbR8f3nuYELmGLYUv8YAC1+XxxpeSNSOD8ULeK9aYaS4y5k OhZa9B0CmpZAD8esH5bNeEnY8Jyzk3+Yp5Wf2KYW3g/X8GGW14hygdoZ6j2Cz1Xu 5QzQLbE2JeUJRZKGQW0RNWlGmLjDLDiOmEYmtfpS -----END CERTIFICATE-----Generated at Sun Apr 6 17:56:17 2025 by rpki-client