$ rpki-client -vvf repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/3130332e3133302e38332e302f32342d3234203d3e20313530393636.roa File: 3130332e3133302e38332e302f32342d3234203d3e20313530393636.roa (raw, json) Hash identifier: MueUJKcGkwue3xJukPLYM+05PMMpQl2v+Pz0FDXtNcM= Subject key identifier: C7:04:72:50:5A:AB:83:85:9F:ED:1E:18:39:CB:23:F3:85:6B:FF:F0 Certificate issuer: /CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24 Certificate serial: 58D0A2D45FEB74CA453A2B060F64FF169DB78984 Authority key identifier: 89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/3130332e3133302e38332e302f32342d3234203d3e20313530393636.roa Signing time: Sat 01 Mar 2025 10:00:01 +0000 ROA not before: Sat 01 Mar 2025 09:55:01 +0000 ROA not after: Sat 28 Feb 2026 10:00:01 +0000 asID: 150966 IP address blocks: 103.130.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 21:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:d0:a2:d4:5f:eb:74:ca:45:3a:2b:06:0f:64:ff:16:9d:b7:89:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24 Validity Not Before: Mar 1 09:55:01 2025 GMT Not After : Feb 28 10:00:01 2026 GMT Subject: CN=C70472505AAB83859FED1E1839CB23F3856BFFF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d7:7a:09:d3:ba:fe:c3:da:fb:dc:84:41:fd: 4c:80:af:59:b2:65:43:14:e0:3d:f8:a6:34:da:c0: 02:96:5e:83:32:45:89:07:de:7e:33:8a:fa:6a:ea: 65:03:02:63:f2:0f:cf:94:d3:1d:2e:3e:16:27:f9: bb:d4:29:ee:22:87:b8:33:84:75:9b:e6:9f:18:87: 5c:ba:74:fc:9d:b3:15:df:3f:23:8d:66:08:db:46: 6b:41:9a:e8:59:99:c1:32:d2:e3:40:6d:48:63:fd: 3f:b2:e4:e2:68:58:35:8c:0b:ac:b9:a7:e9:19:a7: 84:ac:8d:74:38:49:48:1c:6a:65:ab:9f:5e:d7:65: 0a:d5:f0:68:56:dc:0c:06:ea:98:88:2f:88:76:5e: 0f:b1:f0:e9:0c:e0:39:91:7b:6e:ec:c3:9f:83:0d: dd:d7:36:c3:c2:ce:42:7b:1b:1e:57:81:8d:9b:cd: c3:1d:74:32:9b:9f:c5:ae:20:1d:52:a0:b8:5e:04: b2:61:01:d5:90:3b:d5:d8:40:99:40:ea:0d:8f:4a: 42:4c:fa:d5:2c:5f:a8:dd:ee:9c:0c:c6:94:c7:6b: dd:39:49:ce:fb:56:d9:ba:12:b0:19:22:af:93:fd: 39:ea:e5:97:a3:fe:52:73:6c:63:ef:42:9c:75:52: e4:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:04:72:50:5A:AB:83:85:9F:ED:1E:18:39:CB:23:F3:85:6B:FF:F0 X509v3 Authority Key Identifier: keyid:89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/3130332e3133302e38332e302f32342d3234203d3e20313530393636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.130.83.0/24 Signature Algorithm: sha256WithRSAEncryption 02:ad:4f:e2:4f:a1:91:a1:a1:5f:e8:64:28:9c:90:32:32:c4: f6:7a:7f:8e:28:7a:64:d2:ba:16:e9:f1:42:92:dd:f4:28:6a: 72:e1:b0:b2:98:8f:c6:03:06:1d:b7:1c:ae:87:15:93:a8:a4: d7:cb:c1:41:e2:b6:27:f1:78:df:ca:27:16:13:a2:7d:42:61: 98:d9:c8:62:bb:c7:5b:a7:e1:3d:de:b0:d2:bf:4d:5c:3f:8c: 70:e5:39:00:f9:50:5c:50:0d:43:61:0d:3f:f5:02:15:93:78: 67:23:84:33:de:1d:7d:00:29:1f:a3:3d:3b:c4:8a:b2:d2:c4: fa:8a:1f:e1:4d:64:15:4c:63:3c:a8:e3:60:17:9a:ba:50:81: b6:ee:9f:d4:fe:03:05:7d:7f:77:c5:1d:f0:36:16:c6:95:9b: 33:0c:1d:45:19:86:e0:23:96:aa:f7:a3:0f:6d:aa:82:0b:b2: 82:1f:7a:a4:37:fc:b3:40:39:cf:fb:2b:c8:95:f3:f7:8f:92: 8a:9e:0f:c3:cb:3f:da:8e:92:31:ab:7f:89:62:e7:03:bf:fe: 73:9b:63:5d:26:b2:e7:f4:84:1f:b3:77:44:62:92:57:fb:e6: e3:18:40:95:5c:ee:1a:d4:94:88:c5:b3:a2:ff:15:a1:1e:b8: 63:52:50:8f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWNCi1F/rdMpFOisGD2T/Fp23iYQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJCOUY0 RTRBMkMyNDAeFw0yNTAzMDEwOTU1MDFaFw0yNjAyMjgxMDAwMDFaMDMxMTAvBgNV BAMTKEM3MDQ3MjUwNUFBQjgzODU5RkVEMUUxODM5Q0IyM0YzODU2QkZGRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO13oJ07r+w9r73IRB/UyAr1my ZUMU4D34pjTawAKWXoMyRYkH3n4zivpq6mUDAmPyD8+U0x0uPhYn+bvUKe4ih7gz hHWb5p8Yh1y6dPydsxXfPyONZgjbRmtBmuhZmcEy0uNAbUhj/T+y5OJoWDWMC6y5 p+kZp4SsjXQ4SUgcamWrn17XZQrV8GhW3AwG6piIL4h2Xg+x8OkM4DmRe27sw5+D Dd3XNsPCzkJ7Gx5XgY2bzcMddDKbn8WuIB1SoLheBLJhAdWQO9XYQJlA6g2PSkJM +tUsX6jd7pwMxpTHa905Sc77Vtm6ErAZIq+T/Tnq5Zej/lJzbGPvQpx1UuTRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxwRyUFqrg4Wf7R4YOcsj84Vr//AwHwYDVR0j BBgwFoAUiYnQQxRTVW8i2IKiGyu7n05KLCQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YTg3MDY0Yi01ZjI3LTQyNzAtOTBlNC05OWY0M2FlODRkYjcvMC84OTg5RDA0MzE0 NTM1NTZGMjJEODgyQTIxQjJCQkI5RjRFNEEyQzI0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJCOUY0RTRB MkMyNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRhODcwNjRiLTVmMjctNDI3MC05 MGU0LTk5ZjQzYWU4NGRiNy8wLzMxMzAzMzJlMzEzMzMwMmUzODMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4JTMA0GCSqG SIb3DQEBCwUAA4IBAQACrU/iT6GRoaFf6GQonJAyMsT2en+OKHpk0roW6fFCkt30 KGpy4bCymI/GAwYdtxyuhxWTqKTXy8FB4rYn8XjfyicWE6J9QmGY2chiu8dbp+E9 3rDSv01cP4xw5TkA+VBcUA1DYQ0/9QIVk3hnI4Qz3h19ACkfoz07xIqy0sT6ih/h TWQVTGM8qONgF5q6UIG27p/U/gMFfX93xR3wNhbGlZszDB1FGYbgI5aq96MPbaqC C7KCH3qkN/yzQDnP+yvIlfP3j5KKng/Dyz/ajpIxq3+JYucDv/5zm2NdJrLn9IQf s3dEYpJX++bjGECVXO4a1JSIxbOi/xWhHrhjUlCP -----END CERTIFICATE-----Generated at Sun Apr 6 17:56:36 2025 by rpki-client