$ rpki-client -vvf repo-rpki.idnic.net/repo/4bab8042-0e1c-43b1-b703-63438be2325b/0/3130332e3137382e3134362e302f32342d3234203d3e20313439333430.roa File: 3130332e3137382e3134362e302f32342d3234203d3e20313439333430.roa (raw, json) Hash identifier: BesJ63Q+sb5VHMuwqQthX+SIUHUnWEJKlEDOUKKS0cQ= Subject key identifier: B6:33:2F:A5:1D:A3:2D:E9:DF:FB:DE:61:78:14:63:7B:69:09:30:B3 Certificate issuer: /CN=31F2586537E4318089C855DE0883A690E2FB398B Certificate serial: 5395AB06B543AE5A966DA84D6B26BD27F5F464C9 Authority key identifier: 31:F2:58:65:37:E4:31:80:89:C8:55:DE:08:83:A6:90:E2:FB:39:8B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/31F2586537E4318089C855DE0883A690E2FB398B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4bab8042-0e1c-43b1-b703-63438be2325b/0/3130332e3137382e3134362e302f32342d3234203d3e20313439333430.roa Signing time: Wed 22 Jan 2025 11:00:00 +0000 ROA not before: Wed 22 Jan 2025 10:55:00 +0000 ROA not after: Wed 21 Jan 2026 11:00:00 +0000 asID: 149340 IP address blocks: 103.178.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4bab8042-0e1c-43b1-b703-63438be2325b/0/31F2586537E4318089C855DE0883A690E2FB398B.crl rsync://repo-rpki.idnic.net/repo/4bab8042-0e1c-43b1-b703-63438be2325b/0/31F2586537E4318089C855DE0883A690E2FB398B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/31F2586537E4318089C855DE0883A690E2FB398B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 08:57:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:95:ab:06:b5:43:ae:5a:96:6d:a8:4d:6b:26:bd:27:f5:f4:64:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=31F2586537E4318089C855DE0883A690E2FB398B Validity Not Before: Jan 22 10:55:00 2025 GMT Not After : Jan 21 11:00:00 2026 GMT Subject: CN=B6332FA51DA32DE9DFFBDE617814637B690930B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:29:3b:5d:d9:61:2b:ad:c6:3f:cb:1a:12:ec: f4:de:dd:aa:ec:ba:d9:4f:2c:25:2c:8a:20:67:b8: 3f:5d:52:7a:48:63:da:a2:8f:c3:68:28:9d:89:3a: 58:e1:83:34:23:2e:13:ce:2c:90:6c:07:fc:38:60: 57:c4:4a:ed:0a:c0:24:e1:99:8a:77:eb:68:89:a1: 77:10:65:4a:e9:3c:56:3d:fd:eb:f9:4d:9f:0d:e9: a0:28:0a:86:9a:02:3f:a2:78:e5:d4:d2:93:df:8f: e2:00:fe:b1:af:ef:bd:01:1c:1c:b8:a5:3d:bc:dc: 16:dd:03:a1:c6:3d:3f:2d:a0:80:bb:a0:b7:29:52: 5f:e2:f1:a5:29:3e:68:6d:36:b9:64:e3:7c:5b:5b: 5d:22:fd:fb:72:aa:fd:ec:64:36:b4:d3:29:9b:ac: 10:ca:c3:a1:29:66:1b:f9:78:41:39:3a:5d:a1:3e: 87:e9:4a:e3:28:ea:d0:55:c0:47:17:3e:ac:2f:cc: ca:3f:b3:95:a0:c0:3d:57:2f:a4:f1:4a:6b:eb:8f: c7:d2:f9:81:fd:e5:8a:a5:ad:e5:c4:e6:0d:f5:50: 7d:89:55:fb:6f:5e:e9:f6:5f:b0:98:75:aa:cf:c9: 9f:2f:6c:d3:f9:05:32:e9:f9:17:54:3e:b8:43:29: 17:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:33:2F:A5:1D:A3:2D:E9:DF:FB:DE:61:78:14:63:7B:69:09:30:B3 X509v3 Authority Key Identifier: keyid:31:F2:58:65:37:E4:31:80:89:C8:55:DE:08:83:A6:90:E2:FB:39:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4bab8042-0e1c-43b1-b703-63438be2325b/0/31F2586537E4318089C855DE0883A690E2FB398B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/31F2586537E4318089C855DE0883A690E2FB398B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bab8042-0e1c-43b1-b703-63438be2325b/0/3130332e3137382e3134362e302f32342d3234203d3e20313439333430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.146.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:b7:bb:f7:96:f4:2a:8e:61:3c:57:eb:89:48:21:5d:46:5d: 46:bb:bd:be:eb:59:21:c5:4d:23:63:ea:7d:72:9e:44:5c:18: 87:3a:c6:c7:ff:07:6b:0a:28:ec:d3:c0:d3:09:54:9b:84:1c: b3:9c:6e:87:cf:05:08:95:a1:75:82:57:35:15:36:0f:84:08: 87:a4:20:5e:99:d6:36:b3:50:4b:56:4d:bd:8e:27:95:07:1d: cf:16:f4:d8:4d:2c:22:d4:5c:61:24:7e:bc:38:75:e7:06:22: d3:2d:ae:13:cf:76:53:d1:bf:0c:35:ce:e7:18:d4:02:06:50: 6c:18:02:4f:54:c6:e7:81:51:1e:e5:dc:46:e4:71:3c:f4:fd: 87:ab:68:6c:1c:a2:d4:4b:8f:2a:fd:25:24:ab:aa:d6:d5:43: 69:e9:16:81:20:2f:88:db:de:36:e8:49:b0:d8:42:33:ee:ef: ec:8c:82:01:ae:c3:89:74:97:29:25:17:87:fc:c3:ae:56:79: 17:8f:cb:34:93:37:de:6a:11:83:6e:59:a4:51:a2:f5:d8:75: a3:67:76:91:51:bd:03:e3:fe:3b:bb:d3:1e:54:9d:82:08:14: 68:ac:7f:8b:ea:45:6b:30:a7:dd:8c:52:0e:33:01:ab:1e:fd: 49:f1:5c:f4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUU5WrBrVDrlqWbahNaya9J/X0ZMkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzFGMjU4NjUzN0U0MzE4MDg5Qzg1NURFMDg4M0E2OTBF MkZCMzk4QjAeFw0yNTAxMjIxMDU1MDBaFw0yNjAxMjExMTAwMDBaMDMxMTAvBgNV BAMTKEI2MzMyRkE1MURBMzJERTlERkZCREU2MTc4MTQ2MzdCNjkwOTMwQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnKTtd2WErrcY/yxoS7PTe3ars utlPLCUsiiBnuD9dUnpIY9qij8NoKJ2JOljhgzQjLhPOLJBsB/w4YFfESu0KwCTh mYp362iJoXcQZUrpPFY9/ev5TZ8N6aAoCoaaAj+ieOXU0pPfj+IA/rGv770BHBy4 pT283BbdA6HGPT8toIC7oLcpUl/i8aUpPmhtNrlk43xbW10i/ftyqv3sZDa00ymb rBDKw6EpZhv5eEE5Ol2hPofpSuMo6tBVwEcXPqwvzMo/s5WgwD1XL6TxSmvrj8fS +YH95YqlreXE5g31UH2JVftvXun2X7CYdarPyZ8vbNP5BTLp+RdUPrhDKRcJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUtjMvpR2jLenf+95heBRje2kJMLMwHwYDVR0j BBgwFoAUMfJYZTfkMYCJyFXeCIOmkOL7OYswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YmFiODA0Mi0wZTFjLTQzYjEtYjcwMy02MzQzOGJlMjMyNWIvMC8zMUYyNTg2NTM3 RTQzMTgwODlDODU1REUwODgzQTY5MEUyRkIzOThCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzFGMjU4NjUzN0U0MzE4MDg5Qzg1NURFMDg4M0E2OTBFMkZC Mzk4Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiYWI4MDQyLTBlMWMtNDNiMS1i NzAzLTYzNDM4YmUyMzI1Yi8wLzMxMzAzMzJlMzEzNzM4MmUzMTM0MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzMzM0MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnspIwDQYJ KoZIhvcNAQELBQADggEBAG23u/eW9CqOYTxX64lIIV1GXUa7vb7rWSHFTSNj6n1y nkRcGIc6xsf/B2sKKOzTwNMJVJuEHLOcbofPBQiVoXWCVzUVNg+ECIekIF6Z1jaz UEtWTb2OJ5UHHc8W9NhNLCLUXGEkfrw4decGItMtrhPPdlPRvww1zucY1AIGUGwY Ak9UxueBUR7l3EbkcTz0/YeraGwcotRLjyr9JSSrqtbVQ2npFoEgL4jb3jboSbDY QjPu7+yMggGuw4l0lyklF4f8w65WeRePyzSTN95qEYNuWaRRovXYdaNndpFRvQPj /ju70x5UnYIIFGisf4vqRWswp92MUg4zAase/UnxXPQ= -----END CERTIFICATE-----Generated at Sun Apr 6 15:58:43 2025 by rpki-client