$ rpki-client -vvf repo-rpki.idnic.net/repo/4c7d3cbf-24d6-4b1c-86cb-1d48876f3c6b/0/3130332e3135352e3234362e302f32342d3234203d3e20313431303738.roa File: 3130332e3135352e3234362e302f32342d3234203d3e20313431303738.roa (raw, json) Hash identifier: HHkuN4t1A2wqx6T8Km6ZHp/fC31MGdbqwFI9Er2bSDg= Subject key identifier: A5:D7:4E:9F:CC:1D:70:03:2E:21:43:B0:67:F0:01:EF:51:5D:D8:5E Certificate issuer: /CN=44106068E5A5FC1973C8043D3B8F00105A9C9710 Certificate serial: 9CDC28B713943841F5CC9A2BF65EE05C991515 Authority key identifier: 44:10:60:68:E5:A5:FC:19:73:C8:04:3D:3B:8F:00:10:5A:9C:97:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44106068E5A5FC1973C8043D3B8F00105A9C9710.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4c7d3cbf-24d6-4b1c-86cb-1d48876f3c6b/0/3130332e3135352e3234362e302f32342d3234203d3e20313431303738.roa Signing time: Fri 07 Feb 2025 03:00:01 +0000 ROA not before: Fri 07 Feb 2025 02:55:01 +0000 ROA not after: Fri 06 Feb 2026 03:00:01 +0000 asID: 141078 IP address blocks: 103.155.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4c7d3cbf-24d6-4b1c-86cb-1d48876f3c6b/0/44106068E5A5FC1973C8043D3B8F00105A9C9710.crl rsync://repo-rpki.idnic.net/repo/4c7d3cbf-24d6-4b1c-86cb-1d48876f3c6b/0/44106068E5A5FC1973C8043D3B8F00105A9C9710.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44106068E5A5FC1973C8043D3B8F00105A9C9710.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 03:08:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9c:dc:28:b7:13:94:38:41:f5:cc:9a:2b:f6:5e:e0:5c:99:15:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44106068E5A5FC1973C8043D3B8F00105A9C9710 Validity Not Before: Feb 7 02:55:01 2025 GMT Not After : Feb 6 03:00:01 2026 GMT Subject: CN=A5D74E9FCC1D70032E2143B067F001EF515DD85E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ce:f9:31:a6:fd:ef:b2:6f:6e:55:64:12:86: de:2e:56:c9:4c:fe:d1:8e:eb:89:c1:fc:88:81:2b: 2c:da:26:e9:51:d3:fa:e9:e9:e8:fd:2a:15:94:44: 75:07:e6:0e:3e:97:74:6d:ff:4b:3d:15:aa:37:3a: aa:a2:ec:6e:b5:0e:50:e5:11:ce:8c:c0:03:8a:69: ba:1a:8b:ba:ce:09:e0:45:2a:cb:6e:f0:1e:1b:39: 5a:1d:48:48:0d:4b:90:f8:22:ac:59:5d:8a:d8:67: a8:3c:52:11:06:be:69:fd:ba:ad:a6:bf:8d:1e:a3: 6b:15:51:91:63:59:77:47:a1:4e:2f:ad:90:2b:b9: 04:89:5b:6a:11:77:48:cb:d8:fe:44:46:9c:09:19: 2b:f0:75:95:4e:df:cf:e6:16:14:ac:07:14:38:14: 62:37:2b:7c:05:46:ad:cf:8b:36:e3:dd:f9:7a:70: 8c:32:04:1d:a7:b8:d9:36:58:c3:de:4b:e2:06:15: c3:70:ba:3f:3d:1a:e4:43:dc:bb:ba:8c:35:7b:56: 5a:29:96:f4:fe:20:f4:5e:5c:5b:70:ea:c3:7e:4a: 39:a5:ec:03:07:b7:ae:71:dd:8d:28:0b:de:60:6b: 66:a4:46:9d:28:92:2d:1a:09:90:35:95:b4:f5:6f: 39:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:D7:4E:9F:CC:1D:70:03:2E:21:43:B0:67:F0:01:EF:51:5D:D8:5E X509v3 Authority Key Identifier: keyid:44:10:60:68:E5:A5:FC:19:73:C8:04:3D:3B:8F:00:10:5A:9C:97:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4c7d3cbf-24d6-4b1c-86cb-1d48876f3c6b/0/44106068E5A5FC1973C8043D3B8F00105A9C9710.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44106068E5A5FC1973C8043D3B8F00105A9C9710.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4c7d3cbf-24d6-4b1c-86cb-1d48876f3c6b/0/3130332e3135352e3234362e302f32342d3234203d3e20313431303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.246.0/24 Signature Algorithm: sha256WithRSAEncryption 40:41:07:af:66:ed:68:8e:26:13:38:a6:f5:b3:9a:b5:e7:99: ec:b4:c3:e4:b5:da:c2:37:d3:26:b4:04:82:9e:5d:a2:04:c8: 11:44:82:37:29:e2:dc:ed:be:eb:c3:90:18:a6:4c:56:d6:79: 67:d7:c0:16:97:17:72:aa:f3:ed:82:9a:6e:4a:4b:78:e7:e5: 26:34:46:9f:4b:9f:85:f6:30:04:db:fa:26:49:4d:a5:6e:d2: 52:74:27:06:3a:a0:e8:f2:2a:c9:6f:21:05:ae:87:75:ab:8a: 21:20:94:d8:02:26:95:bb:f2:eb:b0:41:f7:df:c7:5b:33:51: 53:ed:e1:c9:4e:06:a0:a5:65:20:89:d2:fa:51:dc:af:f2:73: 8a:c4:4f:65:97:04:47:d1:5d:6b:67:72:72:09:d2:79:2b:ee: 18:a4:82:be:9e:49:d0:ca:ad:17:6f:2e:a4:16:c2:92:8d:ef: 19:f0:45:70:8d:63:fb:af:36:77:ed:29:50:40:1b:f1:81:ea: 5d:f3:29:5b:84:7c:3a:f6:4c:26:a7:12:c2:49:22:b8:26:03: ce:56:e2:b4:fc:9c:2d:14:14:4d:20:23:79:ff:18:d2:c1:a3: 07:b6:f3:71:48:a2:13:29:58:7a:77:e3:49:00:fb:0f:75:a1: 7b:c5:f2:d1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAJzcKLcTlDhB9cyaK/Ze4FyZFRUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDQxMDYwNjhFNUE1RkMxOTczQzgwNDNEM0I4RjAwMTA1 QTlDOTcxMDAeFw0yNTAyMDcwMjU1MDFaFw0yNjAyMDYwMzAwMDFaMDMxMTAvBgNV BAMTKEE1RDc0RTlGQ0MxRDcwMDMyRTIxNDNCMDY3RjAwMUVGNTE1REQ4NUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxzvkxpv3vsm9uVWQSht4uVslM /tGO64nB/IiBKyzaJulR0/rp6ej9KhWURHUH5g4+l3Rt/0s9Fao3Oqqi7G61DlDl Ec6MwAOKaboai7rOCeBFKstu8B4bOVodSEgNS5D4IqxZXYrYZ6g8UhEGvmn9uq2m v40eo2sVUZFjWXdHoU4vrZAruQSJW2oRd0jL2P5ERpwJGSvwdZVO38/mFhSsBxQ4 FGI3K3wFRq3Pizbj3fl6cIwyBB2nuNk2WMPeS+IGFcNwuj89GuRD3Lu6jDV7Vlop lvT+IPReXFtw6sN+Sjml7AMHt65x3Y0oC95ga2akRp0oki0aCZA1lbT1bzmpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUpddOn8wdcAMuIUOwZ/AB71Fd2F4wHwYDVR0j BBgwFoAURBBgaOWl/BlzyAQ9O48AEFqclxAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YzdkM2NiZi0yNGQ2LTRiMWMtODZjYi0xZDQ4ODc2ZjNjNmIvMC80NDEwNjA2OEU1 QTVGQzE5NzNDODA0M0QzQjhGMDAxMDVBOUM5NzEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDQxMDYwNjhFNUE1RkMxOTczQzgwNDNEM0I4RjAwMTA1QTlD OTcxMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRjN2QzY2JmLTI0ZDYtNGIxYy04 NmNiLTFkNDg4NzZmM2M2Yi8wLzMxMzAzMzJlMzEzNTM1MmUzMjM0MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnm/YwDQYJ KoZIhvcNAQELBQADggEBAEBBB69m7WiOJhM4pvWzmrXnmey0w+S12sI30ya0BIKe XaIEyBFEgjcp4tztvuvDkBimTFbWeWfXwBaXF3Kq8+2Cmm5KS3jn5SY0Rp9Ln4X2 MATb+iZJTaVu0lJ0JwY6oOjyKslvIQWuh3WriiEglNgCJpW78uuwQfffx1szUVPt 4clOBqClZSCJ0vpR3K/yc4rET2WXBEfRXWtncnIJ0nkr7hikgr6eSdDKrRdvLqQW wpKN7xnwRXCNY/uvNnftKVBAG/GB6l3zKVuEfDr2TCanEsJJIrgmA85W4rT8nC0U FE0gI3n/GNLBowe283FIohMpWHp340kA+w91oXvF8tE= -----END CERTIFICATE-----Generated at Fri Feb 21 11:16:47 2025 by rpki-client