$ rpki-client -vvf repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/3130332e3137322e3134342e302f32342d3234203d3e20313432333839.roa File: 3130332e3137322e3134342e302f32342d3234203d3e20313432333839.roa (raw, json) Hash identifier: qBrcbMMaUPDoizuNAU1KWwXnEqXPWGKnlLdZXE+PUUw= Subject key identifier: AE:23:6B:AF:1D:14:D9:66:96:D3:3B:DF:8B:31:9E:E1:1F:3C:A8:59 Certificate issuer: /CN=A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC Certificate serial: 541001FC501B1B42E778324A628EEED7CE31E684 Authority key identifier: A9:CC:42:A0:5B:0D:6C:A3:79:60:F7:C2:AB:E4:B4:64:DB:56:AC:AC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/3130332e3137322e3134342e302f32342d3234203d3e20313432333839.roa Signing time: Fri 09 May 2025 09:00:51 +0000 ROA not before: Fri 09 May 2025 08:55:51 +0000 ROA not after: Fri 08 May 2026 09:00:51 +0000 asID: 142389 IP address blocks: 103.172.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.crl rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 10:18:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:10:01:fc:50:1b:1b:42:e7:78:32:4a:62:8e:ee:d7:ce:31:e6:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC Validity Not Before: May 9 08:55:51 2025 GMT Not After : May 8 09:00:51 2026 GMT Subject: CN=AE236BAF1D14D96696D33BDF8B319EE11F3CA859 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c5:1e:d7:32:bb:eb:08:5b:6e:1f:66:12:d2: d7:e3:c0:8c:a9:4e:1f:87:e2:18:cb:a2:51:92:67: a0:a6:8e:85:0c:a0:b3:f0:85:d7:11:09:e9:23:83: f3:07:2f:28:62:ab:c1:4d:96:36:b5:3b:98:ed:ea: d2:98:89:b7:3d:8c:39:10:e9:52:2e:ee:91:f5:fc: 12:f8:ea:42:2f:a2:ba:21:0e:ee:0e:f9:28:e0:c8: 15:75:ba:b7:69:12:ae:64:f9:91:f7:0f:1b:c3:6b: 4a:94:50:84:45:18:7d:71:b2:80:0b:0d:78:ac:14: be:f4:88:02:a5:93:f1:ca:1f:83:d5:2c:dd:19:51: 6c:41:fb:92:df:f4:78:57:ea:f8:29:3e:9c:f4:7f: 2f:c8:fd:3b:86:23:a8:ac:97:f5:7a:56:41:7d:18: 53:2b:51:45:f6:00:23:3c:4d:14:42:bd:2a:42:8d: 97:02:2a:2f:e6:3e:5e:a9:87:83:34:4a:62:23:f7: d8:79:e3:fd:3e:b8:5e:bf:c9:f7:0c:8f:e3:c8:e1: df:4a:7e:82:fa:b8:85:11:bb:02:b1:e5:e8:2c:ca: 95:ff:24:78:5e:2e:79:f5:f3:41:e8:01:a4:ed:77: 41:22:36:cf:19:cc:b8:23:77:92:ed:87:6a:cb:06: f9:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:23:6B:AF:1D:14:D9:66:96:D3:3B:DF:8B:31:9E:E1:1F:3C:A8:59 X509v3 Authority Key Identifier: keyid:A9:CC:42:A0:5B:0D:6C:A3:79:60:F7:C2:AB:E4:B4:64:DB:56:AC:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/3130332e3137322e3134342e302f32342d3234203d3e20313432333839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.144.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:d5:62:99:f6:18:42:bd:c7:53:41:41:13:46:ed:9d:ec:53: 3e:1d:d6:95:5d:e3:8f:dd:81:ee:12:24:23:16:0e:45:22:5c: 9d:f6:48:58:4f:a4:81:fc:d5:a6:fd:6b:bf:fa:06:27:fb:e7: 91:05:91:26:6e:b5:8e:c8:b0:a4:ac:87:1c:b7:92:e3:58:f1: 5f:67:8e:e5:4c:27:f9:6e:3b:87:3e:29:2e:d8:a4:23:0f:4c: 7b:ec:de:e1:56:c5:4f:67:a6:c3:77:78:e4:2f:1a:da:c0:56: 6a:69:14:bd:61:2d:7f:c9:8b:dd:09:52:ea:99:71:e0:2e:78: 25:9f:c4:b2:92:1a:a5:d9:d5:74:91:0e:9f:a2:6c:05:df:8d: 5e:60:7f:4a:ae:35:93:48:61:a2:38:55:62:46:0b:b6:e5:e7: 08:56:92:99:61:3d:17:25:3b:05:2a:8a:a3:47:f1:83:bb:27: ff:cd:be:41:9d:6b:19:fd:81:f5:23:65:29:d6:5e:8a:df:0a: 26:df:46:58:9f:7a:81:1f:89:29:58:79:db:d0:1b:ec:38:7c: 60:b5:a7:7b:97:4f:62:d5:54:18:8c:6c:71:7d:c4:d7:11:6c: d1:1f:97:47:fe:c4:df:fb:64:0f:93:8d:e0:a8:c3:69:bf:9e: ab:bb:0a:2c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVBAB/FAbG0LneDJKYo7u184x5oQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlDQzQyQTA1QjBENkNBMzc5NjBGN0MyQUJFNEI0NjRE QjU2QUNBQzAeFw0yNTA1MDkwODU1NTFaFw0yNjA1MDgwOTAwNTFaMDMxMTAvBgNV BAMTKEFFMjM2QkFGMUQxNEQ5NjY5NkQzM0JERjhCMzE5RUUxMUYzQ0E4NTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrxR7XMrvrCFtuH2YS0tfjwIyp Th+H4hjLolGSZ6CmjoUMoLPwhdcRCekjg/MHLyhiq8FNlja1O5jt6tKYibc9jDkQ 6VIu7pH1/BL46kIvorohDu4O+SjgyBV1urdpEq5k+ZH3DxvDa0qUUIRFGH1xsoAL DXisFL70iAKlk/HKH4PVLN0ZUWxB+5Lf9HhX6vgpPpz0fy/I/TuGI6isl/V6VkF9 GFMrUUX2ACM8TRRCvSpCjZcCKi/mPl6ph4M0SmIj99h54/0+uF6/yfcMj+PI4d9K foL6uIURuwKx5egsypX/JHheLnn180HoAaTtd0EiNs8ZzLgjd5Lth2rLBvmhAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUriNrrx0U2WaW0zvfizGe4R88qFkwHwYDVR0j BBgwFoAUqcxCoFsNbKN5YPfCq+S0ZNtWrKwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDc5ZTdhNy0xYWFlLTRlNTItYmFjMy04ZjdjNjdhZTBhMDQvMC9BOUNDNDJBMDVC MEQ2Q0EzNzk2MEY3QzJBQkU0QjQ2NERCNTZBQ0FDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlDQzQyQTA1QjBENkNBMzc5NjBGN0MyQUJFNEI0NjREQjU2 QUNBQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkNzllN2E3LTFhYWUtNGU1Mi1i YWMzLThmN2M2N2FlMGEwNC8wLzMxMzAzMzJlMzEzNzMyMmUzMTM0MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrJAwDQYJ KoZIhvcNAQELBQADggEBAIvVYpn2GEK9x1NBQRNG7Z3sUz4d1pVd44/dge4SJCMW DkUiXJ32SFhPpIH81ab9a7/6Bif755EFkSZutY7IsKSshxy3kuNY8V9njuVMJ/lu O4c+KS7YpCMPTHvs3uFWxU9npsN3eOQvGtrAVmppFL1hLX/Ji90JUuqZceAueCWf xLKSGqXZ1XSRDp+ibAXfjV5gf0quNZNIYaI4VWJGC7bl5whWkplhPRclOwUqiqNH 8YO7J//NvkGdaxn9gfUjZSnWXorfCibfRlifeoEfiSlYedvQG+w4fGC1p3uXT2LV VBiMbHF9xNcRbNEfl0f+xN/7ZA+TjeCow2m/nqu7Ciw= -----END CERTIFICATE-----Generated at Sat Jun 7 11:53:32 2025 by rpki-client