$ rpki-client -vvf repo-rpki.idnic.net/repo/54f1372c-43a6-4fda-b50e-d01eb42c689f/0/3130332e3137332e3134332e302f32342d3234203d3e20313437303930.roa File: 3130332e3137332e3134332e302f32342d3234203d3e20313437303930.roa (raw, json) Hash identifier: vRlgOXUVxZU3L35iv5K0e1tNJbS3jxz2tstDvvGIpOA= Subject key identifier: 02:3E:37:F7:6A:18:FA:6D:1A:5B:F8:6C:8B:E9:D6:D7:A5:BB:E9:3D Certificate issuer: /CN=4515472806DD01B59715410103D51C05E4F28B96 Certificate serial: 78F6F8542DA2B027ACD51B01B817558E12A6017B Authority key identifier: 45:15:47:28:06:DD:01:B5:97:15:41:01:03:D5:1C:05:E4:F2:8B:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4515472806DD01B59715410103D51C05E4F28B96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/54f1372c-43a6-4fda-b50e-d01eb42c689f/0/3130332e3137332e3134332e302f32342d3234203d3e20313437303930.roa Signing time: Thu 23 Jan 2025 02:00:00 +0000 ROA not before: Thu 23 Jan 2025 01:55:00 +0000 ROA not after: Thu 22 Jan 2026 02:00:00 +0000 asID: 147090 IP address blocks: 103.173.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/54f1372c-43a6-4fda-b50e-d01eb42c689f/0/4515472806DD01B59715410103D51C05E4F28B96.crl rsync://repo-rpki.idnic.net/repo/54f1372c-43a6-4fda-b50e-d01eb42c689f/0/4515472806DD01B59715410103D51C05E4F28B96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4515472806DD01B59715410103D51C05E4F28B96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 13:55:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:f6:f8:54:2d:a2:b0:27:ac:d5:1b:01:b8:17:55:8e:12:a6:01:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4515472806DD01B59715410103D51C05E4F28B96 Validity Not Before: Jan 23 01:55:00 2025 GMT Not After : Jan 22 02:00:00 2026 GMT Subject: CN=023E37F76A18FA6D1A5BF86C8BE9D6D7A5BBE93D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:46:b2:36:19:4a:a0:61:7d:3d:b4:e9:6f:0f: 74:99:7c:44:f5:a3:41:84:78:36:54:9b:a6:de:b2: 7d:17:be:06:32:7a:59:3b:cd:02:f2:01:ec:42:5f: 51:76:b3:fc:3f:f4:47:cc:42:72:c7:18:b9:d5:26: 6d:42:78:92:45:29:1e:53:8d:84:cb:9f:70:32:6d: a8:2d:b6:ad:0f:d5:fd:ba:0d:51:86:13:09:c4:60: 4a:6d:15:a7:e8:ef:ed:91:c6:ed:43:5d:6e:89:35: f9:7b:ed:e9:bd:c0:cb:84:5c:c1:2b:7f:67:91:61: e5:24:2a:a4:e7:63:d6:a7:8d:45:a7:8d:f3:bd:52: 36:ad:31:88:de:5b:35:bf:0c:5d:85:69:98:4e:46: 1a:cd:f7:44:ce:28:8b:d4:db:90:ee:54:48:69:49: 33:3f:80:bb:30:a5:ae:4c:a3:62:06:4e:95:a4:89: b6:8e:d2:f7:73:3d:9d:62:31:71:d5:dc:4b:a9:e8: 5b:0f:28:4e:b8:fe:c1:13:5a:78:39:29:eb:52:53: ac:53:93:06:9c:4e:b9:e3:c1:14:82:3d:e1:d0:27: cc:0e:54:47:86:36:b2:1b:e5:97:64:fb:86:5a:b7: d4:de:cf:1e:cd:d0:ba:e4:ad:7b:04:84:17:89:4c: 07:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:3E:37:F7:6A:18:FA:6D:1A:5B:F8:6C:8B:E9:D6:D7:A5:BB:E9:3D X509v3 Authority Key Identifier: keyid:45:15:47:28:06:DD:01:B5:97:15:41:01:03:D5:1C:05:E4:F2:8B:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/54f1372c-43a6-4fda-b50e-d01eb42c689f/0/4515472806DD01B59715410103D51C05E4F28B96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4515472806DD01B59715410103D51C05E4F28B96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/54f1372c-43a6-4fda-b50e-d01eb42c689f/0/3130332e3137332e3134332e302f32342d3234203d3e20313437303930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.173.143.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:9f:66:b7:b6:ae:58:ed:3e:6a:bf:90:40:54:dd:25:d6:56: 4c:e7:70:2c:52:49:81:b0:23:2d:58:68:b9:ec:5a:60:b0:63: 43:1b:b5:91:0a:55:7b:a4:96:7d:67:4e:08:df:e5:42:f9:ab: d2:c9:e9:81:13:e1:30:48:ec:7a:87:b8:7f:11:5e:bd:93:71: 1e:67:4e:70:90:22:13:aa:70:63:03:d2:8e:1f:a6:7d:b6:ab: db:46:9e:ee:71:58:b8:6d:7c:66:03:c3:95:ab:8d:c3:f3:fe: de:f9:99:50:6f:27:14:8a:bf:ec:19:86:ab:56:18:75:57:c2: d7:15:88:04:09:3e:ce:a3:c9:a2:dc:71:65:82:f9:c8:91:ac: a0:75:be:ec:12:63:64:07:06:e4:12:94:9a:34:09:3e:37:0f: 8d:cd:68:97:98:61:06:51:62:bc:c5:f6:30:f0:60:2f:5d:5b: b6:be:49:84:a8:f7:e7:78:c5:3c:fc:ad:30:73:9b:8a:ee:02: cb:93:23:9b:01:b6:e8:7e:ad:48:2e:4b:33:29:e0:97:2f:61: 3e:59:74:cf:db:7a:cd:c1:d0:da:90:57:0a:66:a2:71:20:d2: b6:e6:40:e5:89:93:d2:13:52:c6:62:43:8c:50:c4:89:d1:6b: 92:df:b7:19 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUePb4VC2isCes1RsBuBdVjhKmAXswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUxNTQ3MjgwNkREMDFCNTk3MTU0MTAxMDNENTFDMDVF NEYyOEI5NjAeFw0yNTAxMjMwMTU1MDBaFw0yNjAxMjIwMjAwMDBaMDMxMTAvBgNV BAMTKDAyM0UzN0Y3NkExOEZBNkQxQTVCRjg2QzhCRTlENkQ3QTVCQkU5M0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRRrI2GUqgYX09tOlvD3SZfET1 o0GEeDZUm6besn0XvgYyelk7zQLyAexCX1F2s/w/9EfMQnLHGLnVJm1CeJJFKR5T jYTLn3Aybagttq0P1f26DVGGEwnEYEptFafo7+2Rxu1DXW6JNfl77em9wMuEXMEr f2eRYeUkKqTnY9anjUWnjfO9UjatMYjeWzW/DF2FaZhORhrN90TOKIvU25DuVEhp STM/gLswpa5Mo2IGTpWkibaO0vdzPZ1iMXHV3Eup6FsPKE64/sETWng5KetSU6xT kwacTrnjwRSCPeHQJ8wOVEeGNrIb5Zdk+4Zat9Tezx7N0LrkrXsEhBeJTAeVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUAj4392oY+m0aW/hsi+nW16W76T0wHwYDVR0j BBgwFoAURRVHKAbdAbWXFUEBA9UcBeTyi5YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NGYxMzcyYy00M2E2LTRmZGEtYjUwZS1kMDFlYjQyYzY4OWYvMC80NTE1NDcyODA2 REQwMUI1OTcxNTQxMDEwM0Q1MUMwNUU0RjI4Qjk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDUxNTQ3MjgwNkREMDFCNTk3MTU0MTAxMDNENTFDMDVFNEYy OEI5Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU0ZjEzNzJjLTQzYTYtNGZkYS1i NTBlLWQwMWViNDJjNjg5Zi8wLzMxMzAzMzJlMzEzNzMzMmUzMTM0MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMDM5MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrY8wDQYJ KoZIhvcNAQELBQADggEBAA6fZre2rljtPmq/kEBU3SXWVkzncCxSSYGwIy1YaLns WmCwY0MbtZEKVXukln1nTgjf5UL5q9LJ6YET4TBI7HqHuH8RXr2TcR5nTnCQIhOq cGMD0o4fpn22q9tGnu5xWLhtfGYDw5WrjcPz/t75mVBvJxSKv+wZhqtWGHVXwtcV iAQJPs6jyaLccWWC+ciRrKB1vuwSY2QHBuQSlJo0CT43D43NaJeYYQZRYrzF9jDw YC9dW7a+SYSo9+d4xTz8rTBzm4ruAsuTI5sBtuh+rUguSzMp4JcvYT5ZdM/bes3B 0NqQVwpmonEg0rbmQOWJk9ITUsZiQ4xQxInRa5Lftxk= -----END CERTIFICATE-----Generated at Sun Apr 6 08:18:42 2025 by rpki-client