$ rpki-client -vvf repo-rpki.idnic.net/repo/5951dfee-a75b-4420-a755-2c7358baf7d3/0/3130332e3137362e3132312e302f32342d3234203d3e20313437313330.roa File: 3130332e3137362e3132312e302f32342d3234203d3e20313437313330.roa (raw, json) Hash identifier: ag2qZCKMirlsCPbwPCJ1pHWeTm3Q9hlRW1Uq9izm+eo= Subject key identifier: 48:1A:0B:6C:2A:94:A8:58:CD:03:3C:6B:F3:73:A8:C9:F5:FF:3D:4C Certificate issuer: /CN=E0B1DDE4FA587276778B8ED650B682C82290CC74 Certificate serial: 0983FDDC117F3D9BDCC789B6C0FC5D48122AD440 Authority key identifier: E0:B1:DD:E4:FA:58:72:76:77:8B:8E:D6:50:B6:82:C8:22:90:CC:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0B1DDE4FA587276778B8ED650B682C82290CC74.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5951dfee-a75b-4420-a755-2c7358baf7d3/0/3130332e3137362e3132312e302f32342d3234203d3e20313437313330.roa Signing time: Mon 03 Mar 2025 09:00:00 +0000 ROA not before: Mon 03 Mar 2025 08:55:00 +0000 ROA not after: Mon 02 Mar 2026 09:00:00 +0000 asID: 147130 IP address blocks: 103.176.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5951dfee-a75b-4420-a755-2c7358baf7d3/0/E0B1DDE4FA587276778B8ED650B682C82290CC74.crl rsync://repo-rpki.idnic.net/repo/5951dfee-a75b-4420-a755-2c7358baf7d3/0/E0B1DDE4FA587276778B8ED650B682C82290CC74.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0B1DDE4FA587276778B8ED650B682C82290CC74.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 10:29:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:83:fd:dc:11:7f:3d:9b:dc:c7:89:b6:c0:fc:5d:48:12:2a:d4:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E0B1DDE4FA587276778B8ED650B682C82290CC74 Validity Not Before: Mar 3 08:55:00 2025 GMT Not After : Mar 2 09:00:00 2026 GMT Subject: CN=481A0B6C2A94A858CD033C6BF373A8C9F5FF3D4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d7:fa:f5:07:c0:ea:f3:e7:36:61:c1:65:67: 69:79:12:c4:42:f8:bc:b9:a0:05:09:1c:c1:e0:1f: cd:d1:a4:83:36:fb:da:f0:b7:4d:6c:b5:5d:ef:2a: b1:02:6e:00:ae:5a:e3:51:5a:91:e4:ec:29:5e:2c: 66:45:ab:86:38:d3:19:2d:de:23:ce:1a:40:8c:a8: f0:6b:1d:cb:45:9b:33:dd:3f:b1:00:b1:34:59:88: bb:d1:dd:ce:b6:fa:0e:a3:31:4f:5a:13:44:d8:31: 6a:40:62:d2:08:48:cd:47:e7:8f:7f:49:9f:36:d4: 2a:f9:e5:a8:42:d2:c1:c3:25:01:30:73:46:1d:c5: f0:40:31:52:09:24:39:f3:d6:a6:11:9e:a9:a3:8d: 38:96:d3:92:53:47:41:1c:d0:f6:71:2f:fa:43:ae: 29:80:f6:2d:ae:67:39:c9:9f:ec:a2:a6:e4:97:52: ff:44:3c:c3:6d:bd:6b:fa:f9:23:5e:40:66:14:ed: 0b:cb:25:d2:41:cf:06:a6:08:21:39:67:46:62:5b: d9:26:9f:54:9a:25:d6:21:c9:ab:24:0c:cb:b7:f8: 71:50:eb:9a:95:35:3e:ae:cd:39:fa:27:c8:37:5a: e0:1c:3b:55:38:9e:bc:58:a4:9a:62:c2:0e:fd:80: d6:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:1A:0B:6C:2A:94:A8:58:CD:03:3C:6B:F3:73:A8:C9:F5:FF:3D:4C X509v3 Authority Key Identifier: keyid:E0:B1:DD:E4:FA:58:72:76:77:8B:8E:D6:50:B6:82:C8:22:90:CC:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5951dfee-a75b-4420-a755-2c7358baf7d3/0/E0B1DDE4FA587276778B8ED650B682C82290CC74.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0B1DDE4FA587276778B8ED650B682C82290CC74.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5951dfee-a75b-4420-a755-2c7358baf7d3/0/3130332e3137362e3132312e302f32342d3234203d3e20313437313330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.121.0/24 Signature Algorithm: sha256WithRSAEncryption 62:a7:6b:9d:59:d1:54:88:c7:d0:c6:db:f6:0b:e3:2c:50:07: e3:c5:8d:f3:40:85:2d:44:0f:77:35:ef:f1:7e:f8:cb:b5:bf: fb:e1:02:e8:ac:e7:04:b3:09:03:1c:bb:e1:27:60:71:47:4a: c7:56:32:c4:ba:14:f3:b0:0d:25:8a:93:b5:50:8d:a3:a2:88: 28:d8:ed:c9:1c:73:a6:57:b5:c1:de:c4:ae:cc:f7:d1:98:08: dd:17:74:38:39:d0:82:b4:b9:31:29:c0:2b:56:da:2e:19:a5: b4:84:4e:93:66:70:09:41:da:4a:cd:a8:48:8e:e8:52:e5:5e: 5a:4e:1f:c2:4a:99:65:8c:18:69:b3:b9:41:ea:98:65:25:6b: 18:1b:59:ba:ee:2e:38:7a:f8:51:f4:60:6c:26:58:03:d8:bd: 71:1c:11:04:a9:58:ed:d9:0e:80:5c:fe:79:b7:6b:c0:51:3e: 5a:82:cf:05:a6:13:40:35:51:60:d4:a4:51:95:32:95:00:46: a5:ab:d8:fc:58:af:16:4a:64:00:69:48:32:7e:a6:55:59:d5: 9e:4b:01:7e:a4:36:6d:12:0c:77:78:1b:be:0e:c6:7c:2f:5e: bc:bd:a0:54:ad:a2:26:9c:56:2c:08:ca:fc:12:7f:6e:4d:a5: b6:ba:e5:ad -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUCYP93BF/PZvcx4m2wPxdSBIq1EAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTBCMURERTRGQTU4NzI3Njc3OEI4RUQ2NTBCNjgyQzgy MjkwQ0M3NDAeFw0yNTAzMDMwODU1MDBaFw0yNjAzMDIwOTAwMDBaMDMxMTAvBgNV BAMTKDQ4MUEwQjZDMkE5NEE4NThDRDAzM0M2QkYzNzNBOEM5RjVGRjNENEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF1/r1B8Dq8+c2YcFlZ2l5EsRC +Ly5oAUJHMHgH83RpIM2+9rwt01stV3vKrECbgCuWuNRWpHk7CleLGZFq4Y40xkt 3iPOGkCMqPBrHctFmzPdP7EAsTRZiLvR3c62+g6jMU9aE0TYMWpAYtIISM1H549/ SZ821Cr55ahC0sHDJQEwc0YdxfBAMVIJJDnz1qYRnqmjjTiW05JTR0Ec0PZxL/pD rimA9i2uZznJn+yipuSXUv9EPMNtvWv6+SNeQGYU7QvLJdJBzwamCCE5Z0ZiW9km n1SaJdYhyaskDMu3+HFQ65qVNT6uzTn6J8g3WuAcO1U4nrxYpJpiwg79gNZDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUSBoLbCqUqFjNAzxr83OoyfX/PUwwHwYDVR0j BBgwFoAU4LHd5PpYcnZ3i47WULaCyCKQzHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OTUxZGZlZS1hNzViLTQ0MjAtYTc1NS0yYzczNThiYWY3ZDMvMC9FMEIxRERFNEZB NTg3Mjc2Nzc4QjhFRDY1MEI2ODJDODIyOTBDQzc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTBCMURERTRGQTU4NzI3Njc3OEI4RUQ2NTBCNjgyQzgyMjkw Q0M3NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5NTFkZmVlLWE3NWItNDQyMC1h NzU1LTJjNzM1OGJhZjdkMy8wLzMxMzAzMzJlMzEzNzM2MmUzMTMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMTMzMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnsHkwDQYJ KoZIhvcNAQELBQADggEBAGKna51Z0VSIx9DG2/YL4yxQB+PFjfNAhS1ED3c17/F+ +Mu1v/vhAuis5wSzCQMcu+EnYHFHSsdWMsS6FPOwDSWKk7VQjaOiiCjY7ckcc6ZX tcHexK7M99GYCN0XdDg50IK0uTEpwCtW2i4ZpbSETpNmcAlB2krNqEiO6FLlXlpO H8JKmWWMGGmzuUHqmGUlaxgbWbruLjh6+FH0YGwmWAPYvXEcEQSpWO3ZDoBc/nm3 a8BRPlqCzwWmE0A1UWDUpFGVMpUARqWr2PxYrxZKZABpSDJ+plVZ1Z5LAX6kNm0S DHd4G74OxnwvXry9oFStoiacViwIyvwSf25Npba65a0= -----END CERTIFICATE-----Generated at Mon Apr 7 01:10:37 2025 by rpki-client