$ rpki-client -vvf repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3130332e3134302e3133302e302f32332d3234203d3e20313338383636.roa File: 3130332e3134302e3133302e302f32332d3234203d3e20313338383636.roa (raw, json) Hash identifier: Vxu7OgcrZ32tVA4THVShJIrGxnq9jK2ER/olk1k8ato= Subject key identifier: BD:E1:9A:6F:9F:E3:91:90:78:BC:DE:85:E6:7E:82:6E:FD:77:9B:76 Certificate issuer: /CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Certificate serial: 102F3CC65C83312DEF8236DA2E4AA6BE67FB7A15 Authority key identifier: 3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3130332e3134302e3133302e302f32332d3234203d3e20313338383636.roa Signing time: Tue 14 Jan 2025 17:00:01 +0000 ROA not before: Tue 14 Jan 2025 16:55:01 +0000 ROA not after: Tue 13 Jan 2026 17:00:01 +0000 asID: 138866 IP address blocks: 103.140.130.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 23:07:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:2f:3c:c6:5c:83:31:2d:ef:82:36:da:2e:4a:a6:be:67:fb:7a:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Validity Not Before: Jan 14 16:55:01 2025 GMT Not After : Jan 13 17:00:01 2026 GMT Subject: CN=BDE19A6F9FE3919078BCDE85E67E826EFD779B76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:39:be:54:ea:4c:46:34:05:08:c7:92:cf:9e: e2:31:af:02:5e:ac:b9:1d:a8:3b:68:d1:47:d1:37: 76:fe:e4:4b:46:9d:05:8e:6b:31:13:73:9d:ae:56: 75:71:f4:cd:d1:f3:69:8e:59:ce:b9:65:14:35:90: dc:3d:03:e4:54:48:b7:ae:1b:c0:32:5d:99:a4:2a: 23:46:73:75:ea:4b:c2:96:a2:31:7c:aa:c3:14:87: 3d:97:1d:8e:ac:54:88:66:2f:7c:c5:b2:cb:2e:b2: 12:d8:ab:8f:c7:ff:7b:d8:f6:c5:48:81:52:1f:72: 60:73:6c:0e:34:f6:02:16:56:01:44:83:ef:03:28: 42:50:bb:21:81:77:bb:18:0a:5d:9d:4f:f1:36:04: 96:80:03:f9:2b:6e:30:ad:8f:1a:f2:34:f1:d8:32: 8f:87:91:98:6a:bb:81:95:52:a9:1e:54:84:98:c4: 55:a9:30:df:50:ad:30:17:6c:26:3a:02:bb:37:a7: c3:de:f1:d5:c7:f7:8d:4f:05:ee:bb:e0:51:a0:af: b8:e9:2e:ab:f3:41:38:2d:7a:54:0c:6f:d1:60:72: 12:c9:1d:cf:14:4a:c8:25:8a:bd:4e:8a:42:12:cc: b1:81:7a:ee:6d:de:67:25:59:3e:c9:d0:4f:14:e5: d0:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:E1:9A:6F:9F:E3:91:90:78:BC:DE:85:E6:7E:82:6E:FD:77:9B:76 X509v3 Authority Key Identifier: keyid:3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3130332e3134302e3133302e302f32332d3234203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.130.0/23 Signature Algorithm: sha256WithRSAEncryption 02:46:2d:09:7f:c2:eb:3c:6e:70:fa:50:a7:c9:76:37:8e:e0: c1:b8:8a:49:65:4e:64:17:ff:0c:ee:97:86:90:21:1f:6b:08: b7:e7:85:13:f9:96:df:2f:74:6d:09:30:a7:05:07:c2:5b:f7: 8d:cd:0b:55:5b:69:82:66:0d:00:86:20:6d:4b:fa:39:1e:32: cf:89:d4:9d:11:b2:c6:26:b3:05:f5:34:f9:92:44:19:35:da: 27:6c:7e:02:b6:5f:99:96:af:1e:7d:0e:6d:a0:bb:5c:65:63: 23:94:b3:ae:90:c9:23:97:3b:d3:2e:8c:38:43:08:6e:3c:ce: cd:ad:50:22:6a:b9:45:9e:2b:b5:2b:ec:be:60:99:6c:53:63: 54:4a:67:3a:ee:bd:e8:9d:c4:eb:91:88:f4:e6:e1:bc:52:51: 52:86:eb:9b:44:77:13:ff:dc:5f:40:40:ae:17:3a:36:55:61: 9a:5b:bc:33:02:c6:d7:72:63:4e:8c:af:e4:f9:15:8e:17:31: 60:4b:a0:5a:75:f8:77:f5:9d:ad:0a:e1:4e:8b:e8:2b:0d:71: a3:fa:05:29:11:f2:30:56:68:38:8d:b4:47:f9:af:f6:52:7d: 49:c7:5f:2c:84:c3:fe:6a:5d:9b:12:59:81:00:76:75:91:af: 1d:48:6b:e0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUEC88xlyDMS3vgjbaLkqmvmf7ehUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFG QzhBN0U5NzAeFw0yNTAxMTQxNjU1MDFaFw0yNjAxMTMxNzAwMDFaMDMxMTAvBgNV BAMTKEJERTE5QTZGOUZFMzkxOTA3OEJDREU4NUU2N0U4MjZFRkQ3NzlCNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEOb5U6kxGNAUIx5LPnuIxrwJe rLkdqDto0UfRN3b+5EtGnQWOazETc52uVnVx9M3R82mOWc65ZRQ1kNw9A+RUSLeu G8AyXZmkKiNGc3XqS8KWojF8qsMUhz2XHY6sVIhmL3zFsssushLYq4/H/3vY9sVI gVIfcmBzbA409gIWVgFEg+8DKEJQuyGBd7sYCl2dT/E2BJaAA/krbjCtjxryNPHY Mo+HkZhqu4GVUqkeVISYxFWpMN9QrTAXbCY6Ars3p8Pe8dXH941PBe674FGgr7jp LqvzQTgtelQMb9FgchLJHc8USsglir1OikISzLGBeu5t3mclWT7J0E8U5dBrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUveGab5/jkZB4vN6F5n6Cbv13m3YwHwYDVR0j BBgwFoAUPWT9kA4uZMsVnQBnFnhTqvyKfpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUxOWFlYi01YzU2LTRjYjMtOTRhMC0wZjQwMGVhNmEzNzUvMC8zRDY0RkQ5MDBF MkU2NENCMTU5RDAwNjcxNjc4NTNBQUZDOEE3RTk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFGQzhB N0U5Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMxMzAzMzJlMzEzNDMwMmUzMTMzMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzODM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnjIIwDQYJ KoZIhvcNAQELBQADggEBAAJGLQl/wus8bnD6UKfJdjeO4MG4ikllTmQX/wzul4aQ IR9rCLfnhRP5lt8vdG0JMKcFB8Jb943NC1VbaYJmDQCGIG1L+jkeMs+J1J0RssYm swX1NPmSRBk12idsfgK2X5mWrx59Dm2gu1xlYyOUs66QySOXO9MujDhDCG48zs2t UCJquUWeK7Ur7L5gmWxTY1RKZzruveidxOuRiPTm4bxSUVKG65tEdxP/3F9AQK4X OjZVYZpbvDMCxtdyY06Mr+T5FY4XMWBLoFp1+Hf1na0K4U6L6CsNcaP6BSkR8jBW aDiNtEf5r/ZSfUnHXyyEw/5qXZsSWYEAdnWRrx1Ia+A= -----END CERTIFICATE-----Generated at Mon Apr 7 00:33:50 2025 by rpki-client