$ rpki-client -vvf repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/3130332e32392e31302e302f32332d3234203d3e20313530323530.roa File: 3130332e32392e31302e302f32332d3234203d3e20313530323530.roa (raw, json) Hash identifier: WJMrEDY6+yYCu4Iz5tUshsi6eLGdRGAnm2hsfXk5iwc= Subject key identifier: 1C:CB:E9:21:A8:D9:6A:47:2B:51:87:E3:62:D6:F6:DA:CC:F9:19:3F Certificate issuer: /CN=71054E3C02E22D607A90FACC4DE7369B65367EBD Certificate serial: 477E25A217255241F94362A07CB22F2AE821BD97 Authority key identifier: 71:05:4E:3C:02:E2:2D:60:7A:90:FA:CC:4D:E7:36:9B:65:36:7E:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/3130332e32392e31302e302f32332d3234203d3e20313530323530.roa Signing time: Fri 07 Mar 2025 04:01:04 +0000 ROA not before: Fri 07 Mar 2025 03:56:04 +0000 ROA not after: Fri 06 Mar 2026 04:01:04 +0000 asID: 150250 IP address blocks: 103.29.10.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.crl rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Mar 2025 21:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:7e:25:a2:17:25:52:41:f9:43:62:a0:7c:b2:2f:2a:e8:21:bd:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71054E3C02E22D607A90FACC4DE7369B65367EBD Validity Not Before: Mar 7 03:56:04 2025 GMT Not After : Mar 6 04:01:04 2026 GMT Subject: CN=1CCBE921A8D96A472B5187E362D6F6DACCF9193F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9e:27:17:9d:0a:27:b0:1c:94:fa:aa:72:4e: 21:4a:71:ea:f9:d1:41:59:29:fe:a0:b0:d8:b3:d4: e3:fb:59:98:dd:dc:37:64:8f:41:f9:42:63:ef:86: ac:81:f6:fd:73:61:52:63:a2:59:05:9c:6a:81:1d: c7:67:cd:cd:01:55:b4:50:96:4e:fd:f9:de:af:8d: b3:8c:2f:43:57:00:c3:29:13:91:69:bc:d1:a2:9c: 08:e2:9c:50:8d:83:4d:2e:1c:98:aa:f3:eb:41:d6: 62:be:a5:3e:64:e7:5b:4a:90:ce:1e:a4:1a:9c:3f: 7e:56:b0:ca:e5:f5:13:4c:0f:d2:97:8b:f0:bb:8a: 81:6e:65:7e:ce:81:b2:4b:8a:e8:88:e9:ae:12:54: 64:e8:0b:34:ca:10:ea:1c:13:3c:b1:9f:fd:4a:35: 7f:4f:f3:ef:92:31:d1:2a:9d:3f:f4:17:c9:f1:9d: 34:65:05:d3:97:3d:08:dc:1c:3b:51:ee:af:a3:f2: bb:54:ea:53:0d:6a:05:10:f8:56:3f:81:5e:a0:98: 72:f7:1f:40:c0:ac:e4:bd:91:74:9e:2d:17:19:b3: 4e:7e:5a:b3:e3:83:51:2a:61:a2:17:9c:98:8f:ad: 42:2c:09:96:37:15:d7:f7:83:f9:0c:cf:53:c1:d0: b9:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:CB:E9:21:A8:D9:6A:47:2B:51:87:E3:62:D6:F6:DA:CC:F9:19:3F X509v3 Authority Key Identifier: keyid:71:05:4E:3C:02:E2:2D:60:7A:90:FA:CC:4D:E7:36:9B:65:36:7E:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/3130332e32392e31302e302f32332d3234203d3e20313530323530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.29.10.0/23 Signature Algorithm: sha256WithRSAEncryption 94:b2:39:6b:a5:09:73:8f:cf:68:bd:39:b2:e7:4a:f4:04:1f: fc:3c:e9:0b:b2:ad:b5:d0:ab:12:29:1c:df:e5:60:42:03:ca: 41:7e:66:e5:7f:b6:23:3c:27:05:2e:50:7d:7e:eb:80:92:42: 16:f3:37:a2:f4:cb:3b:86:11:12:b5:4e:25:56:5d:70:b4:b7: d5:2d:4b:88:85:56:8c:d6:40:bb:d0:73:ca:12:86:56:9f:53: 4f:57:b5:85:2f:6b:e1:39:6d:0f:6a:bf:5b:9d:01:1d:a5:77: 17:bb:51:4b:ec:3e:f2:45:63:d7:7e:9e:6f:04:9e:f8:d7:16: 30:a1:b4:f8:97:2e:76:36:b5:b9:c7:ee:20:6b:78:a1:b1:39: f7:8d:3c:78:0b:44:61:04:93:00:0c:86:83:f7:7e:97:cb:62: d5:bb:5b:07:a3:7e:12:37:9f:7c:c1:68:df:14:1c:19:91:83: 8b:d1:d5:4f:e1:d1:fe:83:79:49:a5:54:01:3c:12:58:1e:ee: 7d:30:3d:4b:f9:2e:fc:1f:6e:ec:a0:84:d3:b8:83:59:f7:0e: 31:33:8b:35:dc:ba:97:60:91:6c:dc:5b:25:35:64:2c:45:55: e5:96:02:ae:ae:4e:d3:ba:39:cc:1b:12:18:9e:fa:18:d5:3b: f7:df:0b:e9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUR34lohclUkH5Q2KgfLIvKughvZcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzEwNTRFM0MwMkUyMkQ2MDdBOTBGQUNDNERFNzM2OUI2 NTM2N0VCRDAeFw0yNTAzMDcwMzU2MDRaFw0yNjAzMDYwNDAxMDRaMDMxMTAvBgNV BAMTKDFDQ0JFOTIxQThEOTZBNDcyQjUxODdFMzYyRDZGNkRBQ0NGOTE5M0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOnicXnQonsByU+qpyTiFKcer5 0UFZKf6gsNiz1OP7WZjd3Ddkj0H5QmPvhqyB9v1zYVJjolkFnGqBHcdnzc0BVbRQ lk79+d6vjbOML0NXAMMpE5FpvNGinAjinFCNg00uHJiq8+tB1mK+pT5k51tKkM4e pBqcP35WsMrl9RNMD9KXi/C7ioFuZX7OgbJLiuiI6a4SVGToCzTKEOocEzyxn/1K NX9P8++SMdEqnT/0F8nxnTRlBdOXPQjcHDtR7q+j8rtU6lMNagUQ+FY/gV6gmHL3 H0DArOS9kXSeLRcZs05+WrPjg1EqYaIXnJiPrUIsCZY3Fdf3g/kMz1PB0LmrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUHMvpIajZakcrUYfjYtb22sz5GT8wHwYDVR0j BBgwFoAUcQVOPALiLWB6kPrMTec2m2U2fr0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUzMmM2NS04MGJlLTRmZGUtODdkMC0zNmM1YmQyODhjZDgvMC83MTA1NEUzQzAy RTIyRDYwN0E5MEZBQ0M0REU3MzY5QjY1MzY3RUJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzEwNTRFM0MwMkUyMkQ2MDdBOTBGQUNDNERFNzM2OUI2NTM2 N0VCRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhNTMyYzY1LTgwYmUtNGZkZS04 N2QwLTM2YzViZDI4OGNkOC8wLzMxMzAzMzJlMzIzOTJlMzEzMDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzUzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcdCjANBgkqhkiG 9w0BAQsFAAOCAQEAlLI5a6UJc4/PaL05sudK9AQf/DzpC7KttdCrEikc3+VgQgPK QX5m5X+2IzwnBS5QfX7rgJJCFvM3ovTLO4YRErVOJVZdcLS31S1LiIVWjNZAu9Bz yhKGVp9TT1e1hS9r4TltD2q/W50BHaV3F7tRS+w+8kVj136ebwSe+NcWMKG0+Jcu dja1ucfuIGt4obE59408eAtEYQSTAAyGg/d+l8ti1btbB6N+EjeffMFo3xQcGZGD i9HVT+HR/oN5SaVUATwSWB7ufTA9S/ku/B9u7KCE07iDWfcOMTOLNdy6l2CRbNxb JTVkLEVV5ZYCrq5O07o5zBsSGJ76GNU7998L6Q== -----END CERTIFICATE-----Generated at Tue Mar 11 05:03:36 2025 by rpki-client