$ rpki-client -vvf repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133362e302f32342d3234203d3e20313338303839.roa File: 3130332e3132342e3133362e302f32342d3234203d3e20313338303839.roa (raw, json) Hash identifier: BQTtvc745IuKZaE72oqsQIokxS6D/NEUcrmFIac+agM= Subject key identifier: 49:C2:3A:CB:66:C0:13:C4:E0:77:8A:BA:01:C8:46:A0:59:0B:E5:6B Certificate issuer: /CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Certificate serial: 7CFA796330ECB7B234A0B04FFA9511DD7BC0C0F7 Authority key identifier: 7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133362e302f32342d3234203d3e20313338303839.roa Signing time: Mon 24 Feb 2025 14:00:00 +0000 ROA not before: Mon 24 Feb 2025 13:55:00 +0000 ROA not after: Mon 23 Feb 2026 14:00:00 +0000 asID: 138089 IP address blocks: 103.124.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 00:52:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:fa:79:63:30:ec:b7:b2:34:a0:b0:4f:fa:95:11:dd:7b:c0:c0:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Validity Not Before: Feb 24 13:55:00 2025 GMT Not After : Feb 23 14:00:00 2026 GMT Subject: CN=49C23ACB66C013C4E0778ABA01C846A0590BE56B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:d1:6e:a3:88:6b:74:e6:b7:57:37:2f:2c:87: 67:de:7f:80:27:37:50:3f:ee:38:01:00:a8:bd:d1: 7e:16:f7:c3:28:74:af:5b:39:12:12:d9:ad:6b:e2: e9:ca:1f:dd:d0:9f:67:16:64:3f:3c:21:ea:24:26: 39:a0:73:32:79:4c:e2:44:f4:ca:1f:18:cc:e0:ba: 40:c8:6f:cb:7d:ec:ad:54:6d:3b:7c:2d:43:f0:0e: e5:21:85:31:1a:12:72:0b:f5:59:c2:2f:05:36:cc: 41:01:59:c1:fa:ea:7f:ea:45:dc:34:ef:fc:3b:90: ed:ea:db:4d:0a:a4:99:d3:1c:3e:59:9a:ec:03:34: b8:6f:75:3e:a1:50:df:6f:36:c2:71:bc:38:50:4c: f0:74:57:82:0f:7f:6b:ca:ce:a0:40:42:d1:b7:66: 1d:a9:dc:39:ce:1f:9a:3c:e8:f4:ed:7f:7c:0b:05: 04:0f:bc:ca:81:bf:4a:0d:40:e1:df:c5:da:55:13: d4:e4:be:ef:da:71:fc:f7:59:aa:c9:98:4a:98:f1: 23:21:b3:1b:59:46:d0:b8:88:9f:21:cd:10:1f:f9: 5f:88:ff:98:4d:40:e6:a6:87:5c:ef:56:67:d0:61: c6:cf:eb:67:0b:a4:86:4e:97:9a:30:94:7f:0b:99: 2b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:C2:3A:CB:66:C0:13:C4:E0:77:8A:BA:01:C8:46:A0:59:0B:E5:6B X509v3 Authority Key Identifier: keyid:7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133362e302f32342d3234203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.136.0/24 Signature Algorithm: sha256WithRSAEncryption 81:99:7d:24:8c:9e:57:07:83:c6:c8:6a:8d:0b:a7:1d:0b:dc: 12:d4:72:d7:4b:15:e0:5d:ad:19:3d:e5:22:2a:84:ca:ca:78: 19:e1:1e:1f:ab:98:ca:bb:0e:40:ce:7d:1d:ab:4a:29:2e:1b: c8:8a:9b:1c:da:03:bc:2a:80:e1:e0:46:4e:a2:dc:b4:ea:3e: 8c:d3:05:ce:8e:c4:86:53:41:de:e7:de:ab:06:63:e1:5b:f9: a8:08:dc:a4:12:23:8e:52:15:76:d3:d5:93:e7:ec:63:cc:31: 28:06:66:0c:58:9f:29:c8:d6:ff:9b:c5:81:7f:aa:4f:ed:c3: 19:02:78:2f:31:f0:5f:be:b7:e4:c4:1a:4e:81:a1:dc:06:60: 28:74:e1:b3:07:44:d2:0d:6a:08:e6:39:98:c3:76:cd:92:e9: 8c:fa:46:39:8f:f2:66:cc:fe:86:f8:6d:9b:cb:e9:14:9a:9e: ff:33:d0:07:41:77:40:58:63:66:0e:ba:df:8d:49:c0:21:e0: c4:a5:98:73:b3:74:5e:1d:b8:e6:92:a6:25:09:36:51:44:01: ff:ef:a1:9d:30:ff:06:12:d7:16:32:e7:9a:c1:51:b1:b3:86: a3:71:63:2a:25:89:e6:32:33:4f:21:1f:1a:e3:ea:f4:4f:49: ba:af:36:82 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfPp5YzDst7I0oLBP+pUR3XvAwPcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVB RjcwRTczMzAeFw0yNTAyMjQxMzU1MDBaFw0yNjAyMjMxNDAwMDBaMDMxMTAvBgNV BAMTKDQ5QzIzQUNCNjZDMDEzQzRFMDc3OEFCQTAxQzg0NkEwNTkwQkU1NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDl0W6jiGt05rdXNy8sh2fef4An N1A/7jgBAKi90X4W98ModK9bORIS2a1r4unKH93Qn2cWZD88IeokJjmgczJ5TOJE 9MofGMzgukDIb8t97K1UbTt8LUPwDuUhhTEaEnIL9VnCLwU2zEEBWcH66n/qRdw0 7/w7kO3q200KpJnTHD5ZmuwDNLhvdT6hUN9vNsJxvDhQTPB0V4IPf2vKzqBAQtG3 Zh2p3DnOH5o86PTtf3wLBQQPvMqBv0oNQOHfxdpVE9Tkvu/acfz3WarJmEqY8SMh sxtZRtC4iJ8hzRAf+V+I/5hNQOamh1zvVmfQYcbP62cLpIZOl5owlH8LmSvtAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUScI6y2bAE8Tgd4q6AchGoFkL5WswHwYDVR0j BBgwFoAUfU8NAHtgE0mWrDGYueW3Hq9w5zMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWJhNGU1OS1mYjMxLTQxYjUtODhlNy0wYjJjZWQxZjIwMWMvMC83RDRGMEQwMDdC NjAxMzQ5OTZBQzMxOThCOUU1QjcxRUFGNzBFNzMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVBRjcw RTczMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMxMzAzMzJlMzEzMjM0MmUzMTMzMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfIgwDQYJ KoZIhvcNAQELBQADggEBAIGZfSSMnlcHg8bIao0Lpx0L3BLUctdLFeBdrRk95SIq hMrKeBnhHh+rmMq7DkDOfR2rSikuG8iKmxzaA7wqgOHgRk6i3LTqPozTBc6OxIZT Qd7n3qsGY+Fb+agI3KQSI45SFXbT1ZPn7GPMMSgGZgxYnynI1v+bxYF/qk/twxkC eC8x8F++t+TEGk6BodwGYCh04bMHRNINagjmOZjDds2S6Yz6RjmP8mbM/ob4bZvL 6RSanv8z0AdBd0BYY2YOut+NScAh4MSlmHOzdF4duOaSpiUJNlFEAf/voZ0w/wYS 1xYy55rBUbGzhqNxYyolieYyM08hHxrj6vRPSbqvNoI= -----END CERTIFICATE-----Generated at Sun Apr 6 17:45:47 2025 by rpki-client