$ rpki-client -vvf repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/3130332e3135362e39362e302f32342d3234203d3e20313431303837.roa File: 3130332e3135362e39362e302f32342d3234203d3e20313431303837.roa (raw, json) Hash identifier: vljo5Oi0hl2aQpZ4Kaqz7NdJ52vgowFgq0RTxUCluvc= Subject key identifier: FB:48:13:65:18:C1:45:31:4D:FD:04:1D:D6:A3:95:D9:56:B2:C6:DB Certificate issuer: /CN=878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE Certificate serial: 30E1064A8BA85F51E286B4EFE345E9139BD8C9BA Authority key identifier: 87:8D:F4:B7:E3:C7:76:B2:ED:C1:75:2F:CC:BC:5E:28:9C:45:3B:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/3130332e3135362e39362e302f32342d3234203d3e20313431303837.roa Signing time: Wed 19 Feb 2025 08:00:01 +0000 ROA not before: Wed 19 Feb 2025 07:55:01 +0000 ROA not after: Wed 18 Feb 2026 08:00:01 +0000 asID: 141087 IP address blocks: 103.156.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.crl rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 16:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:e1:06:4a:8b:a8:5f:51:e2:86:b4:ef:e3:45:e9:13:9b:d8:c9:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE Validity Not Before: Feb 19 07:55:01 2025 GMT Not After : Feb 18 08:00:01 2026 GMT Subject: CN=FB48136518C145314DFD041DD6A395D956B2C6DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:71:72:ff:39:7c:3c:13:86:5f:e1:00:4f:d1: 3f:7a:4a:58:c7:6b:30:64:c1:e7:b6:c6:96:39:8d: d2:ac:df:ec:15:1c:12:0d:af:a7:49:95:e2:34:98: 79:7d:d6:c7:24:eb:d1:4c:47:4e:2c:30:87:9f:1c: 59:e5:67:67:f4:3b:05:49:8c:4c:f1:1a:81:84:55: 07:2e:64:2a:7c:83:1b:0b:cb:23:68:73:f6:5a:fc: fb:f2:0a:41:53:19:8a:af:5e:2e:66:ec:33:d7:d4: 4b:80:0d:80:4e:67:90:4f:ed:b5:e3:e3:a8:a5:5f: 6c:d6:30:33:73:c5:20:11:6b:0f:c8:24:66:60:cf: 3f:30:b3:b6:bf:29:6d:d4:d6:9d:bf:7c:73:66:84: 61:41:c2:1c:ed:a0:d4:1c:ad:5e:74:fc:16:2f:33: b9:3b:66:af:be:a8:20:53:5b:f7:bf:71:7e:16:36: 4c:2b:cb:07:0b:d9:25:2e:a6:d3:9b:c3:eb:59:f1: 60:ae:f7:11:35:af:ce:22:3c:00:9f:a2:03:67:4f: d6:15:13:e5:0b:c5:b2:ab:08:62:3d:75:dd:ce:d5: 73:a7:05:51:00:ae:f0:2e:c9:8c:9e:1f:0f:bc:c8: 89:8b:d7:28:dd:98:92:44:e5:4c:33:12:66:47:a2: 1d:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:48:13:65:18:C1:45:31:4D:FD:04:1D:D6:A3:95:D9:56:B2:C6:DB X509v3 Authority Key Identifier: keyid:87:8D:F4:B7:E3:C7:76:B2:ED:C1:75:2F:CC:BC:5E:28:9C:45:3B:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/3130332e3135362e39362e302f32342d3234203d3e20313431303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.96.0/24 Signature Algorithm: sha256WithRSAEncryption 58:42:0f:dc:2a:6b:41:ba:7e:1f:82:6d:49:87:ae:c5:a0:c2: 89:6e:f1:f6:ed:f0:b5:01:4f:69:12:25:20:17:5a:2e:d8:bf: f3:d6:52:cc:08:f5:53:91:55:a6:0c:13:f7:4e:45:89:80:a3: c1:b5:34:d4:f7:09:b1:eb:7d:4f:7b:ef:48:fe:cf:0a:68:79: 8c:9e:c1:57:53:2b:d0:b8:a0:89:c4:07:04:ce:c5:af:4c:b5: 1a:aa:2f:02:36:15:b0:15:9a:54:51:49:58:2c:27:1a:62:f1: 3d:df:aa:99:44:4b:5a:01:f8:b1:c9:b7:8f:d0:d3:df:2c:53: 7f:d5:59:28:2e:8a:91:07:51:0a:0b:0e:eb:bb:b5:74:f9:dd: 8c:b5:d4:67:bb:9d:fc:c6:d5:c5:ab:91:35:3f:fd:22:c5:6b: f5:f5:33:f9:57:41:7e:f4:cd:9e:bd:a5:d1:76:a3:01:b3:c5: e3:43:b9:14:be:2a:9e:30:90:66:65:7d:01:20:41:40:8c:bd: 01:cb:2f:76:c7:ee:e2:81:57:85:5b:96:92:54:68:fe:86:47: ba:15:ce:6d:38:4a:b5:db:01:92:81:d5:68:91:fb:ff:12:21: ad:13:8c:91:37:75:27:a8:c8:8e:46:4d:5c:7b:99:6e:50:e6: 56:6b:e1:c7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMOEGSouoX1HihrTv40XpE5vYybowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODc4REY0QjdFM0M3NzZCMkVEQzE3NTJGQ0NCQzVFMjg5 QzQ1M0JFRTAeFw0yNTAyMTkwNzU1MDFaFw0yNjAyMTgwODAwMDFaMDMxMTAvBgNV BAMTKEZCNDgxMzY1MThDMTQ1MzE0REZEMDQxREQ2QTM5NUQ5NTZCMkM2REIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCicXL/OXw8E4Zf4QBP0T96SljH azBkwee2xpY5jdKs3+wVHBINr6dJleI0mHl91sck69FMR04sMIefHFnlZ2f0OwVJ jEzxGoGEVQcuZCp8gxsLyyNoc/Za/PvyCkFTGYqvXi5m7DPX1EuADYBOZ5BP7bXj 46ilX2zWMDNzxSARaw/IJGZgzz8ws7a/KW3U1p2/fHNmhGFBwhztoNQcrV50/BYv M7k7Zq++qCBTW/e/cX4WNkwrywcL2SUuptObw+tZ8WCu9xE1r84iPACfogNnT9YV E+ULxbKrCGI9dd3O1XOnBVEArvAuyYyeHw+8yImL1yjdmJJE5UwzEmZHoh15AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+0gTZRjBRTFN/QQd1qOV2VayxtswHwYDVR0j BBgwFoAUh430t+PHdrLtwXUvzLxeKJxFO+4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Yzg5N2M0YS1lMGZmLTQ2NTItYTU5MS1mZjJkNDhlNzJjOTEvMC84NzhERjRCN0Uz Qzc3NkIyRURDMTc1MkZDQ0JDNUUyODlDNDUzQkVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODc4REY0QjdFM0M3NzZCMkVEQzE3NTJGQ0NCQzVFMjg5QzQ1 M0JFRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjODk3YzRhLWUwZmYtNDY1Mi1h NTkxLWZmMmQ0OGU3MmM5MS8wLzMxMzAzMzJlMzEzNTM2MmUzOTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzAzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5xgMA0GCSqG SIb3DQEBCwUAA4IBAQBYQg/cKmtBun4fgm1Jh67FoMKJbvH27fC1AU9pEiUgF1ou 2L/z1lLMCPVTkVWmDBP3TkWJgKPBtTTU9wmx631Pe+9I/s8KaHmMnsFXUyvQuKCJ xAcEzsWvTLUaqi8CNhWwFZpUUUlYLCcaYvE936qZREtaAfixybeP0NPfLFN/1Vko LoqRB1EKCw7ru7V0+d2MtdRnu538xtXFq5E1P/0ixWv19TP5V0F+9M2evaXRdqMB s8XjQ7kUviqeMJBmZX0BIEFAjL0Byy92x+7igVeFW5aSVGj+hke6Fc5tOEq12wGS gdVokfv/EiGtE4yRN3UnqMiORk1ce5luUOZWa+HH -----END CERTIFICATE-----Generated at Sun Apr 6 06:02:56 2025 by rpki-client