$ rpki-client -vvf repo-rpki.idnic.net/repo/60649c47-dfc3-4a20-b5b4-879675e5db92/0/3130332e3138342e3136372e302f32342d3234203d3e20313439363631.roa File: 3130332e3138342e3136372e302f32342d3234203d3e20313439363631.roa (raw, json) Hash identifier: cb90IgbeRY+ZdV0xSX9073GatqTysUS22puie2fiUX0= Subject key identifier: 19:24:2B:2B:52:5A:AB:4A:5D:6B:CC:22:2C:D9:41:0D:D0:52:37:2A Certificate issuer: /CN=A496844B5B43BD38E2F4FD6EBD252D2832E9AE81 Certificate serial: 21948B79DC19B61943B87D5BAD65D7923859FB43 Authority key identifier: A4:96:84:4B:5B:43:BD:38:E2:F4:FD:6E:BD:25:2D:28:32:E9:AE:81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A496844B5B43BD38E2F4FD6EBD252D2832E9AE81.cer Subject info access: rsync://repo-rpki.idnic.net/repo/60649c47-dfc3-4a20-b5b4-879675e5db92/0/3130332e3138342e3136372e302f32342d3234203d3e20313439363631.roa Signing time: Sat 22 Feb 2025 06:00:01 +0000 ROA not before: Sat 22 Feb 2025 05:55:01 +0000 ROA not after: Sat 21 Feb 2026 06:00:01 +0000 asID: 149661 IP address blocks: 103.184.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/60649c47-dfc3-4a20-b5b4-879675e5db92/0/A496844B5B43BD38E2F4FD6EBD252D2832E9AE81.crl rsync://repo-rpki.idnic.net/repo/60649c47-dfc3-4a20-b5b4-879675e5db92/0/A496844B5B43BD38E2F4FD6EBD252D2832E9AE81.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A496844B5B43BD38E2F4FD6EBD252D2832E9AE81.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 21:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:94:8b:79:dc:19:b6:19:43:b8:7d:5b:ad:65:d7:92:38:59:fb:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A496844B5B43BD38E2F4FD6EBD252D2832E9AE81 Validity Not Before: Feb 22 05:55:01 2025 GMT Not After : Feb 21 06:00:01 2026 GMT Subject: CN=19242B2B525AAB4A5D6BCC222CD9410DD052372A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:be:41:f5:3e:4e:d4:b8:ae:3f:38:ad:15:0f: 48:34:77:a7:fa:2a:15:43:38:b0:9b:69:7c:5d:8b: 97:9f:d1:29:c1:61:a0:fe:42:14:f3:d4:a2:7b:e0: c7:5c:55:13:f6:7e:58:f5:fe:98:e1:b2:3c:01:1f: 30:05:7b:33:14:c7:21:7b:4f:47:6b:71:42:4c:af: a7:d2:c6:2e:3d:8e:01:50:7e:ae:0b:60:af:03:65: 09:b7:58:da:fe:4d:28:29:ac:20:7e:0c:cc:15:10: 85:8b:11:68:01:ad:e1:68:84:c7:8a:50:66:4d:a9: b0:df:fa:80:52:3d:cd:98:97:04:f6:04:f5:d2:cf: 35:7e:7f:7b:49:c0:a2:35:84:3e:57:d4:e7:a4:c3: 15:b7:76:50:b6:7f:ba:d5:e5:ab:0e:9e:23:79:ba: af:40:26:0f:5e:e5:ea:d3:49:34:c9:a8:d9:94:5e: a8:dc:3b:bd:d7:08:93:9c:5a:43:8f:46:c5:10:67: 51:a6:1c:da:64:44:98:d1:74:4b:81:87:01:c8:1f: f5:87:ca:46:8b:24:8d:09:19:89:6b:f7:f9:d3:15: b1:22:7d:6d:cb:c7:9f:42:5b:08:88:c6:a4:19:3a: 53:a2:cb:8a:da:86:43:70:50:23:d0:67:4d:29:fd: 7d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:24:2B:2B:52:5A:AB:4A:5D:6B:CC:22:2C:D9:41:0D:D0:52:37:2A X509v3 Authority Key Identifier: keyid:A4:96:84:4B:5B:43:BD:38:E2:F4:FD:6E:BD:25:2D:28:32:E9:AE:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/60649c47-dfc3-4a20-b5b4-879675e5db92/0/A496844B5B43BD38E2F4FD6EBD252D2832E9AE81.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A496844B5B43BD38E2F4FD6EBD252D2832E9AE81.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/60649c47-dfc3-4a20-b5b4-879675e5db92/0/3130332e3138342e3136372e302f32342d3234203d3e20313439363631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.167.0/24 Signature Algorithm: sha256WithRSAEncryption 16:3f:85:6a:ce:f8:c0:7a:61:67:bc:57:01:f3:5a:5d:dd:75: f8:49:65:64:f9:19:e4:dd:24:4a:80:93:15:08:8a:7a:08:a1: b5:3c:b9:9a:31:fb:36:c5:cd:21:04:11:83:81:ff:ca:9d:fe: 3e:3c:aa:a0:7d:5c:ad:4d:85:3e:59:9a:84:b0:c1:da:11:ae: 74:da:65:6d:cc:86:1c:3f:3f:dd:4e:3b:89:90:bc:c0:b3:65: 9b:be:29:aa:57:fe:09:a7:b3:43:d0:c3:b0:40:b5:01:e7:6f: 90:04:e4:ac:08:a7:7e:68:dd:ea:7f:d8:3c:9b:3c:f3:63:aa: 08:9e:23:60:31:e1:4d:68:a6:35:ad:e8:f4:f7:5f:af:ff:a3: 0d:b1:89:6f:ec:e0:f2:fd:59:50:ed:dc:e8:80:0e:03:f3:c4: 56:77:49:6f:7a:be:2c:c0:1d:97:2e:a6:80:53:a1:f1:90:8d: 1b:3e:63:92:61:26:74:6b:02:78:ec:e6:e9:d4:34:65:2a:f2: 2f:f6:86:82:46:7d:11:36:7e:b7:b2:c3:df:08:09:3d:e5:ab: ac:36:15:98:16:63:55:fd:17:00:a9:ca:17:58:8f:b5:ea:95: 73:1b:82:6c:ee:92:34:30:c9:dd:dd:53:3b:53:c9:bc:a0:c5: f9:07:68:6f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIZSLedwZthlDuH1brWXXkjhZ+0MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTQ5Njg0NEI1QjQzQkQzOEUyRjRGRDZFQkQyNTJEMjgz MkU5QUU4MTAeFw0yNTAyMjIwNTU1MDFaFw0yNjAyMjEwNjAwMDFaMDMxMTAvBgNV BAMTKDE5MjQyQjJCNTI1QUFCNEE1RDZCQ0MyMjJDRDk0MTBERDA1MjM3MkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCvkH1Pk7UuK4/OK0VD0g0d6f6 KhVDOLCbaXxdi5ef0SnBYaD+QhTz1KJ74MdcVRP2flj1/pjhsjwBHzAFezMUxyF7 T0drcUJMr6fSxi49jgFQfq4LYK8DZQm3WNr+TSgprCB+DMwVEIWLEWgBreFohMeK UGZNqbDf+oBSPc2YlwT2BPXSzzV+f3tJwKI1hD5X1OekwxW3dlC2f7rV5asOniN5 uq9AJg9e5erTSTTJqNmUXqjcO73XCJOcWkOPRsUQZ1GmHNpkRJjRdEuBhwHIH/WH ykaLJI0JGYlr9/nTFbEifW3Lx59CWwiIxqQZOlOiy4rahkNwUCPQZ00p/X3zAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUGSQrK1Jaq0pda8wiLNlBDdBSNyowHwYDVR0j BBgwFoAUpJaES1tDvTji9P1uvSUtKDLproEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDY0OWM0Ny1kZmMzLTRhMjAtYjViNC04Nzk2NzVlNWRiOTIvMC9BNDk2ODQ0QjVC NDNCRDM4RTJGNEZENkVCRDI1MkQyODMyRTlBRTgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTQ5Njg0NEI1QjQzQkQzOEUyRjRGRDZFQkQyNTJEMjgzMkU5 QUU4MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwNjQ5YzQ3LWRmYzMtNGEyMC1i NWI0LTg3OTY3NWU1ZGI5Mi8wLzMxMzAzMzJlMzEzODM0MmUzMTM2MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNjM2MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnuKcwDQYJ KoZIhvcNAQELBQADggEBABY/hWrO+MB6YWe8VwHzWl3ddfhJZWT5GeTdJEqAkxUI inoIobU8uZox+zbFzSEEEYOB/8qd/j48qqB9XK1NhT5ZmoSwwdoRrnTaZW3Mhhw/ P91OO4mQvMCzZZu+KapX/gmns0PQw7BAtQHnb5AE5KwIp35o3ep/2DybPPNjqgie I2Ax4U1opjWt6PT3X6//ow2xiW/s4PL9WVDt3OiADgPzxFZ3SW96vizAHZcupoBT ofGQjRs+Y5JhJnRrAnjs5unUNGUq8i/2hoJGfRE2freyw98ICT3lq6w2FZgWY1X9 FwCpyhdYj7XqlXMbgmzukjQwyd3dUztTybygxfkHaG8= -----END CERTIFICATE-----Generated at Sun Apr 6 13:29:17 2025 by rpki-client