$ rpki-client -vvf repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/3130332e3134372e3235342e302f32342d3234203d3e20313339393736.roa File: 3130332e3134372e3235342e302f32342d3234203d3e20313339393736.roa (raw, json) Hash identifier: dOv5VWfsUQMOSsP2UD/jXSQ8dYcxj2jFJJe5ag4euFo= Subject key identifier: 19:A4:6F:10:A2:0A:B0:D1:94:4F:E5:D6:BB:1A:A4:9D:65:76:DF:4A Certificate issuer: /CN=A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D Certificate serial: 210F570D2BB6B9012D37EBFDDF243AC1E91BF892 Authority key identifier: A6:C7:B1:CA:0B:90:88:55:EE:58:F1:99:1C:CC:95:B5:7C:4C:8E:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/3130332e3134372e3235342e302f32342d3234203d3e20313339393736.roa Signing time: Wed 01 Jan 2025 01:00:01 +0000 ROA not before: Wed 01 Jan 2025 00:55:01 +0000 ROA not after: Wed 31 Dec 2025 01:00:01 +0000 asID: 139976 IP address blocks: 103.147.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.crl rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:35:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:0f:57:0d:2b:b6:b9:01:2d:37:eb:fd:df:24:3a:c1:e9:1b:f8:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D Validity Not Before: Jan 1 00:55:01 2025 GMT Not After : Dec 31 01:00:01 2025 GMT Subject: CN=19A46F10A20AB0D1944FE5D6BB1AA49D6576DF4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:79:b3:bf:da:2e:eb:c2:a0:4d:ab:4d:5c:04: 10:3b:88:37:86:44:de:ce:bc:f9:0a:55:be:40:17: b0:f4:d7:74:c1:3e:00:3d:c8:c0:f5:0b:eb:ed:5b: 15:25:8a:38:47:76:10:f3:5b:e0:e9:fb:a8:1d:80: 06:47:0a:29:26:36:06:48:fa:0d:58:7d:6e:c4:fa: 0f:99:2f:ce:d0:1f:44:bb:b6:1c:59:ed:d3:c7:cd: af:bc:e7:0e:99:36:10:b3:63:b6:13:3c:2a:6c:8f: 99:f2:6a:2f:5f:fe:a7:4a:b3:08:67:9a:e0:ce:83: 0a:bf:c6:b6:66:7a:c7:2f:78:b9:a5:af:39:eb:45: be:ea:27:be:c9:96:f5:4a:88:d5:77:20:f6:e2:07: 5a:c2:f1:1d:d3:0a:fe:2c:84:7e:c8:0a:75:dc:47: 71:f4:0c:35:c9:17:eb:9d:52:1e:1a:f6:d0:be:59: 7d:82:33:3e:3f:9b:f2:cb:95:ac:e6:e2:fd:73:09: 9a:d9:a1:d5:1a:be:72:f6:56:9c:a8:8c:b0:47:18: 2f:16:e5:ed:10:58:82:51:ca:61:20:1d:2d:61:72: ca:32:b4:bd:37:42:99:a0:ee:e8:55:5f:7c:9d:ce: 09:46:42:1f:49:e1:9f:f1:1a:f1:a9:d7:ec:fb:ac: 14:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:A4:6F:10:A2:0A:B0:D1:94:4F:E5:D6:BB:1A:A4:9D:65:76:DF:4A X509v3 Authority Key Identifier: keyid:A6:C7:B1:CA:0B:90:88:55:EE:58:F1:99:1C:CC:95:B5:7C:4C:8E:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/3130332e3134372e3235342e302f32342d3234203d3e20313339393736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.254.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:d5:bb:22:db:13:d2:a3:a6:3a:17:93:67:57:24:c2:68:d9: b4:e8:57:19:57:78:d3:48:a6:c7:f5:ba:63:92:5e:fb:2c:8c: 3a:ea:c9:53:51:ea:00:fb:dc:8b:4d:be:71:a2:38:d7:27:6d: 47:8e:46:6d:c0:9a:da:cc:62:f4:20:bf:56:e1:a9:be:d5:dd: e7:1d:d0:f2:69:17:27:91:8d:d8:6b:15:71:a1:c4:f0:3b:ab: 76:b4:7a:21:fc:a2:7a:77:48:e5:52:00:b3:5f:ad:8f:f5:fe: 24:11:31:46:28:12:3c:aa:1d:80:c2:b8:46:dc:58:b7:6f:02: 1a:1a:5e:04:77:5e:ce:1d:2e:b4:d8:fc:75:ac:fe:e4:1c:c4: 0c:b8:d4:0b:56:c7:95:51:6f:b1:e9:4c:ce:ec:2e:8f:88:68: 33:95:83:46:f7:13:2a:20:8d:94:95:be:57:8d:b2:b0:eb:67: 03:79:73:ba:38:2b:cd:89:35:a5:68:fb:81:c9:5f:ca:a1:9d: 12:33:c9:60:35:12:a3:af:f5:51:3b:76:a9:94:2b:cc:91:a2: 13:9d:44:c7:b5:6b:17:a2:cf:5d:e6:3e:07:7f:9c:f2:9b:e8: 4b:31:52:7c:6b:3d:50:bb:9a:11:dc:16:56:4c:b4:8f:02:aa: 3d:f0:68:44 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIQ9XDSu2uQEtN+v93yQ6wekb+JIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTZDN0IxQ0EwQjkwODg1NUVFNThGMTk5MUNDQzk1QjU3 QzRDOEUwRDAeFw0yNTAxMDEwMDU1MDFaFw0yNTEyMzEwMTAwMDFaMDMxMTAvBgNV BAMTKDE5QTQ2RjEwQTIwQUIwRDE5NDRGRTVENkJCMUFBNDlENjU3NkRGNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcebO/2i7rwqBNq01cBBA7iDeG RN7OvPkKVb5AF7D013TBPgA9yMD1C+vtWxUlijhHdhDzW+Dp+6gdgAZHCikmNgZI +g1YfW7E+g+ZL87QH0S7thxZ7dPHza+85w6ZNhCzY7YTPCpsj5nyai9f/qdKswhn muDOgwq/xrZmescveLmlrznrRb7qJ77JlvVKiNV3IPbiB1rC8R3TCv4shH7ICnXc R3H0DDXJF+udUh4a9tC+WX2CMz4/m/LLlazm4v1zCZrZodUavnL2VpyojLBHGC8W 5e0QWIJRymEgHS1hcsoytL03Qpmg7uhVX3ydzglGQh9J4Z/xGvGp1+z7rBTPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUGaRvEKIKsNGUT+XWuxqknWV230owHwYDVR0j BBgwFoAUpsexyguQiFXuWPGZHMyVtXxMjg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MGU0NzUwZS00MzkzLTQzZWMtOWFiNS1kMjQ3YmJjMDdkODYvMC9BNkM3QjFDQTBC OTA4ODU1RUU1OEYxOTkxQ0NDOTVCNTdDNEM4RTBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTZDN0IxQ0EwQjkwODg1NUVFNThGMTk5MUNDQzk1QjU3QzRD OEUwRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwZTQ3NTBlLTQzOTMtNDNlYy05 YWI1LWQyNDdiYmMwN2Q4Ni8wLzMxMzAzMzJlMzEzNDM3MmUzMjM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM3MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnk/4wDQYJ KoZIhvcNAQELBQADggEBAC/VuyLbE9KjpjoXk2dXJMJo2bToVxlXeNNIpsf1umOS XvssjDrqyVNR6gD73ItNvnGiONcnbUeORm3AmtrMYvQgv1bhqb7V3ecd0PJpFyeR jdhrFXGhxPA7q3a0eiH8onp3SOVSALNfrY/1/iQRMUYoEjyqHYDCuEbcWLdvAhoa XgR3Xs4dLrTY/HWs/uQcxAy41AtWx5VRb7HpTM7sLo+IaDOVg0b3EyogjZSVvleN srDrZwN5c7o4K82JNaVo+4HJX8qhnRIzyWA1EqOv9VE7dqmUK8yRohOdRMe1axei z13mPgd/nPKb6EsxUnxrPVC7mhHcFlZMtI8Cqj3waEQ= -----END CERTIFICATE-----Generated at Sun Apr 6 07:46:37 2025 by rpki-client