$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3130332e3234352e3133382e302f32332d3233203d3e203435373235.roa File: 3130332e3234352e3133382e302f32332d3233203d3e203435373235.roa (raw, json) Hash identifier: gXSdvzH/obw2tBhIhIcWb1ceK7qyFmLN4iW37pSP6wI= Subject key identifier: F5:01:AE:58:57:41:82:07:E0:EC:23:38:38:69:24:42:58:47:4F:65 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 3DFEB0FF37CC3B4CECF2AA35FAD752F49EF31565 Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3130332e3234352e3133382e302f32332d3233203d3e203435373235.roa Signing time: Sun 06 Apr 2025 15:12:51 +0000 ROA not before: Sun 06 Apr 2025 15:07:51 +0000 ROA not after: Sun 05 Apr 2026 15:12:51 +0000 asID: 45725 IP address blocks: 103.245.138.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 16:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:fe:b0:ff:37:cc:3b:4c:ec:f2:aa:35:fa:d7:52:f4:9e:f3:15:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Apr 6 15:07:51 2025 GMT Not After : Apr 5 15:12:51 2026 GMT Subject: CN=F501AE5857418207E0EC23383869244258474F65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:bf:a0:0b:a5:bc:cf:57:ab:27:1d:e9:60:cf: 08:b9:b2:cb:ce:07:bb:b2:d8:b9:e8:fc:cd:8b:45: 87:cd:35:40:b6:cc:b2:5a:c6:e8:73:a6:57:fd:9f: 80:72:2a:11:02:60:fa:d9:7c:dc:e0:8c:ac:b9:0f: d6:3c:1d:43:0a:e4:a8:4d:29:11:b2:e8:9c:48:a6: 43:a3:44:5e:a0:ce:b7:24:30:77:58:68:3d:10:40: 20:1d:5f:32:0f:2b:1c:0b:82:95:01:a5:c1:b6:4b: 50:63:49:9a:ad:64:5d:45:16:1a:bb:7a:27:fd:8d: 32:e6:45:be:78:fc:c6:a7:49:4d:46:d6:25:d3:19: cc:40:be:9d:fb:75:e5:56:38:56:4f:04:38:5b:0c: d9:c2:d7:1d:06:de:48:a4:db:07:d7:0c:91:67:95: 53:f1:28:25:16:d0:15:7a:72:cb:25:19:74:e7:11: 97:f2:c6:4b:c1:e3:0a:eb:eb:91:98:9a:47:4f:56: ef:b6:d4:5d:80:a3:44:0d:5b:05:7e:c8:e3:a8:07: a9:9b:f9:53:c7:c5:ba:d7:42:06:fe:f3:93:c1:14: c6:34:30:06:b9:66:fe:dd:f7:f2:d3:bd:c7:f0:00: 81:a7:39:18:db:5c:e2:c1:58:cd:86:7f:f5:1a:f4: 87:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:01:AE:58:57:41:82:07:E0:EC:23:38:38:69:24:42:58:47:4F:65 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3130332e3234352e3133382e302f32332d3233203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.245.138.0/23 Signature Algorithm: sha256WithRSAEncryption cb:94:4f:5a:63:fa:40:f9:1c:a9:d8:6f:dd:2d:5d:90:63:0d: a2:a9:79:ab:8f:fa:6c:fb:59:ed:54:41:89:41:bc:98:9b:44: f7:1f:67:03:a0:49:09:aa:dd:19:b4:17:1e:c0:57:fe:9a:a7: df:92:fa:d6:a5:96:1b:da:f2:8d:ea:44:c2:e9:45:1c:44:c2: 52:13:83:85:43:a0:54:7a:6b:6a:c9:9e:1e:e8:0b:99:bc:0b: 37:8e:d4:24:15:a0:6a:28:81:3d:b9:3e:ea:eb:de:8a:73:9d: ec:5a:36:bb:99:f8:83:8c:26:be:76:9c:1e:f8:e0:06:d9:a0: e1:ba:52:9e:29:33:41:73:04:1e:67:ce:94:b0:f9:10:fc:88: 0f:34:71:90:e3:6f:04:d9:87:8a:44:59:75:7a:5c:ba:6d:04: d0:36:d4:12:d5:20:59:35:7f:f8:a7:1d:54:fd:63:76:dc:08: 69:ba:02:9c:2c:e7:a8:71:21:95:91:d2:b4:7f:74:46:16:0e: 9f:11:34:d9:a4:62:a0:08:e2:16:b7:61:5f:d0:87:fa:98:f6: fe:e9:4b:5e:75:8a:65:6d:04:92:87:4e:ff:20:6c:a3:32:52: 0b:7b:48:70:dc:03:86:28:e4:75:c9:4f:f6:f5:4b:53:dd:63: bd:9e:7c:5e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPf6w/zfMO0zs8qo1+tdS9J7zFWUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNTA0MDYxNTA3NTFaFw0yNjA0MDUxNTEyNTFaMDMxMTAvBgNV BAMTKEY1MDFBRTU4NTc0MTgyMDdFMEVDMjMzODM4NjkyNDQyNTg0NzRGNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuv6ALpbzPV6snHelgzwi5ssvO B7uy2Lno/M2LRYfNNUC2zLJaxuhzplf9n4ByKhECYPrZfNzgjKy5D9Y8HUMK5KhN KRGy6JxIpkOjRF6gzrckMHdYaD0QQCAdXzIPKxwLgpUBpcG2S1BjSZqtZF1FFhq7 eif9jTLmRb54/ManSU1G1iXTGcxAvp37deVWOFZPBDhbDNnC1x0G3kik2wfXDJFn lVPxKCUW0BV6csslGXTnEZfyxkvB4wrr65GYmkdPVu+21F2Ao0QNWwV+yOOoB6mb +VPHxbrXQgb+85PBFMY0MAa5Zv7d9/LTvcfwAIGnORjbXOLBWM2Gf/Ua9If1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9QGuWFdBggfg7CM4OGkkQlhHT2UwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMxMzAzMzJlMzIzNDM1MmUzMTMzMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNDM1MzczMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ/WKMA0GCSqG SIb3DQEBCwUAA4IBAQDLlE9aY/pA+Ryp2G/dLV2QYw2iqXmrj/ps+1ntVEGJQbyY m0T3H2cDoEkJqt0ZtBcewFf+mqffkvrWpZYb2vKN6kTC6UUcRMJSE4OFQ6BUemtq yZ4e6AuZvAs3jtQkFaBqKIE9uT7q696Kc53sWja7mfiDjCa+dpwe+OAG2aDhulKe KTNBcwQeZ86UsPkQ/IgPNHGQ428E2YeKRFl1ely6bQTQNtQS1SBZNX/4px1U/WN2 3AhpugKcLOeocSGVkdK0f3RGFg6fETTZpGKgCOIWt2Ff0If6mPb+6UtedYplbQSS h07/IGyjMlILe0hw3AOGKOR1yU/29UtT3WO9nnxe -----END CERTIFICATE-----Generated at Mon Apr 7 02:27:03 2025 by rpki-client