$ rpki-client -vvf repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/3130332e3230392e312e302f32342d3234203d3e20313334363530.roa File: 3130332e3230392e312e302f32342d3234203d3e20313334363530.roa (raw, json) Hash identifier: giWrIN8j+wY4pRI/HaMvfZbbTtdidSjlnNRfZ7I7NOU= Subject key identifier: 2F:0E:31:18:8D:9A:4A:B0:AB:59:CE:77:2E:8F:9C:EC:1E:89:08:0C Certificate issuer: /CN=20ABF702057AD5F01207F6C578160654EB44C914 Certificate serial: 275703910C1C2E527CD3179641C734846A185E8E Authority key identifier: 20:AB:F7:02:05:7A:D5:F0:12:07:F6:C5:78:16:06:54:EB:44:C9:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20ABF702057AD5F01207F6C578160654EB44C914.cer Subject info access: rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/3130332e3230392e312e302f32342d3234203d3e20313334363530.roa Signing time: Tue 25 Mar 2025 06:00:02 +0000 ROA not before: Tue 25 Mar 2025 05:55:02 +0000 ROA not after: Tue 24 Mar 2026 06:00:02 +0000 asID: 134650 IP address blocks: 103.209.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.crl rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20ABF702057AD5F01207F6C578160654EB44C914.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 08:46:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:57:03:91:0c:1c:2e:52:7c:d3:17:96:41:c7:34:84:6a:18:5e:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20ABF702057AD5F01207F6C578160654EB44C914 Validity Not Before: Mar 25 05:55:02 2025 GMT Not After : Mar 24 06:00:02 2026 GMT Subject: CN=2F0E31188D9A4AB0AB59CE772E8F9CEC1E89080C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:ca:25:b1:0f:de:44:e6:80:64:0f:78:03:55: 3c:fd:4e:f2:d9:f7:c9:ed:06:65:cb:e9:43:f8:f0: 11:cb:d1:c9:ed:b2:a5:82:da:f7:c5:07:05:0b:52: 46:cb:16:19:4a:5e:02:8b:1a:1f:c4:44:7a:95:e2: 99:54:d6:e3:47:28:4c:04:04:74:c6:91:72:d3:57: 38:5e:e2:2d:81:2a:1e:57:4a:b1:c7:0c:fc:db:ad: db:de:d8:e4:cf:f7:5f:a7:0d:d6:d3:06:40:a9:2b: 03:98:82:6d:86:9d:c5:f1:6b:4c:1a:e0:11:b7:0a: b1:69:4c:66:34:d2:5a:98:46:53:3d:9d:66:0f:9d: d3:29:e6:d8:e1:14:05:a7:e3:83:b9:b5:ec:ba:73: e3:5d:9a:a4:95:e5:ad:e7:a7:e2:9e:9a:e3:9f:ed: 57:c6:86:94:48:9c:6f:b4:b5:b4:39:55:f5:f9:09: ac:01:17:86:d3:04:cc:6b:e8:85:72:1e:77:0f:d2: b9:22:6e:5b:e0:fc:28:17:df:69:f5:b2:22:d3:49: 64:50:df:a9:0f:f2:33:4b:98:b3:32:58:78:3f:30: 96:54:d8:26:c1:11:3e:7c:94:92:83:06:df:05:20: f9:ac:d2:72:79:d1:33:8c:0b:7d:5e:c5:58:db:1a: e0:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:0E:31:18:8D:9A:4A:B0:AB:59:CE:77:2E:8F:9C:EC:1E:89:08:0C X509v3 Authority Key Identifier: keyid:20:AB:F7:02:05:7A:D5:F0:12:07:F6:C5:78:16:06:54:EB:44:C9:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20ABF702057AD5F01207F6C578160654EB44C914.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/3130332e3230392e312e302f32342d3234203d3e20313334363530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.209.1.0/24 Signature Algorithm: sha256WithRSAEncryption 85:40:00:b7:c7:87:7a:51:53:23:a9:9c:7a:a3:cf:1e:79:74: 44:17:b3:97:1f:4b:5a:1d:89:c9:17:7f:88:69:f7:64:d6:59: 16:04:69:9e:4d:b9:c8:9c:b0:1e:18:32:c6:e9:f4:df:4b:5e: 0d:9d:12:79:48:82:d8:88:a5:ab:74:82:87:90:13:ed:67:fa: 11:ce:82:3f:c8:15:4f:75:fc:0d:6e:64:ff:15:7f:78:ac:82: ab:d0:31:f9:f0:4f:2b:52:aa:33:42:95:f7:bb:04:d6:e5:92: 9c:59:43:92:4a:30:c4:cf:43:fb:dc:cc:c1:21:5f:f9:4d:7b: 35:19:66:38:81:63:4e:f9:98:a7:35:8b:50:f4:1b:c4:72:0e: 7e:63:92:2a:97:ce:86:47:92:2b:3b:cc:21:9d:b0:78:a9:50: 19:90:e9:27:11:5e:a3:7b:c6:6e:01:12:a2:c9:e6:c9:93:1e: 24:47:6b:40:ea:b0:57:12:4e:a6:de:19:9f:ec:14:98:96:38: 5b:7f:f0:b2:c1:60:d6:b9:52:d9:91:41:42:2d:39:39:cb:41: 76:23:73:10:6e:45:5e:1f:25:6b:b5:bb:cc:d9:55:a2:37:05: 25:32:a2:f6:20:2f:16:37:08:d0:93:40:a7:7c:28:01:b8:91: 98:b7:43:13 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJ1cDkQwcLlJ80xeWQcc0hGoYXo4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBBQkY3MDIwNTdBRDVGMDEyMDdGNkM1NzgxNjA2NTRF QjQ0QzkxNDAeFw0yNTAzMjUwNTU1MDJaFw0yNjAzMjQwNjAwMDJaMDMxMTAvBgNV BAMTKDJGMEUzMTE4OEQ5QTRBQjBBQjU5Q0U3NzJFOEY5Q0VDMUU4OTA4MEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYyiWxD95E5oBkD3gDVTz9TvLZ 98ntBmXL6UP48BHL0cntsqWC2vfFBwULUkbLFhlKXgKLGh/ERHqV4plU1uNHKEwE BHTGkXLTVzhe4i2BKh5XSrHHDPzbrdve2OTP91+nDdbTBkCpKwOYgm2GncXxa0wa 4BG3CrFpTGY00lqYRlM9nWYPndMp5tjhFAWn44O5tey6c+NdmqSV5a3np+KemuOf 7VfGhpRInG+0tbQ5VfX5CawBF4bTBMxr6IVyHncP0rkiblvg/CgX32n1siLTSWRQ 36kP8jNLmLMyWHg/MJZU2CbBET58lJKDBt8FIPms0nJ50TOMC31exVjbGuD3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULw4xGI2aSrCrWc53Lo+c7B6JCAwwHwYDVR0j BBgwFoAUIKv3AgV61fASB/bFeBYGVOtEyRQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 N2RiMjNiNy05MTU5LTQ2YzctODg1My0wNjY1NGFlNDdhZWQvMC8yMEFCRjcwMjA1 N0FENUYwMTIwN0Y2QzU3ODE2MDY1NEVCNDRDOTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBBQkY3MDIwNTdBRDVGMDEyMDdGNkM1NzgxNjA2NTRFQjQ0 QzkxNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY3ZGIyM2I3LTkxNTktNDZjNy04 ODUzLTA2NjU0YWU0N2FlZC8wLzMxMzAzMzJlMzIzMDM5MmUzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNDM2MzUzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfRATANBgkqhkiG 9w0BAQsFAAOCAQEAhUAAt8eHelFTI6mceqPPHnl0RBezlx9LWh2JyRd/iGn3ZNZZ FgRpnk25yJywHhgyxun030teDZ0SeUiC2Iilq3SCh5AT7Wf6Ec6CP8gVT3X8DW5k /xV/eKyCq9Ax+fBPK1KqM0KV97sE1uWSnFlDkkowxM9D+9zMwSFf+U17NRlmOIFj TvmYpzWLUPQbxHIOfmOSKpfOhkeSKzvMIZ2weKlQGZDpJxFeo3vGbgESosnmyZMe JEdrQOqwVxJOpt4Zn+wUmJY4W3/wssFg1rlS2ZFBQi05OctBdiNzEG5FXh8la7W7 zNlVojcFJTKi9iAvFjcI0JNAp3woAbiRmLdDEw== -----END CERTIFICATE-----Generated at Sun Apr 6 19:31:52 2025 by rpki-client