$ rpki-client -vvf repo-rpki.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/3130332e3136362e3136302e302f32342d3234203d3e20313431393532.roa File: 3130332e3136362e3136302e302f32342d3234203d3e20313431393532.roa (raw, json) Hash identifier: 3M+qehQhPJtRx+AWVv45lLS8rU8qsKaeaYio/75TNPk= Subject key identifier: 71:6A:85:BE:6B:86:ED:3F:17:67:DB:86:5D:50:DF:B7:A5:43:8A:B1 Certificate issuer: /CN=940E05E54E6B685EFBC6114D1E913804318364AB Certificate serial: 674867A4641B2889C7FFEDE0D3D1AE5878487A74 Authority key identifier: 94:0E:05:E5:4E:6B:68:5E:FB:C6:11:4D:1E:91:38:04:31:83:64:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/940E05E54E6B685EFBC6114D1E913804318364AB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/3130332e3136362e3136302e302f32342d3234203d3e20313431393532.roa Signing time: Thu 16 Jan 2025 11:00:02 +0000 ROA not before: Thu 16 Jan 2025 10:55:02 +0000 ROA not after: Thu 15 Jan 2026 11:00:02 +0000 asID: 141952 IP address blocks: 103.166.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/940E05E54E6B685EFBC6114D1E913804318364AB.crl rsync://repo-rpki.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/940E05E54E6B685EFBC6114D1E913804318364AB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/940E05E54E6B685EFBC6114D1E913804318364AB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 23:46:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:48:67:a4:64:1b:28:89:c7:ff:ed:e0:d3:d1:ae:58:78:48:7a:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=940E05E54E6B685EFBC6114D1E913804318364AB Validity Not Before: Jan 16 10:55:02 2025 GMT Not After : Jan 15 11:00:02 2026 GMT Subject: CN=716A85BE6B86ED3F1767DB865D50DFB7A5438AB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:81:82:d5:98:bf:5d:5e:c6:6c:65:db:bc:20: 05:18:f4:30:3f:a0:d3:30:25:a1:63:dc:08:2c:d3: 2d:97:01:78:b3:e6:c9:92:9d:2a:5a:e1:c2:39:c4: 07:89:e1:0f:fc:45:e6:b8:4d:34:dd:d6:0b:cc:b6: 7d:fe:a0:56:82:7e:e0:fd:98:bf:6a:9b:ed:34:f9: 49:b9:3e:36:fd:37:6e:60:c1:75:45:23:8b:c0:e8: 2a:2a:4f:76:64:dd:9f:47:e4:35:1b:dc:e7:e6:31: c3:71:d1:d0:78:12:8a:47:b3:1c:f7:73:d2:ed:be: 47:d3:f5:82:9b:ae:fd:6a:83:2a:34:ad:2c:c9:83: 27:f4:51:3a:a7:0e:72:a9:e5:37:fd:6b:33:34:8b: af:45:f1:cb:0d:1f:90:31:fd:b5:8c:fa:68:f2:c4: 0c:2f:f8:86:2c:d4:15:a5:5e:77:29:94:86:6a:66: c6:a1:33:19:26:c0:d0:d4:86:d0:3b:b1:76:e8:06: 8f:90:83:26:89:11:9e:5f:32:e0:7e:c4:cf:83:9c: 96:3f:13:c0:61:b6:c5:25:c0:97:23:4c:e1:cb:a3: b7:00:f5:96:4c:c6:0f:06:cf:18:17:5c:2b:9e:5d: 17:ab:72:13:6d:f7:60:14:19:3c:eb:1b:1b:14:36: a2:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:6A:85:BE:6B:86:ED:3F:17:67:DB:86:5D:50:DF:B7:A5:43:8A:B1 X509v3 Authority Key Identifier: keyid:94:0E:05:E5:4E:6B:68:5E:FB:C6:11:4D:1E:91:38:04:31:83:64:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/940E05E54E6B685EFBC6114D1E913804318364AB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/940E05E54E6B685EFBC6114D1E913804318364AB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/3130332e3136362e3136302e302f32342d3234203d3e20313431393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.160.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:54:45:4d:9f:7e:15:f9:c1:5e:85:62:a6:13:26:4a:44:85: 10:c3:aa:43:bb:7b:d8:6c:70:fc:e5:4f:cd:f1:f0:83:61:39: 1c:73:8b:21:44:63:59:85:26:31:23:4a:92:85:50:1e:12:d2: 89:90:b3:4c:bf:c8:90:38:91:c7:67:4c:d5:62:4e:d0:fa:35: 08:42:77:d4:60:2c:17:09:1b:f5:8f:b3:f1:0c:84:75:9a:ed: cd:bd:22:5f:56:c2:20:94:22:77:5c:c9:f2:9a:2a:cb:ad:15: 83:7f:b7:ad:00:84:63:ab:1e:a0:20:05:57:9e:5b:4f:91:43: a9:c8:08:73:26:6c:34:c8:53:1d:91:a9:34:4f:d4:c7:bb:fc: 46:02:76:9c:79:b2:74:82:c6:35:3b:af:8e:95:2a:78:18:81: e0:61:e3:67:f3:47:a5:f1:a4:4b:3f:13:ca:a2:80:7b:2d:8c: e1:4c:7d:68:74:8e:24:db:bd:98:d4:3e:7a:81:6f:cd:73:94: 29:79:2e:ee:ad:31:b2:d5:b1:ca:3a:1e:8e:83:17:6f:6a:ba: 3d:56:9d:4b:7f:4f:7f:4e:fd:dd:06:c3:99:4c:32:e5:2a:11: 52:e1:43:7a:b5:3d:a5:a8:e6:73:4c:9b:66:25:cf:80:0d:8a: 7a:9a:25:64 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZ0hnpGQbKInH/+3g09GuWHhIenQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTQwRTA1RTU0RTZCNjg1RUZCQzYxMTREMUU5MTM4MDQz MTgzNjRBQjAeFw0yNTAxMTYxMDU1MDJaFw0yNjAxMTUxMTAwMDJaMDMxMTAvBgNV BAMTKDcxNkE4NUJFNkI4NkVEM0YxNzY3REI4NjVENTBERkI3QTU0MzhBQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2gYLVmL9dXsZsZdu8IAUY9DA/ oNMwJaFj3Ags0y2XAXiz5smSnSpa4cI5xAeJ4Q/8Rea4TTTd1gvMtn3+oFaCfuD9 mL9qm+00+Um5Pjb9N25gwXVFI4vA6CoqT3Zk3Z9H5DUb3OfmMcNx0dB4EopHsxz3 c9LtvkfT9YKbrv1qgyo0rSzJgyf0UTqnDnKp5Tf9azM0i69F8csNH5Ax/bWM+mjy xAwv+IYs1BWlXncplIZqZsahMxkmwNDUhtA7sXboBo+QgyaJEZ5fMuB+xM+DnJY/ E8BhtsUlwJcjTOHLo7cA9ZZMxg8GzxgXXCueXRerchNt92AUGTzrGxsUNqJPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUcWqFvmuG7T8XZ9uGXVDft6VDirEwHwYDVR0j BBgwFoAUlA4F5U5raF77xhFNHpE4BDGDZKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YjIwNDFmMS00Y2U2LTQ5YjQtODNhNS0zMTVmMjBlNGUyYzMvMC85NDBFMDVFNTRF NkI2ODVFRkJDNjExNEQxRTkxMzgwNDMxODM2NEFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTQwRTA1RTU0RTZCNjg1RUZCQzYxMTREMUU5MTM4MDQzMTgz NjRBQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZiMjA0MWYxLTRjZTYtNDliNC04 M2E1LTMxNWYyMGU0ZTJjMy8wLzMxMzAzMzJlMzEzNjM2MmUzMTM2MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpqAwDQYJ KoZIhvcNAQELBQADggEBABtURU2ffhX5wV6FYqYTJkpEhRDDqkO7e9hscPzlT83x 8INhORxziyFEY1mFJjEjSpKFUB4S0omQs0y/yJA4kcdnTNViTtD6NQhCd9RgLBcJ G/WPs/EMhHWa7c29Il9WwiCUIndcyfKaKsutFYN/t60AhGOrHqAgBVeeW0+RQ6nI CHMmbDTIUx2RqTRP1Me7/EYCdpx5snSCxjU7r46VKngYgeBh42fzR6XxpEs/E8qi gHstjOFMfWh0jiTbvZjUPnqBb81zlCl5Lu6tMbLVsco6Ho6DF29quj1WnUt/T39O /d0Gw5lMMuUqEVLhQ3q1PaWo5nNMm2Ylz4ANinqaJWQ= -----END CERTIFICATE-----Generated at Mon Apr 7 01:10:44 2025 by rpki-client