$ rpki-client -vvf repo-rpki.idnic.net/repo/6cdfd8eb-8a40-4e8b-a9e0-9278cd04fa43/0/3130332e31352e3235312e302f32342d3234203d3e20313331373337.roa File: 3130332e31352e3235312e302f32342d3234203d3e20313331373337.roa (raw, json) Hash identifier: V0ZXW9Pm5K1NAR+oY65IgSVvs9ijAutRVHZNMRk6vzc= Subject key identifier: 9B:CB:F3:5F:54:96:0A:12:CD:9B:16:A1:9D:62:82:DF:60:85:D0:FD Certificate issuer: /CN=D3917D15F87332C50BFC1165A882EFEA7D8B6162 Certificate serial: 33EFDA08B0E0643C00AD2B4E433495D52EA5C632 Authority key identifier: D3:91:7D:15:F8:73:32:C5:0B:FC:11:65:A8:82:EF:EA:7D:8B:61:62 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3917D15F87332C50BFC1165A882EFEA7D8B6162.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6cdfd8eb-8a40-4e8b-a9e0-9278cd04fa43/0/3130332e31352e3235312e302f32342d3234203d3e20313331373337.roa Signing time: Tue 28 Jan 2025 06:00:44 +0000 ROA not before: Tue 28 Jan 2025 05:55:44 +0000 ROA not after: Tue 27 Jan 2026 06:00:44 +0000 asID: 131737 IP address blocks: 103.15.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6cdfd8eb-8a40-4e8b-a9e0-9278cd04fa43/0/D3917D15F87332C50BFC1165A882EFEA7D8B6162.crl rsync://repo-rpki.idnic.net/repo/6cdfd8eb-8a40-4e8b-a9e0-9278cd04fa43/0/D3917D15F87332C50BFC1165A882EFEA7D8B6162.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3917D15F87332C50BFC1165A882EFEA7D8B6162.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Feb 2025 04:25:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:ef:da:08:b0:e0:64:3c:00:ad:2b:4e:43:34:95:d5:2e:a5:c6:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3917D15F87332C50BFC1165A882EFEA7D8B6162 Validity Not Before: Jan 28 05:55:44 2025 GMT Not After : Jan 27 06:00:44 2026 GMT Subject: CN=9BCBF35F54960A12CD9B16A19D6282DF6085D0FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:fe:74:7f:cb:8f:d0:e1:77:f9:91:9d:d6:27: 83:32:47:46:b9:f0:8e:30:50:1d:5b:f1:16:56:ca: ac:7b:16:f3:ef:21:f3:8a:50:19:23:3d:70:8e:6d: 82:c1:4a:2e:82:75:82:0e:d2:9e:26:39:80:24:32: f0:f6:86:ca:05:53:e7:52:05:27:87:68:39:96:86: ba:14:b6:63:f0:40:b1:64:69:ba:6f:cd:6e:0e:ff: ca:d1:5f:c6:15:25:29:4b:f0:b4:7e:f1:a5:ad:cd: ac:f7:09:ff:6e:87:ce:63:d3:97:fe:6a:c5:ab:be: 35:b3:4b:4d:5b:ef:27:2a:03:2a:16:c8:4c:f3:c6: b5:88:43:f8:75:7b:ea:48:15:37:f5:56:0e:22:f8: ac:75:85:1c:ab:7f:c2:88:b4:4c:eb:ec:d2:dc:8c: 34:cd:05:12:57:7c:9f:fa:94:b4:b5:12:df:22:fe: 13:27:a3:3d:38:4e:de:54:90:0c:9e:5d:d8:f8:75: 59:b3:91:91:08:34:6b:54:53:e3:09:cd:15:54:cf: 84:3b:90:86:80:6f:4e:84:9f:27:34:a0:c0:86:7d: 4c:c3:55:85:29:2e:d9:ec:8f:e0:78:87:95:4e:88: 84:5b:80:43:a8:6f:01:5a:0d:e7:7b:f3:a5:bc:a3: 4a:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:CB:F3:5F:54:96:0A:12:CD:9B:16:A1:9D:62:82:DF:60:85:D0:FD X509v3 Authority Key Identifier: keyid:D3:91:7D:15:F8:73:32:C5:0B:FC:11:65:A8:82:EF:EA:7D:8B:61:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6cdfd8eb-8a40-4e8b-a9e0-9278cd04fa43/0/D3917D15F87332C50BFC1165A882EFEA7D8B6162.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3917D15F87332C50BFC1165A882EFEA7D8B6162.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6cdfd8eb-8a40-4e8b-a9e0-9278cd04fa43/0/3130332e31352e3235312e302f32342d3234203d3e20313331373337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.15.251.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:c0:ae:52:33:c9:8a:f6:04:d5:87:81:82:8d:05:9a:21:be: 4e:2b:32:e9:66:3d:15:73:6f:35:3d:f9:e6:0f:c9:56:29:bf: d0:5e:42:e7:90:49:af:41:7d:1f:34:4e:0f:93:0b:08:87:3c: c7:62:c6:a1:fa:7e:85:72:ca:e2:cb:5c:0b:8f:2f:28:6c:d6: 6a:f4:24:41:f0:3f:d8:d8:e5:d8:17:2c:df:18:96:05:15:43: 46:7b:16:28:5b:d0:63:eb:08:58:43:64:c2:c9:5a:20:cb:07: 38:22:3e:32:e3:e8:a3:73:7a:f1:96:4d:b9:e2:3e:fa:f5:ef: be:70:03:32:e4:d1:14:69:b9:2a:31:77:fc:93:5c:fd:9e:82: 71:ba:2c:04:63:2b:f8:3e:12:7a:17:88:f1:3a:d4:42:50:1c: 4f:23:e3:ab:5e:0f:a8:6d:1e:20:15:77:bf:8c:ab:62:ab:63: cb:16:90:f8:fc:c6:fd:01:6e:3a:91:95:c1:c0:de:d4:41:ed: ea:5f:ea:6c:72:34:d0:e8:12:c5:6e:7c:ba:e9:58:af:ba:45: e8:cb:50:87:c2:b7:a8:77:d2:74:2c:a6:fe:0a:04:4c:57:f1: 9e:4c:d8:ef:5f:3b:b0:0e:99:57:03:dd:1f:79:04:3f:6c:be: 3f:ff:05:3f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUM+/aCLDgZDwArStOQzSV1S6lxjIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM5MTdEMTVGODczMzJDNTBCRkMxMTY1QTg4MkVGRUE3 RDhCNjE2MjAeFw0yNTAxMjgwNTU1NDRaFw0yNjAxMjcwNjAwNDRaMDMxMTAvBgNV BAMTKDlCQ0JGMzVGNTQ5NjBBMTJDRDlCMTZBMTlENjI4MkRGNjA4NUQwRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm/nR/y4/Q4Xf5kZ3WJ4MyR0a5 8I4wUB1b8RZWyqx7FvPvIfOKUBkjPXCObYLBSi6CdYIO0p4mOYAkMvD2hsoFU+dS BSeHaDmWhroUtmPwQLFkabpvzW4O/8rRX8YVJSlL8LR+8aWtzaz3Cf9uh85j05f+ asWrvjWzS01b7ycqAyoWyEzzxrWIQ/h1e+pIFTf1Vg4i+Kx1hRyrf8KItEzr7NLc jDTNBRJXfJ/6lLS1Et8i/hMnoz04Tt5UkAyeXdj4dVmzkZEINGtUU+MJzRVUz4Q7 kIaAb06Enyc0oMCGfUzDVYUpLtnsj+B4h5VOiIRbgEOobwFaDed786W8o0r5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUm8vzX1SWChLNmxahnWKC32CF0P0wHwYDVR0j BBgwFoAU05F9FfhzMsUL/BFlqILv6n2LYWIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 Y2RmZDhlYi04YTQwLTRlOGItYTllMC05Mjc4Y2QwNGZhNDMvMC9EMzkxN0QxNUY4 NzMzMkM1MEJGQzExNjVBODgyRUZFQTdEOEI2MTYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDM5MTdEMTVGODczMzJDNTBCRkMxMTY1QTg4MkVGRUE3RDhC NjE2Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjZGZkOGViLThhNDAtNGU4Yi1h OWUwLTkyNzhjZDA0ZmE0My8wLzMxMzAzMzJlMzEzNTJlMzIzNTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZw/7MA0GCSqG SIb3DQEBCwUAA4IBAQAuwK5SM8mK9gTVh4GCjQWaIb5OKzLpZj0Vc281PfnmD8lW Kb/QXkLnkEmvQX0fNE4PkwsIhzzHYsah+n6Fcsriy1wLjy8obNZq9CRB8D/Y2OXY FyzfGJYFFUNGexYoW9Bj6whYQ2TCyVogywc4Ij4y4+ijc3rxlk254j769e++cAMy 5NEUabkqMXf8k1z9noJxuiwEYyv4PhJ6F4jxOtRCUBxPI+OrXg+obR4gFXe/jKti q2PLFpD4/Mb9AW46kZXBwN7UQe3qX+pscjTQ6BLFbny66VivukXoy1CHwreod9J0 LKb+CgRMV/GeTNjvXzuwDplXA90feQQ/bL4//wU/ -----END CERTIFICATE-----Generated at Fri Feb 21 11:11:35 2025 by rpki-client