$ rpki-client -vvf repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/3130332e32382e31322e302f32332d3234203d3e203538343034.roa File: 3130332e32382e31322e302f32332d3234203d3e203538343034.roa (raw, json) Hash identifier: IQxqj9PY3nbC6wwPV82C6ExLe7/jv0UMpi+DEeQSqxQ= Subject key identifier: A5:F1:F8:A1:18:EC:1D:05:F7:72:C1:AE:58:0C:BC:A7:AD:22:BF:3E Certificate issuer: /CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Certificate serial: 0B00365B8C0E3371AFCD5A28D6CB4F952F051D66 Authority key identifier: C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/3130332e32382e31322e302f32332d3234203d3e203538343034.roa Signing time: Fri 28 Mar 2025 02:00:01 +0000 ROA not before: Fri 28 Mar 2025 01:55:01 +0000 ROA not after: Fri 27 Mar 2026 02:00:01 +0000 asID: 58404 IP address blocks: 103.28.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:33:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:00:36:5b:8c:0e:33:71:af:cd:5a:28:d6:cb:4f:95:2f:05:1d:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Validity Not Before: Mar 28 01:55:01 2025 GMT Not After : Mar 27 02:00:01 2026 GMT Subject: CN=A5F1F8A118EC1D05F772C1AE580CBCA7AD22BF3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c4:3f:3b:27:04:44:24:bd:5f:73:52:fb:92: 2f:f8:ff:e6:9d:19:40:61:39:a5:6c:65:27:94:42: ef:b2:8b:48:3f:ad:91:fb:fe:a1:8f:91:21:9f:9a: 1e:f1:54:99:d3:44:17:94:a2:46:19:14:db:fc:64: 61:a8:6d:8b:66:db:99:05:fe:7e:8b:f1:8e:3f:1d: 0a:f5:02:ad:7d:f1:85:2e:7a:f9:cc:38:3b:4c:b0: 6c:0a:91:06:22:ac:e3:d6:ba:ff:9f:0c:87:ad:64: 02:0b:58:71:b9:54:53:1f:34:69:76:d8:2d:8d:9b: 98:e9:f6:6b:7c:f3:7c:8f:49:99:dd:9b:1a:76:b6: ed:63:d4:93:0b:b8:87:99:50:af:76:b0:f7:c4:01: dc:5b:5c:53:e7:3f:55:39:8c:24:e3:e1:b7:0b:eb: e6:2e:cc:9d:e7:76:5a:5d:d9:57:f3:a7:7e:7a:a9: 0f:c7:c8:3f:7d:da:ba:8e:dc:a0:04:83:da:7c:28: ca:2d:01:e6:82:e3:5b:c5:51:21:90:5d:67:6e:ce: 24:90:9d:c0:de:11:bc:4e:12:5d:71:be:95:c8:ac: d0:78:6d:40:74:fa:0b:ed:8e:10:da:c5:ac:22:03: 97:25:47:16:1c:be:6d:e1:00:92:a7:a4:19:58:a3: 91:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:F1:F8:A1:18:EC:1D:05:F7:72:C1:AE:58:0C:BC:A7:AD:22:BF:3E X509v3 Authority Key Identifier: keyid:C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/3130332e32382e31322e302f32332d3234203d3e203538343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.12.0/23 Signature Algorithm: sha256WithRSAEncryption 35:46:5e:5d:c7:1c:27:d6:db:db:5a:a7:f3:18:2f:02:e4:07: 91:2a:91:b4:51:66:26:a5:d3:20:e0:75:99:21:f3:98:0d:62: cb:d5:8a:9b:a1:aa:b8:c3:9c:93:47:de:25:14:52:57:c7:de: 52:7d:43:7e:a2:40:85:e8:16:3e:24:fe:87:da:d0:b8:91:92: a5:78:95:7d:b9:0b:ec:46:8c:95:0b:9f:d2:e9:82:cc:04:d1: 24:32:2f:dc:bd:58:a7:5b:6a:5a:2f:4d:6d:dd:f5:37:90:37: f6:11:07:ce:23:38:9b:85:95:bd:90:47:f5:e6:75:32:16:2b: 07:61:f8:6f:66:41:30:5b:36:fe:20:af:50:46:18:44:99:9f: ba:77:97:20:c0:8b:3d:a9:39:42:5c:3f:47:50:8e:fe:e0:a7: 5d:2e:1f:df:19:0a:fb:29:c7:ed:75:73:c3:a4:1d:af:c1:b0: 02:48:49:37:29:52:57:b8:54:97:8b:4a:32:8d:7f:10:be:7b: de:7d:f9:fa:cc:c0:d2:d2:c7:a7:29:fa:99:6b:a1:e2:c6:d1: 1c:a4:0b:ca:c2:c3:31:be:4c:2e:f0:d3:70:87:8f:5d:b4:29: 35:21:df:2c:8f:e5:8c:f1:d0:53:d8:8a:65:30:d1:92:61:2e: 8b:9d:0e:ac -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUCwA2W4wOM3GvzVoo1stPlS8FHWYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZG QjQ4ODcxQTAeFw0yNTAzMjgwMTU1MDFaFw0yNjAzMjcwMjAwMDFaMDMxMTAvBgNV BAMTKEE1RjFGOEExMThFQzFEMDVGNzcyQzFBRTU4MENCQ0E3QUQyMkJGM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxxD87JwREJL1fc1L7ki/4/+ad GUBhOaVsZSeUQu+yi0g/rZH7/qGPkSGfmh7xVJnTRBeUokYZFNv8ZGGobYtm25kF /n6L8Y4/HQr1Aq198YUuevnMODtMsGwKkQYirOPWuv+fDIetZAILWHG5VFMfNGl2 2C2Nm5jp9mt883yPSZndmxp2tu1j1JMLuIeZUK92sPfEAdxbXFPnP1U5jCTj4bcL 6+YuzJ3ndlpd2Vfzp356qQ/HyD992rqO3KAEg9p8KMotAeaC41vFUSGQXWduziSQ ncDeEbxOEl1xvpXIrNB4bUB0+gvtjhDaxawiA5clRxYcvm3hAJKnpBlYo5EbAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUpfH4oRjsHQX3csGuWAy8p60ivz4wHwYDVR0j BBgwFoAUwlRKDB7oq/naBhRQCTABL/tIhxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTBmOTE2My0zZTVhLTRlZmEtOGJkOS00YWM0YmM2MzA0MTQvMC9DMjU0NEEwQzFF RThBQkY5REEwNjE0NTAwOTMwMDEyRkZCNDg4NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZGQjQ4 ODcxQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlMGY5MTYzLTNlNWEtNGVmYS04 YmQ5LTRhYzRiYzYzMDQxNC8wLzMxMzAzMzJlMzIzODJlMzEzMjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDM1MzgzNDMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnHAwwDQYJKoZIhvcN AQELBQADggEBADVGXl3HHCfW29tap/MYLwLkB5EqkbRRZial0yDgdZkh85gNYsvV ipuhqrjDnJNH3iUUUlfH3lJ9Q36iQIXoFj4k/ofa0LiRkqV4lX25C+xGjJULn9Lp gswE0SQyL9y9WKdbalovTW3d9TeQN/YRB84jOJuFlb2QR/XmdTIWKwdh+G9mQTBb Nv4gr1BGGESZn7p3lyDAiz2pOUJcP0dQjv7gp10uH98ZCvspx+11c8OkHa/BsAJI STcpUle4VJeLSjKNfxC+e959+frMwNLSx6cp+plroeLG0RykC8rCwzG+TC7w03CH j120KTUh3yyP5Yzx0FPYimUw0ZJhLoudDqw= -----END CERTIFICATE-----Generated at Sun Apr 6 06:02:56 2025 by rpki-client