$ rpki-client -vvf repo-rpki.idnic.net/repo/6ef0013b-59a6-4733-89f8-28fa3d88579f/0/3130332e3130312e3231382e302f32332d3234203d3e20313432333437.roa File: 3130332e3130312e3231382e302f32332d3234203d3e20313432333437.roa (raw, json) Hash identifier: bfGWWBYLFdBS0ipwVQx4h+wBe1EIqVM2TX2GM2uhPGQ= Subject key identifier: AA:0F:1A:51:94:19:4A:27:BE:CA:93:86:F4:09:2E:98:F8:F6:E2:21 Certificate issuer: /CN=E0AC9F73542C4FA1E52F9E565EED952D4528ABD5 Certificate serial: 7CA4821476EB2AE3CBE8133E198987E2107ECCF7 Authority key identifier: E0:AC:9F:73:54:2C:4F:A1:E5:2F:9E:56:5E:ED:95:2D:45:28:AB:D5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0AC9F73542C4FA1E52F9E565EED952D4528ABD5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6ef0013b-59a6-4733-89f8-28fa3d88579f/0/3130332e3130312e3231382e302f32332d3234203d3e20313432333437.roa Signing time: Thu 16 Jan 2025 07:00:00 +0000 ROA not before: Thu 16 Jan 2025 06:55:00 +0000 ROA not after: Thu 15 Jan 2026 07:00:00 +0000 asID: 142347 IP address blocks: 103.101.218.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6ef0013b-59a6-4733-89f8-28fa3d88579f/0/E0AC9F73542C4FA1E52F9E565EED952D4528ABD5.crl rsync://repo-rpki.idnic.net/repo/6ef0013b-59a6-4733-89f8-28fa3d88579f/0/E0AC9F73542C4FA1E52F9E565EED952D4528ABD5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0AC9F73542C4FA1E52F9E565EED952D4528ABD5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 19:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:a4:82:14:76:eb:2a:e3:cb:e8:13:3e:19:89:87:e2:10:7e:cc:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E0AC9F73542C4FA1E52F9E565EED952D4528ABD5 Validity Not Before: Jan 16 06:55:00 2025 GMT Not After : Jan 15 07:00:00 2026 GMT Subject: CN=AA0F1A5194194A27BECA9386F4092E98F8F6E221 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:0f:e1:73:db:c4:de:cb:be:aa:ba:82:d6:9e: c2:3f:0c:be:46:8e:87:4a:33:6c:ee:c3:07:32:fe: 78:27:40:9f:01:9d:c0:d1:bc:d4:eb:42:e4:c7:7f: e8:45:d9:e9:41:a1:b1:2f:c7:2b:35:9b:71:dd:68: e2:cf:76:d2:45:0f:48:2e:05:26:b3:b5:ca:ae:42: 3e:7d:6c:8e:26:d8:78:89:63:36:46:2b:4a:8b:99: 00:f5:85:12:63:ba:2e:09:1b:71:20:d3:85:f7:a4: 75:25:51:9f:73:b9:ff:14:a6:78:9a:5b:1a:08:96: 99:c3:4a:eb:ab:02:d6:33:6d:65:ec:54:b8:b9:8b: 62:11:4b:5e:07:08:dd:77:e8:4b:53:13:58:8e:e0: a2:a9:8e:6f:cd:c6:64:79:01:0a:96:e7:2d:7a:87: 86:21:de:9d:0b:fc:7c:dc:61:c8:ac:6c:0b:13:6e: 96:1a:4c:22:76:ff:1e:51:c8:19:eb:36:fc:9f:fd: a9:4f:60:59:e5:c3:96:71:b6:23:63:78:9b:04:a3: ea:78:c7:77:07:77:ae:d2:db:0a:22:2d:3f:29:55: a2:38:de:c7:64:ec:63:8b:a8:bb:c7:f1:9e:1f:ab: 73:db:04:4f:38:ff:28:9b:90:a5:65:52:fd:ee:1b: e1:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:0F:1A:51:94:19:4A:27:BE:CA:93:86:F4:09:2E:98:F8:F6:E2:21 X509v3 Authority Key Identifier: keyid:E0:AC:9F:73:54:2C:4F:A1:E5:2F:9E:56:5E:ED:95:2D:45:28:AB:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6ef0013b-59a6-4733-89f8-28fa3d88579f/0/E0AC9F73542C4FA1E52F9E565EED952D4528ABD5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0AC9F73542C4FA1E52F9E565EED952D4528ABD5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6ef0013b-59a6-4733-89f8-28fa3d88579f/0/3130332e3130312e3231382e302f32332d3234203d3e20313432333437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.101.218.0/23 Signature Algorithm: sha256WithRSAEncryption 74:f0:ef:b3:c7:d0:b1:06:0b:2d:79:51:3c:30:af:82:47:fc: 4f:f7:b8:01:75:42:af:f6:9b:86:dc:39:54:fb:46:5e:31:02: ea:21:38:3f:f4:4c:1c:a1:1e:3b:ca:97:06:99:f7:af:a2:5c: 6c:e0:50:e9:21:ef:03:ca:a7:b3:9b:88:bc:be:9b:f6:b4:95: 55:68:05:2a:00:43:8d:13:0a:a5:ba:91:e8:3f:75:50:11:51: 38:50:f0:e9:03:89:c7:08:43:c0:7d:1d:9e:47:42:6e:88:2d: e6:15:b3:47:16:9f:0c:1b:71:2d:2a:4a:b3:60:60:95:01:7b: 53:51:1e:79:02:79:50:da:0c:0e:6d:12:d4:0f:1d:bf:cc:3b: fe:a5:fd:89:8a:0e:47:96:14:17:d3:22:dc:ef:8e:5a:21:c5: 8c:1e:cb:e4:c0:15:ad:04:f0:3f:20:54:8c:b9:e5:ef:d9:ee: 40:60:a5:d7:fd:d6:95:45:a8:ad:5f:15:ba:c9:4c:0a:da:16: 0b:46:e7:f4:58:e6:8c:42:28:4b:b7:48:0b:a1:8c:d9:12:81: 7c:45:8b:70:4b:50:a5:97:55:9b:a7:41:29:ff:b4:0d:bd:7c: 0a:8d:69:a4:87:52:11:ee:79:d8:10:63:3b:3f:ef:d1:34:21: 82:74:89:ef -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfKSCFHbrKuPL6BM+GYmH4hB+zPcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTBBQzlGNzM1NDJDNEZBMUU1MkY5RTU2NUVFRDk1MkQ0 NTI4QUJENTAeFw0yNTAxMTYwNjU1MDBaFw0yNjAxMTUwNzAwMDBaMDMxMTAvBgNV BAMTKEFBMEYxQTUxOTQxOTRBMjdCRUNBOTM4NkY0MDkyRTk4RjhGNkUyMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbD+Fz28Tey76quoLWnsI/DL5G jodKM2zuwwcy/ngnQJ8BncDRvNTrQuTHf+hF2elBobEvxys1m3HdaOLPdtJFD0gu BSaztcquQj59bI4m2HiJYzZGK0qLmQD1hRJjui4JG3Eg04X3pHUlUZ9zuf8Upnia WxoIlpnDSuurAtYzbWXsVLi5i2IRS14HCN136EtTE1iO4KKpjm/NxmR5AQqW5y16 h4Yh3p0L/HzcYcisbAsTbpYaTCJ2/x5RyBnrNvyf/alPYFnlw5ZxtiNjeJsEo+p4 x3cHd67S2woiLT8pVaI43sdk7GOLqLvH8Z4fq3PbBE84/yibkKVlUv3uG+HlAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUqg8aUZQZSie+ypOG9AkumPj24iEwHwYDVR0j BBgwFoAU4Kyfc1QsT6HlL55WXu2VLUUoq9UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZWYwMDEzYi01OWE2LTQ3MzMtODlmOC0yOGZhM2Q4ODU3OWYvMC9FMEFDOUY3MzU0 MkM0RkExRTUyRjlFNTY1RUVEOTUyRDQ1MjhBQkQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTBBQzlGNzM1NDJDNEZBMUU1MkY5RTU2NUVFRDk1MkQ0NTI4 QUJENS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlZjAwMTNiLTU5YTYtNDczMy04 OWY4LTI4ZmEzZDg4NTc5Zi8wLzMxMzAzMzJlMzEzMDMxMmUzMjMxMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM0Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnZdowDQYJ KoZIhvcNAQELBQADggEBAHTw77PH0LEGCy15UTwwr4JH/E/3uAF1Qq/2m4bcOVT7 Rl4xAuohOD/0TByhHjvKlwaZ96+iXGzgUOkh7wPKp7ObiLy+m/a0lVVoBSoAQ40T CqW6keg/dVARUThQ8OkDiccIQ8B9HZ5HQm6ILeYVs0cWnwwbcS0qSrNgYJUBe1NR HnkCeVDaDA5tEtQPHb/MO/6l/YmKDkeWFBfTItzvjlohxYwey+TAFa0E8D8gVIy5 5e/Z7kBgpdf91pVFqK1fFbrJTAraFgtG5/RY5oxCKEu3SAuhjNkSgXxFi3BLUKWX VZunQSn/tA29fAqNaaSHUhHuedgQYzs/79E0IYJ0ie8= -----END CERTIFICATE-----Generated at Sun Apr 6 20:49:18 2025 by rpki-client