$ rpki-client -vvf repo-rpki.idnic.net/repo/6ff8f4ab-1ab8-4894-b758-d9bce3803e4c/0/3130332e3135352e3136392e302f32342d3234203d3e20313431303635.roa File: 3130332e3135352e3136392e302f32342d3234203d3e20313431303635.roa (raw, json) Hash identifier: c3TzylCEjs5xy8RF441nXx1uAnBKNVsy3aYQ1eehMFs= Subject key identifier: 9F:D0:1D:53:0E:F2:9C:BE:7C:7B:43:CD:77:51:EC:9F:08:FD:E8:07 Certificate issuer: /CN=DD77382BD9E8634AEF9E93D763B0149D915502F5 Certificate serial: 62B36701103A78539CF307DACAD8F297BEFF41DD Authority key identifier: DD:77:38:2B:D9:E8:63:4A:EF:9E:93:D7:63:B0:14:9D:91:55:02:F5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD77382BD9E8634AEF9E93D763B0149D915502F5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6ff8f4ab-1ab8-4894-b758-d9bce3803e4c/0/3130332e3135352e3136392e302f32342d3234203d3e20313431303635.roa Signing time: Wed 22 Jan 2025 12:01:18 +0000 ROA not before: Wed 22 Jan 2025 11:56:18 +0000 ROA not after: Wed 21 Jan 2026 12:01:18 +0000 asID: 141065 IP address blocks: 103.155.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6ff8f4ab-1ab8-4894-b758-d9bce3803e4c/0/DD77382BD9E8634AEF9E93D763B0149D915502F5.crl rsync://repo-rpki.idnic.net/repo/6ff8f4ab-1ab8-4894-b758-d9bce3803e4c/0/DD77382BD9E8634AEF9E93D763B0149D915502F5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD77382BD9E8634AEF9E93D763B0149D915502F5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 15:52:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:b3:67:01:10:3a:78:53:9c:f3:07:da:ca:d8:f2:97:be:ff:41:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD77382BD9E8634AEF9E93D763B0149D915502F5 Validity Not Before: Jan 22 11:56:18 2025 GMT Not After : Jan 21 12:01:18 2026 GMT Subject: CN=9FD01D530EF29CBE7C7B43CD7751EC9F08FDE807 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:cd:61:4d:61:fb:da:3a:5c:ee:f6:87:05:bc: f2:40:80:07:7d:dc:f1:38:0d:fc:1a:34:8b:3c:47: ce:b7:8c:9d:7c:a5:ce:7b:a3:3f:4e:cd:de:e3:d3: 2a:a7:96:0f:92:15:61:db:bd:54:5c:7e:11:34:84: 57:fd:52:4b:e2:1a:fb:8e:ca:40:e6:d3:9e:8b:72: 7d:4b:6f:a1:ea:09:be:7c:25:e1:b4:74:3e:6b:a3: 5c:55:5b:e9:14:3d:94:1b:59:a8:a0:20:31:69:46: dd:7d:15:44:bd:1c:48:b0:04:26:38:33:c0:46:8e: 51:58:29:9e:d7:dd:b1:af:23:db:46:a2:b8:f3:fb: 12:0f:cb:ed:f5:55:f4:0b:1f:b0:d3:66:91:f0:b1: 4f:91:97:bb:7f:ad:d4:31:55:f3:be:bf:89:4d:77: da:71:98:60:27:0b:5c:e5:bd:b9:58:6e:3c:75:52: be:58:1c:13:6a:1e:6a:69:87:9f:63:4a:13:0c:d3: 08:1b:aa:3b:03:3a:c6:5e:6c:f1:89:c5:e5:ab:4c: d9:60:55:21:a6:8b:69:0a:b6:66:df:95:92:e4:d7: 0a:a9:9c:c7:e1:75:16:d4:bc:96:1c:35:5f:07:90: c4:a7:39:6a:a2:90:97:80:63:37:86:b0:0e:29:f2: ca:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:D0:1D:53:0E:F2:9C:BE:7C:7B:43:CD:77:51:EC:9F:08:FD:E8:07 X509v3 Authority Key Identifier: keyid:DD:77:38:2B:D9:E8:63:4A:EF:9E:93:D7:63:B0:14:9D:91:55:02:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6ff8f4ab-1ab8-4894-b758-d9bce3803e4c/0/DD77382BD9E8634AEF9E93D763B0149D915502F5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD77382BD9E8634AEF9E93D763B0149D915502F5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6ff8f4ab-1ab8-4894-b758-d9bce3803e4c/0/3130332e3135352e3136392e302f32342d3234203d3e20313431303635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.169.0/24 Signature Algorithm: sha256WithRSAEncryption 37:36:8f:71:b2:a5:a7:a1:5e:fd:4d:2b:e4:71:2b:d5:6a:01: 70:11:4e:3a:20:53:b6:8d:40:40:30:26:6f:69:7a:86:d3:d8: 66:17:87:21:ce:ed:06:1b:d1:71:38:8a:19:69:63:1c:ad:fc: c9:00:1b:40:a2:ac:15:bb:72:08:a3:40:89:25:65:09:df:a1: 0e:bb:b5:1f:4e:ec:99:61:11:e7:71:3b:39:3c:ff:3c:cd:28: dd:c5:ad:15:be:e9:81:bd:f3:66:9f:07:72:e4:5f:9c:53:6c: e6:95:59:aa:42:a4:12:37:1f:8e:09:75:88:1b:8a:26:83:49: ee:78:ac:af:bf:e2:02:1a:9f:7c:4c:8e:b5:de:18:c5:3e:cf: 7e:f3:a4:04:69:56:14:9a:94:58:c2:06:fe:b5:6a:d2:a7:53: ce:dc:8b:aa:32:da:2c:8a:97:37:d8:8e:93:55:8d:d5:a7:73: 96:55:1f:37:63:c3:63:1f:b9:b3:af:41:21:e4:1f:e1:ae:8e: 26:9d:76:5d:7a:c3:f5:b5:c7:16:08:98:e4:08:b6:6d:30:0b: 6d:06:02:00:ff:f7:ba:51:74:2d:c4:e5:23:91:c0:9b:f0:3b: a0:64:f8:56:33:a3:9e:54:a5:99:f7:77:12:63:72:8f:42:16: e0:e9:d0:f8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYrNnARA6eFOc8wfaytjyl77/Qd0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQ3NzM4MkJEOUU4NjM0QUVGOUU5M0Q3NjNCMDE0OUQ5 MTU1MDJGNTAeFw0yNTAxMjIxMTU2MThaFw0yNjAxMjExMjAxMThaMDMxMTAvBgNV BAMTKDlGRDAxRDUzMEVGMjlDQkU3QzdCNDNDRDc3NTFFQzlGMDhGREU4MDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfzWFNYfvaOlzu9ocFvPJAgAd9 3PE4DfwaNIs8R863jJ18pc57oz9Ozd7j0yqnlg+SFWHbvVRcfhE0hFf9UkviGvuO ykDm056Lcn1Lb6HqCb58JeG0dD5ro1xVW+kUPZQbWaigIDFpRt19FUS9HEiwBCY4 M8BGjlFYKZ7X3bGvI9tGorjz+xIPy+31VfQLH7DTZpHwsU+Rl7t/rdQxVfO+v4lN d9pxmGAnC1zlvblYbjx1Ur5YHBNqHmpph59jShMM0wgbqjsDOsZebPGJxeWrTNlg VSGmi2kKtmbflZLk1wqpnMfhdRbUvJYcNV8HkMSnOWqikJeAYzeGsA4p8sqpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUn9AdUw7ynL58e0PNd1Hsnwj96AcwHwYDVR0j BBgwFoAU3Xc4K9noY0rvnpPXY7AUnZFVAvUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmY4ZjRhYi0xYWI4LTQ4OTQtYjc1OC1kOWJjZTM4MDNlNGMvMC9ERDc3MzgyQkQ5 RTg2MzRBRUY5RTkzRDc2M0IwMTQ5RDkxNTUwMkY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQ3NzM4MkJEOUU4NjM0QUVGOUU5M0Q3NjNCMDE0OUQ5MTU1 MDJGNS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmZjhmNGFiLTFhYjgtNDg5NC1i NzU4LWQ5YmNlMzgwM2U0Yy8wLzMxMzAzMzJlMzEzNTM1MmUzMTM2MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM2MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnm6kwDQYJ KoZIhvcNAQELBQADggEBADc2j3GypaehXv1NK+RxK9VqAXARTjogU7aNQEAwJm9p eobT2GYXhyHO7QYb0XE4ihlpYxyt/MkAG0CirBW7cgijQIklZQnfoQ67tR9O7Jlh EedxOzk8/zzNKN3FrRW+6YG982afB3LkX5xTbOaVWapCpBI3H44JdYgbiiaDSe54 rK+/4gIan3xMjrXeGMU+z37zpARpVhSalFjCBv61atKnU87ci6oy2iyKlzfYjpNV jdWnc5ZVHzdjw2MfubOvQSHkH+Gujiaddl16w/W1xxYImOQItm0wC20GAgD/97pR dC3E5SORwJvwO6Bk+FYzo55UpZn3dxJjco9CFuDp0Pg= -----END CERTIFICATE-----Generated at Sun Apr 6 13:36:47 2025 by rpki-client