$ rpki-client -vvf repo-rpki.idnic.net/repo/786599a6-d86b-471a-a05b-a9fafe3bb69a/0/3130332e3134392e34322e302f32342d3234203d3e20313530353236.roa File: 3130332e3134392e34322e302f32342d3234203d3e20313530353236.roa (raw, json) Hash identifier: 7kydv1XIv8/JAr4nfh+b4R84/a7ZfF4+fcId+aE1Hhc= Subject key identifier: 6B:33:95:18:D6:BC:9B:5C:51:4F:C0:21:0B:05:BB:F2:79:1E:07:18 Certificate issuer: /CN=15B7AAB48355A98C761DD27A589DF602A4D38E3D Certificate serial: 70750BEBA7AAC67D5B993519C9A101031104801F Authority key identifier: 15:B7:AA:B4:83:55:A9:8C:76:1D:D2:7A:58:9D:F6:02:A4:D3:8E:3D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/15B7AAB48355A98C761DD27A589DF602A4D38E3D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/786599a6-d86b-471a-a05b-a9fafe3bb69a/0/3130332e3134392e34322e302f32342d3234203d3e20313530353236.roa Signing time: Fri 21 Mar 2025 04:02:20 +0000 ROA not before: Fri 21 Mar 2025 03:57:20 +0000 ROA not after: Fri 20 Mar 2026 04:02:20 +0000 asID: 150526 IP address blocks: 103.149.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/786599a6-d86b-471a-a05b-a9fafe3bb69a/0/15B7AAB48355A98C761DD27A589DF602A4D38E3D.crl rsync://repo-rpki.idnic.net/repo/786599a6-d86b-471a-a05b-a9fafe3bb69a/0/15B7AAB48355A98C761DD27A589DF602A4D38E3D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/15B7AAB48355A98C761DD27A589DF602A4D38E3D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 18:52:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:75:0b:eb:a7:aa:c6:7d:5b:99:35:19:c9:a1:01:03:11:04:80:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15B7AAB48355A98C761DD27A589DF602A4D38E3D Validity Not Before: Mar 21 03:57:20 2025 GMT Not After : Mar 20 04:02:20 2026 GMT Subject: CN=6B339518D6BC9B5C514FC0210B05BBF2791E0718 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e7:7a:13:f2:2a:47:8e:ec:6d:59:91:1d:d8: 91:ef:d6:c8:81:83:69:1f:fc:69:c5:69:74:ba:6a: 32:08:48:bc:71:05:8d:1d:79:11:c9:14:99:9c:89: 7e:9f:e9:91:5b:b6:37:63:2d:fb:5e:d0:d7:f5:49: 18:e9:cc:a8:74:35:3d:21:ce:ac:1b:8d:76:5d:2b: 0f:d7:59:98:e4:44:bb:51:21:8b:5c:82:71:7c:02: 44:3d:44:f2:a2:28:bc:94:dc:bc:9b:69:40:db:fe: b5:63:00:3e:87:e8:49:11:2d:47:d0:f6:70:56:61: 68:2a:e7:fc:55:5d:41:96:28:6c:31:d0:d4:81:27: 5b:4c:f6:af:bf:91:7a:cc:f6:88:ed:5c:cb:65:bc: 7d:cc:b4:b5:12:1a:3c:f7:a2:f6:b9:ea:88:03:b0: 98:40:50:74:8e:37:c1:ca:75:99:fb:0f:f6:bf:7f: 45:8f:95:fb:66:c6:86:7a:ab:2b:a7:2e:67:d9:2d: 74:61:8c:a6:59:e1:72:5a:fd:56:81:91:5c:0d:7f: dd:55:3d:98:17:f9:43:4d:d3:05:77:87:e3:25:ab: 63:58:f1:1c:e4:35:ff:5e:6b:6b:e6:d2:2c:f5:d3: ea:94:7a:75:da:03:d9:a0:7d:62:98:b1:58:ad:b9: 85:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:33:95:18:D6:BC:9B:5C:51:4F:C0:21:0B:05:BB:F2:79:1E:07:18 X509v3 Authority Key Identifier: keyid:15:B7:AA:B4:83:55:A9:8C:76:1D:D2:7A:58:9D:F6:02:A4:D3:8E:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/786599a6-d86b-471a-a05b-a9fafe3bb69a/0/15B7AAB48355A98C761DD27A589DF602A4D38E3D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/15B7AAB48355A98C761DD27A589DF602A4D38E3D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/786599a6-d86b-471a-a05b-a9fafe3bb69a/0/3130332e3134392e34322e302f32342d3234203d3e20313530353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.42.0/24 Signature Algorithm: sha256WithRSAEncryption 23:a3:49:b7:50:f2:8f:44:8b:20:b1:cb:85:31:61:6e:4d:07: fb:26:9b:f8:00:c7:f6:05:62:56:c3:13:60:75:ea:fc:0c:2f: df:95:06:da:2f:21:56:38:2f:ce:a0:6f:46:88:dd:f3:0e:4a: 44:31:af:23:84:0d:86:2c:5d:61:88:ba:34:aa:09:20:fe:e9: b9:56:4c:e1:ef:cc:56:98:50:15:dc:85:fd:79:f0:72:08:e9: 4b:95:31:e9:16:e0:43:bd:a1:93:2c:99:1f:8c:03:e0:4b:5d: 03:54:dc:3a:4d:ef:63:c6:8e:54:b8:7e:36:3d:b0:ce:ae:86: 4e:59:48:dd:09:a1:19:55:8c:a1:f5:e4:6e:80:e3:0f:55:65: 7a:09:33:88:7f:43:ff:6f:b9:43:a6:06:b6:9e:13:43:30:ae: e1:5e:5c:f6:7e:65:9b:cd:2b:9b:02:80:80:ea:1c:3d:6c:b1: f1:9d:0c:73:ba:5b:5b:15:73:56:c2:50:3b:e1:d3:57:ac:5a: 4e:a1:e1:f2:15:d6:07:b2:b0:6f:61:e2:3b:20:44:41:3b:90: c3:75:d3:47:0c:02:8b:ff:c3:55:47:3d:04:1e:be:a8:a7:13: 84:e6:ba:6d:0e:cb:4a:f9:0c:91:d9:33:a8:4f:e6:88:c4:73: a5:bb:c2:5e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcHUL66eqxn1bmTUZyaEBAxEEgB8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVCN0FBQjQ4MzU1QTk4Qzc2MUREMjdBNTg5REY2MDJB NEQzOEUzRDAeFw0yNTAzMjEwMzU3MjBaFw0yNjAzMjAwNDAyMjBaMDMxMTAvBgNV BAMTKDZCMzM5NTE4RDZCQzlCNUM1MTRGQzAyMTBCMDVCQkYyNzkxRTA3MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW53oT8ipHjuxtWZEd2JHv1siB g2kf/GnFaXS6ajIISLxxBY0deRHJFJmciX6f6ZFbtjdjLfte0Nf1SRjpzKh0NT0h zqwbjXZdKw/XWZjkRLtRIYtcgnF8AkQ9RPKiKLyU3LybaUDb/rVjAD6H6EkRLUfQ 9nBWYWgq5/xVXUGWKGwx0NSBJ1tM9q+/kXrM9ojtXMtlvH3MtLUSGjz3ova56ogD sJhAUHSON8HKdZn7D/a/f0WPlftmxoZ6qyunLmfZLXRhjKZZ4XJa/VaBkVwNf91V PZgX+UNN0wV3h+Mlq2NY8RzkNf9ea2vm0iz10+qUenXaA9mgfWKYsVituYXTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUazOVGNa8m1xRT8AhCwW78nkeBxgwHwYDVR0j BBgwFoAUFbeqtINVqYx2HdJ6WJ32AqTTjj0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ODY1OTlhNi1kODZiLTQ3MWEtYTA1Yi1hOWZhZmUzYmI2OWEvMC8xNUI3QUFCNDgz NTVBOThDNzYxREQyN0E1ODlERjYwMkE0RDM4RTNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTVCN0FBQjQ4MzU1QTk4Qzc2MUREMjdBNTg5REY2MDJBNEQz OEUzRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc4NjU5OWE2LWQ4NmItNDcxYS1h MDViLWE5ZmFmZTNiYjY5YS8wLzMxMzAzMzJlMzEzNDM5MmUzNDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzUzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5UqMA0GCSqG SIb3DQEBCwUAA4IBAQAjo0m3UPKPRIsgscuFMWFuTQf7Jpv4AMf2BWJWwxNgder8 DC/flQbaLyFWOC/OoG9GiN3zDkpEMa8jhA2GLF1hiLo0qgkg/um5Vkzh78xWmFAV 3IX9efByCOlLlTHpFuBDvaGTLJkfjAPgS10DVNw6Te9jxo5UuH42PbDOroZOWUjd CaEZVYyh9eRugOMPVWV6CTOIf0P/b7lDpga2nhNDMK7hXlz2fmWbzSubAoCA6hw9 bLHxnQxzultbFXNWwlA74dNXrFpOoeHyFdYHsrBvYeI7IERBO5DDddNHDAKL/8NV Rz0EHr6opxOE5rptDstK+QyR2TOoT+aIxHOlu8Je -----END CERTIFICATE-----Generated at Sun Apr 6 10:53:11 2025 by rpki-client