$ rpki-client -vvf repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/3130332e3137342e3137342e302f32332d3233203d3e20313437313031.roa File: 3130332e3137342e3137342e302f32332d3233203d3e20313437313031.roa (raw, json) Hash identifier: qjco1QI2sNnouAlC+BzAGiX63kc+i+LJElEHwxqlyT4= Subject key identifier: F1:45:E4:E5:38:D0:63:3F:69:A8:5C:C7:BD:1E:99:EB:54:D7:AB:72 Certificate issuer: /CN=7767CF49D7661AFAB45870341D88D2F3D9A86CE4 Certificate serial: 5C5D0AF6E912387E6AFD467AA8FC63A6E64FE872 Authority key identifier: 77:67:CF:49:D7:66:1A:FA:B4:58:70:34:1D:88:D2:F3:D9:A8:6C:E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/3130332e3137342e3137342e302f32332d3233203d3e20313437313031.roa Signing time: Thu 20 Feb 2025 10:00:00 +0000 ROA not before: Thu 20 Feb 2025 09:55:00 +0000 ROA not after: Thu 19 Feb 2026 10:00:00 +0000 asID: 147101 IP address blocks: 103.174.174.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.crl rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 07:54:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:5d:0a:f6:e9:12:38:7e:6a:fd:46:7a:a8:fc:63:a6:e6:4f:e8:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7767CF49D7661AFAB45870341D88D2F3D9A86CE4 Validity Not Before: Feb 20 09:55:00 2025 GMT Not After : Feb 19 10:00:00 2026 GMT Subject: CN=F145E4E538D0633F69A85CC7BD1E99EB54D7AB72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:22:bb:85:0c:cd:47:36:b5:3a:2d:27:eb:90: fe:61:bc:2b:cd:02:b0:a8:54:a0:79:85:1f:1b:1b: 60:ac:86:45:17:ee:42:d7:a5:52:c7:29:4e:88:d8: 0c:10:b4:be:16:e1:1b:2c:bb:9a:3f:9c:79:6a:72: 6d:ac:7e:1e:31:c0:73:ec:53:24:70:2c:76:ee:f7: 52:a3:b4:11:04:01:f7:28:1b:95:f8:a1:5b:f2:fd: 36:30:da:7d:19:fa:62:fe:f8:85:e5:a7:5d:32:d5: 8a:b9:1e:85:65:e1:6a:ee:73:20:11:9a:7a:c7:0f: 2a:cb:c2:3f:d2:e8:36:9a:24:63:58:44:b2:11:e5: 28:91:bb:98:ec:9b:e6:43:71:2f:23:6e:88:01:5a: 0a:dc:32:19:25:07:78:30:41:57:05:de:6a:c0:86: a3:9b:4b:35:e6:04:46:dc:d4:f3:52:29:7b:73:58: e5:68:d6:23:a5:8d:03:12:77:93:b6:ff:e0:f2:21: ed:46:a7:09:50:41:07:aa:ac:90:9b:cd:32:16:7c: 0e:5e:50:91:18:bd:fd:80:11:e3:f4:44:46:ba:03: e1:d1:2e:03:f8:9c:6b:95:1c:cf:99:cf:91:a2:82: 94:62:a5:d0:eb:c4:55:05:c5:32:e0:1b:0d:0b:e3: 9c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:45:E4:E5:38:D0:63:3F:69:A8:5C:C7:BD:1E:99:EB:54:D7:AB:72 X509v3 Authority Key Identifier: keyid:77:67:CF:49:D7:66:1A:FA:B4:58:70:34:1D:88:D2:F3:D9:A8:6C:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/3130332e3137342e3137342e302f32332d3233203d3e20313437313031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.174.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:45:9e:e4:c5:8b:f2:16:3f:2f:43:3f:c8:01:5c:db:f8:74: 48:01:49:d5:94:af:a0:84:44:c2:20:65:c7:ea:3f:58:0d:24: 09:d5:48:0c:4a:89:27:4c:78:6b:02:f2:86:4e:19:1e:a8:a0: ed:23:ad:d0:90:1c:1c:99:95:f6:a9:cf:a9:4f:36:fd:84:b0: 12:a2:fb:ce:1b:c6:00:f9:0a:a7:3b:f5:e7:88:35:06:54:77: f7:19:7f:7b:be:c0:c7:ce:c7:53:ce:eb:fe:c0:06:3d:a7:7d: a7:0d:b9:ff:04:b3:44:3b:8b:b5:0d:fd:fa:c3:35:fa:7c:15: 36:43:d5:d3:8b:81:49:5a:ee:0d:77:c2:b2:aa:de:0c:c5:65: da:18:ab:6b:80:a4:97:54:e5:1c:2b:85:a6:94:1e:7c:e3:15: e4:2c:51:2f:0b:02:00:b2:7f:63:45:4f:96:09:74:9f:a9:86: 00:f0:cf:f0:8c:c4:95:9b:4d:37:d6:a8:e1:52:e4:fd:27:a4: cc:e3:e1:e7:7d:1d:a2:51:0c:35:b3:65:56:af:a3:0a:b0:b3: 36:da:75:3b:7e:18:05:e8:35:64:5f:74:fd:e8:6d:73:80:8f: 57:b6:bb:51:da:4a:31:cd:10:c2:5d:28:9c:d5:d7:9d:05:1f: d7:24:44:d4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXF0K9ukSOH5q/UZ6qPxjpuZP6HIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzc2N0NGNDlENzY2MUFGQUI0NTg3MDM0MUQ4OEQyRjNE OUE4NkNFNDAeFw0yNTAyMjAwOTU1MDBaFw0yNjAyMTkxMDAwMDBaMDMxMTAvBgNV BAMTKEYxNDVFNEU1MzhEMDYzM0Y2OUE4NUNDN0JEMUU5OUVCNTREN0FCNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCIruFDM1HNrU6LSfrkP5hvCvN ArCoVKB5hR8bG2CshkUX7kLXpVLHKU6I2AwQtL4W4Rssu5o/nHlqcm2sfh4xwHPs UyRwLHbu91KjtBEEAfcoG5X4oVvy/TYw2n0Z+mL++IXlp10y1Yq5HoVl4WrucyAR mnrHDyrLwj/S6DaaJGNYRLIR5SiRu5jsm+ZDcS8jbogBWgrcMhklB3gwQVcF3mrA hqObSzXmBEbc1PNSKXtzWOVo1iOljQMSd5O2/+DyIe1GpwlQQQeqrJCbzTIWfA5e UJEYvf2AEeP0REa6A+HRLgP4nGuVHM+Zz5GigpRipdDrxFUFxTLgGw0L45zlAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU8UXk5TjQYz9pqFzHvR6Z61TXq3IwHwYDVR0j BBgwFoAUd2fPSddmGvq0WHA0HYjS89mobOQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTcwZDQ0ZS0wZjcwLTQ1YTMtYWYwNC04MWY0MjlkYjNhNWQvMC83NzY3Q0Y0OUQ3 NjYxQUZBQjQ1ODcwMzQxRDg4RDJGM0Q5QTg2Q0U0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzc2N0NGNDlENzY2MUFGQUI0NTg3MDM0MUQ4OEQyRjNEOUE4 NkNFNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhNzBkNDRlLTBmNzAtNDVhMy1h ZjA0LTgxZjQyOWRiM2E1ZC8wLzMxMzAzMzJlMzEzNzM0MmUzMTM3MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzczMTMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnrq4wDQYJ KoZIhvcNAQELBQADggEBABtFnuTFi/IWPy9DP8gBXNv4dEgBSdWUr6CERMIgZcfq P1gNJAnVSAxKiSdMeGsC8oZOGR6ooO0jrdCQHByZlfapz6lPNv2EsBKi+84bxgD5 Cqc79eeINQZUd/cZf3u+wMfOx1PO6/7ABj2nfacNuf8Es0Q7i7UN/frDNfp8FTZD 1dOLgUla7g13wrKq3gzFZdoYq2uApJdU5RwrhaaUHnzjFeQsUS8LAgCyf2NFT5YJ dJ+phgDwz/CMxJWbTTfWqOFS5P0npMzj4ed9HaJRDDWzZVavowqwszbadTt+GAXo NWRfdP3obXOAj1e2u1HaSjHNEMJdKJzV150FH9ckRNQ= -----END CERTIFICATE-----Generated at Tue Mar 11 05:04:09 2025 by rpki-client