$ rpki-client -vvf repo-rpki.idnic.net/repo/7bed83bd-8986-4429-a011-ac590724d586/0/3130332e3134312e3234352e302f32342d3234203d3e20313339333635.roa File: 3130332e3134312e3234352e302f32342d3234203d3e20313339333635.roa (raw, json) Hash identifier: 18f8OBM8+ia5Uh/H3tljNYXZldWb+K9faa9nLSg225M= Subject key identifier: 36:74:43:FE:92:04:63:FD:3A:85:5C:80:B9:6E:C8:4D:93:B3:84:9B Certificate issuer: /CN=1BA1ADD734797C0383628A8723DEBADA827B5B02 Certificate serial: 2BC197B02B1C8A59B30805EB1ADC78F82DD6770D Authority key identifier: 1B:A1:AD:D7:34:79:7C:03:83:62:8A:87:23:DE:BA:DA:82:7B:5B:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BA1ADD734797C0383628A8723DEBADA827B5B02.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7bed83bd-8986-4429-a011-ac590724d586/0/3130332e3134312e3234352e302f32342d3234203d3e20313339333635.roa Signing time: Fri 07 Feb 2025 18:00:00 +0000 ROA not before: Fri 07 Feb 2025 17:55:00 +0000 ROA not after: Fri 06 Feb 2026 18:00:00 +0000 asID: 139365 IP address blocks: 103.141.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7bed83bd-8986-4429-a011-ac590724d586/0/1BA1ADD734797C0383628A8723DEBADA827B5B02.crl rsync://repo-rpki.idnic.net/repo/7bed83bd-8986-4429-a011-ac590724d586/0/1BA1ADD734797C0383628A8723DEBADA827B5B02.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BA1ADD734797C0383628A8723DEBADA827B5B02.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 00:22:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:c1:97:b0:2b:1c:8a:59:b3:08:05:eb:1a:dc:78:f8:2d:d6:77:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BA1ADD734797C0383628A8723DEBADA827B5B02 Validity Not Before: Feb 7 17:55:00 2025 GMT Not After : Feb 6 18:00:00 2026 GMT Subject: CN=367443FE920463FD3A855C80B96EC84D93B3849B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a2:a2:0a:94:00:9c:14:96:2a:2f:47:9b:37: 8f:18:f0:ff:bd:ef:c9:35:bf:3e:5f:b8:64:70:a5: 55:17:e5:1b:55:61:1d:a1:08:90:6d:17:ad:a3:fc: b4:a8:3c:5b:cc:04:7a:81:81:4c:e7:9f:e6:b0:f7: 5d:f8:25:d9:20:52:14:43:57:ad:03:20:36:ed:9f: 4b:d7:2d:00:6a:4e:03:28:c6:dd:17:bd:ed:fa:f0: f3:8a:6d:b7:71:fb:52:a8:f8:50:9c:a5:4f:8a:c5: bb:35:5a:35:0f:1d:34:bc:c7:61:9c:19:76:19:91: 1a:fb:21:ff:bc:ba:12:12:fd:1b:8a:2d:b6:d8:1d: 7f:8f:51:8c:f7:da:60:b8:c4:aa:29:76:36:40:a0: dd:88:77:9e:be:6c:b9:81:7d:bc:aa:a9:ff:19:b9: 08:f1:3b:65:91:d1:3e:76:23:af:c3:2b:45:01:ba: f0:5e:51:20:f2:68:da:65:65:98:ae:30:20:16:ee: 43:94:34:a8:aa:85:d5:11:77:a2:a0:ee:7d:ec:cc: 0b:6f:74:5f:ad:1f:74:e7:8f:7b:fa:0b:dc:7a:1d: 9f:a4:2b:18:68:8b:20:78:42:d9:a3:0e:7b:f9:b9: 2a:79:67:a4:07:31:bb:db:e1:11:51:37:37:e1:a1: 62:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:74:43:FE:92:04:63:FD:3A:85:5C:80:B9:6E:C8:4D:93:B3:84:9B X509v3 Authority Key Identifier: keyid:1B:A1:AD:D7:34:79:7C:03:83:62:8A:87:23:DE:BA:DA:82:7B:5B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7bed83bd-8986-4429-a011-ac590724d586/0/1BA1ADD734797C0383628A8723DEBADA827B5B02.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BA1ADD734797C0383628A8723DEBADA827B5B02.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7bed83bd-8986-4429-a011-ac590724d586/0/3130332e3134312e3234352e302f32342d3234203d3e20313339333635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.141.245.0/24 Signature Algorithm: sha256WithRSAEncryption 68:40:67:ce:c5:2e:4a:a6:d2:c9:e1:80:51:76:d5:d5:d2:3a: d9:95:86:21:20:30:25:60:ba:b3:78:ce:7e:4c:fb:54:2f:e5: 3e:74:a2:86:f0:39:b5:b6:97:56:1a:4f:d2:ba:73:08:d8:89: 73:74:64:62:ae:4d:7b:9b:66:04:41:fb:0b:4c:c2:f2:4e:46: 64:1e:59:05:2a:50:4f:85:cc:1b:4d:4b:94:4a:0b:0a:d4:a6: c7:57:50:15:1b:85:d4:87:1c:7d:2c:ae:df:c2:d0:bc:a4:5c: 8c:42:40:41:b7:91:73:ff:77:c9:65:33:59:c1:df:9c:91:ba: 02:db:92:66:a1:e6:e2:ad:8a:16:35:ec:3f:d0:9b:22:d6:ad: 8b:8d:24:17:d5:29:31:a6:33:6c:01:f3:73:47:f6:3a:0d:7a: 14:56:7e:ff:90:88:0a:ec:93:5e:6a:46:bf:bc:4f:dd:42:7d: e5:fc:27:eb:9f:70:a4:49:da:1f:b3:ff:70:a0:e3:e8:5a:13: 76:4e:86:7b:5e:1f:02:4d:6d:1b:3f:cc:c1:f0:52:53:87:cc: d2:71:33:1d:41:02:9f:93:77:96:fb:73:39:0e:49:af:ba:04: 5e:81:c4:7c:00:c9:35:bc:9a:9b:36:e1:09:a1:52:19:b9:2c: 9a:4f:07:2d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUK8GXsCscilmzCAXrGtx4+C3Wdw0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUJBMUFERDczNDc5N0MwMzgzNjI4QTg3MjNERUJBREE4 MjdCNUIwMjAeFw0yNTAyMDcxNzU1MDBaFw0yNjAyMDYxODAwMDBaMDMxMTAvBgNV BAMTKDM2NzQ0M0ZFOTIwNDYzRkQzQTg1NUM4MEI5NkVDODREOTNCMzg0OUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3oqIKlACcFJYqL0ebN48Y8P+9 78k1vz5fuGRwpVUX5RtVYR2hCJBtF62j/LSoPFvMBHqBgUznn+aw9134JdkgUhRD V60DIDbtn0vXLQBqTgMoxt0Xve368POKbbdx+1Ko+FCcpU+Kxbs1WjUPHTS8x2Gc GXYZkRr7If+8uhIS/RuKLbbYHX+PUYz32mC4xKopdjZAoN2Id56+bLmBfbyqqf8Z uQjxO2WR0T52I6/DK0UBuvBeUSDyaNplZZiuMCAW7kOUNKiqhdURd6Kg7n3szAtv dF+tH3Tnj3v6C9x6HZ+kKxhoiyB4QtmjDnv5uSp5Z6QHMbvb4RFRNzfhoWJrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUNnRD/pIEY/06hVyAuW7ITZOzhJswHwYDVR0j BBgwFoAUG6Gt1zR5fAODYoqHI9662oJ7WwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YmVkODNiZC04OTg2LTQ0MjktYTAxMS1hYzU5MDcyNGQ1ODYvMC8xQkExQURENzM0 Nzk3QzAzODM2MjhBODcyM0RFQkFEQTgyN0I1QjAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUJBMUFERDczNDc5N0MwMzgzNjI4QTg3MjNERUJBREE4MjdC NUIwMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiZWQ4M2JkLTg5ODYtNDQyOS1h MDExLWFjNTkwNzI0ZDU4Ni8wLzMxMzAzMzJlMzEzNDMxMmUzMjM0MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzMzM2MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnjfUwDQYJ KoZIhvcNAQELBQADggEBAGhAZ87FLkqm0snhgFF21dXSOtmVhiEgMCVgurN4zn5M +1Qv5T50oobwObW2l1YaT9K6cwjYiXN0ZGKuTXubZgRB+wtMwvJORmQeWQUqUE+F zBtNS5RKCwrUpsdXUBUbhdSHHH0srt/C0LykXIxCQEG3kXP/d8llM1nB35yRugLb kmah5uKtihY17D/QmyLWrYuNJBfVKTGmM2wB83NH9joNehRWfv+QiArsk15qRr+8 T91CfeX8J+ufcKRJ2h+z/3Cg4+haE3ZOhnteHwJNbRs/zMHwUlOHzNJxMx1BAp+T d5b7czkOSa+6BF6BxHwAyTW8mps24QmhUhm5LJpPBy0= -----END CERTIFICATE-----Generated at Fri Apr 18 02:56:27 2025 by rpki-client