$ rpki-client -vvf repo-rpki.idnic.net/repo/7c636a46-38ff-4496-9721-8c03cf046345/0/3130332e35352e3235342e302f32342d3234203d3e20333936393832.roa File: 3130332e35352e3235342e302f32342d3234203d3e20333936393832.roa (raw, json) Hash identifier: 3GuMduWTgloUnJZtYU+5K5/Trf+zimiieU09c7Eyrv4= Subject key identifier: 14:66:7D:64:C2:8F:C2:45:D1:C3:F4:4D:34:30:73:B0:F8:21:A3:69 Certificate issuer: /CN=73279DADB4EB9B31B88CCAB5F683DDA055F4F0A9 Certificate serial: 4D3D9924756A71E14D6DB2552EE8C4C414E73AEF Authority key identifier: 73:27:9D:AD:B4:EB:9B:31:B8:8C:CA:B5:F6:83:DD:A0:55:F4:F0:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/73279DADB4EB9B31B88CCAB5F683DDA055F4F0A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7c636a46-38ff-4496-9721-8c03cf046345/0/3130332e35352e3235342e302f32342d3234203d3e20333936393832.roa Signing time: Wed 26 Feb 2025 18:00:00 +0000 ROA not before: Wed 26 Feb 2025 17:55:00 +0000 ROA not after: Wed 25 Feb 2026 18:00:00 +0000 asID: 396982 IP address blocks: 103.55.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7c636a46-38ff-4496-9721-8c03cf046345/0/73279DADB4EB9B31B88CCAB5F683DDA055F4F0A9.crl rsync://repo-rpki.idnic.net/repo/7c636a46-38ff-4496-9721-8c03cf046345/0/73279DADB4EB9B31B88CCAB5F683DDA055F4F0A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/73279DADB4EB9B31B88CCAB5F683DDA055F4F0A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:58:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:3d:99:24:75:6a:71:e1:4d:6d:b2:55:2e:e8:c4:c4:14:e7:3a:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=73279DADB4EB9B31B88CCAB5F683DDA055F4F0A9 Validity Not Before: Feb 26 17:55:00 2025 GMT Not After : Feb 25 18:00:00 2026 GMT Subject: CN=14667D64C28FC245D1C3F44D343073B0F821A369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:9f:40:cb:6b:e6:af:2e:86:32:01:50:10:2d: 02:58:2f:d8:9c:24:8d:dc:b9:fc:2b:a2:c5:c1:31: 76:8c:25:82:b1:e2:38:5c:ea:52:98:af:49:56:c5: c1:e1:9d:28:49:52:b1:55:83:ec:fc:35:8f:66:e9: 64:1d:60:5e:a8:cd:52:fd:ca:f9:a1:8d:4d:59:6e: 6c:e7:5e:af:cd:f4:3a:e9:af:8c:c6:bb:be:e2:b5: 05:c5:b2:29:40:20:0a:c5:62:5f:a0:12:41:19:2a: 04:3e:7d:03:14:46:a7:1a:41:81:b5:cf:d6:3f:6e: f1:a2:4f:66:86:99:16:b7:a4:b9:ac:fb:e0:d0:ae: 0e:72:f1:48:29:14:8e:c0:e8:8c:a8:5e:7c:19:43: 1a:ed:13:48:88:92:4b:80:a2:f2:fb:e7:d5:ab:2e: d2:5f:24:92:e9:2a:8c:59:34:92:89:6f:ce:eb:46: cb:32:4a:91:a7:49:67:89:b4:48:87:93:a5:33:f3: af:e1:d1:1f:e4:80:2a:1e:9c:1f:ed:a8:c5:e2:7f: ed:55:85:e4:93:66:8b:c2:bd:e2:53:c2:99:2e:21: c4:af:2f:60:59:11:fd:7e:98:ff:0d:ea:5a:e2:a7: 77:21:a6:f1:7c:2b:95:54:52:d5:97:5b:4c:66:f6: 0a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:66:7D:64:C2:8F:C2:45:D1:C3:F4:4D:34:30:73:B0:F8:21:A3:69 X509v3 Authority Key Identifier: keyid:73:27:9D:AD:B4:EB:9B:31:B8:8C:CA:B5:F6:83:DD:A0:55:F4:F0:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7c636a46-38ff-4496-9721-8c03cf046345/0/73279DADB4EB9B31B88CCAB5F683DDA055F4F0A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/73279DADB4EB9B31B88CCAB5F683DDA055F4F0A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7c636a46-38ff-4496-9721-8c03cf046345/0/3130332e35352e3235342e302f32342d3234203d3e20333936393832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.254.0/24 Signature Algorithm: sha256WithRSAEncryption a8:b6:00:7f:f4:5b:6c:b0:3e:75:a2:13:d9:7f:ca:fc:f6:9e: f1:b5:0f:9d:b7:47:75:16:d9:e4:35:f7:da:b1:10:3a:2f:9e: 67:b8:91:5f:fd:9f:a4:5f:fc:2e:f8:d6:cd:ee:7d:a2:39:63: a7:61:c7:ad:2b:66:5b:3b:ba:31:98:a0:2e:34:16:5a:f8:74: e6:30:08:1a:69:93:22:16:88:29:ab:72:fb:d2:f2:ef:4f:c0: d2:99:b4:1a:45:b3:1e:eb:af:44:c2:48:c5:ed:8e:f8:16:ce: 0f:f4:12:2c:38:5f:a6:e3:04:11:d1:96:a3:ce:19:d1:6c:f1: 8d:3d:35:f0:2e:39:e4:be:aa:09:b0:c6:b3:2b:e9:24:f8:d3: 54:a6:31:2e:0f:50:bf:a0:6f:c4:dc:b2:9b:f3:4f:1e:8d:e3: 6e:67:cd:ae:39:87:3f:ba:9a:65:01:1c:b2:4f:58:fb:3d:2c: c3:3d:76:5b:15:d0:63:20:cc:61:b8:eb:59:35:41:7d:cf:c0: d0:d9:10:a9:5e:63:a7:10:24:f6:69:2d:bf:08:d6:4c:cd:23: 6a:26:0c:42:e7:78:43:53:0a:29:70:1e:a3:7a:8a:88:f8:4a: 12:10:36:60:88:6c:84:bc:ec:eb:89:f7:98:ea:53:f1:52:c5: 2d:3a:a2:e6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTT2ZJHVqceFNbbJVLujExBTnOu8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzMyNzlEQURCNEVCOUIzMUI4OENDQUI1RjY4M0REQTA1 NUY0RjBBOTAeFw0yNTAyMjYxNzU1MDBaFw0yNjAyMjUxODAwMDBaMDMxMTAvBgNV BAMTKDE0NjY3RDY0QzI4RkMyNDVEMUMzRjQ0RDM0MzA3M0IwRjgyMUEzNjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDln0DLa+avLoYyAVAQLQJYL9ic JI3cufwrosXBMXaMJYKx4jhc6lKYr0lWxcHhnShJUrFVg+z8NY9m6WQdYF6ozVL9 yvmhjU1ZbmznXq/N9Drpr4zGu77itQXFsilAIArFYl+gEkEZKgQ+fQMURqcaQYG1 z9Y/bvGiT2aGmRa3pLms++DQrg5y8UgpFI7A6IyoXnwZQxrtE0iIkkuAovL759Wr LtJfJJLpKoxZNJKJb87rRssySpGnSWeJtEiHk6Uz86/h0R/kgCoenB/tqMXif+1V heSTZovCveJTwpkuIcSvL2BZEf1+mP8N6lrip3chpvF8K5VUUtWXW0xm9grFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFGZ9ZMKPwkXRw/RNNDBzsPgho2kwHwYDVR0j BBgwFoAUcyedrbTrmzG4jMq19oPdoFX08KkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YzYzNmE0Ni0zOGZmLTQ0OTYtOTcyMS04YzAzY2YwNDYzNDUvMC83MzI3OURBREI0 RUI5QjMxQjg4Q0NBQjVGNjgzRERBMDU1RjRGMEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzMyNzlEQURCNEVCOUIzMUI4OENDQUI1RjY4M0REQTA1NUY0 RjBBOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjNjM2YTQ2LTM4ZmYtNDQ5Ni05 NzIxLThjMDNjZjA0NjM0NS8wLzMxMzAzMzJlMzUzNTJlMzIzNTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzOTM2MzkzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzf+MA0GCSqG SIb3DQEBCwUAA4IBAQCotgB/9FtssD51ohPZf8r89p7xtQ+dt0d1FtnkNffasRA6 L55nuJFf/Z+kX/wu+NbN7n2iOWOnYcetK2ZbO7oxmKAuNBZa+HTmMAgaaZMiFogp q3L70vLvT8DSmbQaRbMe669EwkjF7Y74Fs4P9BIsOF+m4wQR0ZajzhnRbPGNPTXw LjnkvqoJsMazK+kk+NNUpjEuD1C/oG/E3LKb808ejeNuZ82uOYc/upplARyyT1j7 PSzDPXZbFdBjIMxhuOtZNUF9z8DQ2RCpXmOnECT2aS2/CNZMzSNqJgxC53hDUwop cB6jeoqI+EoSEDZgiGyEvOzrifeY6lPxUsUtOqLm -----END CERTIFICATE-----Generated at Fri Apr 11 02:51:37 2025 by rpki-client