$ rpki-client -vvf repo-rpki.idnic.net/repo/7d035b3b-e6c5-47f8-99b4-1cb0326edae5/0/3130332e3136332e3233302e302f32332d3233203d3e20313431393037.roa File: 3130332e3136332e3233302e302f32332d3233203d3e20313431393037.roa (raw, json) Hash identifier: TWsMpo4cWVJOgLuAED46zFpQBaqLsvvEiv7xGtW44bE= Subject key identifier: EC:4E:71:FB:6B:19:CE:35:AC:BE:AD:5D:F6:DC:E5:82:5F:12:0A:FC Certificate issuer: /CN=4ECF7DFB09FB3B5C21DDE661150B95768B6BD319 Certificate serial: 652DC1149988100352262C274C06937F8FCA0157 Authority key identifier: 4E:CF:7D:FB:09:FB:3B:5C:21:DD:E6:61:15:0B:95:76:8B:6B:D3:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4ECF7DFB09FB3B5C21DDE661150B95768B6BD319.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d035b3b-e6c5-47f8-99b4-1cb0326edae5/0/3130332e3136332e3233302e302f32332d3233203d3e20313431393037.roa Signing time: Tue 18 Mar 2025 07:00:03 +0000 ROA not before: Tue 18 Mar 2025 06:55:03 +0000 ROA not after: Tue 17 Mar 2026 07:00:03 +0000 asID: 141907 IP address blocks: 103.163.230.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d035b3b-e6c5-47f8-99b4-1cb0326edae5/0/4ECF7DFB09FB3B5C21DDE661150B95768B6BD319.crl rsync://repo-rpki.idnic.net/repo/7d035b3b-e6c5-47f8-99b4-1cb0326edae5/0/4ECF7DFB09FB3B5C21DDE661150B95768B6BD319.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4ECF7DFB09FB3B5C21DDE661150B95768B6BD319.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 14:55:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:2d:c1:14:99:88:10:03:52:26:2c:27:4c:06:93:7f:8f:ca:01:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ECF7DFB09FB3B5C21DDE661150B95768B6BD319 Validity Not Before: Mar 18 06:55:03 2025 GMT Not After : Mar 17 07:00:03 2026 GMT Subject: CN=EC4E71FB6B19CE35ACBEAD5DF6DCE5825F120AFC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d3:27:54:f5:9b:05:21:cf:f8:4e:35:a1:ff: d1:2f:dc:50:55:ee:3b:3d:60:2c:eb:ca:fb:60:60: 8a:47:0e:ab:18:ea:e7:ce:24:37:93:d4:4e:20:8a: 5b:02:03:07:02:3c:1b:92:1e:96:f3:7d:d0:ca:cd: 0f:57:84:9c:d1:71:d2:42:97:76:9e:74:68:d1:81: c5:68:6f:e6:e6:f2:64:03:89:0e:0e:e8:41:ba:6d: d0:44:02:3d:ba:58:c3:08:8d:a9:4a:de:d6:fb:a0: d4:a3:d8:90:a9:d6:cf:e1:c8:ae:87:4f:74:c0:8a: a4:ca:11:77:b8:56:ac:d8:96:f3:22:f9:43:5c:a8: 80:9c:c2:26:c5:b2:8e:26:76:64:45:ee:cc:11:b7: 21:b7:b4:90:e4:ba:07:dd:10:78:ee:f8:45:13:0f: 87:f6:8a:3e:dc:78:cf:83:89:76:f2:d9:d2:1a:5f: e9:05:5a:63:79:01:53:f0:a7:8e:ac:dd:f5:57:b1: 8f:ff:c9:fc:f3:42:20:a8:c1:e4:ce:a5:25:0d:25: 6f:d8:87:fd:81:3b:11:12:aa:8d:3c:f2:ee:54:e1: 8c:c3:71:00:20:76:1d:0c:3a:f3:ee:23:4a:e9:d2: 20:20:53:eb:34:c1:93:91:bb:db:a9:1d:88:e7:22: 8a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:4E:71:FB:6B:19:CE:35:AC:BE:AD:5D:F6:DC:E5:82:5F:12:0A:FC X509v3 Authority Key Identifier: keyid:4E:CF:7D:FB:09:FB:3B:5C:21:DD:E6:61:15:0B:95:76:8B:6B:D3:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d035b3b-e6c5-47f8-99b4-1cb0326edae5/0/4ECF7DFB09FB3B5C21DDE661150B95768B6BD319.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4ECF7DFB09FB3B5C21DDE661150B95768B6BD319.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d035b3b-e6c5-47f8-99b4-1cb0326edae5/0/3130332e3136332e3233302e302f32332d3233203d3e20313431393037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.230.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:26:b9:0a:57:21:3b:55:6f:9f:cc:b0:d5:99:19:b7:38:d7: 29:ad:98:43:f3:77:95:8e:b8:57:0b:26:ba:8d:32:49:bd:bc: 58:4a:ee:ba:da:e3:ed:24:5b:73:55:4c:d5:02:a2:6f:96:39: 4a:84:65:88:53:e3:84:52:84:7a:c6:7a:f1:f3:fe:5e:fe:44: ee:30:f6:f6:e2:9a:ca:83:50:f5:e3:ac:ba:27:38:bf:cf:6b: 68:88:72:05:13:84:94:97:52:8d:74:e4:15:0f:70:49:d1:64: 52:51:5a:3a:7d:e0:6c:5b:a1:88:68:f5:88:41:0f:1c:3d:c9: 75:f0:84:88:1d:9b:dd:0d:cc:23:aa:98:5c:1c:9a:ad:92:28: 53:9a:b8:a5:38:4a:2b:24:d1:1a:3f:06:ae:74:21:f7:86:a9: d0:f8:7e:94:53:3f:3f:ac:34:ee:ac:d5:51:ea:54:89:f5:70: 43:b3:df:dd:de:7f:77:b8:eb:44:f2:31:4a:ff:32:a3:4a:9f: cc:b2:ff:1c:4f:60:18:d3:46:f0:7f:5e:74:a7:b4:0a:14:ed: 34:c3:b9:cb:81:9d:62:d0:ff:67:fd:1d:13:ad:ac:27:55:91: 7d:d7:2f:50:05:13:7e:38:87:15:c4:ce:f9:83:78:cf:8c:41: 58:cd:6c:30 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZS3BFJmIEANSJiwnTAaTf4/KAVcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEVDRjdERkIwOUZCM0I1QzIxRERFNjYxMTUwQjk1NzY4 QjZCRDMxOTAeFw0yNTAzMTgwNjU1MDNaFw0yNjAzMTcwNzAwMDNaMDMxMTAvBgNV BAMTKEVDNEU3MUZCNkIxOUNFMzVBQ0JFQUQ1REY2RENFNTgyNUYxMjBBRkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC00ydU9ZsFIc/4TjWh/9Ev3FBV 7js9YCzryvtgYIpHDqsY6ufOJDeT1E4gilsCAwcCPBuSHpbzfdDKzQ9XhJzRcdJC l3aedGjRgcVob+bm8mQDiQ4O6EG6bdBEAj26WMMIjalK3tb7oNSj2JCp1s/hyK6H T3TAiqTKEXe4VqzYlvMi+UNcqICcwibFso4mdmRF7swRtyG3tJDkugfdEHju+EUT D4f2ij7ceM+DiXby2dIaX+kFWmN5AVPwp46s3fVXsY//yfzzQiCoweTOpSUNJW/Y h/2BOxESqo088u5U4YzDcQAgdh0MOvPuI0rp0iAgU+s0wZORu9upHYjnIoq1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU7E5x+2sZzjWsvq1d9tzlgl8SCvwwHwYDVR0j BBgwFoAUTs99+wn7O1wh3eZhFQuVdotr0xkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDAzNWIzYi1lNmM1LTQ3ZjgtOTliNC0xY2IwMzI2ZWRhZTUvMC80RUNGN0RGQjA5 RkIzQjVDMjFEREU2NjExNTBCOTU3NjhCNkJEMzE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEVDRjdERkIwOUZCM0I1QzIxRERFNjYxMTUwQjk1NzY4QjZC RDMxOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkMDM1YjNiLWU2YzUtNDdmOC05 OWI0LTFjYjAzMjZlZGFlNS8wLzMxMzAzMzJlMzEzNjMzMmUzMjMzMzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzOTMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFno+YwDQYJ KoZIhvcNAQELBQADggEBAAomuQpXITtVb5/MsNWZGbc41ymtmEPzd5WOuFcLJrqN Mkm9vFhK7rra4+0kW3NVTNUCom+WOUqEZYhT44RShHrGevHz/l7+RO4w9vbimsqD UPXjrLonOL/Pa2iIcgUThJSXUo105BUPcEnRZFJRWjp94GxboYho9YhBDxw9yXXw hIgdm90NzCOqmFwcmq2SKFOauKU4Sisk0Ro/Bq50IfeGqdD4fpRTPz+sNO6s1VHq VIn1cEOz393ef3e460TyMUr/MqNKn8yy/xxPYBjTRvB/XnSntAoU7TTDucuBnWLQ /2f9HROtrCdVkX3XL1AFE344hxXEzvmDeM+MQVjNbDA= -----END CERTIFICATE-----Generated at Thu Apr 17 01:03:47 2025 by rpki-client