$ rpki-client -vvf repo-rpki.idnic.net/repo/7d035b3b-e6c5-47f8-99b4-1cb0326edae5/0/3130332e3136332e3233302e302f32342d3234203d3e20313431393037.roa File: 3130332e3136332e3233302e302f32342d3234203d3e20313431393037.roa (raw, json) Hash identifier: BplHdHRvA1GeP43VsiSGj8a+Gmuq6dP6VgR2vhuZ0uU= Subject key identifier: 4F:B8:95:17:1A:63:51:A2:58:94:16:51:18:2F:7D:B6:4E:F8:23:FD Certificate issuer: /CN=4ECF7DFB09FB3B5C21DDE661150B95768B6BD319 Certificate serial: 0E25217DC2A766B920E3251B0E5AFB193BB8AF01 Authority key identifier: 4E:CF:7D:FB:09:FB:3B:5C:21:DD:E6:61:15:0B:95:76:8B:6B:D3:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4ECF7DFB09FB3B5C21DDE661150B95768B6BD319.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d035b3b-e6c5-47f8-99b4-1cb0326edae5/0/3130332e3136332e3233302e302f32342d3234203d3e20313431393037.roa Signing time: Tue 18 Mar 2025 07:00:03 +0000 ROA not before: Tue 18 Mar 2025 06:55:03 +0000 ROA not after: Tue 17 Mar 2026 07:00:03 +0000 asID: 141907 IP address blocks: 103.163.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d035b3b-e6c5-47f8-99b4-1cb0326edae5/0/4ECF7DFB09FB3B5C21DDE661150B95768B6BD319.crl rsync://repo-rpki.idnic.net/repo/7d035b3b-e6c5-47f8-99b4-1cb0326edae5/0/4ECF7DFB09FB3B5C21DDE661150B95768B6BD319.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4ECF7DFB09FB3B5C21DDE661150B95768B6BD319.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 14:55:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:25:21:7d:c2:a7:66:b9:20:e3:25:1b:0e:5a:fb:19:3b:b8:af:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ECF7DFB09FB3B5C21DDE661150B95768B6BD319 Validity Not Before: Mar 18 06:55:03 2025 GMT Not After : Mar 17 07:00:03 2026 GMT Subject: CN=4FB895171A6351A258941651182F7DB64EF823FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:5a:35:92:10:dd:a5:d4:b1:2b:83:c1:b4:a3: 88:2c:7a:8f:3f:71:45:b5:03:c7:5f:07:10:51:cf: e5:4a:1d:33:77:6e:fb:9d:33:17:7f:af:b8:d8:28: b2:59:85:2d:ce:f5:a4:72:15:d5:18:7c:cd:f3:dc: e8:91:5d:58:74:17:4f:0b:d7:f8:62:48:61:bc:15: d7:42:43:e5:8c:21:88:b2:e7:01:3f:9c:5c:59:c1: 4f:4a:a4:2f:7e:0b:0d:ea:e2:86:f8:0c:e1:f9:4c: 78:4b:de:f4:7e:d9:04:bc:c1:a4:08:e0:e5:22:63: a6:59:36:4a:5d:82:3c:7b:96:3e:83:1c:86:c6:2a: 8f:4c:7e:23:0f:e6:70:7e:01:f6:d6:61:8f:cb:70: f5:da:a2:9a:62:bf:9f:dd:e2:f8:d5:fc:16:f5:7a: d4:ab:62:5c:52:6c:89:ac:58:e8:b6:15:15:e5:33: 7a:93:cf:ce:30:df:c6:01:f1:28:3f:a3:0e:57:20: b1:4b:24:04:ba:d7:2a:99:ea:e7:c8:29:06:79:cd: 44:de:32:bb:a8:a0:9e:f2:e4:43:46:fc:a6:43:c6: bf:26:47:1b:c9:0a:4e:27:1a:34:2f:74:8c:f5:bd: 0e:78:07:bd:a1:e9:ff:f2:a3:92:45:46:40:75:14: bf:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:B8:95:17:1A:63:51:A2:58:94:16:51:18:2F:7D:B6:4E:F8:23:FD X509v3 Authority Key Identifier: keyid:4E:CF:7D:FB:09:FB:3B:5C:21:DD:E6:61:15:0B:95:76:8B:6B:D3:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d035b3b-e6c5-47f8-99b4-1cb0326edae5/0/4ECF7DFB09FB3B5C21DDE661150B95768B6BD319.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4ECF7DFB09FB3B5C21DDE661150B95768B6BD319.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d035b3b-e6c5-47f8-99b4-1cb0326edae5/0/3130332e3136332e3233302e302f32342d3234203d3e20313431393037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.230.0/24 Signature Algorithm: sha256WithRSAEncryption 97:bc:3b:56:e8:54:f2:2d:cd:bd:b3:cd:0f:e6:41:96:5e:12: ea:66:c7:07:f3:36:be:44:60:a4:95:7a:5a:38:f5:39:cc:b6: 14:fc:be:ee:c2:2d:46:d2:aa:4b:d0:91:53:a8:84:54:66:e2: 0d:0f:40:18:9d:9b:08:1e:f9:e2:f7:dc:d9:d1:a4:50:28:82: 3e:c9:02:bf:50:1c:3a:7b:f9:bc:0c:cd:5b:85:ff:64:0a:a0: af:55:7c:b6:56:9c:a3:43:35:05:62:98:52:ec:3a:1b:50:59: 13:1d:14:d1:7f:31:f3:9b:8e:f7:96:2d:16:1e:37:e9:81:0c: df:11:86:66:e1:e0:e6:25:c5:f3:ad:5e:4a:01:40:37:05:1e: de:3a:c0:a8:eb:82:e1:f3:3a:25:38:e9:18:b5:68:86:a9:4f: 88:8f:48:95:bf:d5:bc:ed:59:1a:a9:ff:dc:84:c4:23:fd:29: 83:51:eb:dd:69:8f:38:a6:f1:6a:3a:a9:18:34:29:55:3b:83: 04:cd:c1:e2:f9:49:f3:f0:fb:80:dd:8c:fc:4e:4e:a8:74:6c: 29:01:38:26:2a:b1:cd:48:22:3b:7a:33:39:64:d1:15:b8:1c: 35:5e:cf:ee:54:af:e8:8f:44:19:01:6d:d5:cb:51:d0:7e:67: 04:d7:b6:2a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDiUhfcKnZrkg4yUbDlr7GTu4rwEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEVDRjdERkIwOUZCM0I1QzIxRERFNjYxMTUwQjk1NzY4 QjZCRDMxOTAeFw0yNTAzMTgwNjU1MDNaFw0yNjAzMTcwNzAwMDNaMDMxMTAvBgNV BAMTKDRGQjg5NTE3MUE2MzUxQTI1ODk0MTY1MTE4MkY3REI2NEVGODIzRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNWjWSEN2l1LErg8G0o4gseo8/ cUW1A8dfBxBRz+VKHTN3bvudMxd/r7jYKLJZhS3O9aRyFdUYfM3z3OiRXVh0F08L 1/hiSGG8FddCQ+WMIYiy5wE/nFxZwU9KpC9+Cw3q4ob4DOH5THhL3vR+2QS8waQI 4OUiY6ZZNkpdgjx7lj6DHIbGKo9MfiMP5nB+AfbWYY/LcPXaoppiv5/d4vjV/Bb1 etSrYlxSbImsWOi2FRXlM3qTz84w38YB8Sg/ow5XILFLJAS61yqZ6ufIKQZ5zUTe MruooJ7y5ENG/KZDxr8mRxvJCk4nGjQvdIz1vQ54B72h6f/yo5JFRkB1FL8PAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUT7iVFxpjUaJYlBZRGC99tk74I/0wHwYDVR0j BBgwFoAUTs99+wn7O1wh3eZhFQuVdotr0xkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDAzNWIzYi1lNmM1LTQ3ZjgtOTliNC0xY2IwMzI2ZWRhZTUvMC80RUNGN0RGQjA5 RkIzQjVDMjFEREU2NjExNTBCOTU3NjhCNkJEMzE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEVDRjdERkIwOUZCM0I1QzIxRERFNjYxMTUwQjk1NzY4QjZC RDMxOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkMDM1YjNiLWU2YzUtNDdmOC05 OWI0LTFjYjAzMjZlZGFlNS8wLzMxMzAzMzJlMzEzNjMzMmUzMjMzMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABno+YwDQYJ KoZIhvcNAQELBQADggEBAJe8O1boVPItzb2zzQ/mQZZeEupmxwfzNr5EYKSVelo4 9TnMthT8vu7CLUbSqkvQkVOohFRm4g0PQBidmwge+eL33NnRpFAogj7JAr9QHDp7 +bwMzVuF/2QKoK9VfLZWnKNDNQVimFLsOhtQWRMdFNF/MfObjveWLRYeN+mBDN8R hmbh4OYlxfOtXkoBQDcFHt46wKjrguHzOiU46Ri1aIapT4iPSJW/1bztWRqp/9yE xCP9KYNR691pjzim8Wo6qRg0KVU7gwTNweL5SfPw+4DdjPxOTqh0bCkBOCYqsc1I Ijt6Mzlk0RW4HDVez+5Ur+iPRBkBbdXLUdB+ZwTXtio= -----END CERTIFICATE-----Generated at Thu Apr 17 01:08:13 2025 by rpki-client