$ rpki-client -vvf repo-rpki.idnic.net/repo/7e4aca3c-63dc-4c1b-a7e8-acbae821cde5/0/3130332e3130322e3234392e302f32342d3234203d3e20313331373639.roa File: 3130332e3130322e3234392e302f32342d3234203d3e20313331373639.roa (raw, json) Hash identifier: CfvBdS5IBCOEZvX5RPxDKHTHJzQIXXgR8eDjCnOahQc= Subject key identifier: 49:50:FB:36:32:D2:1A:51:27:0E:57:DE:38:91:8B:AF:4F:77:C5:75 Certificate issuer: /CN=35369AC685201508541197F86A8FDAC2375BE30A Certificate serial: 03E54F718A3BD448A0F627840C091248FD3A6107 Authority key identifier: 35:36:9A:C6:85:20:15:08:54:11:97:F8:6A:8F:DA:C2:37:5B:E3:0A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35369AC685201508541197F86A8FDAC2375BE30A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e4aca3c-63dc-4c1b-a7e8-acbae821cde5/0/3130332e3130322e3234392e302f32342d3234203d3e20313331373639.roa Signing time: Thu 16 Jan 2025 09:00:02 +0000 ROA not before: Thu 16 Jan 2025 08:55:02 +0000 ROA not after: Thu 15 Jan 2026 09:00:02 +0000 asID: 131769 IP address blocks: 103.102.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e4aca3c-63dc-4c1b-a7e8-acbae821cde5/0/35369AC685201508541197F86A8FDAC2375BE30A.crl rsync://repo-rpki.idnic.net/repo/7e4aca3c-63dc-4c1b-a7e8-acbae821cde5/0/35369AC685201508541197F86A8FDAC2375BE30A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35369AC685201508541197F86A8FDAC2375BE30A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 15:34:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:e5:4f:71:8a:3b:d4:48:a0:f6:27:84:0c:09:12:48:fd:3a:61:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35369AC685201508541197F86A8FDAC2375BE30A Validity Not Before: Jan 16 08:55:02 2025 GMT Not After : Jan 15 09:00:02 2026 GMT Subject: CN=4950FB3632D21A51270E57DE38918BAF4F77C575 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c4:39:8e:78:ea:98:b4:25:c7:c3:a6:b5:2d: 2c:50:9b:34:d9:73:45:1e:fe:74:41:53:ce:f7:e8: 9e:0e:17:b7:06:a0:89:cb:45:8c:55:df:67:3d:da: a0:91:a7:a3:64:9f:c9:9f:94:6e:64:4a:af:0c:04: d2:ba:f5:69:7f:1b:58:eb:3d:2f:31:06:48:d0:15: 2f:2c:23:69:1f:f2:99:cb:b5:d2:f5:15:50:e2:3b: b1:f7:06:51:11:c2:b1:9b:80:ef:61:e3:4f:99:85: 93:85:03:9e:5f:9a:02:21:01:59:cf:b7:ed:b6:2f: 7f:b0:67:cb:9d:f1:b9:db:dd:9c:e6:04:00:3f:c5: bb:d5:68:27:5f:01:dc:a7:fc:14:18:99:f9:00:d9: 43:95:d7:c2:ce:4b:0a:06:14:aa:18:62:95:f0:2b: 4b:3f:73:e5:22:94:44:38:b9:94:6d:47:37:cf:80: 00:85:c3:3a:d0:3f:3a:63:cd:7a:56:20:30:b4:58: 89:92:79:fd:1d:08:c5:5c:92:05:bd:64:5a:05:88: 28:0e:1c:7e:42:2d:83:96:88:ae:86:35:b7:8a:9a: 0b:cb:df:aa:3b:dc:b3:d2:97:d4:ce:0d:94:40:66: b2:e7:fa:cd:89:d4:ad:c1:ef:aa:a1:d4:e1:a1:6c: 6a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:50:FB:36:32:D2:1A:51:27:0E:57:DE:38:91:8B:AF:4F:77:C5:75 X509v3 Authority Key Identifier: keyid:35:36:9A:C6:85:20:15:08:54:11:97:F8:6A:8F:DA:C2:37:5B:E3:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e4aca3c-63dc-4c1b-a7e8-acbae821cde5/0/35369AC685201508541197F86A8FDAC2375BE30A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35369AC685201508541197F86A8FDAC2375BE30A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e4aca3c-63dc-4c1b-a7e8-acbae821cde5/0/3130332e3130322e3234392e302f32342d3234203d3e20313331373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.249.0/24 Signature Algorithm: sha256WithRSAEncryption 99:ce:fe:84:e5:0e:92:bb:96:07:92:fe:69:3f:ef:6e:91:b6: 3c:bd:d0:1a:41:69:ea:da:14:39:2c:81:df:39:f5:45:96:63: d2:3b:bd:e3:cf:84:1a:47:ab:43:f5:40:c8:86:8a:21:07:8e: 72:2d:36:76:64:3d:80:37:5f:a6:79:5a:49:cb:26:07:69:01: f4:f8:1a:0e:bf:1d:a6:07:2d:78:94:a3:14:86:f8:87:73:dd: 21:1f:ea:5f:35:32:a3:1b:d5:e7:01:5e:a7:e4:69:b9:7f:24: 28:39:f2:26:fd:80:83:33:78:7b:4c:1f:b2:a1:fd:a1:25:5f: 82:1e:80:d9:31:43:7f:de:bf:1c:7c:99:e7:67:c4:37:85:16: ae:3d:86:b1:17:70:3a:b5:72:6c:c4:99:c6:76:3a:12:60:26: a9:1a:13:83:4b:c5:49:5a:3b:d7:0a:7d:45:99:f3:5a:06:3b: 5a:8d:d0:88:f7:f3:2c:e9:82:4c:74:05:fa:1e:07:29:22:b9: 7a:6a:33:59:fa:45:8c:6a:b6:d1:b8:5e:54:6b:5c:b0:cd:e0: 8b:e2:be:c7:13:53:02:3b:18:64:c1:4f:c6:c9:15:a5:28:24: 2b:bd:a4:fd:81:4d:69:b0:ba:6c:1e:8a:ea:fd:97:87:5e:7e: 85:e4:82:70 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUA+VPcYo71Eig9ieEDAkSSP06YQcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzUzNjlBQzY4NTIwMTUwODU0MTE5N0Y4NkE4RkRBQzIz NzVCRTMwQTAeFw0yNTAxMTYwODU1MDJaFw0yNjAxMTUwOTAwMDJaMDMxMTAvBgNV BAMTKDQ5NTBGQjM2MzJEMjFBNTEyNzBFNTdERTM4OTE4QkFGNEY3N0M1NzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQxDmOeOqYtCXHw6a1LSxQmzTZ c0Ue/nRBU8736J4OF7cGoInLRYxV32c92qCRp6Nkn8mflG5kSq8MBNK69Wl/G1jr PS8xBkjQFS8sI2kf8pnLtdL1FVDiO7H3BlERwrGbgO9h40+ZhZOFA55fmgIhAVnP t+22L3+wZ8ud8bnb3ZzmBAA/xbvVaCdfAdyn/BQYmfkA2UOV18LOSwoGFKoYYpXw K0s/c+UilEQ4uZRtRzfPgACFwzrQPzpjzXpWIDC0WImSef0dCMVckgW9ZFoFiCgO HH5CLYOWiK6GNbeKmgvL36o73LPSl9TODZRAZrLn+s2J1K3B76qh1OGhbGoRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUSVD7NjLSGlEnDlfeOJGLr093xXUwHwYDVR0j BBgwFoAUNTaaxoUgFQhUEZf4ao/awjdb4wowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTRhY2EzYy02M2RjLTRjMWItYTdlOC1hY2JhZTgyMWNkZTUvMC8zNTM2OUFDNjg1 MjAxNTA4NTQxMTk3Rjg2QThGREFDMjM3NUJFMzBBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzUzNjlBQzY4NTIwMTUwODU0MTE5N0Y4NkE4RkRBQzIzNzVC RTMwQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNGFjYTNjLTYzZGMtNGMxYi1h N2U4LWFjYmFlODIxY2RlNS8wLzMxMzAzMzJlMzEzMDMyMmUzMjM0MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZvkwDQYJ KoZIhvcNAQELBQADggEBAJnO/oTlDpK7lgeS/mk/726Rtjy90BpBaeraFDksgd85 9UWWY9I7vePPhBpHq0P1QMiGiiEHjnItNnZkPYA3X6Z5WknLJgdpAfT4Gg6/HaYH LXiUoxSG+Idz3SEf6l81MqMb1ecBXqfkabl/JCg58ib9gIMzeHtMH7Kh/aElX4Ie gNkxQ3/evxx8mednxDeFFq49hrEXcDq1cmzEmcZ2OhJgJqkaE4NLxUlaO9cKfUWZ 81oGO1qN0Ij38yzpgkx0BfoeBykiuXpqM1n6RYxqttG4XlRrXLDN4IvivscTUwI7 GGTBT8bJFaUoJCu9pP2BTWmwumweiur9l4defoXkgnA= -----END CERTIFICATE-----Generated at Sun Apr 6 10:48:29 2025 by rpki-client