$ rpki-client -vvf repo-rpki.idnic.net/repo/80ce4796-49de-43b1-a152-b18d11ada529/0/3130332e3139352e36352e302f32342d3234203d3e203530313034.roa File: 3130332e3139352e36352e302f32342d3234203d3e203530313034.roa (raw, json) Hash identifier: zq6FCBzDTt8AjXmbK9U4RXyugtl+khIAf1ju1PBBDs8= Subject key identifier: 03:D4:D0:A9:B3:B5:52:F4:FA:10:FC:1C:69:CF:82:E4:0A:FF:45:11 Certificate issuer: /CN=F8E12F0A433C8B733BE31DB5E0CD1EF202FC21EA Certificate serial: 17EBFF466C94C49ABBE0CACC96604DD28A099448 Authority key identifier: F8:E1:2F:0A:43:3C:8B:73:3B:E3:1D:B5:E0:CD:1E:F2:02:FC:21:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8E12F0A433C8B733BE31DB5E0CD1EF202FC21EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/80ce4796-49de-43b1-a152-b18d11ada529/0/3130332e3139352e36352e302f32342d3234203d3e203530313034.roa Signing time: Wed 01 Jan 2025 21:00:00 +0000 ROA not before: Wed 01 Jan 2025 20:55:00 +0000 ROA not after: Wed 31 Dec 2025 21:00:00 +0000 asID: 50104 IP address blocks: 103.195.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/80ce4796-49de-43b1-a152-b18d11ada529/0/F8E12F0A433C8B733BE31DB5E0CD1EF202FC21EA.crl rsync://repo-rpki.idnic.net/repo/80ce4796-49de-43b1-a152-b18d11ada529/0/F8E12F0A433C8B733BE31DB5E0CD1EF202FC21EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8E12F0A433C8B733BE31DB5E0CD1EF202FC21EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 05:10:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:eb:ff:46:6c:94:c4:9a:bb:e0:ca:cc:96:60:4d:d2:8a:09:94:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8E12F0A433C8B733BE31DB5E0CD1EF202FC21EA Validity Not Before: Jan 1 20:55:00 2025 GMT Not After : Dec 31 21:00:00 2025 GMT Subject: CN=03D4D0A9B3B552F4FA10FC1C69CF82E40AFF4511 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ba:e3:da:72:fa:04:16:a6:b1:02:4c:58:6d: 15:48:bf:94:11:e9:49:6f:99:52:55:a2:1e:0b:b0: 75:36:56:a9:39:61:97:7f:33:70:8a:60:50:bb:85: 64:31:39:fd:96:46:26:c7:23:1d:44:fa:e7:4d:b8: 62:76:7f:bb:37:59:f3:7e:d8:ee:ce:55:44:b1:aa: 57:e3:f8:95:43:a5:d9:25:b4:b2:97:ef:02:f6:19: 34:e8:61:f6:e5:b8:9f:14:95:bd:91:c7:b6:a6:68: 9b:9d:aa:4c:78:1f:dd:35:3d:09:f5:68:cf:ce:fa: c8:11:71:c9:00:1d:dd:0e:e3:7f:9e:00:74:96:97: 63:9b:14:3a:62:6d:9a:64:3f:50:d1:06:40:6a:5f: 5b:2a:00:1f:81:20:ca:37:dd:c5:4e:f0:3e:a6:89: 02:66:63:18:b1:cd:0a:a4:5d:b7:19:3b:0d:b2:49: 2e:1d:38:90:dd:0e:4b:9f:dd:e8:a4:87:aa:a8:7e: 49:de:fa:1b:83:54:53:45:dc:2d:e4:bf:15:f7:67: 57:02:ff:36:ff:78:7e:ac:a5:2f:fd:22:e1:f5:6a: 8e:8b:ed:70:a9:80:95:c8:dc:97:bc:a7:64:f7:85: 5e:63:76:26:78:85:59:95:a8:66:9a:ff:2d:12:5f: f3:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:D4:D0:A9:B3:B5:52:F4:FA:10:FC:1C:69:CF:82:E4:0A:FF:45:11 X509v3 Authority Key Identifier: keyid:F8:E1:2F:0A:43:3C:8B:73:3B:E3:1D:B5:E0:CD:1E:F2:02:FC:21:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/80ce4796-49de-43b1-a152-b18d11ada529/0/F8E12F0A433C8B733BE31DB5E0CD1EF202FC21EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8E12F0A433C8B733BE31DB5E0CD1EF202FC21EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/80ce4796-49de-43b1-a152-b18d11ada529/0/3130332e3139352e36352e302f32342d3234203d3e203530313034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.195.65.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:e3:ce:38:1e:a0:ff:c4:e8:16:1e:13:de:3c:60:f8:28:24: 62:e7:06:7a:20:2d:40:8a:3e:1a:38:9b:98:2c:f2:ce:5b:56: 0e:81:90:22:1c:06:a8:1d:97:0f:3a:e5:ef:8d:07:a7:99:48: 2f:2d:55:43:ff:13:61:56:4f:d0:c5:ff:a6:f1:9a:11:93:5d: 4c:09:8d:2c:b2:43:63:2d:f3:9c:f5:50:04:47:2c:d4:8a:06: 69:67:14:49:31:ec:be:b3:db:c4:b0:b0:0b:6e:b8:b1:32:ca: cb:a5:1e:65:39:e0:eb:78:8c:35:a1:ee:49:98:03:d5:fe:34: 7e:db:66:c2:ac:d2:d3:1b:d7:79:50:21:c4:7d:3d:6e:bb:1a: e4:81:3f:9d:b5:a6:b2:18:45:9e:6a:4c:6f:3a:d5:07:be:36: 20:11:d8:d0:76:34:05:cf:7e:38:02:69:6f:49:23:bb:80:17: 6c:3d:7c:5e:47:a8:ea:f0:47:22:22:80:2e:c6:4e:6f:af:5d: b7:76:26:3f:b6:df:a6:25:c9:2c:25:f5:0d:d5:59:4c:b3:db: c8:44:c4:f3:e0:a6:00:f9:3b:90:06:b6:50:65:2e:31:3a:f6: 0f:b6:24:7a:f3:69:29:0a:e9:88:59:ae:3a:25:fe:c3:de:05: 65:dd:ec:f2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUF+v/RmyUxJq74MrMlmBN0ooJlEgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhFMTJGMEE0MzNDOEI3MzNCRTMxREI1RTBDRDFFRjIw MkZDMjFFQTAeFw0yNTAxMDEyMDU1MDBaFw0yNTEyMzEyMTAwMDBaMDMxMTAvBgNV BAMTKDAzRDREMEE5QjNCNTUyRjRGQTEwRkMxQzY5Q0Y4MkU0MEFGRjQ1MTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKuuPacvoEFqaxAkxYbRVIv5QR 6UlvmVJVoh4LsHU2Vqk5YZd/M3CKYFC7hWQxOf2WRibHIx1E+udNuGJ2f7s3WfN+ 2O7OVUSxqlfj+JVDpdkltLKX7wL2GTToYfbluJ8Ulb2Rx7amaJudqkx4H901PQn1 aM/O+sgRcckAHd0O43+eAHSWl2ObFDpibZpkP1DRBkBqX1sqAB+BIMo33cVO8D6m iQJmYxixzQqkXbcZOw2ySS4dOJDdDkuf3eikh6qofkne+huDVFNF3C3kvxX3Z1cC /zb/eH6spS/9IuH1ao6L7XCpgJXI3Je8p2T3hV5jdiZ4hVmVqGaa/y0SX/MtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUA9TQqbO1UvT6EPwcac+C5Ar/RREwHwYDVR0j BBgwFoAU+OEvCkM8i3M74x214M0e8gL8IeowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MGNlNDc5Ni00OWRlLTQzYjEtYTE1Mi1iMThkMTFhZGE1MjkvMC9GOEUxMkYwQTQz M0M4QjczM0JFMzFEQjVFMENEMUVGMjAyRkMyMUVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhFMTJGMEE0MzNDOEI3MzNCRTMxREI1RTBDRDFFRjIwMkZD MjFFQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgwY2U0Nzk2LTQ5ZGUtNDNiMS1h MTUyLWIxOGQxMWFkYTUyOS8wLzMxMzAzMzJlMzEzOTM1MmUzNjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzMDMxMzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfDQTANBgkqhkiG 9w0BAQsFAAOCAQEAf+POOB6g/8ToFh4T3jxg+CgkYucGeiAtQIo+GjibmCzyzltW DoGQIhwGqB2XDzrl740Hp5lILy1VQ/8TYVZP0MX/pvGaEZNdTAmNLLJDYy3znPVQ BEcs1IoGaWcUSTHsvrPbxLCwC264sTLKy6UeZTng63iMNaHuSZgD1f40fttmwqzS 0xvXeVAhxH09brsa5IE/nbWmshhFnmpMbzrVB742IBHY0HY0Bc9+OAJpb0kju4AX bD18Xkeo6vBHIiKALsZOb69dt3YmP7bfpiXJLCX1DdVZTLPbyETE8+CmAPk7kAa2 UGUuMTr2D7YkevNpKQrpiFmuOiX+w94FZd3s8g== -----END CERTIFICATE-----Generated at Sun Apr 6 12:48:21 2025 by rpki-client