$ rpki-client -vvf repo-rpki.idnic.net/repo/8165e481-5a79-4868-a4e4-facfd922d813/0/3130332e3135302e3135392e302f32342d3234203d3e20313430343331.roa File: 3130332e3135302e3135392e302f32342d3234203d3e20313430343331.roa (raw, json) Hash identifier: e3s751+uHuq2vHbykLAhhBQ6L17VHuRd5Etg83ChrxA= Subject key identifier: B6:07:73:70:80:9D:E4:1F:EA:86:32:6B:D0:E6:6C:07:BC:75:97:80 Certificate issuer: /CN=FB3AAFE074610C85854BE75082EC16E60A126879 Certificate serial: 3148EDB5FA8F88499764C8BA2C23BE0913680C5B Authority key identifier: FB:3A:AF:E0:74:61:0C:85:85:4B:E7:50:82:EC:16:E6:0A:12:68:79 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FB3AAFE074610C85854BE75082EC16E60A126879.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8165e481-5a79-4868-a4e4-facfd922d813/0/3130332e3135302e3135392e302f32342d3234203d3e20313430343331.roa Signing time: Thu 06 Mar 2025 15:00:01 +0000 ROA not before: Thu 06 Mar 2025 14:55:01 +0000 ROA not after: Thu 05 Mar 2026 15:00:01 +0000 asID: 140431 IP address blocks: 103.150.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8165e481-5a79-4868-a4e4-facfd922d813/0/FB3AAFE074610C85854BE75082EC16E60A126879.crl rsync://repo-rpki.idnic.net/repo/8165e481-5a79-4868-a4e4-facfd922d813/0/FB3AAFE074610C85854BE75082EC16E60A126879.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FB3AAFE074610C85854BE75082EC16E60A126879.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 12:05:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:48:ed:b5:fa:8f:88:49:97:64:c8:ba:2c:23:be:09:13:68:0c:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB3AAFE074610C85854BE75082EC16E60A126879 Validity Not Before: Mar 6 14:55:01 2025 GMT Not After : Mar 5 15:00:01 2026 GMT Subject: CN=B6077370809DE41FEA86326BD0E66C07BC759780 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:63:7c:8a:63:01:e0:56:b3:c1:bf:9f:1e:98: f6:3e:ef:a3:f7:89:9d:b0:6a:a8:aa:1e:a8:cb:c8: d6:e1:10:65:c6:8c:99:55:ad:f6:80:59:e8:b1:e4: 24:1c:d6:1e:96:a2:ce:8f:ed:54:9e:60:97:08:68: 07:cb:2e:89:f7:0d:78:09:c3:5c:8e:05:3c:4a:f3: 7f:64:b3:d6:59:49:0a:f1:80:b2:e6:73:d8:15:ab: 85:01:60:e2:89:ae:37:e8:6a:e3:d0:f3:53:b8:c4: b6:1b:ab:e3:d0:4e:5e:75:a7:e6:81:e7:d1:c6:16: e0:d5:b9:1c:b6:26:d7:e5:2b:78:11:07:32:41:c7: ca:c1:ea:54:21:f4:61:4f:f4:30:a5:e5:76:ad:52: cd:99:f4:c0:53:a6:3d:1d:63:fc:59:1d:07:fc:0c: ef:a4:5c:95:93:d2:6f:8d:78:89:3a:4e:6f:40:02: 91:79:88:27:cf:a1:c5:70:ca:49:a6:a1:1f:a7:3c: 55:8e:46:1c:5f:7d:f4:bd:02:5b:de:ef:33:a3:c4: cb:ff:9f:6f:21:29:79:41:72:07:cb:e9:88:ba:84: d9:45:77:62:51:ed:b8:67:95:e6:47:12:90:ef:f6: 17:43:e8:a3:50:8a:21:f3:1d:73:5d:bd:04:b3:96: 43:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:07:73:70:80:9D:E4:1F:EA:86:32:6B:D0:E6:6C:07:BC:75:97:80 X509v3 Authority Key Identifier: keyid:FB:3A:AF:E0:74:61:0C:85:85:4B:E7:50:82:EC:16:E6:0A:12:68:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8165e481-5a79-4868-a4e4-facfd922d813/0/FB3AAFE074610C85854BE75082EC16E60A126879.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FB3AAFE074610C85854BE75082EC16E60A126879.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8165e481-5a79-4868-a4e4-facfd922d813/0/3130332e3135302e3135392e302f32342d3234203d3e20313430343331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.150.159.0/24 Signature Algorithm: sha256WithRSAEncryption 85:2e:44:da:40:e1:27:9b:62:93:36:7e:28:ef:ff:cb:d3:21: b3:bb:08:64:0a:37:64:b5:f4:f0:64:99:5b:81:c2:39:99:b5: f8:9c:fc:39:4d:dd:72:43:09:8f:c5:09:5e:9f:5e:7c:2d:99: b0:ef:c7:38:60:f3:f4:16:43:e9:b6:86:f5:c4:b2:49:c9:fc: 78:bb:32:9f:ee:85:86:b4:d1:b7:87:f3:1d:3a:a9:96:b3:5f: 33:72:33:fe:52:7a:f1:00:75:bc:29:17:f8:4a:b5:40:b7:a9: f2:f6:70:ab:28:cc:dc:4a:09:cb:38:dd:46:e0:f5:97:db:7a: 75:c6:a8:df:a4:f1:85:79:4a:26:8c:ed:80:27:6d:c5:d9:2a: 6a:f2:c2:4a:6b:20:d4:83:ff:65:42:30:0a:0e:9d:60:90:92: 7e:fa:45:0c:71:0b:57:39:39:53:c2:fb:67:77:38:41:f1:26: ae:f4:0b:d6:73:90:6f:39:6d:7a:27:16:3c:f4:90:a7:34:a1: fa:b4:89:32:82:86:3b:e8:e7:c4:3c:2b:a5:05:3c:2a:d1:06: 5e:c3:da:e6:49:dc:ad:b9:0b:98:99:cc:28:3c:08:dd:33:d7: db:ec:05:d9:4b:4a:02:6b:ff:e1:f9:de:a1:c6:c0:51:ce:55: 7d:69:81:0f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMUjttfqPiEmXZMi6LCO+CRNoDFswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkIzQUFGRTA3NDYxMEM4NTg1NEJFNzUwODJFQzE2RTYw QTEyNjg3OTAeFw0yNTAzMDYxNDU1MDFaFw0yNjAzMDUxNTAwMDFaMDMxMTAvBgNV BAMTKEI2MDc3MzcwODA5REU0MUZFQTg2MzI2QkQwRTY2QzA3QkM3NTk3ODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjY3yKYwHgVrPBv58emPY+76P3 iZ2waqiqHqjLyNbhEGXGjJlVrfaAWeix5CQc1h6Wos6P7VSeYJcIaAfLLon3DXgJ w1yOBTxK839ks9ZZSQrxgLLmc9gVq4UBYOKJrjfoauPQ81O4xLYbq+PQTl51p+aB 59HGFuDVuRy2JtflK3gRBzJBx8rB6lQh9GFP9DCl5XatUs2Z9MBTpj0dY/xZHQf8 DO+kXJWT0m+NeIk6Tm9AApF5iCfPocVwykmmoR+nPFWORhxfffS9Alve7zOjxMv/ n28hKXlBcgfL6Yi6hNlFd2JR7bhnleZHEpDv9hdD6KNQiiHzHXNdvQSzlkPLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUtgdzcICd5B/qhjJr0OZsB7x1l4AwHwYDVR0j BBgwFoAU+zqv4HRhDIWFS+dQguwW5goSaHkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MTY1ZTQ4MS01YTc5LTQ4NjgtYTRlNC1mYWNmZDkyMmQ4MTMvMC9GQjNBQUZFMDc0 NjEwQzg1ODU0QkU3NTA4MkVDMTZFNjBBMTI2ODc5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkIzQUFGRTA3NDYxMEM4NTg1NEJFNzUwODJFQzE2RTYwQTEy Njg3OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxNjVlNDgxLTVhNzktNDg2OC1h NGU0LWZhY2ZkOTIyZDgxMy8wLzMxMzAzMzJlMzEzNTMwMmUzMTM1MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMzMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnlp8wDQYJ KoZIhvcNAQELBQADggEBAIUuRNpA4SebYpM2fijv/8vTIbO7CGQKN2S19PBkmVuB wjmZtfic/DlN3XJDCY/FCV6fXnwtmbDvxzhg8/QWQ+m2hvXEsknJ/Hi7Mp/uhYa0 0beH8x06qZazXzNyM/5SevEAdbwpF/hKtUC3qfL2cKsozNxKCcs43Ubg9ZfbenXG qN+k8YV5SiaM7YAnbcXZKmrywkprINSD/2VCMAoOnWCQkn76RQxxC1c5OVPC+2d3 OEHxJq70C9ZzkG85bXonFjz0kKc0ofq0iTKChjvo58Q8K6UFPCrRBl7D2uZJ3K25 C5iZzCg8CN0z19vsBdlLSgJr/+H53qHGwFHOVX1pgQ8= -----END CERTIFICATE-----Generated at Mon Apr 7 18:51:36 2025 by rpki-client