$ rpki-client -vvf repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3130332e3137302e39372e302f32342d3234203d3e20313432333638.roa File: 3130332e3137302e39372e302f32342d3234203d3e20313432333638.roa (raw, json) Hash identifier: KTRb8AUpIFgW2BgKsFuDBBnaCuIi/vxH3uLO0lAD6oo= Subject key identifier: 53:C7:59:4E:D8:7A:86:45:FF:4E:A5:B7:84:40:7D:5B:B0:F3:30:FB Certificate issuer: /CN=3BA10823C279932D7573B930625CD2884433C744 Certificate serial: 55522999301551C9AC7BA8AB4CE069C9B2B3FB2F Authority key identifier: 3B:A1:08:23:C2:79:93:2D:75:73:B9:30:62:5C:D2:88:44:33:C7:44 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA10823C279932D7573B930625CD2884433C744.cer Subject info access: rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3130332e3137302e39372e302f32342d3234203d3e20313432333638.roa Signing time: Sat 01 Mar 2025 11:00:00 +0000 ROA not before: Sat 01 Mar 2025 10:55:00 +0000 ROA not after: Sat 28 Feb 2026 11:00:00 +0000 asID: 142368 IP address blocks: 103.170.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3BA10823C279932D7573B930625CD2884433C744.crl rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3BA10823C279932D7573B930625CD2884433C744.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA10823C279932D7573B930625CD2884433C744.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 11:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:52:29:99:30:15:51:c9:ac:7b:a8:ab:4c:e0:69:c9:b2:b3:fb:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BA10823C279932D7573B930625CD2884433C744 Validity Not Before: Mar 1 10:55:00 2025 GMT Not After : Feb 28 11:00:00 2026 GMT Subject: CN=53C7594ED87A8645FF4EA5B784407D5BB0F330FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:af:b8:38:5a:f6:48:2d:a6:27:56:e2:37:5c: 2e:f9:f9:23:37:3b:ae:84:c7:93:5b:62:60:a0:c2: a6:7f:ac:ca:da:b2:2e:32:92:2d:4b:fb:bf:eb:4f: 96:cb:5a:a8:84:4d:42:7b:5f:d8:78:d3:95:d0:8b: 88:40:68:83:aa:2a:e3:b2:f2:14:d0:9f:98:2a:d8: a8:47:83:db:88:17:92:19:c6:63:98:2a:20:5d:69: ba:79:7e:52:6e:ac:b6:40:32:6a:76:33:3c:77:48: 52:b8:7f:92:2b:10:12:d1:05:e1:01:1f:09:c1:d7: 37:8b:e7:ac:25:b2:e1:67:fa:2c:76:55:08:7a:0d: d7:27:34:14:f3:0e:06:4d:5b:54:fa:07:e9:73:03: ed:64:ef:69:9d:c7:db:54:eb:06:2c:93:25:b9:ae: 2b:9b:4e:23:c8:88:d9:21:3a:69:99:7e:d7:ed:32: 17:a5:ec:a2:bf:8c:cc:62:17:85:17:4c:88:73:e2: f9:fc:c3:91:2c:1b:91:d8:7d:de:53:22:47:3a:6f: 17:84:a0:8f:d3:3b:62:40:a1:13:cb:f6:e6:42:9f: a3:75:ce:6b:d9:4d:ee:7c:70:90:cb:80:0b:df:85: 7a:16:cd:2a:28:34:67:df:63:fa:45:30:82:36:7a: b4:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:C7:59:4E:D8:7A:86:45:FF:4E:A5:B7:84:40:7D:5B:B0:F3:30:FB X509v3 Authority Key Identifier: keyid:3B:A1:08:23:C2:79:93:2D:75:73:B9:30:62:5C:D2:88:44:33:C7:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3BA10823C279932D7573B930625CD2884433C744.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA10823C279932D7573B930625CD2884433C744.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3130332e3137302e39372e302f32342d3234203d3e20313432333638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.97.0/24 Signature Algorithm: sha256WithRSAEncryption 41:5c:61:d5:d8:35:09:57:2a:a2:df:8c:e0:c0:e7:13:a3:fd: 95:bd:99:ff:50:8e:9c:1d:43:57:2c:da:c9:d6:f9:ee:26:79: 85:74:8e:91:6d:e8:2a:56:2a:4a:30:2e:11:22:36:cb:11:61: b8:4e:cf:68:c3:99:b3:c0:a9:3b:e8:f9:0a:a4:f8:5a:2b:3e: d8:ca:7c:9d:a4:f1:0c:85:82:9b:eb:03:25:59:21:2a:d9:4b: ff:99:ef:b4:99:c9:bd:e5:9c:24:f6:b4:74:4d:c9:dd:dc:ca: c4:b0:d7:20:cf:23:bd:4f:f6:3c:ec:65:17:8d:50:95:88:11: 75:ae:03:1f:1a:39:62:95:93:b0:a0:d3:5b:3f:95:b9:f4:9c: c9:2f:e3:b9:e5:a5:74:d0:29:9f:4c:bb:4c:2e:17:20:0a:06: e4:ec:58:42:39:94:4e:e3:9e:d3:b3:9f:12:51:c7:eb:ee:56: d5:bf:d0:ce:52:9b:fb:fb:9f:99:75:c1:22:9f:86:55:66:fa: fa:1e:7a:d2:67:00:30:7f:f7:83:e1:b6:43:60:03:60:db:b1: 4e:66:a4:99:4c:d4:1b:c0:65:f2:82:05:aa:7d:f3:ae:e0:e6: 8b:ec:bd:c8:90:07:ed:51:e1:3a:51:72:2b:44:a2:f2:dc:ac: 05:50:77:d9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVVIpmTAVUcmse6irTOBpybKz+y8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0JBMTA4MjNDMjc5OTMyRDc1NzNCOTMwNjI1Q0QyODg0 NDMzQzc0NDAeFw0yNTAzMDExMDU1MDBaFw0yNjAyMjgxMTAwMDBaMDMxMTAvBgNV BAMTKDUzQzc1OTRFRDg3QTg2NDVGRjRFQTVCNzg0NDA3RDVCQjBGMzMwRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcr7g4WvZILaYnVuI3XC75+SM3 O66Ex5NbYmCgwqZ/rMrasi4yki1L+7/rT5bLWqiETUJ7X9h405XQi4hAaIOqKuOy 8hTQn5gq2KhHg9uIF5IZxmOYKiBdabp5flJurLZAMmp2Mzx3SFK4f5IrEBLRBeEB HwnB1zeL56wlsuFn+ix2VQh6DdcnNBTzDgZNW1T6B+lzA+1k72mdx9tU6wYskyW5 riubTiPIiNkhOmmZftftMhel7KK/jMxiF4UXTIhz4vn8w5EsG5HYfd5TIkc6bxeE oI/TO2JAoRPL9uZCn6N1zmvZTe58cJDLgAvfhXoWzSooNGffY/pFMII2erSDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUU8dZTth6hkX/TqW3hEB9W7DzMPswHwYDVR0j BBgwFoAUO6EII8J5ky11c7kwYlzSiEQzx0QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MmQ0OTE3OS00ZDhiLTRkMmQtYWJmNC00MzIzMWRlYjViMDEvMC8zQkExMDgyM0My Nzk5MzJENzU3M0I5MzA2MjVDRDI4ODQ0MzNDNzQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0JBMTA4MjNDMjc5OTMyRDc1NzNCOTMwNjI1Q0QyODg0NDMz Qzc0NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgyZDQ5MTc5LTRkOGItNGQyZC1h YmY0LTQzMjMxZGViNWIwMS8wLzMxMzAzMzJlMzEzNzMwMmUzOTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6phMA0GCSqG SIb3DQEBCwUAA4IBAQBBXGHV2DUJVyqi34zgwOcTo/2VvZn/UI6cHUNXLNrJ1vnu JnmFdI6RbegqVipKMC4RIjbLEWG4Ts9ow5mzwKk76PkKpPhaKz7YynydpPEMhYKb 6wMlWSEq2Uv/me+0mcm95Zwk9rR0Tcnd3MrEsNcgzyO9T/Y87GUXjVCViBF1rgMf GjlilZOwoNNbP5W59JzJL+O55aV00CmfTLtMLhcgCgbk7FhCOZRO457Ts58SUcfr 7lbVv9DOUpv7+5+ZdcEin4ZVZvr6HnrSZwAwf/eD4bZDYANg27FOZqSZTNQbwGXy ggWqffOu4OaL7L3IkAftUeE6UXIrRKLy3KwFUHfZ -----END CERTIFICATE-----Generated at Sun Apr 6 08:34:26 2025 by rpki-client