$ rpki-client -vvf repo-rpki.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/3130332e3137342e3132302e302f32332d3234203d3e20313437303937.roa File: 3130332e3137342e3132302e302f32332d3234203d3e20313437303937.roa (raw, json) Hash identifier: j0lcRKDX7Zai080pL+d3IVmhJOqrL+V2aEhEgUdciuo= Subject key identifier: 28:04:AA:49:86:4C:4B:B6:FF:C1:CC:0A:35:E7:E5:D7:5B:0F:3C:93 Certificate issuer: /CN=A0B51BC5AC7C95737A24BD6A28D8249E7A80CF4B Certificate serial: 335D37763963DAA716F513A6A21B33622B602097 Authority key identifier: A0:B5:1B:C5:AC:7C:95:73:7A:24:BD:6A:28:D8:24:9E:7A:80:CF:4B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0B51BC5AC7C95737A24BD6A28D8249E7A80CF4B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/3130332e3137342e3132302e302f32332d3234203d3e20313437303937.roa Signing time: Wed 15 Jan 2025 08:01:56 +0000 ROA not before: Wed 15 Jan 2025 07:56:56 +0000 ROA not after: Wed 14 Jan 2026 08:01:56 +0000 asID: 147097 IP address blocks: 103.174.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/A0B51BC5AC7C95737A24BD6A28D8249E7A80CF4B.crl rsync://repo-rpki.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/A0B51BC5AC7C95737A24BD6A28D8249E7A80CF4B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0B51BC5AC7C95737A24BD6A28D8249E7A80CF4B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 09:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:5d:37:76:39:63:da:a7:16:f5:13:a6:a2:1b:33:62:2b:60:20:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0B51BC5AC7C95737A24BD6A28D8249E7A80CF4B Validity Not Before: Jan 15 07:56:56 2025 GMT Not After : Jan 14 08:01:56 2026 GMT Subject: CN=2804AA49864C4BB6FFC1CC0A35E7E5D75B0F3C93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:68:d1:6e:79:77:18:a1:8e:e5:4a:ba:1d:28: f7:99:a8:a8:7f:e9:b7:b3:ff:bc:5a:08:b5:e5:2a: c9:2e:cc:19:c2:f5:de:f4:57:4e:ee:f3:1e:7d:60: 47:c4:f1:4b:78:52:6b:4e:af:f5:f8:22:37:93:c8: 47:8a:c5:44:f9:b7:14:18:bf:0f:1f:ac:6c:be:c1: 9b:5d:69:de:23:ab:cb:65:84:4c:3e:40:69:32:f4: 1d:a9:a7:d5:da:aa:43:9a:aa:90:61:4b:94:1e:8b: 98:4a:11:f8:c2:67:60:58:69:59:cd:ef:23:f5:2c: c2:2b:a3:31:0d:89:da:a2:bc:58:f6:2b:5c:d7:a4: ec:9c:f7:02:98:59:a9:35:13:9c:c6:39:dc:8d:e5: 30:88:7f:45:25:93:1f:57:a4:81:f4:ef:d7:09:f1: 40:63:37:0c:56:08:93:75:9c:26:88:fb:ac:de:19: f9:bb:34:9d:0f:75:d0:bf:1a:c2:04:e7:34:44:45: 1c:69:fb:e0:97:36:63:38:3c:90:67:33:69:60:2c: 93:d6:75:35:04:36:0c:8f:48:b1:bf:98:7e:c1:4b: 85:55:79:3f:71:c7:92:3e:b3:44:ac:5e:de:65:70: 2c:94:3a:ad:69:fd:cd:df:a7:f1:53:a2:01:31:67: d0:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:04:AA:49:86:4C:4B:B6:FF:C1:CC:0A:35:E7:E5:D7:5B:0F:3C:93 X509v3 Authority Key Identifier: keyid:A0:B5:1B:C5:AC:7C:95:73:7A:24:BD:6A:28:D8:24:9E:7A:80:CF:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/A0B51BC5AC7C95737A24BD6A28D8249E7A80CF4B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0B51BC5AC7C95737A24BD6A28D8249E7A80CF4B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/3130332e3137342e3132302e302f32332d3234203d3e20313437303937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.120.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:3c:6c:6c:d5:82:de:7b:f5:91:6d:b3:7c:a3:0a:e4:93:59: 50:99:e4:47:a6:18:fa:d0:c4:52:88:57:35:a5:e2:24:43:23: 11:6b:6b:5f:16:3f:8a:bb:d6:eb:41:ca:99:a0:3b:74:d9:cb: 8a:01:7c:37:97:07:5f:56:d2:e6:62:d3:80:46:ec:94:f5:18: ae:b4:ae:f9:83:56:d5:b9:ec:69:57:d1:0f:74:cb:98:b4:dc: ec:a5:b2:96:d7:17:a2:74:ab:6e:98:32:d9:4b:cd:46:03:89: 2f:52:4b:1b:f4:07:47:10:8a:c6:7f:3f:0b:10:bb:62:91:5f: 2f:93:0e:5e:b5:ea:c0:a8:84:d5:be:54:c6:3c:9d:aa:c0:be: 09:8a:f6:c8:ef:c0:75:40:46:76:f6:6e:61:a7:7d:45:f4:b9: 7b:0e:a6:eb:5d:d6:fd:8d:37:cb:44:67:fd:37:a2:f9:3f:bf: c6:38:b8:85:c2:c9:d1:e0:3d:ce:87:7d:4f:a5:42:7c:9f:ca: ae:8d:55:cb:70:b6:c7:0f:ca:9a:ac:ca:1b:8d:08:ea:a2:27: 14:08:02:db:fd:e4:7d:5c:df:38:50:0d:82:7b:f4:70:f1:b6: 53:20:b0:81:92:b9:e7:db:af:3a:91:3f:a0:2e:43:d3:5e:a9: 0b:9d:a2:22 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUM103djlj2qcW9ROmohszYitgIJcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBCNTFCQzVBQzdDOTU3MzdBMjRCRDZBMjhEODI0OUU3 QTgwQ0Y0QjAeFw0yNTAxMTUwNzU2NTZaFw0yNjAxMTQwODAxNTZaMDMxMTAvBgNV BAMTKDI4MDRBQTQ5ODY0QzRCQjZGRkMxQ0MwQTM1RTdFNUQ3NUIwRjNDOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMaNFueXcYoY7lSrodKPeZqKh/ 6bez/7xaCLXlKskuzBnC9d70V07u8x59YEfE8Ut4UmtOr/X4IjeTyEeKxUT5txQY vw8frGy+wZtdad4jq8tlhEw+QGky9B2pp9XaqkOaqpBhS5Qei5hKEfjCZ2BYaVnN 7yP1LMIrozENidqivFj2K1zXpOyc9wKYWak1E5zGOdyN5TCIf0Ulkx9XpIH079cJ 8UBjNwxWCJN1nCaI+6zeGfm7NJ0PddC/GsIE5zRERRxp++CXNmM4PJBnM2lgLJPW dTUENgyPSLG/mH7BS4VVeT9xx5I+s0SsXt5lcCyUOq1p/c3fp/FTogExZ9CbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUKASqSYZMS7b/wcwKNefl11sPPJMwHwYDVR0j BBgwFoAUoLUbxax8lXN6JL1qKNgknnqAz0swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NmIyMDUxNS04ZDdjLTQ0NWMtYmZmNy1iYWJkNTI2NTc4MGYvMC9BMEI1MUJDNUFD N0M5NTczN0EyNEJENkEyOEQ4MjQ5RTdBODBDRjRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTBCNTFCQzVBQzdDOTU3MzdBMjRCRDZBMjhEODI0OUU3QTgw Q0Y0Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg2YjIwNTE1LThkN2MtNDQ1Yy1i ZmY3LWJhYmQ1MjY1NzgwZi8wLzMxMzAzMzJlMzEzNzM0MmUzMTMyMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzczMDM5Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnrngwDQYJ KoZIhvcNAQELBQADggEBADs8bGzVgt579ZFts3yjCuSTWVCZ5EemGPrQxFKIVzWl 4iRDIxFra18WP4q71utBypmgO3TZy4oBfDeXB19W0uZi04BG7JT1GK60rvmDVtW5 7GlX0Q90y5i03OylspbXF6J0q26YMtlLzUYDiS9SSxv0B0cQisZ/PwsQu2KRXy+T Dl616sCohNW+VMY8narAvgmK9sjvwHVARnb2bmGnfUX0uXsOputd1v2NN8tEZ/03 ovk/v8Y4uIXCydHgPc6HfU+lQnyfyq6NVctwtscPypqsyhuNCOqiJxQIAtv95H1c 3zhQDYJ79HDxtlMgsIGSuefbrzqRP6AuQ9NeqQudoiI= -----END CERTIFICATE-----Generated at Sun Apr 6 14:39:00 2025 by rpki-client