$ rpki-client -vvf repo-rpki.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/3130332e3137342e3132312e302f32342d3234203d3e20313437303937.roa File: 3130332e3137342e3132312e302f32342d3234203d3e20313437303937.roa (raw, json) Hash identifier: pLboy3es15Aee5R8ozV3T/lLrbC6yjQ2R9cCybdnsq4= Subject key identifier: 54:3A:86:20:CE:17:53:CC:68:2C:77:C1:E1:57:EB:9A:2B:14:88:38 Certificate issuer: /CN=A0B51BC5AC7C95737A24BD6A28D8249E7A80CF4B Certificate serial: 316DE35D2F3B45DA24C4738A7D3004CB4CBFD5FF Authority key identifier: A0:B5:1B:C5:AC:7C:95:73:7A:24:BD:6A:28:D8:24:9E:7A:80:CF:4B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0B51BC5AC7C95737A24BD6A28D8249E7A80CF4B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/3130332e3137342e3132312e302f32342d3234203d3e20313437303937.roa Signing time: Wed 15 Jan 2025 08:01:56 +0000 ROA not before: Wed 15 Jan 2025 07:56:56 +0000 ROA not after: Wed 14 Jan 2026 08:01:56 +0000 asID: 147097 IP address blocks: 103.174.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/A0B51BC5AC7C95737A24BD6A28D8249E7A80CF4B.crl rsync://repo-rpki.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/A0B51BC5AC7C95737A24BD6A28D8249E7A80CF4B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0B51BC5AC7C95737A24BD6A28D8249E7A80CF4B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 09:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:6d:e3:5d:2f:3b:45:da:24:c4:73:8a:7d:30:04:cb:4c:bf:d5:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0B51BC5AC7C95737A24BD6A28D8249E7A80CF4B Validity Not Before: Jan 15 07:56:56 2025 GMT Not After : Jan 14 08:01:56 2026 GMT Subject: CN=543A8620CE1753CC682C77C1E157EB9A2B148838 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e9:b0:63:ad:b4:30:51:79:34:e0:83:87:4b: cb:74:2c:cd:82:6d:1a:a5:c7:98:7e:17:e6:4e:f3: 59:95:5f:2a:60:74:6f:71:85:16:cc:9b:b3:44:09: 9e:6f:ee:a9:f1:bf:44:ba:be:87:10:97:78:c6:10: 93:b6:ed:22:d8:52:9e:9b:46:3f:de:40:41:36:e7: d0:3a:d8:e3:14:1e:a2:28:93:76:05:d5:b8:34:49: d1:62:e7:05:f4:9a:a8:30:24:b3:20:6a:a9:7c:ef: 70:30:d4:71:2c:19:94:07:6e:5e:3e:85:d2:81:ac: 4a:55:c1:a2:ee:d1:e0:39:54:ca:3e:d1:2d:38:6a: a3:18:91:0a:87:79:13:62:11:3f:bc:0d:b0:87:5a: 47:54:2e:65:05:29:3e:ef:0e:fd:22:ac:38:17:6b: b3:62:1e:74:34:95:32:65:d5:01:6a:6c:13:ee:e2: 40:76:07:6b:b9:ac:98:7c:4b:51:1e:1e:df:5e:a2: 36:c9:c6:a3:87:d4:71:f9:6a:37:0a:12:bf:9d:b9: e6:eb:4a:1c:40:b5:35:57:fe:83:ab:d4:02:a3:73: a9:bd:f2:4d:46:a3:5a:45:5c:05:6b:1c:c3:7c:e0: d8:fd:01:a1:98:c6:18:d9:d1:fc:94:82:5b:d8:d7: 95:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:3A:86:20:CE:17:53:CC:68:2C:77:C1:E1:57:EB:9A:2B:14:88:38 X509v3 Authority Key Identifier: keyid:A0:B5:1B:C5:AC:7C:95:73:7A:24:BD:6A:28:D8:24:9E:7A:80:CF:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/A0B51BC5AC7C95737A24BD6A28D8249E7A80CF4B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0B51BC5AC7C95737A24BD6A28D8249E7A80CF4B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/3130332e3137342e3132312e302f32342d3234203d3e20313437303937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.121.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:6f:54:78:1c:a8:24:ee:66:d6:93:dd:9a:1b:4f:52:5f:7d: 14:4c:d3:e6:34:2c:63:56:a3:4d:66:fb:fb:be:06:29:46:cf: d7:90:88:12:b6:5a:e1:11:24:46:6e:1a:1e:28:35:ed:15:18: bf:c5:b6:be:c0:a6:16:26:99:ee:98:03:0c:73:85:b3:f7:18: 35:f0:e5:af:4c:9a:f8:49:13:4c:68:19:bd:d9:ed:ac:f5:61: 76:0a:c2:5c:f7:a0:84:02:ce:ae:a8:21:52:70:03:75:29:b4: 19:b3:7a:fd:fa:09:a3:11:b3:7f:63:1d:42:1e:c3:ab:1e:d5: 1a:f3:ac:53:60:4a:0e:af:2c:91:bc:8a:b8:3b:69:a7:56:76: 58:60:53:73:a1:95:b8:16:59:c5:62:b1:02:99:bb:75:a7:80: 8a:1d:b6:b4:b6:f3:cc:20:26:c3:3d:e1:c0:8e:02:5e:7d:e1: 84:f3:f4:1c:6a:a0:7b:ff:e5:a8:2d:f0:8e:79:2e:10:55:4c: 88:92:53:70:ce:7a:fa:7d:d0:01:0f:31:38:ff:4d:7e:cf:11: 85:35:ac:d9:bb:0a:3c:ac:5b:f7:26:41:97:d5:d0:38:80:71: fd:5c:be:b0:71:0d:00:8d:e3:6a:2d:aa:81:a8:03:29:8d:04: 40:8f:de:fc -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMW3jXS87RdokxHOKfTAEy0y/1f8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBCNTFCQzVBQzdDOTU3MzdBMjRCRDZBMjhEODI0OUU3 QTgwQ0Y0QjAeFw0yNTAxMTUwNzU2NTZaFw0yNjAxMTQwODAxNTZaMDMxMTAvBgNV BAMTKDU0M0E4NjIwQ0UxNzUzQ0M2ODJDNzdDMUUxNTdFQjlBMkIxNDg4MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx6bBjrbQwUXk04IOHS8t0LM2C bRqlx5h+F+ZO81mVXypgdG9xhRbMm7NECZ5v7qnxv0S6vocQl3jGEJO27SLYUp6b Rj/eQEE259A62OMUHqIok3YF1bg0SdFi5wX0mqgwJLMgaql873Aw1HEsGZQHbl4+ hdKBrEpVwaLu0eA5VMo+0S04aqMYkQqHeRNiET+8DbCHWkdULmUFKT7vDv0irDgX a7NiHnQ0lTJl1QFqbBPu4kB2B2u5rJh8S1EeHt9eojbJxqOH1HH5ajcKEr+duebr ShxAtTVX/oOr1AKjc6m98k1Go1pFXAVrHMN84Nj9AaGYxhjZ0fyUglvY15V9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUVDqGIM4XU8xoLHfB4VfrmisUiDgwHwYDVR0j BBgwFoAUoLUbxax8lXN6JL1qKNgknnqAz0swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NmIyMDUxNS04ZDdjLTQ0NWMtYmZmNy1iYWJkNTI2NTc4MGYvMC9BMEI1MUJDNUFD N0M5NTczN0EyNEJENkEyOEQ4MjQ5RTdBODBDRjRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTBCNTFCQzVBQzdDOTU3MzdBMjRCRDZBMjhEODI0OUU3QTgw Q0Y0Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg2YjIwNTE1LThkN2MtNDQ1Yy1i ZmY3LWJhYmQ1MjY1NzgwZi8wLzMxMzAzMzJlMzEzNzM0MmUzMTMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMDM5Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrnkwDQYJ KoZIhvcNAQELBQADggEBAH1vVHgcqCTuZtaT3ZobT1JffRRM0+Y0LGNWo01m+/u+ BilGz9eQiBK2WuERJEZuGh4oNe0VGL/Ftr7AphYmme6YAwxzhbP3GDXw5a9MmvhJ E0xoGb3Z7az1YXYKwlz3oIQCzq6oIVJwA3UptBmzev36CaMRs39jHUIew6se1Rrz rFNgSg6vLJG8irg7aadWdlhgU3OhlbgWWcVisQKZu3WngIodtrS288wgJsM94cCO Al594YTz9BxqoHv/5agt8I55LhBVTIiSU3DOevp90AEPMTj/TX7PEYU1rNm7Cjys W/cmQZfV0DiAcf1cvrBxDQCN42otqoGoAymNBECP3vw= -----END CERTIFICATE-----Generated at Sun Apr 6 14:38:58 2025 by rpki-client