$ rpki-client -vvf repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/3130332e3131342e3134342e302f32342d3234203d3e20313337333531.roa File: 3130332e3131342e3134342e302f32342d3234203d3e20313337333531.roa (raw, json) Hash identifier: ty2A/+XUIZKKt+5K+zVnVNMiG2s1JjDQEBRNkGaNrQE= Subject key identifier: 6B:41:E6:62:2D:D6:09:D3:D2:71:2E:C8:F8:E3:1A:AC:69:58:34:74 Certificate issuer: /CN=8208317A24AB4CD828CD8855F81F3EF2B53CC681 Certificate serial: 51581579F838E025FD1504048F61083B937410E0 Authority key identifier: 82:08:31:7A:24:AB:4C:D8:28:CD:88:55:F8:1F:3E:F2:B5:3C:C6:81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8208317A24AB4CD828CD8855F81F3EF2B53CC681.cer Subject info access: rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/3130332e3131342e3134342e302f32342d3234203d3e20313337333531.roa Signing time: Wed 12 Mar 2025 17:00:02 +0000 ROA not before: Wed 12 Mar 2025 16:55:02 +0000 ROA not after: Wed 11 Mar 2026 17:00:02 +0000 asID: 137351 IP address blocks: 103.114.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.crl rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8208317A24AB4CD828CD8855F81F3EF2B53CC681.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 04:34:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:58:15:79:f8:38:e0:25:fd:15:04:04:8f:61:08:3b:93:74:10:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8208317A24AB4CD828CD8855F81F3EF2B53CC681 Validity Not Before: Mar 12 16:55:02 2025 GMT Not After : Mar 11 17:00:02 2026 GMT Subject: CN=6B41E6622DD609D3D2712EC8F8E31AAC69583474 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ae:ca:47:72:c4:13:c9:cb:80:cf:04:38:48: 07:d0:0a:98:2a:4f:50:83:91:fa:86:65:0e:00:c6: 89:ea:92:a3:de:87:e6:8c:8e:33:3b:ad:10:98:23: c5:53:1f:6a:90:ba:bd:3d:5a:f9:1c:eb:c3:46:af: 49:da:7b:23:cd:10:46:b8:45:c6:56:3a:ec:61:17: e9:36:fa:58:ac:9c:a2:10:02:cd:eb:d6:58:74:05: 20:49:e7:97:df:e7:4d:44:38:05:51:53:0a:d2:39: de:04:59:8a:0a:d4:d1:d6:2f:79:0b:f5:72:85:3b: bd:96:48:f1:22:25:45:8a:58:b5:e3:44:6f:b6:be: 84:9e:67:01:c1:c3:f5:78:38:ca:7c:af:16:6d:11: 8e:ff:16:b8:54:3f:4a:51:b7:96:ce:69:91:5e:3c: 8f:33:5b:ff:c6:36:96:47:4f:f9:38:82:01:45:ff: ff:4c:ae:4f:87:14:45:68:65:4b:88:82:df:3d:0c: 9f:34:91:cb:f6:8c:a5:c4:22:eb:10:49:e4:b0:aa: 77:53:28:58:00:af:6c:14:e0:4a:4e:de:7a:35:89: 46:49:08:2c:59:94:7d:7a:31:14:10:fe:88:b8:de: f1:e8:f0:54:76:44:95:23:40:02:1b:64:e0:a3:71: c1:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:41:E6:62:2D:D6:09:D3:D2:71:2E:C8:F8:E3:1A:AC:69:58:34:74 X509v3 Authority Key Identifier: keyid:82:08:31:7A:24:AB:4C:D8:28:CD:88:55:F8:1F:3E:F2:B5:3C:C6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8208317A24AB4CD828CD8855F81F3EF2B53CC681.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/3130332e3131342e3134342e302f32342d3234203d3e20313337333531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.114.144.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:b1:8b:32:49:9f:f0:fe:8b:f7:fe:36:65:c1:0a:cf:cf:21: f3:da:b4:28:cf:c5:ea:66:b0:c4:b9:4c:b3:2f:a9:46:b7:f9: d3:5c:39:c3:9e:5b:bd:dc:76:aa:d2:dc:2c:5a:64:17:40:32: 1c:bd:7e:0a:00:13:e4:26:7c:aa:1e:5d:7f:4d:1a:7d:de:95: 1b:f2:80:12:71:a6:7a:e1:18:b0:4e:28:cb:a5:86:9e:4b:26: 67:1f:7b:c0:b8:c2:bb:8d:0b:bf:52:ea:fa:b9:87:14:26:a6: 6d:ff:b6:0a:7b:18:ee:d8:68:50:99:14:43:78:31:d0:b3:ac: a2:dc:3a:9e:6c:e1:53:23:27:e4:81:be:a4:25:f6:32:6c:9a: f4:9e:2c:92:0a:c7:b3:4a:6c:83:69:ef:f3:94:1e:53:50:93: cd:ac:65:c3:64:3e:99:d9:4a:bb:88:81:28:57:f3:50:11:14: 62:b7:04:a5:aa:cb:67:1f:83:63:fe:c9:db:80:f6:ba:53:ea: 3f:e6:b4:24:68:e6:e5:9b:46:29:0c:ad:8f:3f:70:37:c7:8c: f8:d8:61:f8:bb:10:c7:80:0d:6b:7c:49:2e:e7:69:97:82:87: 0b:82:5c:6e:5a:93:26:74:e8:c5:39:a2:62:ae:0c:5b:97:a2: fb:08:fb:d4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUVgVefg44CX9FQQEj2EIO5N0EOAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIwODMxN0EyNEFCNENEODI4Q0Q4ODU1RjgxRjNFRjJC NTNDQzY4MTAeFw0yNTAzMTIxNjU1MDJaFw0yNjAzMTExNzAwMDJaMDMxMTAvBgNV BAMTKDZCNDFFNjYyMkRENjA5RDNEMjcxMkVDOEY4RTMxQUFDNjk1ODM0NzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5rspHcsQTycuAzwQ4SAfQCpgq T1CDkfqGZQ4AxonqkqPeh+aMjjM7rRCYI8VTH2qQur09Wvkc68NGr0naeyPNEEa4 RcZWOuxhF+k2+lisnKIQAs3r1lh0BSBJ55ff501EOAVRUwrSOd4EWYoK1NHWL3kL 9XKFO72WSPEiJUWKWLXjRG+2voSeZwHBw/V4OMp8rxZtEY7/FrhUP0pRt5bOaZFe PI8zW//GNpZHT/k4ggFF//9Mrk+HFEVoZUuIgt89DJ80kcv2jKXEIusQSeSwqndT KFgAr2wU4EpO3no1iUZJCCxZlH16MRQQ/oi43vHo8FR2RJUjQAIbZOCjccF3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUa0HmYi3WCdPScS7I+OMarGlYNHQwHwYDVR0j BBgwFoAUgggxeiSrTNgozYhV+B8+8rU8xoEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ODc4OGE4Yi01NDFiLTRjYmYtYmFiOS04ZGMzNzdiYzEyODQvMC84MjA4MzE3QTI0 QUI0Q0Q4MjhDRDg4NTVGODFGM0VGMkI1M0NDNjgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIwODMxN0EyNEFCNENEODI4Q0Q4ODU1RjgxRjNFRjJCNTND QzY4MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg4Nzg4YThiLTU0MWItNGNiZi1i YWI5LThkYzM3N2JjMTI4NC8wLzMxMzAzMzJlMzEzMTM0MmUzMTM0MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzM1MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABncpAwDQYJ KoZIhvcNAQELBQADggEBADuxizJJn/D+i/f+NmXBCs/PIfPatCjPxepmsMS5TLMv qUa3+dNcOcOeW73cdqrS3CxaZBdAMhy9fgoAE+QmfKoeXX9NGn3elRvygBJxpnrh GLBOKMulhp5LJmcfe8C4wruNC79S6vq5hxQmpm3/tgp7GO7YaFCZFEN4MdCzrKLc Op5s4VMjJ+SBvqQl9jJsmvSeLJIKx7NKbINp7/OUHlNQk82sZcNkPpnZSruIgShX 81ARFGK3BKWqy2cfg2P+yduA9rpT6j/mtCRo5uWbRikMrY8/cDfHjPjYYfi7EMeA DWt8SS7naZeChwuCXG5akyZ06MU5omKuDFuXovsI+9Q= -----END CERTIFICATE-----Generated at Sun Apr 6 16:02:09 2025 by rpki-client