$ rpki-client -vvf repo-rpki.idnic.net/repo/89718f6b-b516-43ae-b589-83a25faa30be/0/3130332e38362e3131362e302f32342d3234203d3e20313530353532.roa File: 3130332e38362e3131362e302f32342d3234203d3e20313530353532.roa (raw, json) Hash identifier: ja3IpRMbJ39xL9dCXnsQKYTFFR+b+ZemcabWb42o+iQ= Subject key identifier: 4A:4F:5F:02:E0:75:AB:A0:F8:E8:06:7E:DB:19:2D:89:68:ED:54:CC Certificate issuer: /CN=1160709118182E564A6D9E250FF5000EFA5166A5 Certificate serial: 2AC3DDE1949CB09E1E5084F8774A87EE10D22AA0 Authority key identifier: 11:60:70:91:18:18:2E:56:4A:6D:9E:25:0F:F5:00:0E:FA:51:66:A5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1160709118182E564A6D9E250FF5000EFA5166A5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/89718f6b-b516-43ae-b589-83a25faa30be/0/3130332e38362e3131362e302f32342d3234203d3e20313530353532.roa Signing time: Tue 28 Jan 2025 03:00:02 +0000 ROA not before: Tue 28 Jan 2025 02:55:02 +0000 ROA not after: Tue 27 Jan 2026 03:00:02 +0000 asID: 150552 IP address blocks: 103.86.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/89718f6b-b516-43ae-b589-83a25faa30be/0/1160709118182E564A6D9E250FF5000EFA5166A5.crl rsync://repo-rpki.idnic.net/repo/89718f6b-b516-43ae-b589-83a25faa30be/0/1160709118182E564A6D9E250FF5000EFA5166A5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1160709118182E564A6D9E250FF5000EFA5166A5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 20:43:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:c3:dd:e1:94:9c:b0:9e:1e:50:84:f8:77:4a:87:ee:10:d2:2a:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1160709118182E564A6D9E250FF5000EFA5166A5 Validity Not Before: Jan 28 02:55:02 2025 GMT Not After : Jan 27 03:00:02 2026 GMT Subject: CN=4A4F5F02E075ABA0F8E8067EDB192D8968ED54CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:37:37:fc:9f:32:fb:64:d0:ef:46:80:7f:1f: 39:40:e4:43:45:d4:1e:7d:e3:10:2c:8a:fc:04:e6: 8f:1c:a5:3e:ff:0a:b7:1c:e4:0b:b8:b4:a6:f8:04: 95:f4:ec:8e:8d:12:73:79:ba:29:9a:6f:0f:83:f4: 5c:60:00:d4:e8:f0:6f:d9:38:16:d3:75:6c:ee:29: b0:d0:54:0d:df:12:a3:8f:e1:6e:40:02:29:e5:91: b4:63:53:e9:64:bc:22:4f:16:0d:ce:15:2a:f8:e0: 7e:26:34:9b:6b:9c:fd:0c:85:c0:80:36:d1:30:49: 07:25:de:1b:38:7f:72:8a:ae:b9:c9:44:bd:8a:c4: ca:38:ed:f8:a0:58:71:0d:ab:9a:ad:02:3e:b0:c3: 3b:2e:a2:46:ca:8b:4d:99:56:4a:6c:5e:7b:82:6f: b0:d5:ee:47:7b:c9:13:ba:d5:3f:4e:73:f4:97:74: 83:da:c8:60:86:d5:3e:19:51:0b:1f:39:cb:4f:34: 46:cb:34:20:5f:82:39:02:7a:2e:96:b3:0f:a7:4b: b0:8d:00:12:ab:5f:76:42:98:ce:14:eb:51:69:b0: 0b:a9:33:62:85:4e:67:5d:a5:ed:21:e4:2e:e4:75: 99:04:47:17:d8:e3:36:17:bc:aa:57:0b:fc:2b:2b: dc:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:4F:5F:02:E0:75:AB:A0:F8:E8:06:7E:DB:19:2D:89:68:ED:54:CC X509v3 Authority Key Identifier: keyid:11:60:70:91:18:18:2E:56:4A:6D:9E:25:0F:F5:00:0E:FA:51:66:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/89718f6b-b516-43ae-b589-83a25faa30be/0/1160709118182E564A6D9E250FF5000EFA5166A5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1160709118182E564A6D9E250FF5000EFA5166A5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/89718f6b-b516-43ae-b589-83a25faa30be/0/3130332e38362e3131362e302f32342d3234203d3e20313530353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.86.116.0/24 Signature Algorithm: sha256WithRSAEncryption db:e4:25:49:3b:51:39:e2:bc:4d:5f:40:13:bc:ea:e4:c5:c0: 7c:42:99:26:37:ae:76:84:de:58:8b:a3:13:6d:4f:03:2a:92: 48:4d:51:29:bf:ef:55:76:1b:20:fc:03:36:5a:59:f8:c1:d5: 23:01:5e:fc:4b:9c:b5:a5:4f:52:f1:f8:90:95:75:44:23:70: 38:f4:4a:00:fc:83:8b:79:61:69:ea:f7:1b:8b:7d:7e:75:21: b3:76:ae:ad:67:26:b3:b6:60:70:e0:6a:c2:d0:73:ae:eb:20: a1:5f:94:ce:c8:d5:a5:f9:de:c1:01:86:b0:3f:a8:99:0a:5a: 30:18:7f:be:c9:f9:5a:28:5d:63:e5:4c:c3:be:f1:22:5d:b6: 79:92:c9:88:b8:c4:15:ce:fa:51:9a:23:32:1e:7a:ef:d2:4c: 33:90:eb:e2:fe:0c:89:7c:40:f7:f1:e6:3a:8f:18:95:0e:3d: 8b:2e:8a:63:cc:cf:ec:5d:da:6e:2b:e2:56:5e:f5:c1:92:56: f8:75:a0:41:83:bc:9f:50:b3:98:ab:48:76:fb:75:d5:9e:e5: f1:b8:01:df:d3:b0:9f:76:f9:96:df:df:c2:0a:a5:d3:5e:fb: c9:ed:c7:d1:16:ab:27:f9:63:9a:e6:85:1e:9f:e8:4e:5b:9d: 98:90:e3:20 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKsPd4ZScsJ4eUIT4d0qH7hDSKqAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTE2MDcwOTExODE4MkU1NjRBNkQ5RTI1MEZGNTAwMEVG QTUxNjZBNTAeFw0yNTAxMjgwMjU1MDJaFw0yNjAxMjcwMzAwMDJaMDMxMTAvBgNV BAMTKDRBNEY1RjAyRTA3NUFCQTBGOEU4MDY3RURCMTkyRDg5NjhFRDU0Q0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjNzf8nzL7ZNDvRoB/HzlA5ENF 1B594xAsivwE5o8cpT7/Crcc5Au4tKb4BJX07I6NEnN5uimabw+D9FxgANTo8G/Z OBbTdWzuKbDQVA3fEqOP4W5AAinlkbRjU+lkvCJPFg3OFSr44H4mNJtrnP0MhcCA NtEwSQcl3hs4f3KKrrnJRL2KxMo47figWHENq5qtAj6wwzsuokbKi02ZVkpsXnuC b7DV7kd7yRO61T9Oc/SXdIPayGCG1T4ZUQsfOctPNEbLNCBfgjkCei6Wsw+nS7CN ABKrX3ZCmM4U61FpsAupM2KFTmddpe0h5C7kdZkERxfY4zYXvKpXC/wrK9xRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSk9fAuB1q6D46AZ+2xktiWjtVMwwHwYDVR0j BBgwFoAUEWBwkRgYLlZKbZ4lD/UADvpRZqUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OTcxOGY2Yi1iNTE2LTQzYWUtYjU4OS04M2EyNWZhYTMwYmUvMC8xMTYwNzA5MTE4 MTgyRTU2NEE2RDlFMjUwRkY1MDAwRUZBNTE2NkE1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTE2MDcwOTExODE4MkU1NjRBNkQ5RTI1MEZGNTAwMEVGQTUx NjZBNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg5NzE4ZjZiLWI1MTYtNDNhZS1i NTg5LTgzYTI1ZmFhMzBiZS8wLzMxMzAzMzJlMzgzNjJlMzEzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzUzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1Z0MA0GCSqG SIb3DQEBCwUAA4IBAQDb5CVJO1E54rxNX0ATvOrkxcB8QpkmN652hN5Yi6MTbU8D KpJITVEpv+9Vdhsg/AM2Wln4wdUjAV78S5y1pU9S8fiQlXVEI3A49EoA/IOLeWFp 6vcbi31+dSGzdq6tZyaztmBw4GrC0HOu6yChX5TOyNWl+d7BAYawP6iZClowGH++ yflaKF1j5UzDvvEiXbZ5ksmIuMQVzvpRmiMyHnrv0kwzkOvi/gyJfED38eY6jxiV Dj2LLopjzM/sXdpuK+JWXvXBklb4daBBg7yfULOYq0h2+3XVnuXxuAHf07CfdvmW 39/CCqXTXvvJ7cfRFqsn+WOa5oUen+hOW52YkOMg -----END CERTIFICATE-----Generated at Sun Apr 6 08:56:52 2025 by rpki-client