$ rpki-client -vvf repo-rpki.idnic.net/repo/8d46a9ca-1096-4fe4-8993-d0be97b54a76/0/3130332e3137332e3136352e302f32342d3234203d3e20313437303831.roa File: 3130332e3137332e3136352e302f32342d3234203d3e20313437303831.roa (raw, json) Hash identifier: ZzonM3LG74Q/floyou6ghQdc5wNDGTAm+n820HmsJq8= Subject key identifier: EF:8B:8F:C9:D6:A7:6D:B6:44:CC:05:49:FE:06:FC:8E:ED:95:F5:56 Certificate issuer: /CN=35AF7B054A8CC95835EC5A2F9275004D39521553 Certificate serial: 539EBF02759B6C138C2AADECEC7691070C8F571C Authority key identifier: 35:AF:7B:05:4A:8C:C9:58:35:EC:5A:2F:92:75:00:4D:39:52:15:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35AF7B054A8CC95835EC5A2F9275004D39521553.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d46a9ca-1096-4fe4-8993-d0be97b54a76/0/3130332e3137332e3136352e302f32342d3234203d3e20313437303831.roa Signing time: Sat 01 Feb 2025 12:02:22 +0000 ROA not before: Sat 01 Feb 2025 11:57:22 +0000 ROA not after: Sat 31 Jan 2026 12:02:22 +0000 asID: 147081 IP address blocks: 103.173.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d46a9ca-1096-4fe4-8993-d0be97b54a76/0/35AF7B054A8CC95835EC5A2F9275004D39521553.crl rsync://repo-rpki.idnic.net/repo/8d46a9ca-1096-4fe4-8993-d0be97b54a76/0/35AF7B054A8CC95835EC5A2F9275004D39521553.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35AF7B054A8CC95835EC5A2F9275004D39521553.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 10:15:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:9e:bf:02:75:9b:6c:13:8c:2a:ad:ec:ec:76:91:07:0c:8f:57:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35AF7B054A8CC95835EC5A2F9275004D39521553 Validity Not Before: Feb 1 11:57:22 2025 GMT Not After : Jan 31 12:02:22 2026 GMT Subject: CN=EF8B8FC9D6A76DB644CC0549FE06FC8EED95F556 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:97:79:12:3c:4d:ad:19:66:d4:4d:43:b6:bc: d1:7a:fd:6f:eb:50:5c:91:d1:22:86:ff:e8:6c:33: ab:78:6f:77:00:64:5f:f3:ad:ec:5a:01:f3:39:86: 29:f7:c9:76:07:6e:bc:9c:e7:34:56:49:61:f1:af: ec:6e:bc:63:93:c2:9f:55:ba:ae:02:e5:31:ec:21: 68:b9:34:f5:76:48:d8:d9:19:7a:b2:ed:1c:ec:f7: ae:c0:4d:66:41:d3:da:87:75:83:e7:97:0d:d9:23: b5:24:c6:6d:0e:82:3b:1c:a5:51:a5:6b:d6:43:08: a5:a5:a2:a7:b5:47:d9:2a:0e:f4:bf:1f:71:70:8a: 02:23:12:54:96:2f:92:24:33:88:c5:74:2d:40:1f: 07:6e:1b:3a:05:e2:fd:f0:f9:3d:57:d9:e9:b2:7f: ec:1b:62:b9:4e:2e:a4:be:de:2f:bf:03:aa:a9:b6: 68:81:82:a7:a0:a0:fc:b1:17:fe:b0:6d:60:c7:40: 4a:db:a5:30:85:23:b8:64:7c:09:dc:ad:f1:62:94: 20:f4:c8:b3:c8:31:e4:e0:0d:49:1d:1e:28:43:db: 08:15:eb:37:df:22:fa:96:db:ab:8f:10:fa:b5:5e: 63:f6:11:a6:db:0d:9b:37:a8:70:ba:fe:83:46:e7: 87:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:8B:8F:C9:D6:A7:6D:B6:44:CC:05:49:FE:06:FC:8E:ED:95:F5:56 X509v3 Authority Key Identifier: keyid:35:AF:7B:05:4A:8C:C9:58:35:EC:5A:2F:92:75:00:4D:39:52:15:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d46a9ca-1096-4fe4-8993-d0be97b54a76/0/35AF7B054A8CC95835EC5A2F9275004D39521553.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35AF7B054A8CC95835EC5A2F9275004D39521553.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d46a9ca-1096-4fe4-8993-d0be97b54a76/0/3130332e3137332e3136352e302f32342d3234203d3e20313437303831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.173.165.0/24 Signature Algorithm: sha256WithRSAEncryption a3:99:c8:5e:57:82:20:18:60:4f:37:d2:00:e2:1d:7d:53:9a: f6:81:86:ea:6a:b9:a2:10:6b:fc:21:09:b0:b1:dc:0b:84:40: 89:44:f3:cb:94:68:eb:e0:e1:18:d1:4a:8c:01:f2:d0:5d:f5: 31:b5:76:25:16:3f:14:35:28:f8:ae:29:a8:47:f4:c1:e5:af: 19:9b:04:6f:bd:eb:85:5a:18:a1:03:26:00:dd:57:9a:d5:f9: 01:33:2d:aa:21:f8:11:56:ca:49:93:5e:11:1b:f4:c6:57:c2: fb:cd:90:5e:f2:e0:e3:8b:1d:43:49:b7:9d:7c:fa:8b:af:8c: b6:b4:8c:b9:99:a0:9d:5c:a3:ce:6e:92:f6:95:9b:13:4f:42: 7a:8a:42:44:dc:3a:e3:54:54:db:50:1c:d6:10:6f:71:15:67: 62:e4:0e:63:eb:5d:9b:8e:c1:78:f6:8c:98:97:19:e5:9e:2d: 25:df:d4:99:63:6d:b5:38:5c:a1:64:0d:67:f8:55:22:c5:99: 78:e1:55:f9:47:e3:2a:cd:93:69:2e:f5:af:2d:17:8a:fc:68: b9:69:9e:12:60:dc:57:25:d9:fc:92:51:46:7a:63:b2:b3:16: 32:17:6b:4c:1c:a1:f1:26:8b:55:a8:3d:cd:e4:00:8a:9a:e6: d4:c2:78:cc -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUU56/AnWbbBOMKq3s7HaRBwyPVxwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVBRjdCMDU0QThDQzk1ODM1RUM1QTJGOTI3NTAwNEQz OTUyMTU1MzAeFw0yNTAyMDExMTU3MjJaFw0yNjAxMzExMjAyMjJaMDMxMTAvBgNV BAMTKEVGOEI4RkM5RDZBNzZEQjY0NENDMDU0OUZFMDZGQzhFRUQ5NUY1NTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWl3kSPE2tGWbUTUO2vNF6/W/r UFyR0SKG/+hsM6t4b3cAZF/zrexaAfM5hin3yXYHbryc5zRWSWHxr+xuvGOTwp9V uq4C5THsIWi5NPV2SNjZGXqy7Rzs967ATWZB09qHdYPnlw3ZI7Ukxm0OgjscpVGl a9ZDCKWloqe1R9kqDvS/H3FwigIjElSWL5IkM4jFdC1AHwduGzoF4v3w+T1X2emy f+wbYrlOLqS+3i+/A6qptmiBgqegoPyxF/6wbWDHQErbpTCFI7hkfAncrfFilCD0 yLPIMeTgDUkdHihD2wgV6zffIvqW26uPEPq1XmP2EabbDZs3qHC6/oNG54cdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU74uPydanbbZEzAVJ/gb8ju2V9VYwHwYDVR0j BBgwFoAUNa97BUqMyVg17FovknUATTlSFVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDQ2YTljYS0xMDk2LTRmZTQtODk5My1kMGJlOTdiNTRhNzYvMC8zNUFGN0IwNTRB OENDOTU4MzVFQzVBMkY5Mjc1MDA0RDM5NTIxNTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzVBRjdCMDU0QThDQzk1ODM1RUM1QTJGOTI3NTAwNEQzOTUy MTU1My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkNDZhOWNhLTEwOTYtNGZlNC04 OTkzLWQwYmU5N2I1NGE3Ni8wLzMxMzAzMzJlMzEzNzMzMmUzMTM2MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMDM4MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnraUwDQYJ KoZIhvcNAQELBQADggEBAKOZyF5XgiAYYE830gDiHX1TmvaBhupquaIQa/whCbCx 3AuEQIlE88uUaOvg4RjRSowB8tBd9TG1diUWPxQ1KPiuKahH9MHlrxmbBG+964Va GKEDJgDdV5rV+QEzLaoh+BFWykmTXhEb9MZXwvvNkF7y4OOLHUNJt518+ouvjLa0 jLmZoJ1co85ukvaVmxNPQnqKQkTcOuNUVNtQHNYQb3EVZ2LkDmPrXZuOwXj2jJiX GeWeLSXf1JljbbU4XKFkDWf4VSLFmXjhVflH4yrNk2ku9a8tF4r8aLlpnhJg3Fcl 2fySUUZ6Y7KzFjIXa0wcofEmi1WoPc3kAIqa5tTCeMw= -----END CERTIFICATE-----Generated at Wed Apr 9 18:11:37 2025 by rpki-client