$ rpki-client -vvf repo-rpki.idnic.net/repo/8dcf4067-a69d-4908-bee8-b4655bdc15f8/0/3130332e3135332e3234372e302f32342d3234203d3e20313430343735.roa File: 3130332e3135332e3234372e302f32342d3234203d3e20313430343735.roa (raw, json) Hash identifier: IlIKis9hrjcqU4gajZ2m+r4qTrp6BInf4S11M61jB+A= Subject key identifier: BE:6F:F5:5F:1A:47:1D:F7:08:25:28:4F:12:52:BA:AC:2B:BC:18:1E Certificate issuer: /CN=B197F427572524588487CFDB163A9E512FAE4DF2 Certificate serial: 60C33E836504B32581031D2DBEF30AEBB0340EE6 Authority key identifier: B1:97:F4:27:57:25:24:58:84:87:CF:DB:16:3A:9E:51:2F:AE:4D:F2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B197F427572524588487CFDB163A9E512FAE4DF2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8dcf4067-a69d-4908-bee8-b4655bdc15f8/0/3130332e3135332e3234372e302f32342d3234203d3e20313430343735.roa Signing time: Mon 27 Jan 2025 00:00:01 +0000 ROA not before: Sun 26 Jan 2025 23:55:01 +0000 ROA not after: Mon 26 Jan 2026 00:00:01 +0000 asID: 140475 IP address blocks: 103.153.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8dcf4067-a69d-4908-bee8-b4655bdc15f8/0/B197F427572524588487CFDB163A9E512FAE4DF2.crl rsync://repo-rpki.idnic.net/repo/8dcf4067-a69d-4908-bee8-b4655bdc15f8/0/B197F427572524588487CFDB163A9E512FAE4DF2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B197F427572524588487CFDB163A9E512FAE4DF2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 18:51:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:c3:3e:83:65:04:b3:25:81:03:1d:2d:be:f3:0a:eb:b0:34:0e:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B197F427572524588487CFDB163A9E512FAE4DF2 Validity Not Before: Jan 26 23:55:01 2025 GMT Not After : Jan 26 00:00:01 2026 GMT Subject: CN=BE6FF55F1A471DF70825284F1252BAAC2BBC181E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:34:c3:63:4a:77:be:a9:2c:cc:47:05:1c:07: e4:7f:de:4b:50:62:0f:ec:54:d3:e0:cd:f1:27:e9: ee:8d:fb:b2:dc:d4:f7:6a:f2:89:dd:49:07:81:e5: e6:83:d0:a4:56:82:d8:0c:73:67:ea:3e:5e:f6:e0: bf:ca:7c:08:ce:44:41:35:64:23:4a:de:59:2b:34: 36:da:91:a3:b4:10:f1:30:13:21:db:ba:88:50:b5: f3:1e:5d:13:07:48:25:49:9e:fc:b8:46:b7:4d:6e: c4:c8:5f:f3:25:6b:27:91:ac:75:21:38:4b:fe:92: 7f:7d:bd:e0:3a:12:5a:45:15:c6:41:1c:12:3f:f2: 41:bf:3b:c0:dc:6c:db:f0:a4:7c:15:a5:6a:4d:af: bc:82:5f:4f:73:ce:12:a1:4c:5c:5d:6d:ad:e6:3e: ca:88:13:f6:42:a1:21:61:29:a4:fb:ad:3c:c1:e6: 00:7f:0c:33:47:ce:8c:a4:d9:44:79:0e:77:d9:e5: 0e:ac:6c:38:be:f1:b3:d6:62:0c:97:1b:2d:6d:bd: 11:91:9e:3f:4d:39:ab:1b:b9:dc:69:50:fb:8b:96: 74:b3:06:02:10:02:4d:36:03:2e:5b:54:6a:60:4c: 21:5c:3a:d5:76:d7:31:08:a6:56:bc:8e:70:93:06: b4:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:6F:F5:5F:1A:47:1D:F7:08:25:28:4F:12:52:BA:AC:2B:BC:18:1E X509v3 Authority Key Identifier: keyid:B1:97:F4:27:57:25:24:58:84:87:CF:DB:16:3A:9E:51:2F:AE:4D:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8dcf4067-a69d-4908-bee8-b4655bdc15f8/0/B197F427572524588487CFDB163A9E512FAE4DF2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B197F427572524588487CFDB163A9E512FAE4DF2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8dcf4067-a69d-4908-bee8-b4655bdc15f8/0/3130332e3135332e3234372e302f32342d3234203d3e20313430343735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.247.0/24 Signature Algorithm: sha256WithRSAEncryption 44:70:30:9f:bd:08:92:ac:b5:c9:46:50:d7:cc:99:34:8d:08: 51:59:49:f5:cd:03:fa:9a:03:db:7f:a0:32:3b:2e:09:12:04: 78:0e:55:77:a9:4e:8f:75:e3:72:8a:b3:03:f3:62:ef:e1:83: ac:53:29:f9:7c:ec:24:2a:94:27:f1:b7:01:ac:2d:b9:0b:76: c7:39:b7:a4:1b:86:48:e2:17:a1:7d:cf:42:5a:c3:cc:5f:7c: 69:97:45:72:ee:c4:27:ba:d7:80:ef:61:2f:12:06:51:b4:bc: 20:0b:70:a1:92:38:4f:4e:21:e2:e5:c0:a7:1f:fd:d1:92:c5: 7e:5f:30:97:17:37:6d:46:9a:9f:25:27:af:4e:77:68:50:64: c8:6e:64:7b:47:2f:16:9e:89:c8:3a:4b:b3:f8:52:3b:7f:6a: b4:13:c7:1f:4e:d1:b6:3c:77:9b:83:3d:40:e7:6f:2a:f8:9a: 20:9d:24:ba:2b:d7:e0:65:42:b0:4a:da:88:70:dd:58:3a:d0: 59:04:61:4f:c0:60:96:10:46:a2:40:dd:a8:b8:f3:39:02:fc: 26:8d:c7:de:05:03:94:92:e9:71:a3:8f:09:b3:84:2a:35:9f: 4d:6a:c7:22:1f:01:d6:74:69:2d:22:4c:84:e3:b7:3c:d4:4c: e7:65:3e:f0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYMM+g2UEsyWBAx0tvvMK67A0DuYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE5N0Y0Mjc1NzI1MjQ1ODg0ODdDRkRCMTYzQTlFNTEy RkFFNERGMjAeFw0yNTAxMjYyMzU1MDFaFw0yNjAxMjYwMDAwMDFaMDMxMTAvBgNV BAMTKEJFNkZGNTVGMUE0NzFERjcwODI1Mjg0RjEyNTJCQUFDMkJCQzE4MUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPNMNjSne+qSzMRwUcB+R/3ktQ Yg/sVNPgzfEn6e6N+7Lc1Pdq8ondSQeB5eaD0KRWgtgMc2fqPl724L/KfAjOREE1 ZCNK3lkrNDbakaO0EPEwEyHbuohQtfMeXRMHSCVJnvy4RrdNbsTIX/MlayeRrHUh OEv+kn99veA6ElpFFcZBHBI/8kG/O8DcbNvwpHwVpWpNr7yCX09zzhKhTFxdba3m PsqIE/ZCoSFhKaT7rTzB5gB/DDNHzoyk2UR5DnfZ5Q6sbDi+8bPWYgyXGy1tvRGR nj9NOasbudxpUPuLlnSzBgIQAk02Ay5bVGpgTCFcOtV21zEIpla8jnCTBrQVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUvm/1XxpHHfcIJShPElK6rCu8GB4wHwYDVR0j BBgwFoAUsZf0J1clJFiEh8/bFjqeUS+uTfIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZGNmNDA2Ny1hNjlkLTQ5MDgtYmVlOC1iNDY1NWJkYzE1ZjgvMC9CMTk3RjQyNzU3 MjUyNDU4ODQ4N0NGREIxNjNBOUU1MTJGQUU0REYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjE5N0Y0Mjc1NzI1MjQ1ODg0ODdDRkRCMTYzQTlFNTEyRkFF NERGMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkY2Y0MDY3LWE2OWQtNDkwOC1i ZWU4LWI0NjU1YmRjMTVmOC8wLzMxMzAzMzJlMzEzNTMzMmUzMjM0MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM3MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnmfcwDQYJ KoZIhvcNAQELBQADggEBAERwMJ+9CJKstclGUNfMmTSNCFFZSfXNA/qaA9t/oDI7 LgkSBHgOVXepTo9143KKswPzYu/hg6xTKfl87CQqlCfxtwGsLbkLdsc5t6Qbhkji F6F9z0Jaw8xffGmXRXLuxCe614DvYS8SBlG0vCALcKGSOE9OIeLlwKcf/dGSxX5f MJcXN21Gmp8lJ69Od2hQZMhuZHtHLxaeicg6S7P4Ujt/arQTxx9O0bY8d5uDPUDn byr4miCdJLor1+BlQrBK2ohw3Vg60FkEYU/AYJYQRqJA3ai48zkC/CaNx94FA5SS 6XGjjwmzhCo1n01qxyIfAdZ0aS0iTITjtzzUTOdlPvA= -----END CERTIFICATE-----Generated at Sun Apr 6 13:41:16 2025 by rpki-client