$ rpki-client -vvf repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/3130332e3135352e32352e302f32342d3234203d3e20313431303734.roa File: 3130332e3135352e32352e302f32342d3234203d3e20313431303734.roa (raw, json) Hash identifier: G51YluNBJVnWJJLUM3oLTxL1SDaPjGOTZwYfGpp2BCE= Subject key identifier: DA:20:75:3E:F2:9F:E4:43:88:0E:18:F2:FC:51:5E:19:5E:AA:FB:9F Certificate issuer: /CN=DE4325727D17555F6DABCC72788E361C741D47CF Certificate serial: 5670770B0EC88818E22F001853E819C47413BD86 Authority key identifier: DE:43:25:72:7D:17:55:5F:6D:AB:CC:72:78:8E:36:1C:74:1D:47:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE4325727D17555F6DABCC72788E361C741D47CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/3130332e3135352e32352e302f32342d3234203d3e20313431303734.roa Signing time: Thu 06 Mar 2025 06:00:01 +0000 ROA not before: Thu 06 Mar 2025 05:55:01 +0000 ROA not after: Thu 05 Mar 2026 06:00:01 +0000 asID: 141074 IP address blocks: 103.155.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.crl rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE4325727D17555F6DABCC72788E361C741D47CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 16:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:70:77:0b:0e:c8:88:18:e2:2f:00:18:53:e8:19:c4:74:13:bd:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE4325727D17555F6DABCC72788E361C741D47CF Validity Not Before: Mar 6 05:55:01 2025 GMT Not After : Mar 5 06:00:01 2026 GMT Subject: CN=DA20753EF29FE443880E18F2FC515E195EAAFB9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:51:3f:ce:10:c7:2b:bb:41:cd:06:33:c7:d3: e5:da:d9:ba:2d:1a:c6:47:ea:8a:24:72:0b:59:40: 5a:ff:a8:a9:c5:27:11:22:22:a7:f1:ec:70:cb:8c: a3:ba:17:f0:07:f2:5f:64:7a:b5:5f:bd:6c:c8:12: 93:85:e4:43:09:04:7c:3e:87:d1:4c:e5:dd:e8:c1: 8e:33:41:0c:f3:6f:65:72:47:5d:8c:78:3e:c6:aa: fe:b8:d1:16:f9:e3:85:35:d3:2d:0e:e9:ae:03:15: f4:f4:ef:02:cd:d0:95:6c:28:5e:dc:bc:43:d2:58: 46:6c:dd:58:85:6b:d6:6a:b1:27:c0:5b:c4:61:89: 99:c3:d0:f2:2d:6b:31:12:9b:6e:b3:05:d7:eb:b9: 22:ac:f6:fb:02:72:ec:d1:4f:f2:75:6f:68:6f:56: 2d:3e:8e:aa:b2:bd:ec:cd:75:91:a5:22:59:8e:da: 51:bc:e4:4a:07:ad:7b:03:23:34:04:b2:b9:ac:e7: 65:4a:a7:58:62:56:3d:90:64:ae:26:c9:2f:32:a8: e8:8d:b1:74:13:78:bd:48:d7:14:b0:3d:0a:6c:4b: c7:aa:a0:42:d3:33:5b:92:2d:88:b4:04:80:fa:bc: 28:05:f5:7e:4e:c7:f7:56:94:bd:52:67:43:27:f9: f5:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:20:75:3E:F2:9F:E4:43:88:0E:18:F2:FC:51:5E:19:5E:AA:FB:9F X509v3 Authority Key Identifier: keyid:DE:43:25:72:7D:17:55:5F:6D:AB:CC:72:78:8E:36:1C:74:1D:47:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE4325727D17555F6DABCC72788E361C741D47CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/3130332e3135352e32352e302f32342d3234203d3e20313431303734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.25.0/24 Signature Algorithm: sha256WithRSAEncryption 24:77:16:99:8f:db:89:d5:7d:d3:fe:5a:18:b2:f6:54:c1:c9: b1:00:8a:30:5e:6d:c2:fe:02:73:cf:67:53:fe:d5:0b:94:8a: 9e:6a:dc:14:bc:76:96:dd:4c:7b:b5:c2:1c:dc:19:b9:eb:87: 71:38:a3:1c:62:bc:f8:a6:c5:99:a5:8e:4e:ef:84:ec:22:0e: 6d:1a:19:9e:c8:38:c1:53:8a:62:14:91:ee:2c:a3:e2:91:7c: a3:65:f0:12:f2:e0:88:2f:5f:64:db:53:2c:c1:4e:9d:c7:b0: 9a:44:71:ad:9c:70:b3:46:90:87:a2:e7:f8:cc:f1:ac:e2:8f: 4a:9d:ed:c0:8e:4a:6d:bb:2f:8e:70:2e:1e:e3:10:1d:46:0b: 8c:07:29:0c:ec:f2:fc:3c:fe:dd:08:fd:c7:18:76:97:c5:7f: 77:11:55:61:88:d1:c4:b2:90:8a:33:dd:dd:ba:d0:77:9a:82: cb:16:0d:b1:41:fe:6d:aa:b3:09:9c:22:49:c6:a5:6f:e1:6b: 0f:a7:03:b7:60:ad:9a:1b:22:40:13:ea:e0:b8:27:36:d1:28: 36:41:da:36:4e:37:0b:18:a5:a2:71:89:73:7e:3e:02:ed:59: d2:ba:36:e7:d6:38:d6:f4:41:db:1f:b5:f3:e0:62:33:3a:2c: 1a:3c:c3:3a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVnB3Cw7IiBjiLwAYU+gZxHQTvYYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREU0MzI1NzI3RDE3NTU1RjZEQUJDQzcyNzg4RTM2MUM3 NDFENDdDRjAeFw0yNTAzMDYwNTU1MDFaFw0yNjAzMDUwNjAwMDFaMDMxMTAvBgNV BAMTKERBMjA3NTNFRjI5RkU0NDM4ODBFMThGMkZDNTE1RTE5NUVBQUZCOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuUT/OEMcru0HNBjPH0+Xa2bot GsZH6ookcgtZQFr/qKnFJxEiIqfx7HDLjKO6F/AH8l9kerVfvWzIEpOF5EMJBHw+ h9FM5d3owY4zQQzzb2VyR12MeD7Gqv640Rb544U10y0O6a4DFfT07wLN0JVsKF7c vEPSWEZs3ViFa9ZqsSfAW8RhiZnD0PItazESm26zBdfruSKs9vsCcuzRT/J1b2hv Vi0+jqqyvezNdZGlIlmO2lG85EoHrXsDIzQEsrms52VKp1hiVj2QZK4myS8yqOiN sXQTeL1I1xSwPQpsS8eqoELTM1uSLYi0BID6vCgF9X5Ox/dWlL1SZ0Mn+fXdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2iB1PvKf5EOIDhjy/FFeGV6q+58wHwYDVR0j BBgwFoAU3kMlcn0XVV9tq8xyeI42HHQdR88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MDc2MDhjZS1jM2Y4LTQ0ZWItYWVlNy1iNzg0YWUyMGM5YzcvMC9ERTQzMjU3MjdE MTc1NTVGNkRBQkNDNzI3ODhFMzYxQzc0MUQ0N0NGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREU0MzI1NzI3RDE3NTU1RjZEQUJDQzcyNzg4RTM2MUM3NDFE NDdDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwNzYwOGNlLWMzZjgtNDRlYi1h ZWU3LWI3ODRhZTIwYzljNy8wLzMxMzAzMzJlMzEzNTM1MmUzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzAzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5sZMA0GCSqG SIb3DQEBCwUAA4IBAQAkdxaZj9uJ1X3T/loYsvZUwcmxAIowXm3C/gJzz2dT/tUL lIqeatwUvHaW3Ux7tcIc3Bm564dxOKMcYrz4psWZpY5O74TsIg5tGhmeyDjBU4pi FJHuLKPikXyjZfAS8uCIL19k21MswU6dx7CaRHGtnHCzRpCHouf4zPGs4o9Kne3A jkptuy+OcC4e4xAdRguMBykM7PL8PP7dCP3HGHaXxX93EVVhiNHEspCKM93dutB3 moLLFg2xQf5tqrMJnCJJxqVv4WsPpwO3YK2aGyJAE+rguCc20Sg2Qdo2TjcLGKWi cYlzfj4C7VnSujbn1jjW9EHbH7Xz4GIzOiwaPMM6 -----END CERTIFICATE-----Generated at Sun Apr 6 11:49:17 2025 by rpki-client