$ rpki-client -vvf repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131362e302f32322d3232203d3e20313338313032.roa File: 3130332e3132352e3131362e302f32322d3232203d3e20313338313032.roa (raw, json) Hash identifier: y8ADkM9INdo4B5YpCY3N+ofggmxgoMYRUDnTX9TJFJg= Subject key identifier: 4B:3B:8D:6F:2E:9D:25:8C:BF:12:53:8B:F2:B8:40:FD:CF:1C:54:28 Certificate issuer: /CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Certificate serial: 159C4C5BD10CC3290AA581E2B282DC7158C82F1D Authority key identifier: 4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131362e302f32322d3232203d3e20313338313032.roa Signing time: Sun 29 Dec 2024 07:00:02 +0000 ROA not before: Sun 29 Dec 2024 06:55:02 +0000 ROA not after: Sun 28 Dec 2025 07:00:02 +0000 asID: 138102 IP address blocks: 103.125.116.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:9c:4c:5b:d1:0c:c3:29:0a:a5:81:e2:b2:82:dc:71:58:c8:2f:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Validity Not Before: Dec 29 06:55:02 2024 GMT Not After : Dec 28 07:00:02 2025 GMT Subject: CN=4B3B8D6F2E9D258CBF12538BF2B840FDCF1C5428 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:63:64:af:7e:45:1c:b0:23:09:50:55:65:e2: 20:cd:bb:36:7c:dd:d2:59:33:99:a2:b7:c3:1f:2e: e7:fe:77:93:8a:9c:9b:02:1e:2e:c1:61:86:26:79: 91:b5:48:9c:16:52:83:83:e1:4d:ec:1c:34:0a:da: 09:f8:61:c3:3b:e9:e6:86:28:a7:b0:d5:d6:2d:5a: d5:0e:f9:97:5e:c7:31:83:6e:ce:f6:f2:01:0e:58: f6:2f:58:f7:e0:fc:c0:5c:d0:03:9f:c6:5f:c8:88: a6:8b:64:c5:3b:b6:54:bc:3a:ec:5b:6c:81:6e:3e: bf:c1:65:55:1b:e8:81:a2:cb:08:25:13:7c:bb:d5: b9:ef:cd:ea:41:c6:07:29:51:ea:08:78:4c:c2:b8: e1:d2:55:ea:df:7e:68:f6:1e:0b:51:a3:75:a0:b5: 16:b7:fd:b2:65:53:53:2b:0d:ad:8c:0c:a9:65:15: 29:5c:26:4d:92:86:9b:79:f9:2b:ff:7a:c4:7e:e7: 4c:81:a8:dc:95:0b:e3:b5:49:6f:04:08:d4:32:c6: 91:03:39:a3:33:64:e6:28:d6:4a:2a:d0:71:b5:ba: 97:dd:0b:2f:cd:45:8f:25:1e:e4:b1:3a:1f:9a:72: f0:76:1f:4c:f3:c7:b4:8e:4c:bf:a2:f8:4e:2d:31: 31:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:3B:8D:6F:2E:9D:25:8C:BF:12:53:8B:F2:B8:40:FD:CF:1C:54:28 X509v3 Authority Key Identifier: keyid:4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131362e302f32322d3232203d3e20313338313032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.116.0/22 Signature Algorithm: sha256WithRSAEncryption 83:1d:ae:09:a8:28:a3:ce:d9:44:26:63:8b:8e:c9:ff:e0:95: ae:41:a8:79:96:8b:c8:45:e6:7c:44:ed:4b:c8:3c:33:6a:cd: c0:96:07:03:ad:ec:20:ed:2d:9c:b0:af:fa:1a:42:27:08:ba: 93:89:24:3b:87:ba:fb:9d:ea:e1:f3:67:30:e7:95:f5:b5:77: b1:1f:76:8d:35:2e:45:fa:64:88:5b:5b:d5:b0:38:e9:31:f9: 79:68:d7:e5:13:e2:5a:a6:e8:a3:0b:f9:d4:71:1c:47:fe:05: f2:c3:14:0f:11:7d:cf:35:87:4a:2d:60:fb:71:a4:a7:ad:f1: 08:48:76:01:86:03:38:42:21:99:ee:81:bc:d3:b2:fe:5a:1a: f6:7a:66:7b:61:23:99:9e:28:1b:e1:87:c0:f4:c9:00:ca:e4: 6f:90:0c:0c:24:22:eb:51:fa:40:51:88:4b:50:5d:f6:13:50: dc:4d:d7:c0:94:b8:33:c7:e8:c0:1e:87:47:69:61:3f:f2:af: c3:a9:96:3d:cb:7d:af:6c:b7:1d:59:2d:7f:ed:d0:10:cd:da: 12:1d:fc:7e:73:87:5b:5f:d6:48:94:7b:fd:6a:c0:2d:a5:80: 9a:1d:bd:ba:56:63:b7:d9:59:21:c4:7f:35:e2:d1:52:e8:40: 6b:c5:58:c7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFZxMW9EMwykKpYHisoLccVjILx0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNF RTZBRDFGOTAeFw0yNDEyMjkwNjU1MDJaFw0yNTEyMjgwNzAwMDJaMDMxMTAvBgNV BAMTKDRCM0I4RDZGMkU5RDI1OENCRjEyNTM4QkYyQjg0MEZEQ0YxQzU0MjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtY2SvfkUcsCMJUFVl4iDNuzZ8 3dJZM5mit8MfLuf+d5OKnJsCHi7BYYYmeZG1SJwWUoOD4U3sHDQK2gn4YcM76eaG KKew1dYtWtUO+ZdexzGDbs728gEOWPYvWPfg/MBc0AOfxl/IiKaLZMU7tlS8Ouxb bIFuPr/BZVUb6IGiywglE3y71bnvzepBxgcpUeoIeEzCuOHSVerffmj2HgtRo3Wg tRa3/bJlU1MrDa2MDKllFSlcJk2Shpt5+Sv/esR+50yBqNyVC+O1SW8ECNQyxpED OaMzZOYo1koq0HG1upfdCy/NRY8lHuSxOh+acvB2H0zzx7SOTL+i+E4tMTF9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUSzuNby6dJYy/ElOL8rhA/c8cVCgwHwYDVR0j BBgwFoAUTe+92YVL6NHij3MwoLgCw+5q0fkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MGRlMjMxZi1mYjhhLTQyN2EtYWEzNi0wYTNmYzk3MjMyOGQvMC80REVGQkREOTg1 NEJFOEQxRTI4RjczMzBBMEI4MDJDM0VFNkFEMUY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNFRTZB RDFGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwZGUyMzFmLWZiOGEtNDI3YS1h YTM2LTBhM2ZjOTcyMzI4ZC8wLzMxMzAzMzJlMzEzMjM1MmUzMTMxMzYyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMTMzMzgzMTMwMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnfXQwDQYJ KoZIhvcNAQELBQADggEBAIMdrgmoKKPO2UQmY4uOyf/gla5BqHmWi8hF5nxE7UvI PDNqzcCWBwOt7CDtLZywr/oaQicIupOJJDuHuvud6uHzZzDnlfW1d7Efdo01LkX6 ZIhbW9WwOOkx+Xlo1+UT4lqm6KML+dRxHEf+BfLDFA8Rfc81h0otYPtxpKet8QhI dgGGAzhCIZnugbzTsv5aGvZ6ZnthI5meKBvhh8D0yQDK5G+QDAwkIutR+kBRiEtQ XfYTUNxN18CUuDPH6MAeh0dpYT/yr8Oplj3Lfa9stx1ZLX/t0BDN2hId/H5zh1tf 1kiUe/1qwC2lgJodvbpWY7fZWSHEfzXi0VLoQGvFWMc= -----END CERTIFICATE-----Generated at Thu Apr 10 07:31:09 2025 by rpki-client