$ rpki-client -vvf repo-rpki.idnic.net/repo/911a746e-53e3-4c23-b9e5-f64f3ef3d136/0/3130332e3137302e3139362e302f32332d3234203d3e20313338383535.roa File: 3130332e3137302e3139362e302f32332d3234203d3e20313338383535.roa (raw, json) Hash identifier: nYdmDrbl4N7U7OFxsxXOGMjKsB4u86wkNh8KISL5Eg0= Subject key identifier: D9:CE:2E:98:91:4D:C4:09:44:AE:90:E4:85:79:4F:16:31:A4:09:B1 Certificate issuer: /CN=1472DDF3B8546A8B201733914AFB7036FC6742F3 Certificate serial: 25AB810C260975C05E916EC1E44B2DC6108EEE86 Authority key identifier: 14:72:DD:F3:B8:54:6A:8B:20:17:33:91:4A:FB:70:36:FC:67:42:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1472DDF3B8546A8B201733914AFB7036FC6742F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/911a746e-53e3-4c23-b9e5-f64f3ef3d136/0/3130332e3137302e3139362e302f32332d3234203d3e20313338383535.roa Signing time: Wed 19 Mar 2025 11:02:19 +0000 ROA not before: Wed 19 Mar 2025 10:57:19 +0000 ROA not after: Wed 18 Mar 2026 11:02:19 +0000 asID: 138855 IP address blocks: 103.170.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/911a746e-53e3-4c23-b9e5-f64f3ef3d136/0/1472DDF3B8546A8B201733914AFB7036FC6742F3.crl rsync://repo-rpki.idnic.net/repo/911a746e-53e3-4c23-b9e5-f64f3ef3d136/0/1472DDF3B8546A8B201733914AFB7036FC6742F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1472DDF3B8546A8B201733914AFB7036FC6742F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 02:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:ab:81:0c:26:09:75:c0:5e:91:6e:c1:e4:4b:2d:c6:10:8e:ee:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1472DDF3B8546A8B201733914AFB7036FC6742F3 Validity Not Before: Mar 19 10:57:19 2025 GMT Not After : Mar 18 11:02:19 2026 GMT Subject: CN=D9CE2E98914DC40944AE90E485794F1631A409B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:30:33:a3:9e:32:75:15:39:0e:c7:92:67:68: ce:3d:0f:49:f9:d6:25:79:c6:a0:13:f6:7d:c4:ac: 8d:ac:86:ac:89:2d:47:00:73:2f:d9:1f:a5:77:cd: 82:36:26:37:6c:40:ed:e1:ef:86:d4:c8:66:a5:78: 78:8e:86:09:84:74:1d:5c:34:48:1e:20:db:71:b2: 12:40:40:be:07:ed:28:d4:11:23:02:16:20:d8:d9: e7:b1:92:21:19:18:1e:d2:c9:1f:e7:2f:85:4f:e6: 3a:4b:75:c9:8b:12:36:7c:fe:63:97:cb:06:83:98: 49:93:7c:c7:54:c6:ed:e9:a0:bf:0d:6d:c2:27:ed: b2:6f:11:63:ae:4d:04:3c:7d:35:ae:b8:8b:f1:77: 24:d8:32:59:97:87:1c:8f:75:7a:59:17:49:17:67: 62:c4:d4:b0:21:4b:e6:85:9c:a7:f9:46:30:04:f2: 62:03:3e:01:8f:0c:7f:82:59:fc:6f:de:5b:67:64: 8a:f6:43:6c:cc:68:a7:a3:2f:d8:5f:c9:78:18:c9: ec:59:11:01:dd:f0:91:63:76:64:92:ab:23:98:de: 54:8e:d1:4e:3d:f7:6b:21:f5:1d:15:2b:db:be:9c: fb:2e:f5:b2:cc:35:bd:d1:82:4e:e2:9a:4e:04:9c: 0f:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:CE:2E:98:91:4D:C4:09:44:AE:90:E4:85:79:4F:16:31:A4:09:B1 X509v3 Authority Key Identifier: keyid:14:72:DD:F3:B8:54:6A:8B:20:17:33:91:4A:FB:70:36:FC:67:42:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/911a746e-53e3-4c23-b9e5-f64f3ef3d136/0/1472DDF3B8546A8B201733914AFB7036FC6742F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1472DDF3B8546A8B201733914AFB7036FC6742F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/911a746e-53e3-4c23-b9e5-f64f3ef3d136/0/3130332e3137302e3139362e302f32332d3234203d3e20313338383535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.196.0/23 Signature Algorithm: sha256WithRSAEncryption 16:ec:a1:31:2e:b3:07:37:2a:0c:6a:9f:51:93:bd:57:6d:ad: 14:50:ca:66:17:d2:a5:0c:a4:4a:b1:f4:e2:f7:b8:72:a3:74: a3:6b:d1:e0:dd:bc:4c:76:cb:e3:55:65:4f:0c:1a:b2:2d:ba: ca:a0:0b:e1:5c:7c:e6:40:79:0c:03:9e:04:dd:c1:87:e0:4d: a6:1c:99:10:36:eb:e1:11:c3:97:0a:18:48:86:7a:96:e6:1e: 73:90:2d:0a:ea:b4:c7:54:09:46:16:bd:da:f9:81:1f:51:f8: 02:4c:f6:05:99:79:bc:fb:b1:29:03:3a:19:95:2e:6e:d1:cd: 34:1d:e1:01:f5:8c:a5:39:52:51:2a:c3:0f:96:c0:0b:84:a0: b7:97:a1:18:d4:33:32:76:6f:30:ac:7b:d4:78:23:6f:8a:b5: 68:10:8f:d6:72:9f:c2:6b:cb:19:c2:32:d1:d0:74:30:9c:7d: d5:54:74:63:4a:db:c4:b1:eb:0d:44:f8:90:c7:4a:08:ef:34: 8f:56:2b:93:f6:03:73:1d:63:91:c1:2c:1b:9a:91:6c:ce:db: 32:88:51:e6:66:45:b2:bc:3a:15:55:fa:cb:c1:75:98:ec:e1: 06:c5:fe:f5:c2:0e:39:aa:9e:1c:e5:4f:48:59:50:99:bc:da: ac:59:1c:9e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJauBDCYJdcBekW7B5EstxhCO7oYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTQ3MkRERjNCODU0NkE4QjIwMTczMzkxNEFGQjcwMzZG QzY3NDJGMzAeFw0yNTAzMTkxMDU3MTlaFw0yNjAzMTgxMTAyMTlaMDMxMTAvBgNV BAMTKEQ5Q0UyRTk4OTE0REM0MDk0NEFFOTBFNDg1Nzk0RjE2MzFBNDA5QjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyMDOjnjJ1FTkOx5JnaM49D0n5 1iV5xqAT9n3ErI2shqyJLUcAcy/ZH6V3zYI2JjdsQO3h74bUyGaleHiOhgmEdB1c NEgeINtxshJAQL4H7SjUESMCFiDY2eexkiEZGB7SyR/nL4VP5jpLdcmLEjZ8/mOX ywaDmEmTfMdUxu3poL8NbcIn7bJvEWOuTQQ8fTWuuIvxdyTYMlmXhxyPdXpZF0kX Z2LE1LAhS+aFnKf5RjAE8mIDPgGPDH+CWfxv3ltnZIr2Q2zMaKejL9hfyXgYyexZ EQHd8JFjdmSSqyOY3lSO0U4992sh9R0VK9u+nPsu9bLMNb3Rgk7imk4EnA+1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU2c4umJFNxAlErpDkhXlPFjGkCbEwHwYDVR0j BBgwFoAUFHLd87hUaosgFzORSvtwNvxnQvMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MTFhNzQ2ZS01M2UzLTRjMjMtYjllNS1mNjRmM2VmM2QxMzYvMC8xNDcyRERGM0I4 NTQ2QThCMjAxNzMzOTE0QUZCNzAzNkZDNjc0MkYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTQ3MkRERjNCODU0NkE4QjIwMTczMzkxNEFGQjcwMzZGQzY3 NDJGMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxMWE3NDZlLTUzZTMtNGMyMy1i OWU1LWY2NGYzZWYzZDEzNi8wLzMxMzAzMzJlMzEzNzMwMmUzMTM5MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzODM1MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqsQwDQYJ KoZIhvcNAQELBQADggEBABbsoTEuswc3Kgxqn1GTvVdtrRRQymYX0qUMpEqx9OL3 uHKjdKNr0eDdvEx2y+NVZU8MGrItusqgC+FcfOZAeQwDngTdwYfgTaYcmRA26+ER w5cKGEiGepbmHnOQLQrqtMdUCUYWvdr5gR9R+AJM9gWZebz7sSkDOhmVLm7RzTQd 4QH1jKU5UlEqww+WwAuEoLeXoRjUMzJ2bzCse9R4I2+KtWgQj9Zyn8JryxnCMtHQ dDCcfdVUdGNK28Sx6w1E+JDHSgjvNI9WK5P2A3MdY5HBLBuakWzO2zKIUeZmRbK8 OhVV+svBdZjs4QbF/vXCDjmqnhzlT0hZUJm82qxZHJ4= -----END CERTIFICATE-----Generated at Sun Apr 6 08:25:23 2025 by rpki-client