$ rpki-client -vvf repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/3130332e39372e37382e302f32342d3234203d3e20313336313331.roa File: 3130332e39372e37382e302f32342d3234203d3e20313336313331.roa (raw, json) Hash identifier: gTWqsHLXGzmwOn5oUbLdKwsFxUOTG6JntDETCN1uoJg= Subject key identifier: 4C:A7:27:63:F3:24:33:F3:28:64:E4:E7:7F:FD:A8:AA:71:EF:62:6A Certificate issuer: /CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Certificate serial: 1952370629132ECBB3E83F23D74B3693A5FFEF54 Authority key identifier: 7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/3130332e39372e37382e302f32342d3234203d3e20313336313331.roa Signing time: Thu 06 Mar 2025 15:04:25 +0000 ROA not before: Thu 06 Mar 2025 14:59:25 +0000 ROA not after: Thu 05 Mar 2026 15:04:25 +0000 asID: 136131 IP address blocks: 103.97.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 01:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:52:37:06:29:13:2e:cb:b3:e8:3f:23:d7:4b:36:93:a5:ff:ef:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Validity Not Before: Mar 6 14:59:25 2025 GMT Not After : Mar 5 15:04:25 2026 GMT Subject: CN=4CA72763F32433F32864E4E77FFDA8AA71EF626A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b4:1b:88:99:3c:2f:d5:6b:bc:26:00:4d:21: f6:c9:fa:aa:ad:f2:4f:2c:45:36:07:8c:fd:81:af: 35:03:40:85:f3:33:22:d2:f8:6b:4b:da:85:cc:47: e6:05:ec:6f:07:20:28:62:21:16:33:0a:cb:39:48: 2f:51:eb:e2:94:12:92:d1:48:28:35:29:22:3a:bd: 46:dc:2e:f9:5c:69:5c:0f:a6:d8:d5:40:bd:1d:e1: 82:05:be:54:51:18:58:a2:c8:dd:e4:ff:3d:18:72: 80:82:6b:0f:81:02:5a:18:22:a0:38:c6:fe:9c:95: 8b:df:c6:36:1a:62:88:24:b3:90:0f:6f:44:fb:46: 92:19:7a:29:a2:ba:01:43:0e:ac:62:20:d3:91:cf: 2c:d2:49:ff:65:cc:55:7d:2c:3a:f4:f8:75:32:0c: 76:94:b1:dc:69:ef:d7:42:02:43:fb:fc:13:9a:6c: fa:fc:73:69:3a:d7:40:8f:a6:25:68:cb:76:e3:85: f9:2c:b5:6f:30:b4:fc:ef:02:df:08:89:95:b7:23: 75:d4:ba:76:d5:fd:37:50:9c:f3:32:72:2b:58:b8: 2c:18:2a:f7:19:27:6e:21:3e:27:3e:d9:51:76:da: 98:d7:3f:73:cf:03:62:80:d7:8e:97:43:1f:f4:8c: 5a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:A7:27:63:F3:24:33:F3:28:64:E4:E7:7F:FD:A8:AA:71:EF:62:6A X509v3 Authority Key Identifier: keyid:7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/3130332e39372e37382e302f32342d3234203d3e20313336313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.97.78.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:31:e9:5a:fd:82:ae:7b:65:3f:84:79:8a:67:24:8a:f9:d2: a0:6f:29:8e:b4:23:69:3d:ef:f1:1a:f7:03:7a:ea:6d:b5:d4: 8d:17:c1:bf:b6:df:ae:36:43:4c:42:18:35:4e:e0:d3:d0:c7: 8b:48:04:20:42:f4:17:1e:0d:1e:77:4d:83:63:af:41:81:53: d4:df:ee:c1:7f:4d:14:1f:f0:f6:30:33:9c:c6:d6:f6:a8:a7: 9d:c6:6c:6a:c0:06:cb:2a:6f:17:d7:73:4e:51:99:e7:be:59: 52:fc:42:7c:80:7c:83:7c:e5:d5:22:25:26:4b:2c:03:70:07: 9c:7c:a2:e6:c2:a7:b1:93:36:ea:e7:d6:5e:e1:87:d1:74:a3: bb:d2:d6:94:8a:4d:c2:ab:a4:ea:9d:6d:05:e4:2f:ce:60:e5: ef:bb:36:f9:7d:27:93:d6:9f:84:c5:a7:c8:34:c7:9d:6d:92: a0:c7:81:d7:e0:dd:86:60:7b:bc:51:d3:ad:87:f1:70:3e:2d: bf:67:10:1b:b2:f3:82:cf:d7:f6:95:8e:c2:6a:92:81:1e:1f: 84:fb:c1:cf:77:30:e7:c4:14:dc:75:2e:9d:36:b3:5d:03:5f: f6:04:84:05:ae:e4:84:8c:ea:a0:5a:79:54:40:ac:44:24:f4: 33:ae:f0:7a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGVI3BikTLsuz6D8j10s2k6X/71QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBC QUI5M0Y2NzAeFw0yNTAzMDYxNDU5MjVaFw0yNjAzMDUxNTA0MjVaMDMxMTAvBgNV BAMTKDRDQTcyNzYzRjMyNDMzRjMyODY0RTRFNzdGRkRBOEFBNzFFRjYyNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqtBuImTwv1Wu8JgBNIfbJ+qqt 8k8sRTYHjP2BrzUDQIXzMyLS+GtL2oXMR+YF7G8HIChiIRYzCss5SC9R6+KUEpLR SCg1KSI6vUbcLvlcaVwPptjVQL0d4YIFvlRRGFiiyN3k/z0YcoCCaw+BAloYIqA4 xv6clYvfxjYaYogks5APb0T7RpIZeimiugFDDqxiINORzyzSSf9lzFV9LDr0+HUy DHaUsdxp79dCAkP7/BOabPr8c2k610CPpiVoy3bjhfkstW8wtPzvAt8IiZW3I3XU unbV/TdQnPMycitYuCwYKvcZJ24hPic+2VF22pjXP3PPA2KA146XQx/0jFqZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUTKcnY/MkM/MoZOTnf/2oqnHvYmowHwYDVR0j BBgwFoAUfWS49M+2hxQRN9EPnnP/0Lq5P2cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NTdiMGQ3ZS1lYWRlLTQzMTgtYWIyMC04YzdmMmQ1YmU2OWYvMC83RDY0QjhGNENG QjY4NzE0MTEzN0QxMEY5RTczRkZEMEJBQjkzRjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBCQUI5 M0Y2Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1N2IwZDdlLWVhZGUtNDMxOC1h YjIwLThjN2YyZDViZTY5Zi8wLzMxMzAzMzJlMzkzNzJlMzczODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNjMxMzMzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdhTjANBgkqhkiG 9w0BAQsFAAOCAQEAnDHpWv2CrntlP4R5imckivnSoG8pjrQjaT3v8Rr3A3rqbbXU jRfBv7bfrjZDTEIYNU7g09DHi0gEIEL0Fx4NHndNg2OvQYFT1N/uwX9NFB/w9jAz nMbW9qinncZsasAGyypvF9dzTlGZ575ZUvxCfIB8g3zl1SIlJkssA3AHnHyi5sKn sZM26ufWXuGH0XSju9LWlIpNwquk6p1tBeQvzmDl77s2+X0nk9afhMWnyDTHnW2S oMeB1+DdhmB7vFHTrYfxcD4tv2cQG7Lzgs/X9pWOwmqSgR4fhPvBz3cw58QU3HUu nTazXQNf9gSEBa7khIzqoFp5VECsRCT0M67weg== -----END CERTIFICATE-----Generated at Sun Apr 6 13:34:13 2025 by rpki-client