$ rpki-client -vvf repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/3130332e3138382e3235322e302f32332d3233203d3e20313439373337.roa File: 3130332e3138382e3235322e302f32332d3233203d3e20313439373337.roa (raw, json) Hash identifier: SLcrpmMGhS+iLPHlXSc6GQF6hzriCb0znzXu+cnHQhI= Subject key identifier: E9:BF:EA:5C:93:E5:6E:B2:37:5D:BF:8C:77:2D:A8:93:F3:00:86:DF Certificate issuer: /CN=B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2 Certificate serial: 71227A247BAB0F013A55213F9C07851414AD3612 Authority key identifier: B5:E9:7B:71:FA:FA:24:FF:8F:A2:B1:A3:35:58:D8:0A:98:25:4D:B2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/3130332e3138382e3235322e302f32332d3233203d3e20313439373337.roa Signing time: Thu 16 Jan 2025 23:00:01 +0000 ROA not before: Thu 16 Jan 2025 22:55:01 +0000 ROA not after: Thu 15 Jan 2026 23:00:01 +0000 asID: 149737 IP address blocks: 103.188.252.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.crl rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 11:20:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:22:7a:24:7b:ab:0f:01:3a:55:21:3f:9c:07:85:14:14:ad:36:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2 Validity Not Before: Jan 16 22:55:01 2025 GMT Not After : Jan 15 23:00:01 2026 GMT Subject: CN=E9BFEA5C93E56EB2375DBF8C772DA893F30086DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:12:04:3f:70:fd:a4:3f:b3:e8:5b:5e:29:c9: 70:60:8c:74:18:ae:0a:57:eb:1e:93:48:2b:6f:2d: b2:17:11:1b:fc:59:79:29:9e:02:bf:1f:fe:e0:58: 60:1a:c5:ce:e8:ad:b2:32:85:c7:c2:dd:05:ab:4b: a5:ad:5e:61:7e:56:e1:51:10:48:c5:3c:c4:79:ab: 7c:4a:a6:a4:23:44:ac:0f:75:70:05:de:58:42:45: 1e:90:6e:08:76:ed:7b:8e:ab:2a:7e:8c:ad:e8:ec: 2d:79:33:55:97:a9:bd:83:b4:7b:84:21:be:71:87: c9:40:a1:b2:5e:3f:1c:c1:1e:02:51:89:08:c7:59: 57:da:b3:a4:72:ad:b2:ff:c7:37:d2:d9:1d:e4:47: 96:e7:33:5a:72:51:c7:bf:0f:c7:6a:97:b8:bb:82: 95:ee:95:d1:00:ad:99:15:c2:b4:6a:ff:5a:d0:a6: 6d:f0:94:20:cf:38:fe:bd:45:e5:ae:61:7e:4b:7f: 47:51:ae:55:33:eb:37:12:28:b4:fa:98:19:e6:04: 9b:fa:38:0e:0f:5f:0f:1b:c9:22:87:c8:03:6d:d6: ca:77:47:48:03:83:f4:63:42:c2:89:ef:b9:40:df: 35:82:1c:88:2c:85:a7:ce:7c:4a:72:00:86:7a:4a: 46:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:BF:EA:5C:93:E5:6E:B2:37:5D:BF:8C:77:2D:A8:93:F3:00:86:DF X509v3 Authority Key Identifier: keyid:B5:E9:7B:71:FA:FA:24:FF:8F:A2:B1:A3:35:58:D8:0A:98:25:4D:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/3130332e3138382e3235322e302f32332d3233203d3e20313439373337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.188.252.0/23 Signature Algorithm: sha256WithRSAEncryption 68:44:1d:90:ab:7b:74:ab:7e:1e:77:52:bf:f3:02:a4:45:4d: af:1f:78:4e:6a:ef:c2:42:de:9a:22:0b:c4:fb:fd:ed:36:5d: 0b:a3:9a:0c:79:36:46:74:20:52:1a:16:ae:e4:56:92:8e:79: 35:6b:c1:79:e8:b4:3a:cb:8f:08:e5:6c:7d:52:e2:6e:ec:ec: ff:c2:b8:51:7a:a0:3f:57:fa:45:29:9c:cb:3e:f0:06:a5:39: 98:41:f6:84:ef:8b:ac:e0:16:50:f8:f0:37:be:40:16:36:a5: af:3f:49:82:18:11:bb:10:23:d2:fa:b2:66:97:97:87:43:d9: 6d:2c:3a:7c:a1:bc:b6:1f:b5:9d:e6:ea:60:77:a5:49:2e:69: ba:2b:5d:78:ca:d8:a9:02:9a:ce:5f:8a:39:87:e8:5c:59:2c: d1:e9:31:aa:d4:40:87:ad:9c:25:b6:54:ca:c0:ee:11:2b:89: 75:a3:7c:1e:e1:25:c9:da:dd:be:e5:a3:df:2e:c9:64:7f:83: 02:98:ba:f4:ea:18:ed:8c:5c:73:f4:30:5a:88:d6:d3:82:67: 3b:7b:41:db:d8:f2:3d:87:a7:89:a3:58:74:43:c1:e5:29:7e: c3:d0:ae:00:b0:ec:c7:01:23:6a:59:59:8e:25:af:14:5f:04: 40:b7:68:cc -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcSJ6JHurDwE6VSE/nAeFFBStNhIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjVFOTdCNzFGQUZBMjRGRjhGQTJCMUEzMzU1OEQ4MEE5 ODI1NERCMjAeFw0yNTAxMTYyMjU1MDFaFw0yNjAxMTUyMzAwMDFaMDMxMTAvBgNV BAMTKEU5QkZFQTVDOTNFNTZFQjIzNzVEQkY4Qzc3MkRBODkzRjMwMDg2REYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxEgQ/cP2kP7PoW14pyXBgjHQY rgpX6x6TSCtvLbIXERv8WXkpngK/H/7gWGAaxc7orbIyhcfC3QWrS6WtXmF+VuFR EEjFPMR5q3xKpqQjRKwPdXAF3lhCRR6Qbgh27XuOqyp+jK3o7C15M1WXqb2DtHuE Ib5xh8lAobJePxzBHgJRiQjHWVfas6RyrbL/xzfS2R3kR5bnM1pyUce/D8dql7i7 gpXuldEArZkVwrRq/1rQpm3wlCDPOP69ReWuYX5Lf0dRrlUz6zcSKLT6mBnmBJv6 OA4PXw8bySKHyANt1sp3R0gDg/RjQsKJ77lA3zWCHIgshafOfEpyAIZ6SkbDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU6b/qXJPlbrI3Xb+Mdy2ok/MAht8wHwYDVR0j BBgwFoAUtel7cfr6JP+PorGjNVjYCpglTbIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YWVkMDk4Yi00OWIxLTRmNTMtYjc1YS0yNzNlMTFjMjUxNDkvMC9CNUU5N0I3MUZB RkEyNEZGOEZBMkIxQTMzNTU4RDgwQTk4MjU0REIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjVFOTdCNzFGQUZBMjRGRjhGQTJCMUEzMzU1OEQ4MEE5ODI1 NERCMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhZWQwOThiLTQ5YjEtNGY1My1i NzVhLTI3M2UxMWMyNTE0OS8wLzMxMzAzMzJlMzEzODM4MmUzMjM1MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzkzNzMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnvPwwDQYJ KoZIhvcNAQELBQADggEBAGhEHZCre3Srfh53Ur/zAqRFTa8feE5q78JC3poiC8T7 /e02XQujmgx5NkZ0IFIaFq7kVpKOeTVrwXnotDrLjwjlbH1S4m7s7P/CuFF6oD9X +kUpnMs+8AalOZhB9oTvi6zgFlD48De+QBY2pa8/SYIYEbsQI9L6smaXl4dD2W0s OnyhvLYftZ3m6mB3pUkuaborXXjK2KkCms5fijmH6FxZLNHpMarUQIetnCW2VMrA 7hEriXWjfB7hJcna3b7lo98uyWR/gwKYuvTqGO2MXHP0MFqI1tOCZzt7QdvY8j2H p4mjWHRDweUpfsPQrgCw7McBI2pZWY4lrxRfBEC3aMw= -----END CERTIFICATE-----Generated at Sun Apr 6 05:58:42 2025 by rpki-client