$ rpki-client -vvf repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/3130332e3138382e3235322e302f32342d3234203d3e20313439373337.roa File: 3130332e3138382e3235322e302f32342d3234203d3e20313439373337.roa (raw, json) Hash identifier: kjCPg8CNqMlAMRebUqHb4gpHFMec5lXxDxlOd53bN+M= Subject key identifier: 59:F9:9B:9E:6C:EA:5E:9F:DC:BD:73:B9:1A:D3:64:F8:13:63:26:98 Certificate issuer: /CN=B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2 Certificate serial: 11E46CEFDF810CE6BCC3FF9F135ED0234BC64D56 Authority key identifier: B5:E9:7B:71:FA:FA:24:FF:8F:A2:B1:A3:35:58:D8:0A:98:25:4D:B2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/3130332e3138382e3235322e302f32342d3234203d3e20313439373337.roa Signing time: Fri 17 Jan 2025 07:00:01 +0000 ROA not before: Fri 17 Jan 2025 06:55:01 +0000 ROA not after: Fri 16 Jan 2026 07:00:01 +0000 asID: 149737 IP address blocks: 103.188.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.crl rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 11:20:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:e4:6c:ef:df:81:0c:e6:bc:c3:ff:9f:13:5e:d0:23:4b:c6:4d:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2 Validity Not Before: Jan 17 06:55:01 2025 GMT Not After : Jan 16 07:00:01 2026 GMT Subject: CN=59F99B9E6CEA5E9FDCBD73B91AD364F813632698 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f6:e4:3a:d6:75:ff:99:6b:f3:7f:86:04:e2: 7c:d2:17:b9:93:64:8f:37:77:08:83:52:04:8a:91: e2:83:d2:32:66:cc:c8:f0:6f:ba:96:50:a4:d6:6a: 36:ca:be:4c:bf:d5:b1:38:1a:ec:fd:58:b3:e8:29: 38:cb:67:6a:5b:bb:94:e0:2e:b0:ff:dc:29:99:28: 01:3f:5d:4e:1b:f0:b8:f9:8b:a1:c8:5a:8c:31:63: 2c:d8:87:3c:d3:7a:88:5e:d4:13:71:9e:a5:14:b2: 5d:bf:6f:24:4f:58:34:b9:81:3b:07:53:15:cb:44: 80:85:9c:c2:28:2c:33:60:8d:3f:6d:4d:59:79:e9: b0:70:80:c6:b8:9c:db:d3:f1:85:5f:b3:e4:99:7c: 9b:fc:3d:df:e5:ca:51:95:19:4c:a9:ee:54:f7:5b: cf:ee:ae:b9:67:18:29:ba:17:32:fb:d1:4c:7e:dc: 80:7c:a2:e0:90:03:aa:62:a2:a7:25:dd:14:fb:77: 6f:ff:cb:82:a0:88:1d:ec:c9:46:5a:fd:b5:68:fc: 01:ac:a3:1c:5f:e3:fc:5c:7e:0e:96:ac:20:27:d0: 82:5c:5f:3b:40:92:ea:48:e3:97:1f:d3:cb:c4:fb: bc:60:a3:cc:61:25:71:de:55:f5:8f:66:71:3d:d3: 82:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:F9:9B:9E:6C:EA:5E:9F:DC:BD:73:B9:1A:D3:64:F8:13:63:26:98 X509v3 Authority Key Identifier: keyid:B5:E9:7B:71:FA:FA:24:FF:8F:A2:B1:A3:35:58:D8:0A:98:25:4D:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/3130332e3138382e3235322e302f32342d3234203d3e20313439373337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.188.252.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:31:bc:9d:f4:e6:a6:60:2f:2b:52:cf:5d:77:77:f7:b7:1f: 2e:48:49:61:96:60:5a:3c:ee:74:77:be:55:eb:6b:a5:0f:ca: 12:f8:a8:21:93:d3:76:ff:d6:35:72:6d:d2:fb:0b:b9:70:02: 9d:1f:78:cb:76:9c:c6:a0:aa:ff:fa:13:2c:2b:63:69:85:57: d0:5a:a7:24:1a:16:87:90:6c:77:eb:8b:21:1e:08:f0:c1:de: ee:ee:5e:f4:31:8a:71:da:25:0a:58:1c:2b:5a:b5:2b:c4:b9: 23:f2:53:60:8d:ff:cd:58:ae:32:d9:11:df:af:5d:a3:79:7d: be:e6:5f:57:f4:f9:b1:7c:3a:31:29:f7:ff:78:2b:c2:2c:46: 8a:73:34:0f:b7:84:71:71:a4:51:bf:4b:d6:2f:de:b8:4a:d2: db:33:ea:ca:2c:96:f6:b1:1c:b6:1f:82:88:4b:c0:df:50:3b: c1:31:4d:15:8a:89:e2:d7:45:b3:b2:31:e8:e1:5c:37:00:2f: 2b:e0:d0:5c:1b:c4:9a:19:7e:7d:01:51:73:6b:24:1c:6d:a9: eb:c0:14:a9:22:a1:6a:4f:c5:04:fe:b7:5e:58:d2:17:9b:07: e4:8a:c3:a3:3f:d0:a0:88:74:a8:e9:f3:5d:7b:9a:db:f5:5b: 98:e7:92:e3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUEeRs79+BDOa8w/+fE17QI0vGTVYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjVFOTdCNzFGQUZBMjRGRjhGQTJCMUEzMzU1OEQ4MEE5 ODI1NERCMjAeFw0yNTAxMTcwNjU1MDFaFw0yNjAxMTYwNzAwMDFaMDMxMTAvBgNV BAMTKDU5Rjk5QjlFNkNFQTVFOUZEQ0JENzNCOTFBRDM2NEY4MTM2MzI2OTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv9uQ61nX/mWvzf4YE4nzSF7mT ZI83dwiDUgSKkeKD0jJmzMjwb7qWUKTWajbKvky/1bE4Guz9WLPoKTjLZ2pbu5Tg LrD/3CmZKAE/XU4b8Lj5i6HIWowxYyzYhzzTeohe1BNxnqUUsl2/byRPWDS5gTsH UxXLRICFnMIoLDNgjT9tTVl56bBwgMa4nNvT8YVfs+SZfJv8Pd/lylGVGUyp7lT3 W8/urrlnGCm6FzL70Ux+3IB8ouCQA6pioqcl3RT7d2//y4KgiB3syUZa/bVo/AGs oxxf4/xcfg6WrCAn0IJcXztAkupI45cf08vE+7xgo8xhJXHeVfWPZnE904JPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWfmbnmzqXp/cvXO5GtNk+BNjJpgwHwYDVR0j BBgwFoAUtel7cfr6JP+PorGjNVjYCpglTbIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YWVkMDk4Yi00OWIxLTRmNTMtYjc1YS0yNzNlMTFjMjUxNDkvMC9CNUU5N0I3MUZB RkEyNEZGOEZBMkIxQTMzNTU4RDgwQTk4MjU0REIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjVFOTdCNzFGQUZBMjRGRjhGQTJCMUEzMzU1OEQ4MEE5ODI1 NERCMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhZWQwOThiLTQ5YjEtNGY1My1i NzVhLTI3M2UxMWMyNTE0OS8wLzMxMzAzMzJlMzEzODM4MmUzMjM1MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvPwwDQYJ KoZIhvcNAQELBQADggEBACwxvJ305qZgLytSz113d/e3Hy5ISWGWYFo87nR3vlXr a6UPyhL4qCGT03b/1jVybdL7C7lwAp0feMt2nMagqv/6EywrY2mFV9BapyQaFoeQ bHfriyEeCPDB3u7uXvQxinHaJQpYHCtatSvEuSPyU2CN/81YrjLZEd+vXaN5fb7m X1f0+bF8OjEp9/94K8IsRopzNA+3hHFxpFG/S9Yv3rhK0tsz6soslvaxHLYfgohL wN9QO8ExTRWKieLXRbOyMejhXDcALyvg0FwbxJoZfn0BUXNrJBxtqevAFKkioWpP xQT+t15Y0hebB+SKw6M/0KCIdKjp8117mtv1W5jnkuM= -----END CERTIFICATE-----Generated at Sun Apr 6 06:01:06 2025 by rpki-client