$ rpki-client -vvf repo-rpki.idnic.net/repo/9d1619cb-c01c-4614-863e-ce288d7ba765/0/3130332e3135352e3135362e302f32342d3234203d3e20313431303632.roa File: 3130332e3135352e3135362e302f32342d3234203d3e20313431303632.roa (raw, json) Hash identifier: neE3zrlksOzJV8H0qe9TgTIuCvuChMBCqnrQKxlvrQU= Subject key identifier: A8:85:9A:24:57:2B:53:95:7C:D4:59:13:BD:0F:5D:11:17:8F:1E:5D Certificate issuer: /CN=B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C Certificate serial: 6034329B2A4B6EC25AA0F40F23FA29881C79A4F2 Authority key identifier: B9:72:F0:73:B8:AF:26:B8:53:3E:97:AA:FB:AE:C1:7F:CE:FD:6F:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9d1619cb-c01c-4614-863e-ce288d7ba765/0/3130332e3135352e3135362e302f32342d3234203d3e20313431303632.roa Signing time: Sat 05 Apr 2025 17:00:54 +0000 ROA not before: Sat 05 Apr 2025 16:55:54 +0000 ROA not after: Sat 04 Apr 2026 17:00:54 +0000 asID: 141062 IP address blocks: 103.155.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9d1619cb-c01c-4614-863e-ce288d7ba765/0/B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C.crl rsync://repo-rpki.idnic.net/repo/9d1619cb-c01c-4614-863e-ce288d7ba765/0/B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:34:32:9b:2a:4b:6e:c2:5a:a0:f4:0f:23:fa:29:88:1c:79:a4:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C Validity Not Before: Apr 5 16:55:54 2025 GMT Not After : Apr 4 17:00:54 2026 GMT Subject: CN=A8859A24572B53957CD45913BD0F5D11178F1E5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:75:c6:38:a5:0b:7f:f3:e6:04:56:01:99:be: 68:ab:34:fb:8d:13:87:3f:74:91:aa:53:83:d5:93: da:06:f3:70:94:4a:2c:35:c8:fa:82:b7:6c:c6:80: d7:7a:a6:2b:ce:e1:46:d8:fe:40:f1:2e:2e:c7:34: e7:8b:77:cf:cc:ba:28:69:e7:e5:3e:8f:99:90:ef: 2f:9d:5e:cc:36:ad:06:33:ed:30:e5:9f:e0:31:17: a5:9b:2d:8b:5a:de:c0:89:39:64:4d:6b:3c:66:2f: 97:c9:37:c1:45:ee:e6:cb:ce:0f:be:6e:c8:c9:ff: f1:48:ca:e2:57:bc:06:80:08:1b:e6:35:30:9b:0d: 12:e6:b2:d9:af:ce:b1:f5:8f:d6:c9:8c:5a:c4:73: 56:bd:4d:78:1b:17:85:84:d0:61:46:9f:b4:1c:f2: d6:c0:85:c6:bd:b9:98:2e:6f:96:56:c3:7b:d0:fb: 54:6a:cb:75:63:91:ee:79:9a:67:73:8a:85:5c:89: f2:c6:9c:a4:99:18:63:b1:00:6f:84:79:50:1a:ee: f8:90:a7:40:33:5d:58:6e:fb:8e:0c:40:5c:d2:bb: 8a:37:34:ef:4f:23:67:7a:66:0a:b3:fe:13:31:8e: e4:90:fe:2d:0e:e7:f8:5f:a4:27:2f:df:19:9b:bc: ec:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:85:9A:24:57:2B:53:95:7C:D4:59:13:BD:0F:5D:11:17:8F:1E:5D X509v3 Authority Key Identifier: keyid:B9:72:F0:73:B8:AF:26:B8:53:3E:97:AA:FB:AE:C1:7F:CE:FD:6F:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9d1619cb-c01c-4614-863e-ce288d7ba765/0/B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9d1619cb-c01c-4614-863e-ce288d7ba765/0/3130332e3135352e3135362e302f32342d3234203d3e20313431303632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.156.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:81:88:da:3c:e3:5f:70:18:f1:df:ad:1f:ef:17:58:7c:b6: 16:3b:4a:5c:63:ed:57:23:3c:0e:ff:5f:45:23:3b:09:50:e1: 08:a5:c4:fa:45:a0:a9:74:49:f8:78:ea:12:dc:9a:76:12:9b: 82:c5:77:1e:55:79:2c:e7:f3:b0:22:6b:b4:f3:7f:ce:5c:a2: 64:ad:6e:6c:be:1e:28:e0:47:68:16:ab:9e:b6:de:1b:b2:20: 2b:c3:f6:87:12:8e:00:b1:78:11:2e:82:32:49:36:0d:d8:27: bb:60:35:09:a1:f6:0c:14:c9:c3:0b:ac:c7:95:81:77:ef:8e: 96:f8:56:42:4e:ad:71:86:21:c2:48:a6:64:08:d3:51:fd:42: 1c:22:f6:7e:82:86:08:4b:72:de:01:69:ea:0a:1c:4d:06:35: ab:c6:95:fc:e5:fd:bd:1d:ee:54:bc:60:a4:74:37:03:6a:00: f2:ea:55:22:77:9a:56:a2:40:ce:ed:6f:2b:4a:01:7b:c7:2a: 2a:4b:ae:17:61:4b:68:e0:83:07:04:96:6d:ae:49:3c:35:ca: df:2d:72:d8:a5:d4:d6:76:00:41:3b:bd:3e:27:b3:4d:b2:e4: 4f:91:c4:99:cf:f4:a5:33:ed:00:82:7c:91:8c:e3:6b:ae:0b: 29:8d:5f:84 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYDQymypLbsJaoPQPI/opiBx5pPIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk3MkYwNzNCOEFGMjZCODUzM0U5N0FBRkJBRUMxN0ZD RUZENkY4QzAeFw0yNTA0MDUxNjU1NTRaFw0yNjA0MDQxNzAwNTRaMDMxMTAvBgNV BAMTKEE4ODU5QTI0NTcyQjUzOTU3Q0Q0NTkxM0JEMEY1RDExMTc4RjFFNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRdcY4pQt/8+YEVgGZvmirNPuN E4c/dJGqU4PVk9oG83CUSiw1yPqCt2zGgNd6pivO4UbY/kDxLi7HNOeLd8/Muihp 5+U+j5mQ7y+dXsw2rQYz7TDln+AxF6WbLYta3sCJOWRNazxmL5fJN8FF7ubLzg++ bsjJ//FIyuJXvAaACBvmNTCbDRLmstmvzrH1j9bJjFrEc1a9TXgbF4WE0GFGn7Qc 8tbAhca9uZgub5ZWw3vQ+1Rqy3Vjke55mmdzioVcifLGnKSZGGOxAG+EeVAa7viQ p0AzXVhu+44MQFzSu4o3NO9PI2d6Zgqz/hMxjuSQ/i0O5/hfpCcv3xmbvOzrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUqIWaJFcrU5V81FkTvQ9dERePHl0wHwYDVR0j BBgwFoAUuXLwc7ivJrhTPpeq+67Bf879b4wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZDE2MTljYi1jMDFjLTQ2MTQtODYzZS1jZTI4OGQ3YmE3NjUvMC9COTcyRjA3M0I4 QUYyNkI4NTMzRTk3QUFGQkFFQzE3RkNFRkQ2RjhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjk3MkYwNzNCOEFGMjZCODUzM0U5N0FBRkJBRUMxN0ZDRUZE NkY4Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlkMTYxOWNiLWMwMWMtNDYxNC04 NjNlLWNlMjg4ZDdiYTc2NS8wLzMxMzAzMzJlMzEzNTM1MmUzMTM1MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM2MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnm5wwDQYJ KoZIhvcNAQELBQADggEBAB2BiNo8419wGPHfrR/vF1h8thY7Slxj7VcjPA7/X0Uj OwlQ4QilxPpFoKl0Sfh46hLcmnYSm4LFdx5VeSzn87Aia7Tzf85comStbmy+Hijg R2gWq5623huyICvD9ocSjgCxeBEugjJJNg3YJ7tgNQmh9gwUycMLrMeVgXfvjpb4 VkJOrXGGIcJIpmQI01H9Qhwi9n6ChghLct4BaeoKHE0GNavGlfzl/b0d7lS8YKR0 NwNqAPLqVSJ3mlaiQM7tbytKAXvHKipLrhdhS2jggwcElm2uSTw1yt8tctil1NZ2 AEE7vT4ns02y5E+RxJnP9KUz7QCCfJGM42uuCymNX4Q= -----END CERTIFICATE-----Generated at Thu Apr 10 12:50:27 2025 by rpki-client