$ rpki-client -vvf repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/3130332e39372e3134302e302f32332d3233203d3e203538383230.roa File: 3130332e39372e3134302e302f32332d3233203d3e203538383230.roa (raw, json) Hash identifier: ky48tvEganYAJKKKh8LACXy3ayIODImWxB2YSjo+hjY= Subject key identifier: 09:22:58:2F:C7:61:95:3F:9F:F8:0E:3B:07:0C:37:08:06:D5:29:F0 Certificate issuer: /CN=F318D15D68E63CEBE4BFA026A5269F3877BE13C1 Certificate serial: 207F490A153EBB96969BA3BB5CF532F9292C9495 Authority key identifier: F3:18:D1:5D:68:E6:3C:EB:E4:BF:A0:26:A5:26:9F:38:77:BE:13:C1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/3130332e39372e3134302e302f32332d3233203d3e203538383230.roa Signing time: Sat 18 Jan 2025 15:07:15 +0000 ROA not before: Sat 18 Jan 2025 15:02:15 +0000 ROA not after: Sat 17 Jan 2026 15:07:15 +0000 asID: 58820 IP address blocks: 103.97.140.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.crl rsync://repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 09:33:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:7f:49:0a:15:3e:bb:96:96:9b:a3:bb:5c:f5:32:f9:29:2c:94:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F318D15D68E63CEBE4BFA026A5269F3877BE13C1 Validity Not Before: Jan 18 15:02:15 2025 GMT Not After : Jan 17 15:07:15 2026 GMT Subject: CN=0922582FC761953F9FF80E3B070C370806D529F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:96:a7:bb:ad:b6:29:56:7f:24:7a:b0:fe:bb: f5:21:3a:d4:19:72:03:38:e9:8c:aa:be:6e:14:a5: b6:2d:e5:03:12:69:04:c4:43:ea:fc:8e:8c:f6:5f: dc:60:6d:b4:5d:96:a1:ff:7a:34:5e:57:44:48:61: 23:35:d1:ad:5c:a0:e7:ba:39:ab:5c:2d:6b:ff:81: 96:c9:cd:bf:b9:ce:74:e0:1f:e4:5a:3f:79:df:69: b3:39:00:20:07:26:e8:cf:c5:37:08:5f:4d:fd:af: 6c:7a:e6:29:37:0c:b7:28:87:e2:e2:78:2f:21:0d: f8:71:19:0f:57:eb:05:2d:6a:49:f3:4e:25:bd:ba: b8:51:35:5a:c7:09:21:59:49:5b:31:cc:b6:3e:02: cb:4c:e5:40:e3:c1:20:41:00:23:58:ab:aa:08:aa: 4a:ef:1c:97:a1:28:ff:bc:c1:a1:12:8a:70:16:4f: 2d:ec:45:83:84:a3:27:c6:95:62:35:1a:91:81:a1: e2:ba:a2:df:66:e9:bb:88:a2:6e:e4:9a:16:7a:1d: e7:83:b6:fd:44:69:99:68:6a:84:e4:d9:48:78:77: e1:45:f4:10:92:5a:4d:94:e2:69:81:36:5c:a7:2d: aa:4c:b9:47:63:49:16:9e:27:ac:fe:98:44:d9:ed: 6f:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:22:58:2F:C7:61:95:3F:9F:F8:0E:3B:07:0C:37:08:06:D5:29:F0 X509v3 Authority Key Identifier: keyid:F3:18:D1:5D:68:E6:3C:EB:E4:BF:A0:26:A5:26:9F:38:77:BE:13:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/3130332e39372e3134302e302f32332d3233203d3e203538383230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.97.140.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:c0:1a:09:6e:bd:d1:3b:eb:58:7a:18:cb:5c:7c:a7:9e:d1: 48:71:cd:28:91:80:88:ef:c7:1e:af:28:55:a7:da:6b:d3:da: 78:ab:f6:42:b7:c1:12:10:67:c0:43:3a:a1:e5:86:33:32:74: eb:ef:d6:1c:ed:b9:21:a8:f8:03:bd:2d:9b:17:3d:79:a7:b9: 67:99:81:32:f0:3a:49:3a:b0:9d:06:33:d4:3d:57:03:39:34: d9:d6:c7:a4:d5:9b:04:ae:16:bb:c2:9c:cd:4a:2e:78:2c:ee: 15:67:f0:5c:02:48:7e:34:cd:e2:c1:1d:7e:cc:8c:e3:41:67: 6e:20:39:7c:4f:7e:f6:62:18:50:df:6c:df:03:bf:aa:7d:6f: 6c:84:d1:a7:ea:ce:17:0b:df:50:b6:5e:16:2d:64:d6:8e:aa: 49:59:96:5b:d5:df:98:d5:c5:eb:94:79:d6:bb:33:0c:9e:56: 99:ea:ca:45:66:13:32:23:8b:e0:cf:8d:3d:31:5b:8d:8a:b0: 2d:22:48:ad:8b:e3:d3:18:e0:3c:96:03:e0:42:39:04:02:c3: 2f:e7:87:f5:b5:62:d2:ee:df:e9:dc:c7:3c:36:4f:c6:5d:0e: 55:65:93:c9:40:80:e1:d7:6f:1d:e5:e7:31:2d:d3:e7:6a:f4: f4:fa:e7:88 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIH9JChU+u5aWm6O7XPUy+SkslJUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjMxOEQxNUQ2OEU2M0NFQkU0QkZBMDI2QTUyNjlGMzg3 N0JFMTNDMTAeFw0yNTAxMTgxNTAyMTVaFw0yNjAxMTcxNTA3MTVaMDMxMTAvBgNV BAMTKDA5MjI1ODJGQzc2MTk1M0Y5RkY4MEUzQjA3MEMzNzA4MDZENTI5RjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7lqe7rbYpVn8kerD+u/UhOtQZ cgM46Yyqvm4UpbYt5QMSaQTEQ+r8joz2X9xgbbRdlqH/ejReV0RIYSM10a1coOe6 OatcLWv/gZbJzb+5znTgH+RaP3nfabM5ACAHJujPxTcIX039r2x65ik3DLcoh+Li eC8hDfhxGQ9X6wUtaknzTiW9urhRNVrHCSFZSVsxzLY+AstM5UDjwSBBACNYq6oI qkrvHJehKP+8waESinAWTy3sRYOEoyfGlWI1GpGBoeK6ot9m6buIom7kmhZ6HeeD tv1EaZloaoTk2Uh4d+FF9BCSWk2U4mmBNlynLapMuUdjSRaeJ6z+mETZ7W9ZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUCSJYL8dhlT+f+A47Bww3CAbVKfAwHwYDVR0j BBgwFoAU8xjRXWjmPOvkv6AmpSafOHe+E8EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NDAxNDM2Yi0wMjY3LTQ2NmItYTM0MC1lMjg4ZDJlOTM0YTgvMC9GMzE4RDE1RDY4 RTYzQ0VCRTRCRkEwMjZBNTI2OUYzODc3QkUxM0MxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjMxOEQxNUQ2OEU2M0NFQkU0QkZBMDI2QTUyNjlGMzg3N0JF MTNDMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E0MDE0MzZiLTAyNjctNDY2Yi1h MzQwLWUyODhkMmU5MzRhOC8wLzMxMzAzMzJlMzkzNzJlMzEzNDMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzUzODM4MzIzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWdhjDANBgkqhkiG 9w0BAQsFAAOCAQEAGsAaCW690TvrWHoYy1x8p57RSHHNKJGAiO/HHq8oVafaa9Pa eKv2QrfBEhBnwEM6oeWGMzJ06+/WHO25Iaj4A70tmxc9eae5Z5mBMvA6STqwnQYz 1D1XAzk02dbHpNWbBK4Wu8KczUoueCzuFWfwXAJIfjTN4sEdfsyM40FnbiA5fE9+ 9mIYUN9s3wO/qn1vbITRp+rOFwvfULZeFi1k1o6qSVmWW9XfmNXF65R51rszDJ5W merKRWYTMiOL4M+NPTFbjYqwLSJIrYvj0xjgPJYD4EI5BALDL+eH9bVi0u7f6dzH PDZPxl0OVWWTyUCA4ddvHeXnMS3T52r09PrniA== -----END CERTIFICATE-----Generated at Sun Apr 6 08:27:52 2025 by rpki-client