$ rpki-client -vvf repo-rpki.idnic.net/repo/aae6379e-b886-436e-b0ed-3aaff9c08501/0/3130332e3137302e33322e302f32342d3234203d3e20313432333631.roa File: 3130332e3137302e33322e302f32342d3234203d3e20313432333631.roa (raw, json) Hash identifier: lzUMPrw8n3pOIcK3z918mZsLDeZOm1wMYf7ktj1KFkU= Subject key identifier: 79:4F:0C:37:92:70:AB:16:82:C6:B2:16:59:33:DE:A0:A1:3B:8F:84 Certificate issuer: /CN=B90B0AED87ECD7C87066450AB56ADE2996647CD5 Certificate serial: 3F9F70D1B22EB47BC87E03DB91C248C5D47F6357 Authority key identifier: B9:0B:0A:ED:87:EC:D7:C8:70:66:45:0A:B5:6A:DE:29:96:64:7C:D5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B90B0AED87ECD7C87066450AB56ADE2996647CD5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aae6379e-b886-436e-b0ed-3aaff9c08501/0/3130332e3137302e33322e302f32342d3234203d3e20313432333631.roa Signing time: Wed 19 Feb 2025 07:01:41 +0000 ROA not before: Wed 19 Feb 2025 06:56:41 +0000 ROA not after: Wed 18 Feb 2026 07:01:41 +0000 asID: 142361 IP address blocks: 103.170.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aae6379e-b886-436e-b0ed-3aaff9c08501/0/B90B0AED87ECD7C87066450AB56ADE2996647CD5.crl rsync://repo-rpki.idnic.net/repo/aae6379e-b886-436e-b0ed-3aaff9c08501/0/B90B0AED87ECD7C87066450AB56ADE2996647CD5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B90B0AED87ECD7C87066450AB56ADE2996647CD5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 10:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:9f:70:d1:b2:2e:b4:7b:c8:7e:03:db:91:c2:48:c5:d4:7f:63:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B90B0AED87ECD7C87066450AB56ADE2996647CD5 Validity Not Before: Feb 19 06:56:41 2025 GMT Not After : Feb 18 07:01:41 2026 GMT Subject: CN=794F0C379270AB1682C6B2165933DEA0A13B8F84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d8:5a:5d:80:e3:9a:6f:3d:b8:96:ae:a1:89: 52:02:27:43:24:0d:e7:da:a6:74:51:97:63:c7:7b: b1:53:9b:d9:75:00:ee:66:7d:2f:15:15:bf:d1:d6: 4a:ea:21:b4:a9:d7:bf:b0:2d:d5:de:b7:73:93:c9: 77:43:67:1f:18:c7:2b:34:b8:ca:85:12:ac:8d:30: 8e:60:1d:69:92:9d:32:57:aa:2b:ce:75:46:9d:58: 07:27:ce:c9:e4:ba:2f:f5:7c:58:dd:7a:8c:c2:2f: 84:d3:f2:b3:9b:8f:e4:ed:ce:6f:58:df:4c:4e:eb: 61:e3:75:f1:da:e8:9d:5b:24:85:23:52:0f:4f:9c: a5:d3:39:93:cd:67:96:d5:1d:16:03:e8:65:6c:e6: 75:0a:ca:a4:92:29:f8:12:53:cc:1c:f2:af:a2:ba: 6c:4f:c5:3d:45:fa:0d:0b:87:aa:47:78:c8:83:27: 00:9a:9c:3f:f0:f7:a4:96:d4:ad:cf:4f:b9:30:e2: c8:7d:46:f3:a1:9b:2b:f3:19:e2:f5:0d:20:17:6c: d1:f6:d6:22:e2:6f:ee:ae:9e:a7:dd:5a:ec:6c:4c: ce:9e:ff:9d:db:c4:6c:a5:3b:b4:75:6c:ae:ea:67: 6c:2f:0d:96:00:65:16:2c:e9:81:7f:2a:55:5c:18: 1b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:4F:0C:37:92:70:AB:16:82:C6:B2:16:59:33:DE:A0:A1:3B:8F:84 X509v3 Authority Key Identifier: keyid:B9:0B:0A:ED:87:EC:D7:C8:70:66:45:0A:B5:6A:DE:29:96:64:7C:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aae6379e-b886-436e-b0ed-3aaff9c08501/0/B90B0AED87ECD7C87066450AB56ADE2996647CD5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B90B0AED87ECD7C87066450AB56ADE2996647CD5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aae6379e-b886-436e-b0ed-3aaff9c08501/0/3130332e3137302e33322e302f32342d3234203d3e20313432333631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.32.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:17:83:01:7e:d4:c0:cc:3c:2f:05:37:6e:2c:d4:57:ba:0b: 42:ea:7a:f3:76:a0:8a:2a:19:2b:eb:15:03:77:6b:0d:d0:53: 2f:db:5e:78:f4:15:8e:5d:cf:e7:6b:30:88:66:71:4e:54:77: 6c:5e:12:85:d1:36:99:13:1e:9d:23:b6:4c:4d:7b:41:7b:8a: 5f:01:ad:ee:2c:6a:fa:43:41:e3:0f:5a:84:39:14:66:20:7b: 7d:2a:39:fd:d2:a4:9e:b9:96:2c:dc:cf:17:b9:68:a8:a9:a1: 07:97:c2:bd:6a:02:ff:04:a0:01:0e:57:b4:26:0e:11:f3:9a: ab:aa:8d:1e:7e:e5:fe:d8:78:1a:14:00:d6:d7:8f:77:9e:cb: be:bc:ce:47:a6:7e:2a:bc:b1:cf:1a:02:a5:11:73:d0:a3:78: 37:43:9b:d4:f1:29:d1:da:71:6d:6b:93:29:7e:a1:a9:73:eb: b3:2c:b9:f0:e7:b8:0b:aa:b6:bb:0a:b7:d4:1e:99:8c:7f:96: e7:41:1e:77:48:7c:0f:01:a8:70:88:7d:24:40:b0:07:5a:9b: 5d:85:79:91:fe:00:2f:15:f5:f6:50:6e:4a:da:93:ab:ac:43: f1:d2:df:2e:3c:ae:03:ca:ca:02:a8:63:86:72:7d:1e:e0:7d: c4:7f:fb:a8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUP59w0bIutHvIfgPbkcJIxdR/Y1cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjkwQjBBRUQ4N0VDRDdDODcwNjY0NTBBQjU2QURFMjk5 NjY0N0NENTAeFw0yNTAyMTkwNjU2NDFaFw0yNjAyMTgwNzAxNDFaMDMxMTAvBgNV BAMTKDc5NEYwQzM3OTI3MEFCMTY4MkM2QjIxNjU5MzNERUEwQTEzQjhGODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE2FpdgOOabz24lq6hiVICJ0Mk DefapnRRl2PHe7FTm9l1AO5mfS8VFb/R1krqIbSp17+wLdXet3OTyXdDZx8Yxys0 uMqFEqyNMI5gHWmSnTJXqivOdUadWAcnzsnkui/1fFjdeozCL4TT8rObj+Ttzm9Y 30xO62HjdfHa6J1bJIUjUg9PnKXTOZPNZ5bVHRYD6GVs5nUKyqSSKfgSU8wc8q+i umxPxT1F+g0Lh6pHeMiDJwCanD/w96SW1K3PT7kw4sh9RvOhmyvzGeL1DSAXbNH2 1iLib+6unqfdWuxsTM6e/53bxGylO7R1bK7qZ2wvDZYAZRYs6YF/KlVcGBuvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUeU8MN5JwqxaCxrIWWTPeoKE7j4QwHwYDVR0j BBgwFoAUuQsK7Yfs18hwZkUKtWreKZZkfNUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YWU2Mzc5ZS1iODg2LTQzNmUtYjBlZC0zYWFmZjljMDg1MDEvMC9COTBCMEFFRDg3 RUNEN0M4NzA2NjQ1MEFCNTZBREUyOTk2NjQ3Q0Q1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjkwQjBBRUQ4N0VDRDdDODcwNjY0NTBBQjU2QURFMjk5NjY0 N0NENS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhZTYzNzllLWI4ODYtNDM2ZS1i MGVkLTNhYWZmOWMwODUwMS8wLzMxMzAzMzJlMzEzNzMwMmUzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzNjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6ogMA0GCSqG SIb3DQEBCwUAA4IBAQB/F4MBftTAzDwvBTduLNRXugtC6nrzdqCKKhkr6xUDd2sN 0FMv21549BWOXc/nazCIZnFOVHdsXhKF0TaZEx6dI7ZMTXtBe4pfAa3uLGr6Q0Hj D1qEORRmIHt9Kjn90qSeuZYs3M8XuWioqaEHl8K9agL/BKABDle0Jg4R85qrqo0e fuX+2HgaFADW1493nsu+vM5Hpn4qvLHPGgKlEXPQo3g3Q5vU8SnR2nFta5MpfqGp c+uzLLnw57gLqra7CrfUHpmMf5bnQR53SHwPAahwiH0kQLAHWptdhXmR/gAvFfX2 UG5K2pOrrEPx0t8uPK4DysoCqGOGcn0e4H3Ef/uo -----END CERTIFICATE-----Generated at Sun Apr 6 13:46:29 2025 by rpki-client