$ rpki-client -vvf repo-rpki.idnic.net/repo/aae6379e-b886-436e-b0ed-3aaff9c08501/0/3130332e3137302e33332e302f32342d3234203d3e20313432333933.roa File: 3130332e3137302e33332e302f32342d3234203d3e20313432333933.roa (raw, json) Hash identifier: Y898pFGpBLNuRCPjm01v0/pmUXmwJOu+OeM8IgqOT94= Subject key identifier: 7E:62:02:0E:19:7E:4A:99:A4:34:29:23:9F:45:08:70:D2:48:B2:D5 Certificate issuer: /CN=B90B0AED87ECD7C87066450AB56ADE2996647CD5 Certificate serial: 7FE9F4CF29239D7BAFB2FFA6E102EC5C33D1D8DC Authority key identifier: B9:0B:0A:ED:87:EC:D7:C8:70:66:45:0A:B5:6A:DE:29:96:64:7C:D5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B90B0AED87ECD7C87066450AB56ADE2996647CD5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aae6379e-b886-436e-b0ed-3aaff9c08501/0/3130332e3137302e33332e302f32342d3234203d3e20313432333933.roa Signing time: Mon 24 Feb 2025 09:33:23 +0000 ROA not before: Mon 24 Feb 2025 09:28:23 +0000 ROA not after: Mon 23 Feb 2026 09:33:23 +0000 asID: 142393 IP address blocks: 103.170.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aae6379e-b886-436e-b0ed-3aaff9c08501/0/B90B0AED87ECD7C87066450AB56ADE2996647CD5.crl rsync://repo-rpki.idnic.net/repo/aae6379e-b886-436e-b0ed-3aaff9c08501/0/B90B0AED87ECD7C87066450AB56ADE2996647CD5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B90B0AED87ECD7C87066450AB56ADE2996647CD5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 10:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:e9:f4:cf:29:23:9d:7b:af:b2:ff:a6:e1:02:ec:5c:33:d1:d8:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B90B0AED87ECD7C87066450AB56ADE2996647CD5 Validity Not Before: Feb 24 09:28:23 2025 GMT Not After : Feb 23 09:33:23 2026 GMT Subject: CN=7E62020E197E4A99A43429239F450870D248B2D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:cd:62:a5:15:23:db:36:fb:c5:c8:c7:72:20: 3c:a2:ed:e8:c1:07:5e:7c:28:dc:38:4d:d0:d7:28: c3:bd:ee:17:33:ca:29:5e:c2:3e:5d:c3:b1:db:72: 6a:67:d7:bc:98:7a:21:5c:d6:62:8c:7a:7b:12:43: c6:c4:fc:81:e7:1e:6a:b6:37:e2:1c:16:30:81:67: 16:9e:ee:68:18:2a:31:2b:0f:81:f7:c1:5c:09:1c: 99:b6:99:05:9c:58:47:d1:52:c0:5d:e4:57:94:5a: dd:a0:cc:47:03:3d:d6:16:c3:0e:72:af:b5:16:c4: 0a:3e:72:0f:50:db:1d:dc:30:e4:26:b6:8b:1c:53: 71:cd:aa:67:5e:73:15:b8:9c:12:5d:81:21:b0:a8: 89:b3:cd:9a:80:d1:dc:89:7d:4c:9b:45:60:fc:81: 44:f9:e8:e0:dd:bf:3a:db:f7:7c:13:7e:4e:a2:be: 57:e9:3d:41:14:83:98:e7:ef:9c:b8:4d:da:a7:b5: 2e:88:be:34:a0:e7:4b:be:e0:cf:4f:f7:41:66:47: aa:8b:56:b3:48:0c:a7:af:97:ce:bb:b2:d1:17:95: 7f:39:92:26:27:4a:5f:70:96:ae:ee:0a:15:79:34: 67:6c:ae:48:7d:d8:b9:1f:67:42:d7:4b:d2:fb:c3: df:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:62:02:0E:19:7E:4A:99:A4:34:29:23:9F:45:08:70:D2:48:B2:D5 X509v3 Authority Key Identifier: keyid:B9:0B:0A:ED:87:EC:D7:C8:70:66:45:0A:B5:6A:DE:29:96:64:7C:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aae6379e-b886-436e-b0ed-3aaff9c08501/0/B90B0AED87ECD7C87066450AB56ADE2996647CD5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B90B0AED87ECD7C87066450AB56ADE2996647CD5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aae6379e-b886-436e-b0ed-3aaff9c08501/0/3130332e3137302e33332e302f32342d3234203d3e20313432333933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.33.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:c0:8a:9c:b3:4c:cc:9b:a1:07:6e:97:e5:dd:2f:df:54:00: 3e:fb:4a:4e:e2:50:e4:40:03:d4:5f:0a:14:11:ae:cc:b1:f9: 2c:c2:64:c0:a9:23:d7:93:7e:d7:e3:5b:59:de:ee:8a:0d:9b: 77:a7:50:6b:ef:29:e1:73:4c:d2:b7:d9:ed:9e:ce:41:eb:da: 6d:43:7c:9c:de:96:c5:71:d3:b7:a3:a7:41:e3:0d:ab:65:31: e5:0c:8a:59:c6:da:4d:81:62:61:fc:e8:c0:d9:ee:46:8e:e1: 63:8f:b4:10:e0:98:23:ed:c9:33:59:0d:e0:66:b4:e3:e8:4a: cd:d0:57:e8:c2:3a:67:f9:a7:48:aa:a6:18:28:36:8d:48:aa: 6c:ba:36:3a:c5:3e:a3:74:3b:51:be:4a:24:10:41:0f:ee:38: 09:28:2b:eb:44:7e:7a:09:f9:69:b0:6d:64:6c:d0:79:55:7d: af:35:bc:49:89:ed:d4:1b:aa:2a:8b:b1:ab:dc:1f:45:91:f2: d7:0d:93:a4:76:40:9d:91:f4:2e:da:02:f2:b8:59:d9:0a:f2: 23:a3:9c:81:35:29:e1:4e:a3:4f:08:0e:2a:89:5e:c0:c3:34: 96:17:03:8c:fb:9c:bf:3f:9c:75:e5:c2:86:27:d3:d6:36:49: 88:7b:b0:e8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUf+n0zykjnXuvsv+m4QLsXDPR2NwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjkwQjBBRUQ4N0VDRDdDODcwNjY0NTBBQjU2QURFMjk5 NjY0N0NENTAeFw0yNTAyMjQwOTI4MjNaFw0yNjAyMjMwOTMzMjNaMDMxMTAvBgNV BAMTKDdFNjIwMjBFMTk3RTRBOTlBNDM0MjkyMzlGNDUwODcwRDI0OEIyRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNzWKlFSPbNvvFyMdyIDyi7ejB B158KNw4TdDXKMO97hczyilewj5dw7Hbcmpn17yYeiFc1mKMensSQ8bE/IHnHmq2 N+IcFjCBZxae7mgYKjErD4H3wVwJHJm2mQWcWEfRUsBd5FeUWt2gzEcDPdYWww5y r7UWxAo+cg9Q2x3cMOQmtoscU3HNqmdecxW4nBJdgSGwqImzzZqA0dyJfUybRWD8 gUT56ODdvzrb93wTfk6ivlfpPUEUg5jn75y4TdqntS6IvjSg50u+4M9P90FmR6qL VrNIDKevl867stEXlX85kiYnSl9wlq7uChV5NGdsrkh92LkfZ0LXS9L7w9+7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfmICDhl+SpmkNCkjn0UIcNJIstUwHwYDVR0j BBgwFoAUuQsK7Yfs18hwZkUKtWreKZZkfNUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YWU2Mzc5ZS1iODg2LTQzNmUtYjBlZC0zYWFmZjljMDg1MDEvMC9COTBCMEFFRDg3 RUNEN0M4NzA2NjQ1MEFCNTZBREUyOTk2NjQ3Q0Q1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjkwQjBBRUQ4N0VDRDdDODcwNjY0NTBBQjU2QURFMjk5NjY0 N0NENS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhZTYzNzllLWI4ODYtNDM2ZS1i MGVkLTNhYWZmOWMwODUwMS8wLzMxMzAzMzJlMzEzNzMwMmUzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzOTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6ohMA0GCSqG SIb3DQEBCwUAA4IBAQA/wIqcs0zMm6EHbpfl3S/fVAA++0pO4lDkQAPUXwoUEa7M sfkswmTAqSPXk37X41tZ3u6KDZt3p1Br7ynhc0zSt9ntns5B69ptQ3yc3pbFcdO3 o6dB4w2rZTHlDIpZxtpNgWJh/OjA2e5GjuFjj7QQ4Jgj7ckzWQ3gZrTj6ErN0Ffo wjpn+adIqqYYKDaNSKpsujY6xT6jdDtRvkokEEEP7jgJKCvrRH56CflpsG1kbNB5 VX2vNbxJie3UG6oqi7Gr3B9FkfLXDZOkdkCdkfQu2gLyuFnZCvIjo5yBNSnhTqNP CA4qiV7AwzSWFwOM+5y/P5x15cKGJ9PWNkmIe7Do -----END CERTIFICATE-----Generated at Sun Apr 6 13:43:38 2025 by rpki-client