$ rpki-client -vvf repo-rpki.idnic.net/repo/ab313d17-5b9b-4d23-9424-74579508ba54/0/3130332e33372e3232392e302f32342d3234203d3e20313333333631.roa File: 3130332e33372e3232392e302f32342d3234203d3e20313333333631.roa (raw, json) Hash identifier: OMvT7v+SWmvCcI/oQS1wfiv6hD1AXfKdII4PA3MiDEc= Subject key identifier: 16:83:40:AE:9F:90:7C:93:63:12:16:66:DB:E7:A6:23:CE:BB:DA:C9 Certificate issuer: /CN=64FFF4BF67B5B3EF9DC6545842C118D75F6042D8 Certificate serial: 7A44129904DDA44E7DDFD5EEB8E89480993F19D8 Authority key identifier: 64:FF:F4:BF:67:B5:B3:EF:9D:C6:54:58:42:C1:18:D7:5F:60:42:D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64FFF4BF67B5B3EF9DC6545842C118D75F6042D8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ab313d17-5b9b-4d23-9424-74579508ba54/0/3130332e33372e3232392e302f32342d3234203d3e20313333333631.roa Signing time: Thu 27 Feb 2025 08:00:00 +0000 ROA not before: Thu 27 Feb 2025 07:55:00 +0000 ROA not after: Thu 26 Feb 2026 08:00:00 +0000 asID: 133361 IP address blocks: 103.37.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ab313d17-5b9b-4d23-9424-74579508ba54/0/64FFF4BF67B5B3EF9DC6545842C118D75F6042D8.crl rsync://repo-rpki.idnic.net/repo/ab313d17-5b9b-4d23-9424-74579508ba54/0/64FFF4BF67B5B3EF9DC6545842C118D75F6042D8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64FFF4BF67B5B3EF9DC6545842C118D75F6042D8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 12:11:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:44:12:99:04:dd:a4:4e:7d:df:d5:ee:b8:e8:94:80:99:3f:19:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64FFF4BF67B5B3EF9DC6545842C118D75F6042D8 Validity Not Before: Feb 27 07:55:00 2025 GMT Not After : Feb 26 08:00:00 2026 GMT Subject: CN=168340AE9F907C9363121666DBE7A623CEBBDAC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:1d:22:76:9c:f4:e3:be:1b:a0:c3:94:03:50: 00:1f:3e:33:c4:9f:7e:07:e0:34:7f:5d:7e:0a:72: 61:e9:7f:98:39:9a:b9:13:b8:4c:1b:d2:06:75:7b: 85:74:19:cc:87:44:c5:cd:51:39:5a:21:39:48:57: 03:15:cb:6e:77:f7:2a:f3:4b:39:ba:3e:b7:be:6a: 66:33:b2:b3:63:c4:73:9b:43:94:25:1b:ca:e3:3b: ce:c7:2d:3b:d7:79:9b:a2:07:e2:64:aa:a9:6d:33: 7b:11:52:27:43:18:3f:89:04:49:2b:61:b8:69:57: e2:47:66:b8:5e:89:d7:56:0b:0a:f5:6b:e3:71:db: 0e:02:e7:1f:f1:63:4b:f1:ba:24:1d:af:d5:6f:0d: 07:e2:74:9d:08:b6:78:c7:c7:78:25:43:ac:1f:59: 63:2a:97:7d:61:f8:42:7e:e4:6b:f5:90:c1:b7:04: cd:85:41:d0:15:c1:5f:29:ed:dd:8a:6e:de:6a:7a: fc:e3:cc:11:54:89:ba:de:d0:5e:63:be:80:be:37: 36:19:4f:b2:fe:f2:ab:ee:fe:89:bd:e5:66:9b:60: 6e:2a:8e:5e:2c:0f:74:cc:88:5d:79:e8:8b:57:8c: 56:95:1a:ca:58:31:75:1d:83:05:54:7d:cb:f5:7e: 85:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:83:40:AE:9F:90:7C:93:63:12:16:66:DB:E7:A6:23:CE:BB:DA:C9 X509v3 Authority Key Identifier: keyid:64:FF:F4:BF:67:B5:B3:EF:9D:C6:54:58:42:C1:18:D7:5F:60:42:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ab313d17-5b9b-4d23-9424-74579508ba54/0/64FFF4BF67B5B3EF9DC6545842C118D75F6042D8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64FFF4BF67B5B3EF9DC6545842C118D75F6042D8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ab313d17-5b9b-4d23-9424-74579508ba54/0/3130332e33372e3232392e302f32342d3234203d3e20313333333631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.37.229.0/24 Signature Algorithm: sha256WithRSAEncryption 77:3b:bd:dd:95:69:73:fa:5d:e3:7c:e1:ad:e1:7e:99:90:cd: 20:22:08:da:71:69:da:59:12:f7:9e:80:de:fb:27:51:79:36: 2e:d1:cc:f8:6a:4d:c8:c2:b3:ee:2b:9d:b5:33:ac:69:42:fe: cd:e5:48:3f:cd:24:a6:c7:bf:3f:42:98:38:55:18:3d:98:07: f8:37:f1:a0:54:92:1c:16:b5:15:48:3c:7a:f1:7d:b3:2a:29: f3:3b:16:a2:50:ac:70:8a:27:1d:ab:c5:fb:43:f9:55:66:ea: 05:fa:ee:83:b3:5b:c3:e5:98:b6:28:95:ba:e5:46:d7:f4:6b: 73:45:93:df:ca:45:66:19:39:e6:ab:9a:23:04:54:49:cf:5a: 3d:0e:f4:95:fd:a1:ae:2d:6c:41:74:61:dd:15:91:bb:73:d6: 01:ab:af:39:17:69:22:48:33:75:96:a1:2e:c3:0e:6b:e5:8a: 42:4d:19:18:41:f9:be:b6:fd:1d:a4:21:32:e2:c4:fb:ee:b7: 80:26:7a:4c:f8:68:7d:32:f1:0c:83:63:13:6f:ae:b6:7c:eb: 04:df:fb:f8:24:21:84:67:39:cd:86:0c:14:9b:17:5c:a0:78: 6c:26:d9:84:bb:04:9a:0e:a0:fc:48:0a:ab:8b:bb:ed:75:b6: de:5a:df:4b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUekQSmQTdpE5939XuuOiUgJk/GdgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjRGRkY0QkY2N0I1QjNFRjlEQzY1NDU4NDJDMTE4RDc1 RjYwNDJEODAeFw0yNTAyMjcwNzU1MDBaFw0yNjAyMjYwODAwMDBaMDMxMTAvBgNV BAMTKDE2ODM0MEFFOUY5MDdDOTM2MzEyMTY2NkRCRTdBNjIzQ0VCQkRBQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClHSJ2nPTjvhugw5QDUAAfPjPE n34H4DR/XX4KcmHpf5g5mrkTuEwb0gZ1e4V0GcyHRMXNUTlaITlIVwMVy2539yrz Szm6Pre+amYzsrNjxHObQ5QlG8rjO87HLTvXeZuiB+JkqqltM3sRUidDGD+JBEkr YbhpV+JHZrheiddWCwr1a+Nx2w4C5x/xY0vxuiQdr9VvDQfidJ0ItnjHx3glQ6wf WWMql31h+EJ+5Gv1kMG3BM2FQdAVwV8p7d2Kbt5qevzjzBFUibre0F5jvoC+NzYZ T7L+8qvu/om95WabYG4qjl4sD3TMiF156ItXjFaVGspYMXUdgwVUfcv1foVhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFoNArp+QfJNjEhZm2+emI8672skwHwYDVR0j BBgwFoAUZP/0v2e1s++dxlRYQsEY119gQtgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YjMxM2QxNy01YjliLTRkMjMtOTQyNC03NDU3OTUwOGJhNTQvMC82NEZGRjRCRjY3 QjVCM0VGOURDNjU0NTg0MkMxMThENzVGNjA0MkQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjRGRkY0QkY2N0I1QjNFRjlEQzY1NDU4NDJDMTE4RDc1RjYw NDJEOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FiMzEzZDE3LTViOWItNGQyMy05 NDI0LTc0NTc5NTA4YmE1NC8wLzMxMzAzMzJlMzMzNzJlMzIzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzMzNjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZyXlMA0GCSqG SIb3DQEBCwUAA4IBAQB3O73dlWlz+l3jfOGt4X6ZkM0gIgjacWnaWRL3noDe+ydR eTYu0cz4ak3IwrPuK521M6xpQv7N5Ug/zSSmx78/Qpg4VRg9mAf4N/GgVJIcFrUV SDx68X2zKinzOxaiUKxwiicdq8X7Q/lVZuoF+u6Ds1vD5Zi2KJW65UbX9GtzRZPf ykVmGTnmq5ojBFRJz1o9DvSV/aGuLWxBdGHdFZG7c9YBq685F2kiSDN1lqEuww5r 5YpCTRkYQfm+tv0dpCEy4sT77reAJnpM+Gh9MvEMg2MTb662fOsE3/v4JCGEZznN hgwUmxdcoHhsJtmEuwSaDqD8SAqri7vtdbbeWt9L -----END CERTIFICATE-----Generated at Sun Apr 6 11:03:41 2025 by rpki-client