$ rpki-client -vvf repo-rpki.idnic.net/repo/ac32eee1-10f7-457d-a8c5-5f7f741a63da/0/3130332e3136382e3135312e302f32342d3234203d3e20313432333131.roa File: 3130332e3136382e3135312e302f32342d3234203d3e20313432333131.roa (raw, json) Hash identifier: BhnGgrLxQToH43lOYPnJ2LlBuEk9aNMZ3kEQeKIy1bA= Subject key identifier: 0C:A7:C0:0D:AC:27:B8:7E:82:14:23:80:53:72:6C:F0:78:3D:B2:5D Certificate issuer: /CN=7195906BF48238F96B0510D75000910A519133F7 Certificate serial: 700173A03CF29D33C34ED581F475DC4CE70716E5 Authority key identifier: 71:95:90:6B:F4:82:38:F9:6B:05:10:D7:50:00:91:0A:51:91:33:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7195906BF48238F96B0510D75000910A519133F7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ac32eee1-10f7-457d-a8c5-5f7f741a63da/0/3130332e3136382e3135312e302f32342d3234203d3e20313432333131.roa Signing time: Tue 31 Dec 2024 07:02:16 +0000 ROA not before: Tue 31 Dec 2024 06:57:16 +0000 ROA not after: Tue 30 Dec 2025 07:02:16 +0000 asID: 142311 IP address blocks: 103.168.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ac32eee1-10f7-457d-a8c5-5f7f741a63da/0/7195906BF48238F96B0510D75000910A519133F7.crl rsync://repo-rpki.idnic.net/repo/ac32eee1-10f7-457d-a8c5-5f7f741a63da/0/7195906BF48238F96B0510D75000910A519133F7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7195906BF48238F96B0510D75000910A519133F7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 13:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:01:73:a0:3c:f2:9d:33:c3:4e:d5:81:f4:75:dc:4c:e7:07:16:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7195906BF48238F96B0510D75000910A519133F7 Validity Not Before: Dec 31 06:57:16 2024 GMT Not After : Dec 30 07:02:16 2025 GMT Subject: CN=0CA7C00DAC27B87E8214238053726CF0783DB25D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:df:5e:b7:d3:bc:00:42:94:ea:c1:2f:07:56: e9:ff:97:15:18:42:4f:79:06:f5:a4:d0:09:f5:ff: 36:14:a9:37:3f:91:68:cd:cf:a9:08:af:f0:73:6b: fa:7b:8e:93:09:13:7d:86:a7:3b:cf:81:9d:73:99: fb:ec:0a:d4:5f:80:32:02:5a:f5:64:ef:b7:eb:5a: 08:ff:19:20:3d:70:c1:30:28:68:f1:7a:1b:f1:a1: dd:c4:ad:b0:2d:69:c3:33:a5:77:bf:62:55:ac:d9: f6:6b:a4:70:29:62:af:fc:63:02:2e:db:6c:02:49: f9:19:8c:77:b6:71:09:cd:4b:f2:c0:11:26:f4:dc: d0:5d:f0:04:72:c9:6c:71:fb:2f:48:8e:d7:92:4c: 69:c1:85:95:fb:7a:8a:3e:d9:b9:b8:6b:7c:dc:d7: de:96:d0:12:67:4e:1c:bd:d7:29:bc:de:db:ae:e9: 44:97:1e:a6:60:2d:90:4e:8c:ed:65:8d:44:ef:03: 46:b3:e7:47:3f:a2:e6:ca:1f:91:ed:8d:58:d2:36: c0:8a:66:0b:7b:18:fd:6f:ac:3a:84:29:96:c5:db: 72:9a:15:1c:16:bd:c5:59:40:14:b0:d2:ea:24:03: c1:ed:87:38:27:93:ef:2a:bc:f0:48:d9:ea:4c:b7: 06:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:A7:C0:0D:AC:27:B8:7E:82:14:23:80:53:72:6C:F0:78:3D:B2:5D X509v3 Authority Key Identifier: keyid:71:95:90:6B:F4:82:38:F9:6B:05:10:D7:50:00:91:0A:51:91:33:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ac32eee1-10f7-457d-a8c5-5f7f741a63da/0/7195906BF48238F96B0510D75000910A519133F7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7195906BF48238F96B0510D75000910A519133F7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ac32eee1-10f7-457d-a8c5-5f7f741a63da/0/3130332e3136382e3135312e302f32342d3234203d3e20313432333131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.151.0/24 Signature Algorithm: sha256WithRSAEncryption 03:93:86:ce:a3:7d:61:98:fd:aa:72:9b:78:0e:73:3c:4c:d0: b0:e6:09:90:11:94:a7:a7:4f:90:90:5b:28:46:b9:5c:80:1f: 2e:aa:cc:b0:35:7e:7d:1d:7f:5a:b1:ca:d2:7d:ce:22:63:07: a1:9d:25:0c:8b:ff:2a:b2:5e:4b:e6:7a:27:08:b7:41:8c:97: ac:c4:dd:6d:5e:e7:3a:73:e7:5f:04:dd:2e:40:13:48:b6:80: 7b:b2:b4:62:11:83:6b:4f:40:b8:45:82:ee:6e:cf:34:b6:11: 19:50:dc:37:95:4b:77:42:db:7a:ac:cd:5b:e2:44:25:b8:6b: 53:26:72:ed:09:80:50:28:9c:f7:6f:47:21:b8:82:37:e0:16: 11:fe:c9:09:a5:85:39:3b:68:bd:cc:c2:06:49:68:8d:2c:2e: 52:c7:e3:c1:21:78:98:40:21:58:46:17:90:26:f1:47:17:0d: e1:e2:71:61:61:c9:af:ae:de:67:2b:e0:4f:59:2f:e5:8e:fa: 32:50:76:91:52:a8:ad:cf:74:ff:3e:f4:4a:d7:dc:0c:a2:82: fe:ba:9a:50:fe:e9:de:2b:ad:55:c0:44:b0:0a:9f:fa:4d:8e: 48:70:cf:c5:ac:8c:c6:3b:98:0a:1a:8a:d8:29:a3:5c:ad:fb: d3:f9:83:5d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcAFzoDzynTPDTtWB9HXcTOcHFuUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzE5NTkwNkJGNDgyMzhGOTZCMDUxMEQ3NTAwMDkxMEE1 MTkxMzNGNzAeFw0yNDEyMzEwNjU3MTZaFw0yNTEyMzAwNzAyMTZaMDMxMTAvBgNV BAMTKDBDQTdDMDBEQUMyN0I4N0U4MjE0MjM4MDUzNzI2Q0YwNzgzREIyNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDo316307wAQpTqwS8HVun/lxUY Qk95BvWk0An1/zYUqTc/kWjNz6kIr/Bza/p7jpMJE32GpzvPgZ1zmfvsCtRfgDIC WvVk77frWgj/GSA9cMEwKGjxehvxod3ErbAtacMzpXe/YlWs2fZrpHApYq/8YwIu 22wCSfkZjHe2cQnNS/LAESb03NBd8ARyyWxx+y9IjteSTGnBhZX7eoo+2bm4a3zc 196W0BJnThy91ym83tuu6USXHqZgLZBOjO1ljUTvA0az50c/oubKH5HtjVjSNsCK Zgt7GP1vrDqEKZbF23KaFRwWvcVZQBSw0uokA8Hthzgnk+8qvPBI2epMtwZlAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUDKfADawnuH6CFCOAU3Js8Hg9sl0wHwYDVR0j BBgwFoAUcZWQa/SCOPlrBRDXUACRClGRM/cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YzMyZWVlMS0xMGY3LTQ1N2QtYThjNS01ZjdmNzQxYTYzZGEvMC83MTk1OTA2QkY0 ODIzOEY5NkIwNTEwRDc1MDAwOTEwQTUxOTEzM0Y3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzE5NTkwNkJGNDgyMzhGOTZCMDUxMEQ3NTAwMDkxMEE1MTkx MzNGNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjMzJlZWUxLTEwZjctNDU3ZC1h OGM1LTVmN2Y3NDFhNjNkYS8wLzMxMzAzMzJlMzEzNjM4MmUzMTM1MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzMxMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqJcwDQYJ KoZIhvcNAQELBQADggEBAAOThs6jfWGY/apym3gOczxM0LDmCZARlKenT5CQWyhG uVyAHy6qzLA1fn0df1qxytJ9ziJjB6GdJQyL/yqyXkvmeicIt0GMl6zE3W1e5zpz 518E3S5AE0i2gHuytGIRg2tPQLhFgu5uzzS2ERlQ3DeVS3dC23qszVviRCW4a1Mm cu0JgFAonPdvRyG4gjfgFhH+yQmlhTk7aL3MwgZJaI0sLlLH48EheJhAIVhGF5Am 8UcXDeHicWFhya+u3mcr4E9ZL+WO+jJQdpFSqK3PdP8+9ErX3Ayigv66mlD+6d4r rVXARLAKn/pNjkhwz8WsjMY7mAoaitgpo1yt+9P5g10= -----END CERTIFICATE-----Generated at Mon Apr 7 16:46:39 2025 by rpki-client