$ rpki-client -vvf repo-rpki.idnic.net/repo/addf181f-1e89-4022-82f8-e0dba859ee2e/0/3130332e3130372e38342e302f32332d3233203d3e20313336383739.roa File: 3130332e3130372e38342e302f32332d3233203d3e20313336383739.roa (raw, json) Hash identifier: pEqfltHiO5idL1uFxEX2uQGcaapU/AOZ2PUbYVPk40Y= Subject key identifier: 7D:3A:42:73:AB:A4:C0:4C:CC:B5:C0:82:66:F0:10:62:C7:A4:E1:27 Certificate issuer: /CN=2247520F1208C8D9AC33B3035016DC4EC62CDEB1 Certificate serial: 63B68FDE7F1576AB90891391BD93993B3E7FEE06 Authority key identifier: 22:47:52:0F:12:08:C8:D9:AC:33:B3:03:50:16:DC:4E:C6:2C:DE:B1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2247520F1208C8D9AC33B3035016DC4EC62CDEB1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/addf181f-1e89-4022-82f8-e0dba859ee2e/0/3130332e3130372e38342e302f32332d3233203d3e20313336383739.roa Signing time: Fri 21 Feb 2025 10:00:01 +0000 ROA not before: Fri 21 Feb 2025 09:55:01 +0000 ROA not after: Fri 20 Feb 2026 10:00:01 +0000 asID: 136879 IP address blocks: 103.107.84.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/addf181f-1e89-4022-82f8-e0dba859ee2e/0/2247520F1208C8D9AC33B3035016DC4EC62CDEB1.crl rsync://repo-rpki.idnic.net/repo/addf181f-1e89-4022-82f8-e0dba859ee2e/0/2247520F1208C8D9AC33B3035016DC4EC62CDEB1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2247520F1208C8D9AC33B3035016DC4EC62CDEB1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 13:14:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:b6:8f:de:7f:15:76:ab:90:89:13:91:bd:93:99:3b:3e:7f:ee:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2247520F1208C8D9AC33B3035016DC4EC62CDEB1 Validity Not Before: Feb 21 09:55:01 2025 GMT Not After : Feb 20 10:00:01 2026 GMT Subject: CN=7D3A4273ABA4C04CCCB5C08266F01062C7A4E127 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:8d:0a:72:49:26:c1:a6:49:b2:57:e2:00:59: 4d:83:60:70:69:9a:c2:5d:5b:f8:35:e2:a4:53:86: 67:85:db:26:fe:2f:14:88:e2:0f:73:c7:b3:df:ff: 57:93:80:cc:50:40:52:0b:8c:43:83:e1:c1:61:8b: e3:29:eb:b0:23:6d:e6:d4:af:85:9b:ba:8b:74:10: c7:28:57:ca:ee:79:45:1c:7d:fe:86:a2:1e:78:73: 92:2f:39:8e:23:17:0d:bf:75:cc:8a:c6:ef:55:92: a7:8a:ea:ae:bd:f9:80:ea:16:01:b9:56:56:09:e4: 93:4e:7a:2c:8c:76:4f:fc:f6:66:71:af:37:0e:96: 2d:11:a4:41:24:28:18:ea:bd:cd:db:d7:12:e9:ae: 7d:8d:b8:27:c0:82:1d:5a:b3:03:58:2a:9b:c2:f5: eb:2c:02:6d:00:74:a8:c6:51:ec:9f:b1:75:ac:e3: 2b:e5:a8:9e:31:37:df:f4:ee:f7:07:50:3c:93:b9: 85:37:65:24:dc:e7:68:ba:4b:db:d5:b2:f1:0a:74: ba:e2:65:be:3d:5a:14:bb:0b:31:ed:a3:c4:d3:a6: 47:5b:cc:09:92:09:32:12:b4:26:39:ab:1a:da:51: 00:01:1b:20:6e:bb:2d:5e:ad:6f:18:28:98:0c:07: 5d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:3A:42:73:AB:A4:C0:4C:CC:B5:C0:82:66:F0:10:62:C7:A4:E1:27 X509v3 Authority Key Identifier: keyid:22:47:52:0F:12:08:C8:D9:AC:33:B3:03:50:16:DC:4E:C6:2C:DE:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/addf181f-1e89-4022-82f8-e0dba859ee2e/0/2247520F1208C8D9AC33B3035016DC4EC62CDEB1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2247520F1208C8D9AC33B3035016DC4EC62CDEB1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/addf181f-1e89-4022-82f8-e0dba859ee2e/0/3130332e3130372e38342e302f32332d3233203d3e20313336383739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.107.84.0/23 Signature Algorithm: sha256WithRSAEncryption 15:07:c4:33:d4:0a:60:e7:f6:a0:7c:c8:39:dc:c1:e7:8f:22: 4a:20:88:67:f6:42:09:5d:14:d8:dc:eb:63:f8:55:dd:ab:f8: 7a:fd:e8:55:01:19:81:69:6f:6d:93:b8:e0:1c:1e:c2:9b:b6: 98:4d:66:ce:a9:ed:03:ec:49:d3:9d:b1:43:d6:a4:8f:35:05: 05:b6:20:f4:41:56:2f:eb:8b:71:07:4c:fc:58:76:a3:a0:ac: 2c:99:67:db:b6:06:0c:16:b8:d5:b8:53:d1:29:a5:6c:f4:7f: 1e:0e:49:b4:eb:7f:98:2f:02:ed:c1:14:37:29:91:c4:c9:30: e4:00:68:3d:25:ac:41:06:28:e8:32:96:3a:bd:c6:39:85:6a: f4:64:3c:ae:2d:da:cd:d1:d0:d8:b7:86:ce:a8:f1:0f:2b:e6: 6b:cb:e0:80:4a:25:89:81:18:d0:87:63:5d:cf:7c:76:12:ef: f7:70:5b:91:b8:22:bb:5f:9a:09:4a:e8:9b:69:8f:5d:34:ce: fc:7b:a0:70:f8:00:d9:7f:8d:28:bf:11:aa:db:d4:09:80:5e: 53:ab:a4:76:93:27:fe:8f:fd:cb:4e:c4:10:24:80:76:a1:ae: 39:da:4a:eb:3c:dd:b0:2b:c8:20:40:c0:07:40:7e:65:9d:d7: ba:fe:01:3f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUY7aP3n8VdquQiRORvZOZOz5/7gYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI0NzUyMEYxMjA4QzhEOUFDMzNCMzAzNTAxNkRDNEVD NjJDREVCMTAeFw0yNTAyMjEwOTU1MDFaFw0yNjAyMjAxMDAwMDFaMDMxMTAvBgNV BAMTKDdEM0E0MjczQUJBNEMwNENDQ0I1QzA4MjY2RjAxMDYyQzdBNEUxMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSjQpySSbBpkmyV+IAWU2DYHBp msJdW/g14qRThmeF2yb+LxSI4g9zx7Pf/1eTgMxQQFILjEOD4cFhi+Mp67AjbebU r4Wbuot0EMcoV8rueUUcff6Goh54c5IvOY4jFw2/dcyKxu9VkqeK6q69+YDqFgG5 VlYJ5JNOeiyMdk/89mZxrzcOli0RpEEkKBjqvc3b1xLprn2NuCfAgh1aswNYKpvC 9essAm0AdKjGUeyfsXWs4yvlqJ4xN9/07vcHUDyTuYU3ZSTc52i6S9vVsvEKdLri Zb49WhS7CzHto8TTpkdbzAmSCTIStCY5qxraUQABGyBuuy1erW8YKJgMB10zAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfTpCc6ukwEzMtcCCZvAQYsek4ScwHwYDVR0j BBgwFoAUIkdSDxIIyNmsM7MDUBbcTsYs3rEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZGRmMTgxZi0xZTg5LTQwMjItODJmOC1lMGRiYTg1OWVlMmUvMC8yMjQ3NTIwRjEy MDhDOEQ5QUMzM0IzMDM1MDE2REM0RUM2MkNERUIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI0NzUyMEYxMjA4QzhEOUFDMzNCMzAzNTAxNkRDNEVDNjJD REVCMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FkZGYxODFmLTFlODktNDAyMi04 MmY4LWUwZGJhODU5ZWUyZS8wLzMxMzAzMzJlMzEzMDM3MmUzODM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM2MzgzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ2tUMA0GCSqG SIb3DQEBCwUAA4IBAQAVB8Qz1Apg5/agfMg53MHnjyJKIIhn9kIJXRTY3Otj+FXd q/h6/ehVARmBaW9tk7jgHB7Cm7aYTWbOqe0D7EnTnbFD1qSPNQUFtiD0QVYv64tx B0z8WHajoKwsmWfbtgYMFrjVuFPRKaVs9H8eDkm063+YLwLtwRQ3KZHEyTDkAGg9 JaxBBijoMpY6vcY5hWr0ZDyuLdrN0dDYt4bOqPEPK+Zry+CASiWJgRjQh2Ndz3x2 Eu/3cFuRuCK7X5oJSuibaY9dNM78e6Bw+ADZf40ovxGq29QJgF5Tq6R2kyf+j/3L TsQQJIB2oa452krrPN2wK8ggQMAHQH5lnde6/gE/ -----END CERTIFICATE-----Generated at Fri Feb 21 13:01:36 2025 by rpki-client