$ rpki-client -vvf repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/3130332e3233352e37332e302f32342d3234203d3e20313335333630.roa File: 3130332e3233352e37332e302f32342d3234203d3e20313335333630.roa (raw, json) Hash identifier: Gss2BFwCvkYMrYmTDPR8XZwGfdbzMzVTFBRvuPZp/uA= Subject key identifier: F4:AC:85:C3:6B:7B:A8:DD:F3:AD:93:65:9C:DE:1A:66:44:C5:15:F2 Certificate issuer: /CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Certificate serial: 29214F17B78DB2D1981D85C6967685AC6465F6C8 Authority key identifier: D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/3130332e3233352e37332e302f32342d3234203d3e20313335333630.roa Signing time: Wed 12 Feb 2025 12:00:00 +0000 ROA not before: Wed 12 Feb 2025 11:55:00 +0000 ROA not after: Wed 11 Feb 2026 12:00:00 +0000 asID: 135360 IP address blocks: 103.235.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 23:03:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:21:4f:17:b7:8d:b2:d1:98:1d:85:c6:96:76:85:ac:64:65:f6:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Validity Not Before: Feb 12 11:55:00 2025 GMT Not After : Feb 11 12:00:00 2026 GMT Subject: CN=F4AC85C36B7BA8DDF3AD93659CDE1A6644C515F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:ea:c4:f3:a0:7b:22:d7:cd:8b:8f:2d:a2:75: 93:ed:a2:fa:39:d5:cb:06:a0:8c:dc:7f:71:e7:bb: 82:5c:f5:8c:a0:59:ca:b6:96:38:90:ad:ee:eb:26: f5:90:e9:3f:1e:6a:4d:29:87:e4:65:96:1b:62:ab: 52:a2:41:92:ca:96:90:22:8e:4a:b6:bb:1f:df:00: 46:39:7b:8f:1a:4b:d7:2a:17:19:5f:b0:40:99:e4: 04:de:cd:64:e0:9e:aa:8e:56:4b:56:df:63:bb:90: 48:d7:a0:5c:c8:f3:a0:55:e3:f0:8e:5e:2c:23:6b: dc:be:4a:12:27:88:3a:a4:e5:b8:75:ba:99:83:19: 79:a0:85:df:84:ce:04:c7:5e:1c:cd:56:fc:79:d0: 2e:b0:7f:f4:8b:13:25:43:ac:30:6f:e1:e7:a6:3c: 8d:45:5a:b7:cb:bb:8e:f6:0d:e6:b5:bf:06:90:e2: 4f:97:8f:e9:b0:f8:10:c9:1b:93:33:eb:71:e9:b7: cd:09:88:0b:37:a8:1e:d2:33:bb:e3:19:aa:59:56: 00:9d:7d:0a:37:ef:5c:0c:0f:a5:2e:66:c3:be:47: 07:43:25:08:6a:ff:52:0c:4d:f3:cb:fe:90:6b:14: e2:ea:e9:1a:68:0b:38:f9:5d:9f:e6:58:1f:af:79: 91:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:AC:85:C3:6B:7B:A8:DD:F3:AD:93:65:9C:DE:1A:66:44:C5:15:F2 X509v3 Authority Key Identifier: keyid:D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/3130332e3233352e37332e302f32342d3234203d3e20313335333630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.235.73.0/24 Signature Algorithm: sha256WithRSAEncryption 73:aa:22:45:18:0e:01:4f:ea:3d:55:62:d0:39:32:27:b6:d5: ac:07:9d:06:cc:ab:0f:b3:fe:f0:bc:11:35:20:0d:74:5c:10: 00:8c:e8:fc:47:3f:ec:d3:5b:48:1c:83:ca:07:e1:8d:3a:5b: a4:27:cb:6c:0f:1f:a9:92:e2:82:9d:0f:da:7f:00:c3:ef:f1: 2b:8b:da:25:65:c3:a2:2a:ad:0e:0d:04:b3:eb:af:71:02:ef: 72:ac:c8:5f:60:3f:c0:79:da:93:2b:63:a1:5b:42:3d:17:15: a9:c6:e5:73:31:4f:82:5a:61:e2:e9:e3:19:00:1e:35:62:d8: c6:61:a1:bd:e5:a0:14:0d:13:49:95:ef:ae:1b:af:79:f2:d7: 6f:92:06:6a:ab:87:19:79:23:c8:47:81:02:02:28:1a:f9:fa: 95:f3:ba:44:04:5c:1a:62:83:39:67:db:bd:89:8e:e9:97:90: 57:51:57:57:b2:1f:54:45:b3:b8:fa:b0:e9:94:0a:a3:d2:0d: b2:e3:a1:7b:39:36:85:8a:6a:8a:ba:46:d8:99:7f:70:45:30: 64:dd:a7:32:ee:33:ac:b8:b2:ad:c0:c8:06:cf:4a:b6:a4:1c: 41:3e:17:25:87:fc:95:da:92:2d:f5:27:25:36:03:e3:8d:b0: 92:cd:b4:e3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKSFPF7eNstGYHYXGlnaFrGRl9sgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4 NkNGNTgyRjAeFw0yNTAyMTIxMTU1MDBaFw0yNjAyMTExMjAwMDBaMDMxMTAvBgNV BAMTKEY0QUM4NUMzNkI3QkE4RERGM0FEOTM2NTlDREUxQTY2NDRDNTE1RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDv6sTzoHsi182Ljy2idZPtovo5 1csGoIzcf3Hnu4Jc9YygWcq2ljiQre7rJvWQ6T8eak0ph+Rllhtiq1KiQZLKlpAi jkq2ux/fAEY5e48aS9cqFxlfsECZ5ATezWTgnqqOVktW32O7kEjXoFzI86BV4/CO Xiwja9y+ShIniDqk5bh1upmDGXmghd+EzgTHXhzNVvx50C6wf/SLEyVDrDBv4eem PI1FWrfLu472Dea1vwaQ4k+Xj+mw+BDJG5Mz63Hpt80JiAs3qB7SM7vjGapZVgCd fQo371wMD6UuZsO+RwdDJQhq/1IMTfPL/pBrFOLq6RpoCzj5XZ/mWB+veZEbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9KyFw2t7qN3zrZNlnN4aZkTFFfIwHwYDVR0j BBgwFoAU2c1AR0vdDAcHdmztuvC2oYbPWC8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MWE3N2FkZC1hNDlhLTRjOGYtYTczNS1lZjk2YzMzYWIyOWYvMC9EOUNENDA0NzRC REQwQzA3MDc3NjZDRURCQUYwQjZBMTg2Q0Y1ODJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4NkNG NTgyRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxYTc3YWRkLWE0OWEtNGM4Zi1h NzM1LWVmOTZjMzNhYjI5Zi8wLzMxMzAzMzJlMzIzMzM1MmUzNzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzMzNjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+tJMA0GCSqG SIb3DQEBCwUAA4IBAQBzqiJFGA4BT+o9VWLQOTInttWsB50GzKsPs/7wvBE1IA10 XBAAjOj8Rz/s01tIHIPKB+GNOlukJ8tsDx+pkuKCnQ/afwDD7/Eri9olZcOiKq0O DQSz669xAu9yrMhfYD/AedqTK2OhW0I9FxWpxuVzMU+CWmHi6eMZAB41YtjGYaG9 5aAUDRNJle+uG6958tdvkgZqq4cZeSPIR4ECAiga+fqV87pEBFwaYoM5Z9u9iY7p l5BXUVdXsh9URbO4+rDplAqj0g2y46F7OTaFimqKukbYmX9wRTBk3acy7jOsuLKt wMgGz0q2pBxBPhclh/yV2pIt9SclNgPjjbCSzbTj -----END CERTIFICATE-----Generated at Sun Apr 6 14:39:09 2025 by rpki-client