$ rpki-client -vvf repo-rpki.idnic.net/repo/b1f87f5a-f6f9-468d-895e-314487f5e25e/0/3130332e3230392e3133312e302f32342d3234203d3e20313333333535.roa File: 3130332e3230392e3133312e302f32342d3234203d3e20313333333535.roa (raw, json) Hash identifier: j+U4AErtYzwumrbJ7yEuFWr2i7wA+4c75xZyRtRhbQ4= Subject key identifier: 11:D4:FB:E7:FE:40:BA:09:47:EA:93:46:0A:48:38:1E:57:3D:CD:26 Certificate issuer: /CN=B9BEB60CD6224D41F333A07E1820F0AF3A81FFF7 Certificate serial: 59DCC3BFFC0463A84B79C9F6EA54AB31FC899907 Authority key identifier: B9:BE:B6:0C:D6:22:4D:41:F3:33:A0:7E:18:20:F0:AF:3A:81:FF:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B9BEB60CD6224D41F333A07E1820F0AF3A81FFF7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b1f87f5a-f6f9-468d-895e-314487f5e25e/0/3130332e3230392e3133312e302f32342d3234203d3e20313333333535.roa Signing time: Mon 27 Jan 2025 10:01:58 +0000 ROA not before: Mon 27 Jan 2025 09:56:58 +0000 ROA not after: Mon 26 Jan 2026 10:01:58 +0000 asID: 133355 IP address blocks: 103.209.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b1f87f5a-f6f9-468d-895e-314487f5e25e/0/B9BEB60CD6224D41F333A07E1820F0AF3A81FFF7.crl rsync://repo-rpki.idnic.net/repo/b1f87f5a-f6f9-468d-895e-314487f5e25e/0/B9BEB60CD6224D41F333A07E1820F0AF3A81FFF7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B9BEB60CD6224D41F333A07E1820F0AF3A81FFF7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 01:59:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:dc:c3:bf:fc:04:63:a8:4b:79:c9:f6:ea:54:ab:31:fc:89:99:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9BEB60CD6224D41F333A07E1820F0AF3A81FFF7 Validity Not Before: Jan 27 09:56:58 2025 GMT Not After : Jan 26 10:01:58 2026 GMT Subject: CN=11D4FBE7FE40BA0947EA93460A48381E573DCD26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e1:58:91:1c:3e:6b:e7:63:bd:f5:e8:fa:f7: 55:b1:50:ec:ff:75:80:79:ed:b8:a9:59:41:a8:fc: 7f:59:ad:02:05:76:44:1e:d6:5e:4e:3b:c3:67:5f: bc:4b:e0:71:fb:89:7c:cc:ce:bf:e5:92:1c:7c:7c: 33:40:0c:3e:a7:e9:8d:17:2f:a7:be:14:40:40:54: 92:5e:22:f0:51:2d:3e:a1:02:1c:d2:99:bf:c0:81: a8:94:05:9f:01:93:38:0b:50:83:46:19:cd:9c:76: ef:9c:f4:e7:bf:41:4a:37:b2:b4:e1:14:7b:79:77: ad:fe:29:5f:33:30:c9:b0:90:83:41:68:f3:21:4c: 83:2f:dd:6a:23:f7:66:89:50:77:23:f9:f3:6f:38: ca:6f:1d:6e:9d:df:7d:53:b7:1b:c9:a8:24:77:36: fd:66:95:70:3f:b8:5c:17:4e:db:6c:3b:ba:56:b7: 09:5c:29:d0:38:f4:56:7e:c4:24:74:ef:b4:c7:cd: c5:dc:b5:8e:01:6d:06:4b:e7:f4:df:f0:71:e7:7e: ad:e7:ff:08:00:25:5f:67:b7:52:be:15:31:c1:77: da:bc:e5:f7:06:22:15:64:08:6d:b2:1b:f4:ea:ff: d0:68:ec:69:79:a5:72:5a:33:a4:f1:68:cb:38:cc: ba:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:D4:FB:E7:FE:40:BA:09:47:EA:93:46:0A:48:38:1E:57:3D:CD:26 X509v3 Authority Key Identifier: keyid:B9:BE:B6:0C:D6:22:4D:41:F3:33:A0:7E:18:20:F0:AF:3A:81:FF:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b1f87f5a-f6f9-468d-895e-314487f5e25e/0/B9BEB60CD6224D41F333A07E1820F0AF3A81FFF7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B9BEB60CD6224D41F333A07E1820F0AF3A81FFF7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b1f87f5a-f6f9-468d-895e-314487f5e25e/0/3130332e3230392e3133312e302f32342d3234203d3e20313333333535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.209.131.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:19:cc:52:45:a2:53:4f:61:ce:77:3d:4f:d3:fe:1c:d8:2d: bf:df:cf:5d:ec:7c:46:cc:cb:22:c1:c5:49:2e:d7:43:cb:58: 45:3e:d2:52:a6:86:e7:00:65:8d:ae:e2:d5:9d:34:6f:d6:96: e3:1e:84:fe:3e:59:a0:fd:80:06:59:5c:95:c8:df:6f:cc:85: 31:8b:03:c1:f9:24:c3:27:c0:4c:e2:17:69:5f:31:7b:1b:f3: a4:b6:8e:6d:64:66:81:e0:03:d1:d7:1f:6a:45:8a:55:3d:71: 22:61:94:43:32:57:78:a2:f6:85:9e:40:da:e6:e7:ed:03:9a: c8:ca:f8:6e:89:30:50:98:c1:99:97:2b:29:15:82:d9:23:51: b7:b4:46:70:df:41:c0:06:1c:24:d3:0e:ac:6d:2d:56:47:93: d8:1e:1c:32:52:1c:ec:9e:e1:b3:53:43:59:fe:53:bf:e0:54: ff:5e:b2:06:8b:f9:27:04:f6:31:87:4a:59:68:4a:a6:b3:05: 8f:a8:81:e4:40:fc:bf:24:b0:5c:64:a5:1f:d2:23:f9:99:98: 3f:40:7e:97:60:e8:76:f1:48:6a:cc:0c:46:be:bc:94:fc:e7: b4:03:32:26:6b:d4:10:5e:d8:89:ef:5c:3a:dc:0b:e4:bc:a3: 30:11:d9:27 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWdzDv/wEY6hLecn26lSrMfyJmQcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjlCRUI2MENENjIyNEQ0MUYzMzNBMDdFMTgyMEYwQUYz QTgxRkZGNzAeFw0yNTAxMjcwOTU2NThaFw0yNjAxMjYxMDAxNThaMDMxMTAvBgNV BAMTKDExRDRGQkU3RkU0MEJBMDk0N0VBOTM0NjBBNDgzODFFNTczRENEMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz4ViRHD5r52O99ej691WxUOz/ dYB57bipWUGo/H9ZrQIFdkQe1l5OO8NnX7xL4HH7iXzMzr/lkhx8fDNADD6n6Y0X L6e+FEBAVJJeIvBRLT6hAhzSmb/AgaiUBZ8BkzgLUINGGc2cdu+c9Oe/QUo3srTh FHt5d63+KV8zMMmwkINBaPMhTIMv3Woj92aJUHcj+fNvOMpvHW6d331TtxvJqCR3 Nv1mlXA/uFwXTttsO7pWtwlcKdA49FZ+xCR077THzcXctY4BbQZL5/Tf8HHnfq3n /wgAJV9nt1K+FTHBd9q85fcGIhVkCG2yG/Tq/9Bo7Gl5pXJaM6TxaMs4zLoxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUEdT75/5AuglH6pNGCkg4Hlc9zSYwHwYDVR0j BBgwFoAUub62DNYiTUHzM6B+GCDwrzqB//cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MWY4N2Y1YS1mNmY5LTQ2OGQtODk1ZS0zMTQ0ODdmNWUyNWUvMC9COUJFQjYwQ0Q2 MjI0RDQxRjMzM0EwN0UxODIwRjBBRjNBODFGRkY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjlCRUI2MENENjIyNEQ0MUYzMzNBMDdFMTgyMEYwQUYzQTgx RkZGNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxZjg3ZjVhLWY2ZjktNDY4ZC04 OTVlLTMxNDQ4N2Y1ZTI1ZS8wLzMxMzAzMzJlMzIzMDM5MmUzMTMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzMzM1MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn0YMwDQYJ KoZIhvcNAQELBQADggEBAE8ZzFJFolNPYc53PU/T/hzYLb/fz13sfEbMyyLBxUku 10PLWEU+0lKmhucAZY2u4tWdNG/WluMehP4+WaD9gAZZXJXI32/MhTGLA8H5JMMn wEziF2lfMXsb86S2jm1kZoHgA9HXH2pFilU9cSJhlEMyV3ii9oWeQNrm5+0DmsjK +G6JMFCYwZmXKykVgtkjUbe0RnDfQcAGHCTTDqxtLVZHk9geHDJSHOye4bNTQ1n+ U7/gVP9esgaL+ScE9jGHSlloSqazBY+ogeRA/L8ksFxkpR/SI/mZmD9Afpdg6Hbx SGrMDEa+vJT857QDMiZr1BBe2InvXDrcC+S8ozAR2Sc= -----END CERTIFICATE-----Generated at Sun Apr 6 14:01:36 2025 by rpki-client