$ rpki-client -vvf repo-rpki.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/3130332e34302e3132302e302f32322d3234203d3e203633353038.roa File: 3130332e34302e3132302e302f32322d3234203d3e203633353038.roa (raw, json) Hash identifier: j7pQ9lvXsLKpYkzsKBOIaH3NYQ4OEgdxdRlywIQ3mqE= Subject key identifier: 61:D7:8F:8B:2C:C8:78:A5:01:46:E7:08:92:06:F0:13:98:70:9F:9B Certificate issuer: /CN=35526D55C5F4431129EA7CE9304705CE395693D9 Certificate serial: 50CBE2F68EAF89588F77D4F506A2978393784615 Authority key identifier: 35:52:6D:55:C5:F4:43:11:29:EA:7C:E9:30:47:05:CE:39:56:93:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35526D55C5F4431129EA7CE9304705CE395693D9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/3130332e34302e3132302e302f32322d3234203d3e203633353038.roa Signing time: Tue 21 Jan 2025 15:00:00 +0000 ROA not before: Tue 21 Jan 2025 14:55:00 +0000 ROA not after: Tue 20 Jan 2026 15:00:00 +0000 asID: 63508 IP address blocks: 103.40.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/35526D55C5F4431129EA7CE9304705CE395693D9.crl rsync://repo-rpki.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/35526D55C5F4431129EA7CE9304705CE395693D9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35526D55C5F4431129EA7CE9304705CE395693D9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 14:19:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:cb:e2:f6:8e:af:89:58:8f:77:d4:f5:06:a2:97:83:93:78:46:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35526D55C5F4431129EA7CE9304705CE395693D9 Validity Not Before: Jan 21 14:55:00 2025 GMT Not After : Jan 20 15:00:00 2026 GMT Subject: CN=61D78F8B2CC878A50146E7089206F01398709F9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:85:2d:9d:36:58:bc:af:eb:5e:a7:fd:6c:f0: 67:bd:37:06:52:48:63:9b:8a:e1:05:99:b6:44:ce: 2d:61:ff:a6:6c:28:2f:a1:44:a3:a4:5c:f4:d9:29: 53:e1:38:3c:da:67:ca:5c:ac:aa:31:fb:0c:02:6b: 3e:37:91:35:0c:4d:83:25:5d:99:31:d8:4c:cb:10: 0a:8f:81:80:e2:3e:75:f6:26:20:1c:03:88:a3:16: 66:92:30:ed:d7:b9:9a:27:05:b4:69:12:d1:65:0d: 75:79:7b:7c:4d:16:b6:7d:54:bb:8d:3b:75:cb:ad: 5f:5b:b5:4f:24:89:5a:80:85:64:c8:b0:10:6a:08: 47:25:57:17:7a:b4:5e:8c:9b:3d:27:10:54:e0:e4: 9f:b8:23:57:82:71:98:52:b2:bc:68:64:8d:9b:b3: ed:83:29:5e:d2:0e:fe:85:4a:61:f3:7d:e4:89:44: 02:2e:d4:f9:72:74:f5:6f:4d:38:cb:5c:ea:07:3a: 6f:95:d2:55:d4:02:d5:17:e3:1b:cf:67:c6:c0:31: 84:22:b2:b8:ea:7d:d4:75:42:fd:72:db:0b:b8:d6: d3:bf:71:6e:55:c9:63:bd:7d:b5:8b:a0:b6:1d:7d: 47:7f:8a:f5:c8:fe:69:cb:ea:fb:a1:f3:38:5c:d0: b6:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:D7:8F:8B:2C:C8:78:A5:01:46:E7:08:92:06:F0:13:98:70:9F:9B X509v3 Authority Key Identifier: keyid:35:52:6D:55:C5:F4:43:11:29:EA:7C:E9:30:47:05:CE:39:56:93:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/35526D55C5F4431129EA7CE9304705CE395693D9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35526D55C5F4431129EA7CE9304705CE395693D9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/3130332e34302e3132302e302f32322d3234203d3e203633353038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.40.120.0/22 Signature Algorithm: sha256WithRSAEncryption 3c:2e:4f:77:60:67:7a:bb:48:bc:ad:83:5e:16:44:bc:d3:3d: 8b:ae:2a:1e:84:75:b4:d6:d9:b9:9a:ae:79:ff:d5:88:a1:eb: 2f:7d:4a:1a:c7:17:13:35:2a:20:c8:28:73:22:33:f7:56:32: 92:fe:8d:58:34:bb:5f:7b:22:08:f5:22:54:e4:43:a0:e5:f6: 45:64:21:c4:4e:ae:2d:05:ee:7b:b8:eb:4a:36:9b:7d:66:de: 1f:16:a8:c8:ec:aa:b8:bd:74:79:f9:47:22:71:16:d2:0f:51: b1:30:02:83:13:31:5a:6e:74:89:d5:a6:d6:98:66:ad:f2:a4: 87:c2:9b:cf:a5:06:a1:5f:7d:04:ab:6e:97:fa:9b:66:50:82: 93:19:66:02:aa:d9:b9:11:43:7e:6c:50:33:56:8c:5c:38:18: a1:5d:8b:f3:cd:1e:12:ef:73:5a:86:a6:18:3d:95:52:53:1e: cf:42:79:14:25:a3:24:d1:43:ed:72:1e:18:92:cc:3f:04:d4: 05:26:cb:9d:e6:a7:df:79:28:25:d3:7d:0d:a8:72:0d:77:80: 5e:73:3b:3f:56:3c:c0:b2:14:19:c7:ab:25:8c:49:a7:0e:72: 59:c3:69:dd:8d:2d:85:c8:c7:59:f9:e2:5d:a8:ee:17:7b:d7: 90:00:ee:19 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUMvi9o6viViPd9T1BqKXg5N4RhUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzU1MjZENTVDNUY0NDMxMTI5RUE3Q0U5MzA0NzA1Q0Uz OTU2OTNEOTAeFw0yNTAxMjExNDU1MDBaFw0yNjAxMjAxNTAwMDBaMDMxMTAvBgNV BAMTKDYxRDc4RjhCMkNDODc4QTUwMTQ2RTcwODkyMDZGMDEzOTg3MDlGOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2hS2dNli8r+tep/1s8Ge9NwZS SGObiuEFmbZEzi1h/6ZsKC+hRKOkXPTZKVPhODzaZ8pcrKox+wwCaz43kTUMTYMl XZkx2EzLEAqPgYDiPnX2JiAcA4ijFmaSMO3XuZonBbRpEtFlDXV5e3xNFrZ9VLuN O3XLrV9btU8kiVqAhWTIsBBqCEclVxd6tF6Mmz0nEFTg5J+4I1eCcZhSsrxoZI2b s+2DKV7SDv6FSmHzfeSJRAIu1PlydPVvTTjLXOoHOm+V0lXUAtUX4xvPZ8bAMYQi srjqfdR1Qv1y2wu41tO/cW5VyWO9fbWLoLYdfUd/ivXI/mnL6vuh8zhc0LZ3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYdePiyzIeKUBRucIkgbwE5hwn5swHwYDVR0j BBgwFoAUNVJtVcX0QxEp6nzpMEcFzjlWk9kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NGIwYmY1Yi00NTZkLTRlNjItOWY0OC02MTkyMTQ5ZDUyYzIvMC8zNTUyNkQ1NUM1 RjQ0MzExMjlFQTdDRTkzMDQ3MDVDRTM5NTY5M0Q5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzU1MjZENTVDNUY0NDMxMTI5RUE3Q0U5MzA0NzA1Q0UzOTU2 OTNEOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I0YjBiZjViLTQ1NmQtNGU2Mi05 ZjQ4LTYxOTIxNDlkNTJjMi8wLzMxMzAzMzJlMzQzMDJlMzEzMjMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzYzMzM1MzAzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcoeDANBgkqhkiG 9w0BAQsFAAOCAQEAPC5Pd2BnertIvK2DXhZEvNM9i64qHoR1tNbZuZquef/ViKHr L31KGscXEzUqIMgocyIz91Yykv6NWDS7X3siCPUiVORDoOX2RWQhxE6uLQXue7jr SjabfWbeHxaoyOyquL10eflHInEW0g9RsTACgxMxWm50idWm1phmrfKkh8Kbz6UG oV99BKtul/qbZlCCkxlmAqrZuRFDfmxQM1aMXDgYoV2L880eEu9zWoamGD2VUlMe z0J5FCWjJNFD7XIeGJLMPwTUBSbLnean33koJdN9DahyDXeAXnM7P1Y8wLIUGcer JYxJpw5yWcNp3Y0thcjHWfniXajuF3vXkADuGQ== -----END CERTIFICATE-----Generated at Sun Apr 6 18:23:11 2025 by rpki-client