$ rpki-client -vvf repo-rpki.idnic.net/repo/b4dadcd0-f1a9-48e4-a2c5-de1818bffe43/0/3130332e3139322e3137342e302f32342d3234203d3e20313530353439.roa File: 3130332e3139322e3137342e302f32342d3234203d3e20313530353439.roa (raw, json) Hash identifier: I/e8pz2HwtXx0PhrGgambRJs/dGIlkUlFDHx6iNzq9I= Subject key identifier: 01:5A:6C:B5:E7:96:E6:19:14:6F:88:86:C7:E4:6E:23:90:1C:4A:52 Certificate issuer: /CN=331490A5F62E7F3FD55E137CB052AC340E403BDF Certificate serial: 7D29F94848982ED2886334FEDD90451FC9FB7A37 Authority key identifier: 33:14:90:A5:F6:2E:7F:3F:D5:5E:13:7C:B0:52:AC:34:0E:40:3B:DF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/331490A5F62E7F3FD55E137CB052AC340E403BDF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b4dadcd0-f1a9-48e4-a2c5-de1818bffe43/0/3130332e3139322e3137342e302f32342d3234203d3e20313530353439.roa Signing time: Sat 18 Jan 2025 02:00:01 +0000 ROA not before: Sat 18 Jan 2025 01:55:01 +0000 ROA not after: Sat 17 Jan 2026 02:00:01 +0000 asID: 150549 IP address blocks: 103.192.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b4dadcd0-f1a9-48e4-a2c5-de1818bffe43/0/331490A5F62E7F3FD55E137CB052AC340E403BDF.crl rsync://repo-rpki.idnic.net/repo/b4dadcd0-f1a9-48e4-a2c5-de1818bffe43/0/331490A5F62E7F3FD55E137CB052AC340E403BDF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/331490A5F62E7F3FD55E137CB052AC340E403BDF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 19:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:29:f9:48:48:98:2e:d2:88:63:34:fe:dd:90:45:1f:c9:fb:7a:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=331490A5F62E7F3FD55E137CB052AC340E403BDF Validity Not Before: Jan 18 01:55:01 2025 GMT Not After : Jan 17 02:00:01 2026 GMT Subject: CN=015A6CB5E796E619146F8886C7E46E23901C4A52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:12:31:e2:e8:d2:db:d0:ed:38:97:2f:ed:8f: ee:b1:63:42:70:1c:3e:11:ec:19:ce:b0:a6:fd:7d: de:ac:3f:26:ac:55:62:a1:15:25:84:44:4d:ec:9f: 49:df:a7:9a:2c:29:b7:ad:e5:12:63:8a:1c:9a:51: db:11:33:d7:c8:01:da:fe:fa:49:20:1d:a8:ad:7f: 85:0d:54:8f:c2:54:11:63:37:dc:ce:56:18:8f:36: 65:f7:98:bc:96:52:e8:80:90:e6:28:0b:b3:ed:26: 48:f5:02:cf:c7:74:1d:7b:92:67:2c:65:e0:2f:99: d3:3b:cc:ba:fc:80:76:5c:cf:e2:61:1b:75:5a:64: 12:d6:e7:ef:42:fb:60:52:b7:b7:cc:98:7b:88:ba: 33:6e:74:9d:19:23:6b:ce:0d:00:b2:f1:d0:e8:3a: 32:9b:3b:5e:61:7c:d9:c6:87:6f:3d:9c:cb:7e:43: 92:0c:9e:5c:6f:7a:28:40:85:f3:f5:3d:89:b6:62: 69:d3:d1:e2:f1:03:2c:4a:73:ec:27:63:b9:0a:1b: 31:40:74:71:fb:8b:ec:46:1b:47:42:7d:91:8a:51: d1:dd:47:ad:c0:23:43:d2:c0:74:d1:2b:17:76:b5: ae:d4:27:63:27:cc:27:ad:38:ee:9d:c8:a9:d8:b1: 64:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:5A:6C:B5:E7:96:E6:19:14:6F:88:86:C7:E4:6E:23:90:1C:4A:52 X509v3 Authority Key Identifier: keyid:33:14:90:A5:F6:2E:7F:3F:D5:5E:13:7C:B0:52:AC:34:0E:40:3B:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b4dadcd0-f1a9-48e4-a2c5-de1818bffe43/0/331490A5F62E7F3FD55E137CB052AC340E403BDF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/331490A5F62E7F3FD55E137CB052AC340E403BDF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b4dadcd0-f1a9-48e4-a2c5-de1818bffe43/0/3130332e3139322e3137342e302f32342d3234203d3e20313530353439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.192.174.0/24 Signature Algorithm: sha256WithRSAEncryption 06:c0:e2:e1:29:88:17:49:b1:ac:f8:5f:41:60:9b:fb:9d:34: e9:6b:e8:1b:11:2a:66:fe:ec:88:29:a7:25:76:f6:ff:56:63: 8b:85:39:07:7d:8d:eb:8c:26:33:76:e6:30:fe:c4:46:bc:c8: 6b:76:eb:02:d3:42:51:33:5f:4d:7c:03:f9:31:1d:45:14:09: f5:c0:87:b4:7b:22:f9:da:dd:34:d2:4c:60:69:19:0b:c0:8e: 87:ab:12:3a:36:b6:ea:ee:c0:c5:62:4e:7d:84:aa:ea:df:18: 81:33:b8:df:c6:b9:22:3d:7b:a9:b1:1e:64:7a:95:11:a8:b5: a9:af:fc:4d:e5:43:c9:7d:fc:ac:11:ad:08:c9:5e:7c:08:55: 4d:77:f9:41:5f:84:6e:68:c9:fa:2e:27:86:7a:a4:b8:02:9d: 57:27:51:03:18:dc:10:03:0b:db:99:a5:72:2c:e4:84:43:a8: cf:f1:e4:2e:fc:63:7f:4e:a2:a9:eb:d7:e6:fa:e8:16:10:03: 10:fd:9a:51:f5:14:8c:bc:f5:80:4e:97:71:ed:e4:6d:00:1c: 31:f5:3d:24:a5:96:a1:4e:34:d9:e2:b6:42:75:f0:56:c4:ab: 9e:b9:20:10:e7:2c:02:b0:d1:f5:8f:e5:d4:01:6d:e2:04:b8: 9f:91:f0:d8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfSn5SEiYLtKIYzT+3ZBFH8n7ejcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzMxNDkwQTVGNjJFN0YzRkQ1NUUxMzdDQjA1MkFDMzQw RTQwM0JERjAeFw0yNTAxMTgwMTU1MDFaFw0yNjAxMTcwMjAwMDFaMDMxMTAvBgNV BAMTKDAxNUE2Q0I1RTc5NkU2MTkxNDZGODg4NkM3RTQ2RTIzOTAxQzRBNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7EjHi6NLb0O04ly/tj+6xY0Jw HD4R7BnOsKb9fd6sPyasVWKhFSWERE3sn0nfp5osKbet5RJjihyaUdsRM9fIAdr+ +kkgHaitf4UNVI/CVBFjN9zOVhiPNmX3mLyWUuiAkOYoC7PtJkj1As/HdB17kmcs ZeAvmdM7zLr8gHZcz+JhG3VaZBLW5+9C+2BSt7fMmHuIujNudJ0ZI2vODQCy8dDo OjKbO15hfNnGh289nMt+Q5IMnlxveihAhfP1PYm2YmnT0eLxAyxKc+wnY7kKGzFA dHH7i+xGG0dCfZGKUdHdR63AI0PSwHTRKxd2ta7UJ2MnzCetOO6dyKnYsWQ1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUAVpsteeW5hkUb4iGx+RuI5AcSlIwHwYDVR0j BBgwFoAUMxSQpfYufz/VXhN8sFKsNA5AO98wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NGRhZGNkMC1mMWE5LTQ4ZTQtYTJjNS1kZTE4MThiZmZlNDMvMC8zMzE0OTBBNUY2 MkU3RjNGRDU1RTEzN0NCMDUyQUMzNDBFNDAzQkRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzMxNDkwQTVGNjJFN0YzRkQ1NUUxMzdDQjA1MkFDMzQwRTQw M0JERi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I0ZGFkY2QwLWYxYTktNDhlNC1h MmM1LWRlMTgxOGJmZmU0My8wLzMxMzAzMzJlMzEzOTMyMmUzMTM3MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzNTM0Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnwK4wDQYJ KoZIhvcNAQELBQADggEBAAbA4uEpiBdJsaz4X0Fgm/udNOlr6BsRKmb+7IgppyV2 9v9WY4uFOQd9jeuMJjN25jD+xEa8yGt26wLTQlEzX018A/kxHUUUCfXAh7R7Ivna 3TTSTGBpGQvAjoerEjo2turuwMViTn2EqurfGIEzuN/GuSI9e6mxHmR6lRGotamv /E3lQ8l9/KwRrQjJXnwIVU13+UFfhG5oyfouJ4Z6pLgCnVcnUQMY3BADC9uZpXIs 5IRDqM/x5C78Y39Ooqnr1+b66BYQAxD9mlH1FIy89YBOl3Ht5G0AHDH1PSSllqFO NNnitkJ18FbEq565IBDnLAKw0fWP5dQBbeIEuJ+R8Ng= -----END CERTIFICATE-----Generated at Mon Apr 7 01:05:40 2025 by rpki-client