$ rpki-client -vvf repo-rpki.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/3130332e3135382e3130322e302f32342d3234203d3e20313431313239.roa File: 3130332e3135382e3130322e302f32342d3234203d3e20313431313239.roa (raw, json) Hash identifier: mevAhM5443uB5w78f++4hcwTY8vcOKFPl7i6kYttnO4= Subject key identifier: 6A:91:12:DC:15:14:FF:6F:7A:17:CF:2B:16:83:66:BA:72:CA:F0:CD Certificate issuer: /CN=2EEF78445362AF4F7CAEB241FAE6B9747EC2D2F9 Certificate serial: 58BC48BC473238BE7C22202FEC33BC906CF5016B Authority key identifier: 2E:EF:78:44:53:62:AF:4F:7C:AE:B2:41:FA:E6:B9:74:7E:C2:D2:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2EEF78445362AF4F7CAEB241FAE6B9747EC2D2F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/3130332e3135382e3130322e302f32342d3234203d3e20313431313239.roa Signing time: Thu 13 Mar 2025 06:00:01 +0000 ROA not before: Thu 13 Mar 2025 05:55:01 +0000 ROA not after: Thu 12 Mar 2026 06:00:01 +0000 asID: 141129 IP address blocks: 103.158.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/2EEF78445362AF4F7CAEB241FAE6B9747EC2D2F9.crl rsync://repo-rpki.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/2EEF78445362AF4F7CAEB241FAE6B9747EC2D2F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2EEF78445362AF4F7CAEB241FAE6B9747EC2D2F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 09:47:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:bc:48:bc:47:32:38:be:7c:22:20:2f:ec:33:bc:90:6c:f5:01:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2EEF78445362AF4F7CAEB241FAE6B9747EC2D2F9 Validity Not Before: Mar 13 05:55:01 2025 GMT Not After : Mar 12 06:00:01 2026 GMT Subject: CN=6A9112DC1514FF6F7A17CF2B168366BA72CAF0CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ba:fc:ba:04:8f:2e:80:1c:ab:22:ed:e8:70: 3a:a8:78:bb:a1:9d:99:fc:3c:3f:01:cd:3e:df:8f: 97:9d:29:06:02:36:31:ad:29:04:f2:34:1b:8d:7c: 56:0f:17:cc:2b:c5:4e:9f:45:3c:eb:02:49:6e:c6: 50:63:3c:83:f2:8b:3d:66:6a:64:ad:ec:9e:37:da: e8:97:a7:15:87:98:30:73:37:b8:08:d4:2a:36:9e: 4b:85:99:17:fa:48:89:02:d9:07:54:18:3e:26:b2: 9e:29:7c:23:aa:4a:e3:be:a7:96:64:ab:b6:fe:bd: b6:85:0c:22:57:38:0b:84:ec:0f:c8:3b:8c:17:f9: 7f:d0:2e:1c:36:c2:f8:c7:3f:84:5e:ae:ed:96:6b: 2b:69:72:84:91:37:58:27:19:b0:fe:33:fc:19:0a: 0a:2a:35:42:51:4e:4b:1f:ed:16:2a:8f:87:35:13: fc:90:c6:c2:b1:d2:a5:fa:7c:95:c0:9e:8a:50:cf: 06:96:82:f9:df:c9:de:36:a8:83:ca:98:0e:25:a4: c5:9e:9f:0f:5a:a5:ba:0d:06:6a:07:a3:25:5a:c1: a6:5e:fc:a4:52:f1:80:97:f2:06:34:a2:4e:83:13: 46:6c:33:b2:3d:46:5c:c0:ba:6e:88:68:c6:aa:d3: 8a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:91:12:DC:15:14:FF:6F:7A:17:CF:2B:16:83:66:BA:72:CA:F0:CD X509v3 Authority Key Identifier: keyid:2E:EF:78:44:53:62:AF:4F:7C:AE:B2:41:FA:E6:B9:74:7E:C2:D2:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/2EEF78445362AF4F7CAEB241FAE6B9747EC2D2F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2EEF78445362AF4F7CAEB241FAE6B9747EC2D2F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/3130332e3135382e3130322e302f32342d3234203d3e20313431313239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.102.0/24 Signature Algorithm: sha256WithRSAEncryption 83:49:0b:c4:e3:f8:b1:b7:7c:e1:5d:01:0c:c9:85:83:a8:4b: f5:b6:5e:68:d3:57:0f:29:d7:90:90:5a:10:e0:81:51:5e:18: ef:01:6e:6c:44:36:18:32:09:72:9b:47:91:a0:3d:1d:f1:91: a1:18:63:69:ef:4b:b3:9d:48:39:01:f2:ea:1f:68:07:00:ab: 01:f9:80:c9:61:ce:45:3a:f9:a7:07:f1:77:77:18:67:68:56: bb:99:7a:5f:c0:76:4d:b3:a1:ae:0a:98:7c:c4:a5:f7:ff:8f: 25:fc:8b:ab:f8:b0:5f:fa:81:0b:f9:a4:20:63:21:2e:da:c3: 7d:ea:3a:4e:57:23:13:04:db:e3:84:84:bc:5e:69:cb:9d:e2: 58:c3:6e:73:de:b1:e7:8e:93:0b:9e:ad:6c:f2:30:18:f1:3b: 6a:80:d4:2a:7b:d3:3c:10:97:ca:f6:03:48:a8:15:0c:89:bb: 01:b4:1c:26:eb:e6:6d:e8:a9:2b:9b:24:e1:86:ac:10:e5:d1: 07:46:d4:90:78:ed:1b:0a:68:e9:68:7a:99:f5:08:a4:44:56: 00:d0:36:38:a5:d8:12:b2:9a:f2:db:34:13:7a:7f:48:1a:b7: 3c:4a:05:82:08:f8:bc:37:a4:d7:32:99:de:bf:31:a1:00:bc: ed:06:71:1e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWLxIvEcyOL58IiAv7DO8kGz1AWswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkVFRjc4NDQ1MzYyQUY0RjdDQUVCMjQxRkFFNkI5NzQ3 RUMyRDJGOTAeFw0yNTAzMTMwNTU1MDFaFw0yNjAzMTIwNjAwMDFaMDMxMTAvBgNV BAMTKDZBOTExMkRDMTUxNEZGNkY3QTE3Q0YyQjE2ODM2NkJBNzJDQUYwQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+uvy6BI8ugByrIu3ocDqoeLuh nZn8PD8BzT7fj5edKQYCNjGtKQTyNBuNfFYPF8wrxU6fRTzrAkluxlBjPIPyiz1m amSt7J432uiXpxWHmDBzN7gI1Co2nkuFmRf6SIkC2QdUGD4msp4pfCOqSuO+p5Zk q7b+vbaFDCJXOAuE7A/IO4wX+X/QLhw2wvjHP4Reru2WaytpcoSRN1gnGbD+M/wZ CgoqNUJRTksf7RYqj4c1E/yQxsKx0qX6fJXAnopQzwaWgvnfyd42qIPKmA4lpMWe nw9apboNBmoHoyVawaZe/KRS8YCX8gY0ok6DE0ZsM7I9RlzAum6IaMaq04r3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUapES3BUU/296F88rFoNmunLK8M0wHwYDVR0j BBgwFoAULu94RFNir098rrJB+ua5dH7C0vkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NzI0ZTQ1Yi0yNTRiLTRmZWItYmY4ZS03YmYxMjA5MTJhZjcvMC8yRUVGNzg0NDUz NjJBRjRGN0NBRUIyNDFGQUU2Qjk3NDdFQzJEMkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkVFRjc4NDQ1MzYyQUY0RjdDQUVCMjQxRkFFNkI5NzQ3RUMy RDJGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3MjRlNDViLTI1NGItNGZlYi1i ZjhlLTdiZjEyMDkxMmFmNy8wLzMxMzAzMzJlMzEzNTM4MmUzMTMwMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMyMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnmYwDQYJ KoZIhvcNAQELBQADggEBAINJC8Tj+LG3fOFdAQzJhYOoS/W2XmjTVw8p15CQWhDg gVFeGO8BbmxENhgyCXKbR5GgPR3xkaEYY2nvS7OdSDkB8uofaAcAqwH5gMlhzkU6 +acH8Xd3GGdoVruZel/Adk2zoa4KmHzEpff/jyX8i6v4sF/6gQv5pCBjIS7aw33q Ok5XIxME2+OEhLxeacud4ljDbnPeseeOkwuerWzyMBjxO2qA1Cp70zwQl8r2A0io FQyJuwG0HCbr5m3oqSubJOGGrBDl0QdG1JB47RsKaOloepn1CKREVgDQNjil2BKy mvLbNBN6f0gatzxKBYII+Lw3pNcymd6/MaEAvO0GcR4= -----END CERTIFICATE-----Generated at Sun Apr 6 05:56:51 2025 by rpki-client