$ rpki-client -vvf repo-rpki.idnic.net/repo/b7545b85-9274-470a-ad27-2469e9d155bc/0/3130332e3232332e302e302f32322d3232203d3e20313335343435.roa File: 3130332e3232332e302e302f32322d3232203d3e20313335343435.roa (raw, json) Hash identifier: Gp+3hoUQHoSs7BqoZ98uo/JPIvevE7xLEnrTa4hmSmU= Subject key identifier: 75:01:A7:D8:2E:46:B4:DE:F3:4D:E3:8D:3F:3B:0D:99:C7:B3:36:48 Certificate issuer: /CN=6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B Certificate serial: 1094C37BCB8CF940C1220820FE5DDACE3AFD565E Authority key identifier: 6B:4D:14:FC:6D:37:4A:FC:CA:B1:90:C5:4D:DF:3A:1A:9D:4D:93:0B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b7545b85-9274-470a-ad27-2469e9d155bc/0/3130332e3232332e302e302f32322d3232203d3e20313335343435.roa Signing time: Sat 01 Mar 2025 04:02:25 +0000 ROA not before: Sat 01 Mar 2025 03:57:25 +0000 ROA not after: Sat 28 Feb 2026 04:02:25 +0000 asID: 135445 IP address blocks: 103.223.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b7545b85-9274-470a-ad27-2469e9d155bc/0/6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B.crl rsync://repo-rpki.idnic.net/repo/b7545b85-9274-470a-ad27-2469e9d155bc/0/6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 14:04:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:94:c3:7b:cb:8c:f9:40:c1:22:08:20:fe:5d:da:ce:3a:fd:56:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B Validity Not Before: Mar 1 03:57:25 2025 GMT Not After : Feb 28 04:02:25 2026 GMT Subject: CN=7501A7D82E46B4DEF34DE38D3F3B0D99C7B33648 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:12:39:49:70:59:fa:a1:ff:cd:54:1f:04:46: 5f:c7:01:e1:d8:cf:b6:c0:f8:d0:b2:0e:12:4b:99: 05:9f:0e:b9:74:5b:81:21:23:a6:5a:ab:7c:bb:4b: a1:6c:33:9e:d9:34:61:cf:a6:e5:b1:64:62:5f:62: ae:50:0c:0f:2e:c8:a6:a3:3e:08:39:84:36:25:e7: a4:a6:06:ea:3a:e5:29:4e:42:ad:45:a8:b3:3d:8d: 9e:0d:c2:bb:8d:7a:95:9c:3a:d7:a1:ed:d1:c9:ea: 25:02:d8:56:04:59:7c:b0:0b:1c:8d:07:88:bf:95: 0d:50:f8:94:01:a8:94:54:e5:cb:e5:03:3d:95:66: 0d:d5:53:4c:74:a8:05:61:ef:73:12:6c:59:15:8d: 22:41:97:3d:7b:ac:a0:bd:3e:81:69:cf:d3:bc:f5: ac:70:01:5b:5d:1c:3d:38:23:8b:70:30:01:8c:a2: 29:d5:47:2f:66:82:a1:be:ed:6c:80:63:28:4d:20: 1a:1f:1c:e2:fb:5c:c4:7a:4c:f8:c5:80:eb:5b:be: 39:0b:53:6c:88:92:e8:79:f7:a7:43:fc:2d:0f:45: dc:cb:4b:61:a6:b3:15:b9:7a:21:ef:fc:8b:0b:54: f0:cd:ff:c9:87:cb:5f:82:a1:0e:58:76:e7:66:24: 09:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:01:A7:D8:2E:46:B4:DE:F3:4D:E3:8D:3F:3B:0D:99:C7:B3:36:48 X509v3 Authority Key Identifier: keyid:6B:4D:14:FC:6D:37:4A:FC:CA:B1:90:C5:4D:DF:3A:1A:9D:4D:93:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b7545b85-9274-470a-ad27-2469e9d155bc/0/6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7545b85-9274-470a-ad27-2469e9d155bc/0/3130332e3232332e302e302f32322d3232203d3e20313335343435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.223.0.0/22 Signature Algorithm: sha256WithRSAEncryption b9:4c:a9:7b:a4:bb:84:3d:e6:1d:34:39:93:d4:fa:63:52:d1: 06:a1:f6:86:c5:14:f2:81:c2:dd:45:f7:2a:41:57:ac:a0:c1: 57:dc:f3:c2:8a:47:46:48:b9:29:5e:1a:14:ee:c5:55:15:4d: af:18:b0:ba:7e:21:ac:3e:4e:f4:4f:b9:ab:15:9e:19:31:49: 01:79:bc:9a:22:11:38:21:81:24:18:60:92:66:90:b8:54:00: 28:cf:83:33:26:26:00:b5:14:6b:64:8b:bc:b3:a7:50:4c:03: 58:57:ba:42:74:b5:b1:ef:12:3f:9f:1f:bb:1e:76:50:ea:c8: 30:32:00:78:40:f3:24:86:3a:a0:ee:fe:e8:d5:77:42:94:33: 6f:14:ea:92:ef:94:21:50:04:4d:8c:d3:07:44:7c:86:c2:d7: 7c:32:73:60:5d:c1:04:6e:d2:6f:05:e0:25:6a:29:e6:ab:e0: 2b:e4:1e:7b:c8:7e:05:51:4f:54:d2:9c:ee:3f:ad:2b:cf:e9: 9e:da:d0:e5:28:40:aa:d9:82:86:67:9c:5c:65:b5:3a:60:0b: ec:53:43:cf:65:e1:1e:f0:61:71:9c:0a:c6:37:b0:b8:3b:47: 22:c7:0b:ba:14:0f:e8:d4:9e:80:fe:43:15:df:05:79:4a:73: 41:49:1f:97 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEJTDe8uM+UDBIggg/l3azjr9Vl4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkI0RDE0RkM2RDM3NEFGQ0NBQjE5MEM1NERERjNBMUE5 RDREOTMwQjAeFw0yNTAzMDEwMzU3MjVaFw0yNjAyMjgwNDAyMjVaMDMxMTAvBgNV BAMTKDc1MDFBN0Q4MkU0NkI0REVGMzRERTM4RDNGM0IwRDk5QzdCMzM2NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJEjlJcFn6of/NVB8ERl/HAeHY z7bA+NCyDhJLmQWfDrl0W4EhI6Zaq3y7S6FsM57ZNGHPpuWxZGJfYq5QDA8uyKaj Pgg5hDYl56SmBuo65SlOQq1FqLM9jZ4NwruNepWcOteh7dHJ6iUC2FYEWXywCxyN B4i/lQ1Q+JQBqJRU5cvlAz2VZg3VU0x0qAVh73MSbFkVjSJBlz17rKC9PoFpz9O8 9axwAVtdHD04I4twMAGMoinVRy9mgqG+7WyAYyhNIBofHOL7XMR6TPjFgOtbvjkL U2yIkuh596dD/C0PRdzLS2GmsxW5eiHv/IsLVPDN/8mHy1+CoQ5YdudmJAmRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUdQGn2C5GtN7zTeONPzsNmcezNkgwHwYDVR0j BBgwFoAUa00U/G03SvzKsZDFTd86Gp1NkwswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NzU0NWI4NS05Mjc0LTQ3MGEtYWQyNy0yNDY5ZTlkMTU1YmMvMC82QjREMTRGQzZE Mzc0QUZDQ0FCMTkwQzU0RERGM0ExQTlENEQ5MzBCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkI0RDE0RkM2RDM3NEFGQ0NBQjE5MEM1NERERjNBMUE5RDRE OTMwQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3NTQ1Yjg1LTkyNzQtNDcwYS1h ZDI3LTI0NjllOWQxNTViYy8wLzMxMzAzMzJlMzIzMjMzMmUzMDJlMzAyZjMyMzIy ZDMyMzIyMDNkM2UyMDMxMzMzNTM0MzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmffADANBgkqhkiG 9w0BAQsFAAOCAQEAuUype6S7hD3mHTQ5k9T6Y1LRBqH2hsUU8oHC3UX3KkFXrKDB V9zzwopHRki5KV4aFO7FVRVNrxiwun4hrD5O9E+5qxWeGTFJAXm8miIROCGBJBhg kmaQuFQAKM+DMyYmALUUa2SLvLOnUEwDWFe6QnS1se8SP58fux52UOrIMDIAeEDz JIY6oO7+6NV3QpQzbxTqku+UIVAETYzTB0R8hsLXfDJzYF3BBG7SbwXgJWop5qvg K+Qee8h+BVFPVNKc7j+tK8/pntrQ5ShAqtmChmecXGW1OmAL7FNDz2XhHvBhcZwK xjewuDtHIscLuhQP6NSegP5DFd8FeUpzQUkflw== -----END CERTIFICATE-----Generated at Tue Mar 11 05:01:46 2025 by rpki-client