$ rpki-client -vvf repo-rpki.idnic.net/repo/b7545b85-9274-470a-ad27-2469e9d155bc/0/3130332e3232332e322e302f32342d3234203d3e20313335343435.roa File: 3130332e3232332e322e302f32342d3234203d3e20313335343435.roa (raw, json) Hash identifier: kiwAboKBcY+KUfdKJ8QPyYYmhUR1O0Z8PHji6TPQSyQ= Subject key identifier: E2:2F:98:9A:C7:B6:9B:2E:A1:B6:0B:70:07:78:0E:B6:A3:E7:2D:0A Certificate issuer: /CN=6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B Certificate serial: 62AE571F10D0FE2945554C6BEDD278770D1456AB Authority key identifier: 6B:4D:14:FC:6D:37:4A:FC:CA:B1:90:C5:4D:DF:3A:1A:9D:4D:93:0B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b7545b85-9274-470a-ad27-2469e9d155bc/0/3130332e3232332e322e302f32342d3234203d3e20313335343435.roa Signing time: Wed 26 Feb 2025 17:00:02 +0000 ROA not before: Wed 26 Feb 2025 16:55:02 +0000 ROA not after: Wed 25 Feb 2026 17:00:02 +0000 asID: 135445 IP address blocks: 103.223.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b7545b85-9274-470a-ad27-2469e9d155bc/0/6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B.crl rsync://repo-rpki.idnic.net/repo/b7545b85-9274-470a-ad27-2469e9d155bc/0/6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 08:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:ae:57:1f:10:d0:fe:29:45:55:4c:6b:ed:d2:78:77:0d:14:56:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B Validity Not Before: Feb 26 16:55:02 2025 GMT Not After : Feb 25 17:00:02 2026 GMT Subject: CN=E22F989AC7B69B2EA1B60B7007780EB6A3E72D0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:44:df:dc:bf:fb:6a:58:e2:56:fa:1d:ef:3f: 4a:b4:17:15:e9:f6:f9:a5:75:9d:09:09:59:93:86: 51:e1:90:06:66:83:41:1f:fc:4e:9c:15:c0:d9:0a: 2a:b9:8e:99:cf:4e:b0:cd:2b:2f:f5:21:99:3c:cc: 9f:00:ea:d4:05:d0:47:6e:6c:18:6a:b3:85:01:b3: 39:73:a1:5a:6e:84:b4:78:32:22:45:13:81:b1:21: 7d:be:8e:e8:4b:98:55:96:f3:90:7b:82:23:c5:33: 92:79:0b:49:d8:fd:55:bb:31:9e:c8:ea:15:a5:f8: f5:4e:98:d2:fd:b3:32:c5:78:3d:dc:dc:90:49:84: cb:49:b1:b5:44:51:b1:8e:63:07:38:e7:1a:4b:14: a7:54:c9:fb:db:95:9a:a6:9e:d7:fa:93:ea:7a:ab: 22:d4:4f:a5:51:9e:b7:cd:c6:c2:e5:61:d6:02:ce: a5:51:6d:65:f5:8e:d4:f4:52:d8:c0:72:13:0a:b3: 20:61:86:32:5f:8a:4c:37:8a:6d:85:80:b3:3e:ee: d2:31:fe:12:bb:47:33:68:dc:aa:d7:44:18:4f:8a: 31:80:b3:0a:7b:95:7f:ed:c2:75:16:ea:4f:25:5b: 15:f4:47:c6:51:e0:bc:0d:79:2f:7a:bc:62:00:a0: 57:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:2F:98:9A:C7:B6:9B:2E:A1:B6:0B:70:07:78:0E:B6:A3:E7:2D:0A X509v3 Authority Key Identifier: keyid:6B:4D:14:FC:6D:37:4A:FC:CA:B1:90:C5:4D:DF:3A:1A:9D:4D:93:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b7545b85-9274-470a-ad27-2469e9d155bc/0/6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7545b85-9274-470a-ad27-2469e9d155bc/0/3130332e3232332e322e302f32342d3234203d3e20313335343435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.223.2.0/24 Signature Algorithm: sha256WithRSAEncryption 57:88:12:52:63:c8:9e:a5:f1:68:40:29:fe:86:df:75:6f:81: 54:7b:c1:70:4f:1a:a8:4e:c6:52:8c:ca:2b:6a:fe:f8:8f:68: ee:b5:0d:e0:38:22:06:69:89:7d:26:9d:98:95:de:f2:55:2b: 73:b4:3a:17:80:5a:67:bf:d4:a7:f5:f4:67:e0:1b:12:da:66: b4:49:09:78:a7:f1:df:58:90:fa:49:41:b8:c8:f6:52:55:b8: 5f:ec:91:1c:38:7e:5c:db:a4:b7:48:25:bf:36:38:bc:5d:cf: 3d:14:ba:c1:96:5e:75:e5:8a:ea:99:64:73:45:4e:19:07:ce: ac:41:6b:76:1d:c3:d8:10:6e:28:76:ea:d2:a2:c4:32:52:94: c0:f9:71:58:f6:1a:b9:58:91:84:36:2f:eb:f4:15:83:2e:29: 4d:bf:1f:ca:87:cb:d1:9a:2c:04:5d:93:e1:dd:90:32:73:80: c5:e1:9e:29:c4:c0:1e:ed:c0:9e:29:92:12:22:d8:84:47:d4: 51:14:4b:5c:d1:25:76:1f:a5:dd:ce:82:35:ae:1b:30:7a:bc: e8:9c:15:a0:7d:d0:36:13:13:8e:dd:03:81:84:ac:e0:6f:24: 45:76:d5:a1:f0:14:41:9f:26:94:be:57:03:f0:b9:53:7d:fd: 7c:0f:bf:07 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYq5XHxDQ/ilFVUxr7dJ4dw0UVqswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkI0RDE0RkM2RDM3NEFGQ0NBQjE5MEM1NERERjNBMUE5 RDREOTMwQjAeFw0yNTAyMjYxNjU1MDJaFw0yNjAyMjUxNzAwMDJaMDMxMTAvBgNV BAMTKEUyMkY5ODlBQzdCNjlCMkVBMUI2MEI3MDA3NzgwRUI2QTNFNzJEMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBRN/cv/tqWOJW+h3vP0q0FxXp 9vmldZ0JCVmThlHhkAZmg0Ef/E6cFcDZCiq5jpnPTrDNKy/1IZk8zJ8A6tQF0Edu bBhqs4UBszlzoVpuhLR4MiJFE4GxIX2+juhLmFWW85B7giPFM5J5C0nY/VW7MZ7I 6hWl+PVOmNL9szLFeD3c3JBJhMtJsbVEUbGOYwc45xpLFKdUyfvblZqmntf6k+p6 qyLUT6VRnrfNxsLlYdYCzqVRbWX1jtT0UtjAchMKsyBhhjJfikw3im2FgLM+7tIx /hK7RzNo3KrXRBhPijGAswp7lX/twnUW6k8lWxX0R8ZR4LwNeS96vGIAoFdlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4i+Ymse2my6htgtwB3gOtqPnLQowHwYDVR0j BBgwFoAUa00U/G03SvzKsZDFTd86Gp1NkwswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NzU0NWI4NS05Mjc0LTQ3MGEtYWQyNy0yNDY5ZTlkMTU1YmMvMC82QjREMTRGQzZE Mzc0QUZDQ0FCMTkwQzU0RERGM0ExQTlENEQ5MzBCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkI0RDE0RkM2RDM3NEFGQ0NBQjE5MEM1NERERjNBMUE5RDRE OTMwQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3NTQ1Yjg1LTkyNzQtNDcwYS1h ZDI3LTI0NjllOWQxNTViYy8wLzMxMzAzMzJlMzIzMjMzMmUzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGffAjANBgkqhkiG 9w0BAQsFAAOCAQEAV4gSUmPInqXxaEAp/obfdW+BVHvBcE8aqE7GUozKK2r++I9o 7rUN4DgiBmmJfSadmJXe8lUrc7Q6F4BaZ7/Up/X0Z+AbEtpmtEkJeKfx31iQ+klB uMj2UlW4X+yRHDh+XNukt0glvzY4vF3PPRS6wZZedeWK6plkc0VOGQfOrEFrdh3D 2BBuKHbq0qLEMlKUwPlxWPYauViRhDYv6/QVgy4pTb8fyofL0ZosBF2T4d2QMnOA xeGeKcTAHu3AnimSEiLYhEfUURRLXNEldh+l3c6CNa4bMHq86JwVoH3QNhMTjt0D gYSs4G8kRXbVofAUQZ8mlL5XA/C5U339fA+/Bw== -----END CERTIFICATE-----Generated at Sun Apr 6 06:02:10 2025 by rpki-client