$ rpki-client -vvf repo-rpki.idnic.net/repo/b7545b85-9274-470a-ad27-2469e9d155bc/0/3130332e3232332e332e302f32342d3234203d3e20313335343435.roa File: 3130332e3232332e332e302f32342d3234203d3e20313335343435.roa (raw, json) Hash identifier: 3ivbK9KpjZVb/XVJskMLhHcZHY/PxWUUM4YeUyN+bNw= Subject key identifier: BD:C4:FD:18:E1:0D:97:06:38:8A:DE:A6:17:01:E0:90:57:0A:0A:E6 Certificate issuer: /CN=6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B Certificate serial: 3D251D41A804C3FE69D10E6093C47A25CC312AC8 Authority key identifier: 6B:4D:14:FC:6D:37:4A:FC:CA:B1:90:C5:4D:DF:3A:1A:9D:4D:93:0B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b7545b85-9274-470a-ad27-2469e9d155bc/0/3130332e3232332e332e302f32342d3234203d3e20313335343435.roa Signing time: Wed 26 Feb 2025 17:00:02 +0000 ROA not before: Wed 26 Feb 2025 16:55:02 +0000 ROA not after: Wed 25 Feb 2026 17:00:02 +0000 asID: 135445 IP address blocks: 103.223.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b7545b85-9274-470a-ad27-2469e9d155bc/0/6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B.crl rsync://repo-rpki.idnic.net/repo/b7545b85-9274-470a-ad27-2469e9d155bc/0/6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 08:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:25:1d:41:a8:04:c3:fe:69:d1:0e:60:93:c4:7a:25:cc:31:2a:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B Validity Not Before: Feb 26 16:55:02 2025 GMT Not After : Feb 25 17:00:02 2026 GMT Subject: CN=BDC4FD18E10D9706388ADEA61701E090570A0AE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:8a:4e:ab:55:43:52:da:21:a1:eb:ed:74:75: e0:34:5e:1d:4b:50:f6:2b:31:b1:7f:bf:a5:64:e6: 7a:15:77:8d:dd:5a:d8:00:d1:13:b5:09:4c:c0:e7: 55:94:f8:9d:1e:8b:77:0a:79:0a:02:53:fa:4e:7a: 02:fd:db:0b:2a:6a:1e:1f:f4:08:b0:be:83:32:de: fe:69:6a:c4:15:8a:64:c3:6e:34:80:21:5f:97:1a: 8b:04:5e:38:0c:30:27:3a:f4:f7:7f:e9:2b:0b:d6: 55:52:96:f6:ad:58:89:09:6f:24:a7:1b:5f:e3:b5: 37:e1:b1:fb:2f:0c:a9:29:36:9a:8b:d5:1d:40:bd: f1:c1:a1:d3:9d:14:21:17:1d:4b:b9:be:e2:26:43: 93:24:66:c8:1d:56:23:f3:2b:ca:7a:36:32:74:2e: a6:1f:02:ef:45:15:3f:d1:0a:74:7d:93:7f:cd:55: 55:b2:6a:52:6a:d6:bf:f9:2d:15:25:5b:02:cb:16: 97:3a:3c:24:83:bc:44:1c:78:83:96:49:be:3e:71: b9:32:23:38:c2:4f:14:2e:55:24:af:ff:05:9a:30: da:dd:5a:32:4e:b1:99:c9:8f:49:1b:e9:6f:2c:c5: 48:43:d8:0b:63:ee:15:95:da:8c:ae:cf:28:7e:c0: e3:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:C4:FD:18:E1:0D:97:06:38:8A:DE:A6:17:01:E0:90:57:0A:0A:E6 X509v3 Authority Key Identifier: keyid:6B:4D:14:FC:6D:37:4A:FC:CA:B1:90:C5:4D:DF:3A:1A:9D:4D:93:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b7545b85-9274-470a-ad27-2469e9d155bc/0/6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B4D14FC6D374AFCCAB190C54DDF3A1A9D4D930B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7545b85-9274-470a-ad27-2469e9d155bc/0/3130332e3232332e332e302f32342d3234203d3e20313335343435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.223.3.0/24 Signature Algorithm: sha256WithRSAEncryption 45:3d:a2:dd:34:c7:6e:63:eb:dd:e6:49:16:a4:0c:3c:99:0e: 56:25:22:14:d2:3f:33:08:cc:dd:f1:47:5e:cf:44:32:6f:96: 99:b6:e8:32:74:51:d9:cc:e7:08:09:7d:7f:c9:02:74:47:d0: b1:62:b5:29:66:b3:66:46:52:43:e6:ed:b3:01:9a:35:f9:18: 4d:d2:7d:8c:07:d7:4b:67:a5:10:d3:5d:7b:df:5f:61:3c:bd: c3:b3:73:09:71:3f:53:19:be:98:99:03:70:d8:1f:25:63:2a: 4d:6d:37:ec:7c:2d:bd:08:9d:39:47:bb:32:3d:20:17:6c:f1: f1:49:b1:94:76:87:8e:6f:1f:94:92:0e:c8:f7:6a:ca:d7:7b: 16:b6:5e:5f:c2:eb:6c:b8:72:20:59:a5:fe:5e:d3:fb:c6:28: 4b:b2:4f:f9:5b:87:cc:53:fe:8c:22:1d:97:4b:99:aa:85:7d: 1c:f6:28:b8:94:31:52:9c:77:66:da:c5:ef:f1:50:83:94:41: af:03:33:be:e3:70:f9:1e:5c:65:f3:b6:56:48:4d:34:f2:9a: 71:f3:ee:77:fa:0a:62:24:73:3d:d2:ab:65:d3:ad:bd:92:0d: 22:3a:27:5d:73:3e:60:bd:54:f9:20:25:8e:53:c0:ec:0a:67: 71:28:69:5f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPSUdQagEw/5p0Q5gk8R6JcwxKsgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkI0RDE0RkM2RDM3NEFGQ0NBQjE5MEM1NERERjNBMUE5 RDREOTMwQjAeFw0yNTAyMjYxNjU1MDJaFw0yNjAyMjUxNzAwMDJaMDMxMTAvBgNV BAMTKEJEQzRGRDE4RTEwRDk3MDYzODhBREVBNjE3MDFFMDkwNTcwQTBBRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHik6rVUNS2iGh6+10deA0Xh1L UPYrMbF/v6Vk5noVd43dWtgA0RO1CUzA51WU+J0ei3cKeQoCU/pOegL92wsqah4f 9AiwvoMy3v5pasQVimTDbjSAIV+XGosEXjgMMCc69Pd/6SsL1lVSlvatWIkJbySn G1/jtTfhsfsvDKkpNpqL1R1AvfHBodOdFCEXHUu5vuImQ5MkZsgdViPzK8p6NjJ0 LqYfAu9FFT/RCnR9k3/NVVWyalJq1r/5LRUlWwLLFpc6PCSDvEQceIOWSb4+cbky IzjCTxQuVSSv/wWaMNrdWjJOsZnJj0kb6W8sxUhD2Atj7hWV2oyuzyh+wOM3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUvcT9GOENlwY4it6mFwHgkFcKCuYwHwYDVR0j BBgwFoAUa00U/G03SvzKsZDFTd86Gp1NkwswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NzU0NWI4NS05Mjc0LTQ3MGEtYWQyNy0yNDY5ZTlkMTU1YmMvMC82QjREMTRGQzZE Mzc0QUZDQ0FCMTkwQzU0RERGM0ExQTlENEQ5MzBCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkI0RDE0RkM2RDM3NEFGQ0NBQjE5MEM1NERERjNBMUE5RDRE OTMwQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3NTQ1Yjg1LTkyNzQtNDcwYS1h ZDI3LTI0NjllOWQxNTViYy8wLzMxMzAzMzJlMzIzMjMzMmUzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGffAzANBgkqhkiG 9w0BAQsFAAOCAQEART2i3TTHbmPr3eZJFqQMPJkOViUiFNI/MwjM3fFHXs9EMm+W mbboMnRR2cznCAl9f8kCdEfQsWK1KWazZkZSQ+btswGaNfkYTdJ9jAfXS2elENNd e99fYTy9w7NzCXE/Uxm+mJkDcNgfJWMqTW037HwtvQidOUe7Mj0gF2zx8UmxlHaH jm8flJIOyPdqytd7FrZeX8LrbLhyIFml/l7T+8YoS7JP+VuHzFP+jCIdl0uZqoV9 HPYouJQxUpx3ZtrF7/FQg5RBrwMzvuNw+R5cZfO2VkhNNPKacfPud/oKYiRzPdKr ZdOtvZINIjonXXM+YL1U+SAljlPA7ApncShpXw== -----END CERTIFICATE-----Generated at Sun Apr 6 06:02:09 2025 by rpki-client