$ rpki-client -vvf repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/3130332e3132322e3132312e302f32342d3234203d3e20313338303836.roa File: 3130332e3132322e3132312e302f32342d3234203d3e20313338303836.roa (raw, json) Hash identifier: NWTKjHM3PgU/D8DgzFheKr586Q+n/qcGSV1ZOdpOXco= Subject key identifier: 06:BD:C4:B4:B9:74:6C:0A:70:F9:60:58:F6:B7:EF:23:56:F8:97:2F Certificate issuer: /CN=408585C1D62A4F618C0424E9BEDC3B91411C2276 Certificate serial: 22183A93CD62E5709170AFD282474B0FB84128D9 Authority key identifier: 40:85:85:C1:D6:2A:4F:61:8C:04:24:E9:BE:DC:3B:91:41:1C:22:76 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/408585C1D62A4F618C0424E9BEDC3B91411C2276.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/3130332e3132322e3132312e302f32342d3234203d3e20313338303836.roa Signing time: Fri 07 Mar 2025 05:03:32 +0000 ROA not before: Fri 07 Mar 2025 04:58:32 +0000 ROA not after: Fri 06 Mar 2026 05:03:32 +0000 asID: 138086 IP address blocks: 103.122.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/408585C1D62A4F618C0424E9BEDC3B91411C2276.crl rsync://repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/408585C1D62A4F618C0424E9BEDC3B91411C2276.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/408585C1D62A4F618C0424E9BEDC3B91411C2276.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 17:02:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:18:3a:93:cd:62:e5:70:91:70:af:d2:82:47:4b:0f:b8:41:28:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408585C1D62A4F618C0424E9BEDC3B91411C2276 Validity Not Before: Mar 7 04:58:32 2025 GMT Not After : Mar 6 05:03:32 2026 GMT Subject: CN=06BDC4B4B9746C0A70F96058F6B7EF2356F8972F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:72:a8:88:9e:1c:57:67:8f:1b:2c:d8:7b:87: 09:53:1f:c9:3f:80:69:0c:70:dd:5b:e8:36:e7:51: ce:03:4b:b6:dc:5a:b4:90:93:8e:d8:74:e9:46:34: dc:25:9b:e8:2a:e4:02:22:a9:5b:f6:81:80:da:e1: 22:c5:db:47:c2:58:5d:fd:96:47:5b:ae:39:4a:e5: 7d:92:06:10:a1:b6:3e:7c:d7:65:56:56:2a:26:8d: 5d:af:c7:4e:0a:56:a1:b0:67:0b:ae:12:9e:c9:53: c0:12:ca:ec:90:44:8f:ac:8d:43:57:84:c3:25:ef: 7c:d5:2b:c0:b6:9e:a8:49:c1:94:c1:63:da:d9:98: fd:03:6e:08:db:dc:2e:f7:18:41:38:3e:3a:41:ec: 96:57:bd:dd:06:8e:11:67:e6:29:ee:6e:82:b5:36: 3a:69:2b:83:27:ec:2a:90:0a:7d:d7:b6:6b:29:5e: e5:c6:fc:5c:8f:9f:6f:9f:2e:32:69:08:43:c6:84: a9:0d:f1:86:07:b8:d5:41:60:84:cb:07:a1:b0:03: e5:d9:32:c3:bf:68:80:af:cc:45:ca:0f:7a:bc:39: d7:84:4e:13:f5:04:eb:d7:96:2d:5f:f4:d5:4f:81: 74:33:25:0e:54:d9:a0:5a:db:d2:53:cc:d6:63:83: 94:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:BD:C4:B4:B9:74:6C:0A:70:F9:60:58:F6:B7:EF:23:56:F8:97:2F X509v3 Authority Key Identifier: keyid:40:85:85:C1:D6:2A:4F:61:8C:04:24:E9:BE:DC:3B:91:41:1C:22:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/408585C1D62A4F618C0424E9BEDC3B91411C2276.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/408585C1D62A4F618C0424E9BEDC3B91411C2276.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/3130332e3132322e3132312e302f32342d3234203d3e20313338303836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.121.0/24 Signature Algorithm: sha256WithRSAEncryption 12:25:e6:99:ac:98:d9:94:15:9f:c9:42:76:2d:5d:28:a5:1e: 02:1a:52:f1:cc:9f:34:75:b8:9a:b5:23:97:bb:ef:a9:92:1f: 76:b6:78:a9:65:cd:31:16:94:f7:9b:35:a1:f6:bf:d4:50:0f: 1f:6d:e3:26:85:45:5c:d2:31:71:49:4c:3d:ba:05:d4:c5:6a: 72:c8:c0:f2:bb:3a:d7:f8:e5:8c:7c:ab:70:8a:3d:72:4b:b7: dc:98:b9:42:b3:8a:d0:cf:25:9a:52:17:db:b2:e8:f2:87:94: 88:9d:b6:85:70:80:3a:66:db:ac:c2:b4:ca:de:78:4c:46:2e: b4:5d:0e:13:5a:82:60:f7:a3:6d:fe:0b:e8:38:00:08:b4:e9: 76:ae:c7:0a:09:dc:c6:a7:61:8e:85:a7:fb:d4:94:e3:aa:7b: 2a:66:5e:9d:56:0c:31:95:f0:50:40:d9:63:a9:9e:6c:65:86: fa:e2:05:a6:3b:30:f7:cc:5b:a8:8c:30:cd:b1:2d:a0:b5:51: cf:ed:23:81:ad:e8:b8:5e:39:e6:40:c8:dc:08:67:59:cb:cf: 80:a0:43:81:b5:01:e9:a5:30:c2:d4:52:38:df:11:74:81:08: 16:35:1f:f6:3d:7d:fa:17:05:04:71:44:5f:97:6a:65:f6:cc: 9c:7a:c5:cd -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIhg6k81i5XCRcK/SgkdLD7hBKNkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4NTg1QzFENjJBNEY2MThDMDQyNEU5QkVEQzNCOTE0 MTFDMjI3NjAeFw0yNTAzMDcwNDU4MzJaFw0yNjAzMDYwNTAzMzJaMDMxMTAvBgNV BAMTKDA2QkRDNEI0Qjk3NDZDMEE3MEY5NjA1OEY2QjdFRjIzNTZGODk3MkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+cqiInhxXZ48bLNh7hwlTH8k/ gGkMcN1b6DbnUc4DS7bcWrSQk47YdOlGNNwlm+gq5AIiqVv2gYDa4SLF20fCWF39 lkdbrjlK5X2SBhChtj5812VWViomjV2vx04KVqGwZwuuEp7JU8ASyuyQRI+sjUNX hMMl73zVK8C2nqhJwZTBY9rZmP0Dbgjb3C73GEE4PjpB7JZXvd0GjhFn5inuboK1 NjppK4Mn7CqQCn3XtmspXuXG/FyPn2+fLjJpCEPGhKkN8YYHuNVBYITLB6GwA+XZ MsO/aICvzEXKD3q8OdeEThP1BOvXli1f9NVPgXQzJQ5U2aBa29JTzNZjg5SrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUBr3EtLl0bApw+WBY9rfvI1b4ly8wHwYDVR0j BBgwFoAUQIWFwdYqT2GMBCTpvtw7kUEcInYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i N2UyNmM4My01ZWQyLTRjOGItOGEwMy02Y2IwMGQxZWQzMzgvMC80MDg1ODVDMUQ2 MkE0RjYxOEMwNDI0RTlCRURDM0I5MTQxMUMyMjc2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDA4NTg1QzFENjJBNEY2MThDMDQyNEU5QkVEQzNCOTE0MTFD MjI3Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3ZTI2YzgzLTVlZDItNGM4Yi04 YTAzLTZjYjAwZDFlZDMzOC8wLzMxMzAzMzJlMzEzMjMyMmUzMTMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnenkwDQYJ KoZIhvcNAQELBQADggEBABIl5pmsmNmUFZ/JQnYtXSilHgIaUvHMnzR1uJq1I5e7 76mSH3a2eKllzTEWlPebNaH2v9RQDx9t4yaFRVzSMXFJTD26BdTFanLIwPK7Otf4 5Yx8q3CKPXJLt9yYuUKzitDPJZpSF9uy6PKHlIidtoVwgDpm26zCtMreeExGLrRd DhNagmD3o23+C+g4AAi06XauxwoJ3ManYY6Fp/vUlOOqeypmXp1WDDGV8FBA2WOp nmxlhvriBaY7MPfMW6iMMM2xLaC1Uc/tI4Gt6LheOeZAyNwIZ1nLz4CgQ4G1Aeml MMLUUjjfEXSBCBY1H/Y9ffoXBQRxRF+XamX2zJx6xc0= -----END CERTIFICATE-----Generated at Sun Apr 6 08:30:51 2025 by rpki-client