$ rpki-client -vvf repo-rpki.idnic.net/repo/b97cf9a0-e927-4814-8447-8b3a002760a8/0/3130332e3130352e35372e302f32342d3234203d3e20313530393432.roa File: 3130332e3130352e35372e302f32342d3234203d3e20313530393432.roa (raw, json) Hash identifier: geAKj9+TOtyfNH9PasUiph/Br+j89slGEUwYIqBnSpQ= Subject key identifier: 70:47:F3:B9:52:49:7B:4C:AB:A1:22:2F:FE:4F:80:0F:9B:6B:B2:54 Certificate issuer: /CN=E29E83C2C5897FA4F6CEFE3C37EE1A6532B8E943 Certificate serial: 346525765092E0445C74B183ED154B8007EDF6F7 Authority key identifier: E2:9E:83:C2:C5:89:7F:A4:F6:CE:FE:3C:37:EE:1A:65:32:B8:E9:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E29E83C2C5897FA4F6CEFE3C37EE1A6532B8E943.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b97cf9a0-e927-4814-8447-8b3a002760a8/0/3130332e3130352e35372e302f32342d3234203d3e20313530393432.roa Signing time: Thu 23 Jan 2025 03:00:00 +0000 ROA not before: Thu 23 Jan 2025 02:55:00 +0000 ROA not after: Thu 22 Jan 2026 03:00:00 +0000 asID: 150942 IP address blocks: 103.105.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b97cf9a0-e927-4814-8447-8b3a002760a8/0/E29E83C2C5897FA4F6CEFE3C37EE1A6532B8E943.crl rsync://repo-rpki.idnic.net/repo/b97cf9a0-e927-4814-8447-8b3a002760a8/0/E29E83C2C5897FA4F6CEFE3C37EE1A6532B8E943.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E29E83C2C5897FA4F6CEFE3C37EE1A6532B8E943.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 14:44:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:65:25:76:50:92:e0:44:5c:74:b1:83:ed:15:4b:80:07:ed:f6:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E29E83C2C5897FA4F6CEFE3C37EE1A6532B8E943 Validity Not Before: Jan 23 02:55:00 2025 GMT Not After : Jan 22 03:00:00 2026 GMT Subject: CN=7047F3B952497B4CABA1222FFE4F800F9B6BB254 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:5f:e5:a7:45:cf:e1:34:39:6e:44:3a:50:92: ee:5a:23:81:4a:a7:64:7b:38:c2:52:59:4a:10:d6: e0:df:6e:0f:94:79:8b:0d:c3:4e:34:7f:eb:e9:e9: fd:8c:10:fb:8d:1c:fe:74:d0:67:78:d7:7c:96:6f: 63:58:9d:a8:34:0f:72:78:a6:f0:91:a3:e6:bc:b1: 64:0c:80:30:cc:77:e2:e2:71:3f:1b:eb:e1:be:b4: a8:75:4a:bb:a6:24:ba:97:01:b5:be:a7:06:c3:4c: d9:96:a9:bc:56:9d:e0:cf:a1:db:7d:f1:53:18:31: 7c:73:ff:26:6e:20:f3:ce:e7:e0:9f:b5:66:0c:81: ff:46:89:00:d2:b3:8a:12:4d:f2:98:fb:d1:04:1d: 9e:58:dd:73:df:00:0a:b0:ad:5e:86:c9:18:a2:9d: 78:55:c8:c8:10:b9:4d:4a:63:c9:65:f2:ea:b6:f1: 92:35:7d:e0:70:4e:59:e8:45:5c:48:1b:54:c8:74: dd:a8:de:40:5d:fb:fa:11:4b:6b:60:ae:b7:c2:b8: 92:49:ed:25:c6:a6:f2:2c:5a:23:da:bf:c7:19:f8: 6a:21:e5:ee:5a:73:80:d5:ba:e1:16:a5:11:16:07: 2d:37:b3:af:82:73:f7:0f:61:a1:eb:98:f6:c7:c5: 48:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:47:F3:B9:52:49:7B:4C:AB:A1:22:2F:FE:4F:80:0F:9B:6B:B2:54 X509v3 Authority Key Identifier: keyid:E2:9E:83:C2:C5:89:7F:A4:F6:CE:FE:3C:37:EE:1A:65:32:B8:E9:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b97cf9a0-e927-4814-8447-8b3a002760a8/0/E29E83C2C5897FA4F6CEFE3C37EE1A6532B8E943.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E29E83C2C5897FA4F6CEFE3C37EE1A6532B8E943.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b97cf9a0-e927-4814-8447-8b3a002760a8/0/3130332e3130352e35372e302f32342d3234203d3e20313530393432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.105.57.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:f4:44:1e:67:8a:40:70:0e:94:50:55:97:61:97:cf:a3:10: 0e:1a:ef:c7:49:a7:a5:42:f6:51:5a:db:d1:0c:79:eb:d8:d2: 89:d8:f9:1f:ed:ca:8d:a8:76:e6:fd:8d:dc:78:35:e2:d7:bd: 7a:eb:a6:f8:9f:5b:24:b9:94:21:af:d4:80:97:f0:4c:ae:12: c5:5b:09:d4:aa:ab:e4:e2:8a:9d:4c:04:c9:de:e5:e5:bc:a1: 9b:82:7a:0a:85:77:2a:6b:55:03:dd:b5:f0:07:18:9d:c6:a1: 0c:ff:ed:e5:23:59:e3:6a:77:9a:b5:54:23:88:88:68:99:db: 61:e9:5f:c1:41:fe:a7:04:07:3d:4c:94:39:3f:aa:a3:90:9a: ad:1e:60:0c:32:59:1e:66:32:2a:4c:9c:cb:e4:ad:39:ad:e9: f9:ba:96:3a:35:ae:b3:a1:5a:f0:6f:3d:34:61:f3:49:59:58: 47:98:fe:6d:0f:00:38:39:0d:84:a6:3b:27:8b:c3:bb:55:e8: c8:16:61:51:ed:93:d3:6d:2f:cb:81:10:53:f8:0a:44:24:3d: a6:29:db:f5:01:17:a3:24:b2:5b:a1:38:6b:33:8c:5e:e7:29: c2:b5:f1:ff:dd:0f:4e:c9:49:6a:81:65:1f:c7:f0:a8:73:96: c5:aa:35:57 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNGUldlCS4ERcdLGD7RVLgAft9vcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTI5RTgzQzJDNTg5N0ZBNEY2Q0VGRTNDMzdFRTFBNjUz MkI4RTk0MzAeFw0yNTAxMjMwMjU1MDBaFw0yNjAxMjIwMzAwMDBaMDMxMTAvBgNV BAMTKDcwNDdGM0I5NTI0OTdCNENBQkExMjIyRkZFNEY4MDBGOUI2QkIyNTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtX+WnRc/hNDluRDpQku5aI4FK p2R7OMJSWUoQ1uDfbg+UeYsNw040f+vp6f2MEPuNHP500Gd413yWb2NYnag0D3J4 pvCRo+a8sWQMgDDMd+LicT8b6+G+tKh1SrumJLqXAbW+pwbDTNmWqbxWneDPodt9 8VMYMXxz/yZuIPPO5+CftWYMgf9GiQDSs4oSTfKY+9EEHZ5Y3XPfAAqwrV6GyRii nXhVyMgQuU1KY8ll8uq28ZI1feBwTlnoRVxIG1TIdN2o3kBd+/oRS2tgrrfCuJJJ 7SXGpvIsWiPav8cZ+Goh5e5ac4DVuuEWpREWBy03s6+Cc/cPYaHrmPbHxUhZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcEfzuVJJe0yroSIv/k+AD5trslQwHwYDVR0j BBgwFoAU4p6DwsWJf6T2zv48N+4aZTK46UMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OTdjZjlhMC1lOTI3LTQ4MTQtODQ0Ny04YjNhMDAyNzYwYTgvMC9FMjlFODNDMkM1 ODk3RkE0RjZDRUZFM0MzN0VFMUE2NTMyQjhFOTQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTI5RTgzQzJDNTg5N0ZBNEY2Q0VGRTNDMzdFRTFBNjUzMkI4 RTk0My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I5N2NmOWEwLWU5MjctNDgxNC04 NDQ3LThiM2EwMDI3NjBhOC8wLzMxMzAzMzJlMzEzMDM1MmUzNTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2k5MA0GCSqG SIb3DQEBCwUAA4IBAQAr9EQeZ4pAcA6UUFWXYZfPoxAOGu/HSaelQvZRWtvRDHnr 2NKJ2Pkf7cqNqHbm/Y3ceDXi171666b4n1skuZQhr9SAl/BMrhLFWwnUqqvk4oqd TATJ3uXlvKGbgnoKhXcqa1UD3bXwBxidxqEM/+3lI1njaneatVQjiIhomdth6V/B Qf6nBAc9TJQ5P6qjkJqtHmAMMlkeZjIqTJzL5K05ren5upY6Na6zoVrwbz00YfNJ WVhHmP5tDwA4OQ2Epjsni8O7VejIFmFR7ZPTbS/LgRBT+ApEJD2mKdv1ARejJLJb oThrM4xe5ynCtfH/3Q9OyUlqgWUfx/Coc5bFqjVX -----END CERTIFICATE-----Generated at Sun Apr 6 13:36:38 2025 by rpki-client