$ rpki-client -vvf repo-rpki.idnic.net/repo/bb25f0eb-3c4d-4fc7-b3a4-adb2297de6cf/0/3130332e3138342e3138322e302f32342d3234203d3e20313439363736.roa File: 3130332e3138342e3138322e302f32342d3234203d3e20313439363736.roa (raw, json) Hash identifier: 1ohXfgQVLOVqfzLUY6nq2zHsOKGWcr19CJg3R6qlyZU= Subject key identifier: 5D:E9:05:8B:78:51:9F:B7:E2:D1:30:4E:AA:8F:59:62:77:EE:63:FF Certificate issuer: /CN=2E29F48BC4E2FD6421F12F275BFE54CB5AFC4CBF Certificate serial: 616165753DF8F517DFC691D326B496E41719B771 Authority key identifier: 2E:29:F4:8B:C4:E2:FD:64:21:F1:2F:27:5B:FE:54:CB:5A:FC:4C:BF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E29F48BC4E2FD6421F12F275BFE54CB5AFC4CBF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bb25f0eb-3c4d-4fc7-b3a4-adb2297de6cf/0/3130332e3138342e3138322e302f32342d3234203d3e20313439363736.roa Signing time: Mon 20 Jan 2025 02:00:02 +0000 ROA not before: Mon 20 Jan 2025 01:55:02 +0000 ROA not after: Mon 19 Jan 2026 02:00:02 +0000 asID: 149676 IP address blocks: 103.184.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bb25f0eb-3c4d-4fc7-b3a4-adb2297de6cf/0/2E29F48BC4E2FD6421F12F275BFE54CB5AFC4CBF.crl rsync://repo-rpki.idnic.net/repo/bb25f0eb-3c4d-4fc7-b3a4-adb2297de6cf/0/2E29F48BC4E2FD6421F12F275BFE54CB5AFC4CBF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E29F48BC4E2FD6421F12F275BFE54CB5AFC4CBF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 03:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:61:65:75:3d:f8:f5:17:df:c6:91:d3:26:b4:96:e4:17:19:b7:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2E29F48BC4E2FD6421F12F275BFE54CB5AFC4CBF Validity Not Before: Jan 20 01:55:02 2025 GMT Not After : Jan 19 02:00:02 2026 GMT Subject: CN=5DE9058B78519FB7E2D1304EAA8F596277EE63FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4a:26:df:b7:a1:6c:3d:ea:87:46:5c:77:1e: 16:3c:0e:aa:62:37:c1:88:d7:e7:7a:d3:84:da:01: 7c:e3:2f:64:c7:fe:f6:67:3d:4e:93:a5:7b:21:ff: c1:5f:20:f4:10:b1:12:fb:58:79:1c:0d:b5:10:44: f4:49:ca:21:98:1e:95:8c:4b:9e:0e:23:42:37:24: e7:23:1a:66:02:10:de:93:64:a8:39:e5:07:ad:85: 20:fc:4b:1b:a4:dc:6a:30:47:08:8d:dd:13:1d:ce: 44:f7:a8:bd:f0:74:08:bf:a5:e8:81:56:6b:9b:7b: da:e0:0a:02:47:49:fd:45:e6:b7:82:63:af:9d:a7: db:af:ee:07:96:8c:cd:fe:08:04:1a:45:0b:cd:4c: 0b:b5:91:3a:45:ab:ba:3e:4e:62:50:cb:e4:07:87: a5:6a:29:68:ae:13:51:3b:6f:c3:cc:03:fb:b0:56: b1:c2:92:e1:2e:74:6f:9d:43:23:11:b8:f4:ea:7a: 83:e9:34:88:45:81:f7:62:1a:8a:65:70:42:81:72: 21:19:2e:53:2c:6e:bb:af:a6:9a:b6:8f:87:fc:57: 13:f2:69:46:2c:9b:ad:25:68:c0:2e:15:5e:4a:52: 82:8d:d9:62:35:5a:8b:98:7f:fd:df:c9:33:ea:ad: 39:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:E9:05:8B:78:51:9F:B7:E2:D1:30:4E:AA:8F:59:62:77:EE:63:FF X509v3 Authority Key Identifier: keyid:2E:29:F4:8B:C4:E2:FD:64:21:F1:2F:27:5B:FE:54:CB:5A:FC:4C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bb25f0eb-3c4d-4fc7-b3a4-adb2297de6cf/0/2E29F48BC4E2FD6421F12F275BFE54CB5AFC4CBF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E29F48BC4E2FD6421F12F275BFE54CB5AFC4CBF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bb25f0eb-3c4d-4fc7-b3a4-adb2297de6cf/0/3130332e3138342e3138322e302f32342d3234203d3e20313439363736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.182.0/24 Signature Algorithm: sha256WithRSAEncryption bc:50:eb:96:68:e4:07:9e:ed:13:42:be:91:a2:78:2b:aa:16: 79:87:9b:4d:d9:80:a2:3b:c0:bb:7a:49:5f:0d:0d:81:fc:a8: 9c:85:8b:f9:5e:96:89:f7:7a:8d:5d:b8:a1:4f:df:42:6a:f8: 50:5c:11:c7:11:53:78:86:c9:1d:95:b7:11:13:bc:f0:7b:0e: f4:16:fb:27:23:3e:6b:bc:74:dd:5f:a3:47:31:b7:47:10:5c: d7:72:82:56:92:4c:a2:fa:e0:60:cb:06:a6:b9:a0:ad:a3:55: 87:34:91:e3:04:97:c6:d2:e2:f0:10:d2:12:25:41:16:d0:33: 84:62:c6:b1:1f:97:d7:c7:fc:59:e7:d2:48:69:61:1d:55:2d: d2:83:c6:78:79:cd:f1:66:34:13:8e:7f:60:41:ee:10:80:6f: 98:10:d5:68:7a:66:56:6a:f9:47:ef:ce:3a:44:5c:56:dd:fa: 7e:f3:75:87:47:7e:b1:88:2d:2f:6f:be:84:a9:11:5b:16:9d: 70:dd:f9:96:bf:6d:80:26:2a:eb:f9:19:3c:be:c0:e6:15:67: ce:1e:a2:1a:f1:8d:68:63:53:b1:78:95:3a:f6:87:ba:c0:42: 12:50:d5:41:a3:83:af:04:4f:63:33:d8:6d:55:32:31:8e:ea: fd:e0:12:e3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYWFldT349RffxpHTJrSW5BcZt3EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkUyOUY0OEJDNEUyRkQ2NDIxRjEyRjI3NUJGRTU0Q0I1 QUZDNENCRjAeFw0yNTAxMjAwMTU1MDJaFw0yNjAxMTkwMjAwMDJaMDMxMTAvBgNV BAMTKDVERTkwNThCNzg1MTlGQjdFMkQxMzA0RUFBOEY1OTYyNzdFRTYzRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4Sibft6FsPeqHRlx3HhY8Dqpi N8GI1+d604TaAXzjL2TH/vZnPU6TpXsh/8FfIPQQsRL7WHkcDbUQRPRJyiGYHpWM S54OI0I3JOcjGmYCEN6TZKg55QethSD8Sxuk3GowRwiN3RMdzkT3qL3wdAi/peiB Vmube9rgCgJHSf1F5reCY6+dp9uv7geWjM3+CAQaRQvNTAu1kTpFq7o+TmJQy+QH h6VqKWiuE1E7b8PMA/uwVrHCkuEudG+dQyMRuPTqeoPpNIhFgfdiGoplcEKBciEZ LlMsbruvppq2j4f8VxPyaUYsm60laMAuFV5KUoKN2WI1WouYf/3fyTPqrTl/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUXekFi3hRn7fi0TBOqo9ZYnfuY/8wHwYDVR0j BBgwFoAULin0i8Ti/WQh8S8nW/5Uy1r8TL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YjI1ZjBlYi0zYzRkLTRmYzctYjNhNC1hZGIyMjk3ZGU2Y2YvMC8yRTI5RjQ4QkM0 RTJGRDY0MjFGMTJGMjc1QkZFNTRDQjVBRkM0Q0JGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkUyOUY0OEJDNEUyRkQ2NDIxRjEyRjI3NUJGRTU0Q0I1QUZD NENCRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JiMjVmMGViLTNjNGQtNGZjNy1i M2E0LWFkYjIyOTdkZTZjZi8wLzMxMzAzMzJlMzEzODM0MmUzMTM4MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNjM3MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnuLYwDQYJ KoZIhvcNAQELBQADggEBALxQ65Zo5Aee7RNCvpGieCuqFnmHm03ZgKI7wLt6SV8N DYH8qJyFi/lelon3eo1duKFP30Jq+FBcEccRU3iGyR2VtxETvPB7DvQW+ycjPmu8 dN1fo0cxt0cQXNdyglaSTKL64GDLBqa5oK2jVYc0keMEl8bS4vAQ0hIlQRbQM4Ri xrEfl9fH/Fnn0khpYR1VLdKDxnh5zfFmNBOOf2BB7hCAb5gQ1Wh6ZlZq+UfvzjpE XFbd+n7zdYdHfrGILS9vvoSpEVsWnXDd+Za/bYAmKuv5GTy+wOYVZ84eohrxjWhj U7F4lTr2h7rAQhJQ1UGjg68ET2Mz2G1VMjGO6v3gEuM= -----END CERTIFICATE-----Generated at Mon Apr 7 01:08:07 2025 by rpki-client