$ rpki-client -vvf repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/3130332e3231332e3233342e302f32332d3233203d3e20313531303033.roa File: 3130332e3231332e3233342e302f32332d3233203d3e20313531303033.roa (raw, json) Hash identifier: 3HptcgwF9kr6TssFN64cDAiN6icULJSRQhu/pYKZbEU= Subject key identifier: 21:1D:BC:E0:17:7A:4C:97:91:2C:64:1D:25:5E:3C:9F:F9:F5:7F:0E Certificate issuer: /CN=846D8A4B978C6F595D44EACDB8259295CD43C499 Certificate serial: 73E8E0D407CA25C21FF0CCB4901E557625F72DD1 Authority key identifier: 84:6D:8A:4B:97:8C:6F:59:5D:44:EA:CD:B8:25:92:95:CD:43:C4:99 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/846D8A4B978C6F595D44EACDB8259295CD43C499.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/3130332e3231332e3233342e302f32332d3233203d3e20313531303033.roa Signing time: Mon 30 Dec 2024 15:00:01 +0000 ROA not before: Mon 30 Dec 2024 14:55:01 +0000 ROA not after: Mon 29 Dec 2025 15:00:01 +0000 asID: 151003 IP address blocks: 103.213.234.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/846D8A4B978C6F595D44EACDB8259295CD43C499.crl rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/846D8A4B978C6F595D44EACDB8259295CD43C499.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/846D8A4B978C6F595D44EACDB8259295CD43C499.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 09:36:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:e8:e0:d4:07:ca:25:c2:1f:f0:cc:b4:90:1e:55:76:25:f7:2d:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=846D8A4B978C6F595D44EACDB8259295CD43C499 Validity Not Before: Dec 30 14:55:01 2024 GMT Not After : Dec 29 15:00:01 2025 GMT Subject: CN=211DBCE0177A4C97912C641D255E3C9FF9F57F0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:53:2f:8b:3e:9b:09:41:58:a2:66:6b:2c:5d: 81:fe:c8:8b:20:aa:49:33:3d:ee:15:77:19:e6:72: f5:a6:59:13:5f:fb:f7:7f:68:16:e0:e5:09:b2:0a: d4:35:85:80:a6:95:cc:44:b6:31:e0:02:ce:8c:92: 88:19:f6:68:fc:ca:57:c3:87:fb:13:42:17:37:7c: 04:73:2d:a6:9d:88:42:3a:e1:f4:44:b3:3e:c1:85: b3:26:10:18:3b:97:f6:10:1c:95:f3:29:e5:ff:f0: 1f:a0:82:09:d5:32:6d:16:32:c3:69:1c:77:b7:30: 96:65:67:c8:0b:5e:28:c6:76:3b:3e:26:91:3e:52: 93:11:0c:18:cc:ab:82:fa:52:d3:dc:16:22:fd:f5: 03:b1:1f:b0:93:42:45:bf:c2:ac:d4:32:13:12:e0: cf:26:28:0d:db:63:19:0e:8e:a2:44:d2:52:c8:50: 71:dd:27:87:dd:5a:e0:ad:08:c5:2a:b1:5a:91:e5: f4:b1:ed:1a:a0:b1:20:91:5b:10:02:d7:57:95:b5: 3d:e7:9b:c4:53:e3:a2:ad:dc:56:e1:ab:65:5d:41: 95:94:1c:82:f5:a7:37:b2:10:ba:94:c1:01:0c:26: 91:de:94:87:33:11:14:07:8b:6c:03:8f:1a:e4:23: b1:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:1D:BC:E0:17:7A:4C:97:91:2C:64:1D:25:5E:3C:9F:F9:F5:7F:0E X509v3 Authority Key Identifier: keyid:84:6D:8A:4B:97:8C:6F:59:5D:44:EA:CD:B8:25:92:95:CD:43:C4:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/846D8A4B978C6F595D44EACDB8259295CD43C499.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/846D8A4B978C6F595D44EACDB8259295CD43C499.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/3130332e3231332e3233342e302f32332d3233203d3e20313531303033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.213.234.0/23 Signature Algorithm: sha256WithRSAEncryption 82:15:70:cf:5c:50:38:ee:31:d0:9e:3d:20:1d:0d:c5:9b:8f: 8d:ad:cf:0a:d6:35:87:96:8c:47:f8:80:3d:70:f0:db:d8:d3: 53:d8:8b:1d:c4:56:20:45:7b:4f:60:3f:bd:c1:4b:ea:11:b5: 30:39:56:79:ae:d1:27:cd:4b:54:3b:90:8f:a8:a8:5e:60:cc: 87:7d:5b:a0:dc:b9:0d:87:3f:ba:f0:8c:6e:b6:98:c4:6a:4c: 1a:a8:ee:6f:76:0a:d7:7e:24:2e:3e:de:84:f5:fa:08:d4:63: 64:0a:78:07:40:d4:47:b8:08:7c:2f:16:00:47:53:39:84:bd: 8c:4b:5a:03:49:83:f8:f7:5d:1f:c9:22:ce:2d:f9:02:a7:59: a9:f4:64:1e:3d:19:f5:b8:8c:61:56:69:ed:61:8c:9e:f6:e3: 4c:da:51:6e:aa:56:4b:a3:5c:8f:17:6c:bd:a0:03:49:53:a1: 65:b5:0d:12:a7:c0:38:4f:d9:55:99:aa:3b:65:75:65:f2:09: 92:44:02:7d:af:26:1c:18:a1:18:63:14:e6:71:2d:69:4e:13: 37:dd:21:25:b8:20:84:b6:80:ce:fe:85:ba:c7:fd:55:8a:ee: 51:80:71:99:d4:3b:ac:c9:7e:b1:75:19:18:94:ce:e3:9e:61: df:54:a8:e0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUc+jg1AfKJcIf8My0kB5VdiX3LdEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ2RDhBNEI5NzhDNkY1OTVENDRFQUNEQjgyNTkyOTVD RDQzQzQ5OTAeFw0yNDEyMzAxNDU1MDFaFw0yNTEyMjkxNTAwMDFaMDMxMTAvBgNV BAMTKDIxMURCQ0UwMTc3QTRDOTc5MTJDNjQxRDI1NUUzQzlGRjlGNTdGMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdUy+LPpsJQViiZmssXYH+yIsg qkkzPe4VdxnmcvWmWRNf+/d/aBbg5QmyCtQ1hYCmlcxEtjHgAs6MkogZ9mj8ylfD h/sTQhc3fARzLaadiEI64fREsz7BhbMmEBg7l/YQHJXzKeX/8B+gggnVMm0WMsNp HHe3MJZlZ8gLXijGdjs+JpE+UpMRDBjMq4L6UtPcFiL99QOxH7CTQkW/wqzUMhMS 4M8mKA3bYxkOjqJE0lLIUHHdJ4fdWuCtCMUqsVqR5fSx7RqgsSCRWxAC11eVtT3n m8RT46Kt3Fbhq2VdQZWUHIL1pzeyELqUwQEMJpHelIczERQHi2wDjxrkI7FtAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUIR284Bd6TJeRLGQdJV48n/n1fw4wHwYDVR0j BBgwFoAUhG2KS5eMb1ldROrNuCWSlc1DxJkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDdmYTIxMC01ZjI1LTRmMGItODlhNS03ZDAwYTM1NGE5MDcvMC84NDZEOEE0Qjk3 OEM2RjU5NUQ0NEVBQ0RCODI1OTI5NUNENDNDNDk5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ2RDhBNEI5NzhDNkY1OTVENDRFQUNEQjgyNTkyOTVDRDQz QzQ5OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkN2ZhMjEwLTVmMjUtNGYwYi04 OWE1LTdkMDBhMzU0YTkwNy8wLzMxMzAzMzJlMzIzMTMzMmUzMjMzMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM1MzEzMDMwMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn1eowDQYJ KoZIhvcNAQELBQADggEBAIIVcM9cUDjuMdCePSAdDcWbj42tzwrWNYeWjEf4gD1w 8NvY01PYix3EViBFe09gP73BS+oRtTA5Vnmu0SfNS1Q7kI+oqF5gzId9W6DcuQ2H P7rwjG62mMRqTBqo7m92Ctd+JC4+3oT1+gjUY2QKeAdA1Ee4CHwvFgBHUzmEvYxL WgNJg/j3XR/JIs4t+QKnWan0ZB49GfW4jGFWae1hjJ7240zaUW6qVkujXI8XbL2g A0lToWW1DRKnwDhP2VWZqjtldWXyCZJEAn2vJhwYoRhjFOZxLWlOEzfdISW4IIS2 gM7+hbrH/VWK7lGAcZnUO6zJfrF1GRiUzuOeYd9UqOA= -----END CERTIFICATE-----Generated at Sun Apr 6 14:49:18 2025 by rpki-client