$ rpki-client -vvf repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/3130332e3231332e3233352e302f32342d3234203d3e20313531303033.roa File: 3130332e3231332e3233352e302f32342d3234203d3e20313531303033.roa (raw, json) Hash identifier: CWusehBvGZNNsn+dCS0FYwQ7Kf8Tf3bC6vxVNPY/Fm8= Subject key identifier: FE:86:2B:5E:18:AE:98:5F:80:25:73:D4:EA:2C:C6:2C:5C:E9:90:9B Certificate issuer: /CN=846D8A4B978C6F595D44EACDB8259295CD43C499 Certificate serial: 4A96C6AA3140FFC48C12D59AEC4A89876605F0B0 Authority key identifier: 84:6D:8A:4B:97:8C:6F:59:5D:44:EA:CD:B8:25:92:95:CD:43:C4:99 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/846D8A4B978C6F595D44EACDB8259295CD43C499.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/3130332e3231332e3233352e302f32342d3234203d3e20313531303033.roa Signing time: Mon 30 Dec 2024 15:00:02 +0000 ROA not before: Mon 30 Dec 2024 14:55:02 +0000 ROA not after: Mon 29 Dec 2025 15:00:02 +0000 asID: 151003 IP address blocks: 103.213.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/846D8A4B978C6F595D44EACDB8259295CD43C499.crl rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/846D8A4B978C6F595D44EACDB8259295CD43C499.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/846D8A4B978C6F595D44EACDB8259295CD43C499.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 09:36:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:96:c6:aa:31:40:ff:c4:8c:12:d5:9a:ec:4a:89:87:66:05:f0:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=846D8A4B978C6F595D44EACDB8259295CD43C499 Validity Not Before: Dec 30 14:55:02 2024 GMT Not After : Dec 29 15:00:02 2025 GMT Subject: CN=FE862B5E18AE985F802573D4EA2CC62C5CE9909B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ca:1e:fc:43:03:4d:f7:ab:a6:f4:5c:2b:0a: e5:8b:97:f0:02:f1:d3:f1:58:ee:c2:0d:a4:81:82: 2c:0a:8c:8d:a4:4c:10:d1:b7:be:46:04:69:0e:b4: 2f:bc:e3:07:36:58:d2:1b:b6:c2:4a:7c:79:57:27: 2b:bd:84:2c:4d:f2:f7:2d:6b:49:90:3f:5f:af:8f: ac:15:9b:ff:9b:64:ee:7f:16:55:cc:6f:40:11:56: d7:83:4c:4d:4a:38:5c:65:4d:e7:ac:23:1f:a0:60: 34:be:04:35:dc:de:77:49:7e:ae:9b:fd:91:d1:eb: 1a:bc:2d:b2:e8:a8:ed:81:04:a0:02:b8:fb:a0:de: 7a:14:96:4d:5e:80:8d:37:05:7c:e8:f9:b0:cf:1b: 66:09:87:a9:2e:24:31:82:b5:03:bc:50:a6:e8:13: 0e:e7:92:2c:1a:5a:6a:62:c1:80:82:9e:78:df:e5: d3:7a:85:27:9f:3a:9f:98:16:72:4f:d9:f8:87:fe: 81:c6:9c:b4:ba:0b:c2:5b:10:4b:cd:3b:0d:42:62: 5c:e3:c6:a6:85:e0:28:4e:40:87:fd:8f:3a:90:49: dd:53:47:6f:8c:96:d3:e4:95:6f:f5:c4:9a:d4:d6: 17:79:d6:1e:c8:d6:d8:58:74:94:fa:74:10:6c:b9: 6b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:86:2B:5E:18:AE:98:5F:80:25:73:D4:EA:2C:C6:2C:5C:E9:90:9B X509v3 Authority Key Identifier: keyid:84:6D:8A:4B:97:8C:6F:59:5D:44:EA:CD:B8:25:92:95:CD:43:C4:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/846D8A4B978C6F595D44EACDB8259295CD43C499.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/846D8A4B978C6F595D44EACDB8259295CD43C499.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/3130332e3231332e3233352e302f32342d3234203d3e20313531303033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.213.235.0/24 Signature Algorithm: sha256WithRSAEncryption 35:46:0d:80:ff:43:e4:ee:0c:36:2c:3c:37:43:0b:e7:70:0e: ab:1f:f5:c0:69:a9:3d:09:56:1e:d5:8b:69:71:f3:05:2c:9d: 91:88:fb:b8:39:8c:54:54:0b:f6:8f:79:3f:91:fa:a1:14:79: 52:cc:fb:21:3a:37:f1:43:13:e5:8e:50:53:78:bc:18:de:7f: a7:ff:63:c4:7a:cc:da:81:8d:83:a4:85:98:62:e0:82:34:71: 64:8d:07:f9:2a:0f:35:ae:6e:74:a4:5c:4d:bc:0b:5f:71:17: 28:db:44:48:9d:fc:7b:38:9e:99:61:9a:58:f8:e4:2c:13:33: 00:97:6d:4b:df:7c:8c:4c:8d:2c:cb:25:49:b1:4a:be:22:e4: 3c:38:b4:f1:7e:2d:3f:36:5a:6c:b9:87:96:ae:12:a8:c2:fd: 36:25:7b:f8:54:5f:76:1d:ae:4d:26:03:68:36:fa:44:db:0a: 26:90:b3:a0:6e:a1:2d:09:89:47:12:a2:f0:2d:f3:b5:36:4c: a7:c0:b9:cc:ba:e8:04:4d:4e:e5:de:ec:57:30:ce:bc:88:59: dc:f9:f5:16:39:44:7d:95:87:31:3c:19:08:b2:2f:be:23:b3: 57:02:e0:8d:91:9e:cd:31:73:a9:9a:35:ff:4c:4a:fe:ee:1e: cc:a0:60:61 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSpbGqjFA/8SMEtWa7EqJh2YF8LAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ2RDhBNEI5NzhDNkY1OTVENDRFQUNEQjgyNTkyOTVD RDQzQzQ5OTAeFw0yNDEyMzAxNDU1MDJaFw0yNTEyMjkxNTAwMDJaMDMxMTAvBgNV BAMTKEZFODYyQjVFMThBRTk4NUY4MDI1NzNENEVBMkNDNjJDNUNFOTkwOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2yh78QwNN96um9FwrCuWLl/AC 8dPxWO7CDaSBgiwKjI2kTBDRt75GBGkOtC+84wc2WNIbtsJKfHlXJyu9hCxN8vct a0mQP1+vj6wVm/+bZO5/FlXMb0ARVteDTE1KOFxlTeesIx+gYDS+BDXc3ndJfq6b /ZHR6xq8LbLoqO2BBKACuPug3noUlk1egI03BXzo+bDPG2YJh6kuJDGCtQO8UKbo Ew7nkiwaWmpiwYCCnnjf5dN6hSefOp+YFnJP2fiH/oHGnLS6C8JbEEvNOw1CYlzj xqaF4ChOQIf9jzqQSd1TR2+MltPklW/1xJrU1hd51h7I1thYdJT6dBBsuWtlAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU/oYrXhiumF+AJXPU6izGLFzpkJswHwYDVR0j BBgwFoAUhG2KS5eMb1ldROrNuCWSlc1DxJkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDdmYTIxMC01ZjI1LTRmMGItODlhNS03ZDAwYTM1NGE5MDcvMC84NDZEOEE0Qjk3 OEM2RjU5NUQ0NEVBQ0RCODI1OTI5NUNENDNDNDk5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ2RDhBNEI5NzhDNkY1OTVENDRFQUNEQjgyNTkyOTVDRDQz QzQ5OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkN2ZhMjEwLTVmMjUtNGYwYi04 OWE1LTdkMDBhMzU0YTkwNy8wLzMxMzAzMzJlMzIzMTMzMmUzMjMzMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzMDMwMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn1eswDQYJ KoZIhvcNAQELBQADggEBADVGDYD/Q+TuDDYsPDdDC+dwDqsf9cBpqT0JVh7Vi2lx 8wUsnZGI+7g5jFRUC/aPeT+R+qEUeVLM+yE6N/FDE+WOUFN4vBjef6f/Y8R6zNqB jYOkhZhi4II0cWSNB/kqDzWubnSkXE28C19xFyjbREid/Hs4nplhmlj45CwTMwCX bUvffIxMjSzLJUmxSr4i5Dw4tPF+LT82Wmy5h5auEqjC/TYle/hUX3Ydrk0mA2g2 +kTbCiaQs6BuoS0JiUcSovAt87U2TKfAucy66ARNTuXe7FcwzryIWdz59RY5RH2V hzE8GQiyL74js1cC4I2Rns0xc6maNf9MSv7uHsygYGE= -----END CERTIFICATE-----Generated at Sun Apr 6 14:52:11 2025 by rpki-client