$ rpki-client -vvf repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/3130332e3138342e3132302e302f32342d3234203d3e20313439363633.roa File: 3130332e3138342e3132302e302f32342d3234203d3e20313439363633.roa (raw, json) Hash identifier: K/te+OOqq38HfLYFBM6maqhYABgY51ViE5jJN8jRKPY= Subject key identifier: 37:8D:53:A9:3D:33:3E:A7:6C:2B:4A:77:28:08:32:39:F7:60:08:71 Certificate issuer: /CN=C70A343932991281F91796DB87B011987603BBF4 Certificate serial: 4849AC504C53777EC148BB591A9B97F14027A8A0 Authority key identifier: C7:0A:34:39:32:99:12:81:F9:17:96:DB:87:B0:11:98:76:03:BB:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/3130332e3138342e3132302e302f32342d3234203d3e20313439363633.roa Signing time: Tue 21 Jan 2025 03:02:34 +0000 ROA not before: Tue 21 Jan 2025 02:57:34 +0000 ROA not after: Tue 20 Jan 2026 03:02:34 +0000 asID: 149663 IP address blocks: 103.184.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.crl rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 05:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:49:ac:50:4c:53:77:7e:c1:48:bb:59:1a:9b:97:f1:40:27:a8:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C70A343932991281F91796DB87B011987603BBF4 Validity Not Before: Jan 21 02:57:34 2025 GMT Not After : Jan 20 03:02:34 2026 GMT Subject: CN=378D53A93D333EA76C2B4A7728083239F7600871 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9b:0a:5d:65:08:9b:a3:86:3b:c5:b5:90:b4: 6f:71:18:ef:e7:32:e3:22:5f:94:d6:e0:f3:8b:e4: 36:c1:0b:c0:9e:24:c2:0a:f2:b2:84:5e:3a:f0:cc: 19:58:3d:6f:f0:a8:79:5b:8f:be:be:97:2b:d7:b8: d1:6e:36:44:4f:2a:47:6b:10:d2:2b:f4:8c:a1:7b: c4:97:96:85:74:eb:8d:be:8c:b2:21:3f:9b:d2:fd: aa:54:5a:9d:c2:aa:89:be:07:eb:a0:96:fc:cf:2b: 2c:70:22:25:b2:a4:a2:f5:95:4b:62:68:32:d4:1d: 86:a9:53:ba:78:fc:f4:8e:c8:3b:09:2a:6a:94:c5: ad:c2:f2:81:bd:ab:fc:ae:6e:2f:77:40:fc:d5:17: 51:28:5a:0f:e7:f8:84:0b:3a:b5:85:f2:2a:5d:16: 61:6d:2a:30:0d:1c:a6:c8:e2:a2:c9:b9:a8:fa:a0: f5:cd:f1:49:2b:89:38:c2:d3:4f:8a:b0:0f:46:85: a7:05:e1:d7:dc:b3:da:f5:c9:82:9a:fd:cd:8b:7a: d2:b2:e1:d3:15:d9:f9:df:f3:77:f1:b1:d9:cb:33: 54:05:2b:7e:00:d4:e5:6e:ee:6e:dc:57:e0:34:37: 7e:6d:8f:fa:f4:16:7b:de:c0:40:d8:35:e7:d2:cb: 7b:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:8D:53:A9:3D:33:3E:A7:6C:2B:4A:77:28:08:32:39:F7:60:08:71 X509v3 Authority Key Identifier: keyid:C7:0A:34:39:32:99:12:81:F9:17:96:DB:87:B0:11:98:76:03:BB:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/3130332e3138342e3132302e302f32342d3234203d3e20313439363633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.120.0/24 Signature Algorithm: sha256WithRSAEncryption ae:e0:9a:69:4a:cf:de:fd:a6:f3:aa:4d:7e:70:fd:95:fe:84: 99:78:c5:bc:33:c2:ed:b1:ca:89:0a:62:b2:4f:93:9c:d3:3c: 88:5d:c1:30:ac:a7:4b:e6:4a:a0:0a:94:c6:24:cc:fc:e3:8f: 58:97:ff:42:3d:15:a4:60:62:69:df:10:63:39:8a:7e:85:ac: ec:76:1f:eb:9b:ca:71:bc:50:76:1a:1c:b6:1a:a4:70:a3:c4: 37:76:c5:e8:2a:35:18:aa:c2:8f:c4:20:22:a5:8b:95:e2:9f: a1:0f:ee:0d:b8:92:2f:69:e5:d9:42:50:2c:fb:74:d9:72:75: de:0f:b9:60:06:a2:23:3c:9a:fa:27:43:1a:ed:2d:b9:bc:b9: a7:5a:12:0d:a7:34:77:c8:0f:a1:b8:ac:a6:98:8c:48:c5:1a: 59:aa:d0:5d:1d:41:1b:dd:86:1c:37:e8:4c:19:8e:cf:a3:60: 9c:b0:61:2f:60:69:9f:27:fa:ed:3a:8d:f7:e3:e6:e2:24:06: 76:e1:0e:5e:4d:0f:07:01:ca:a7:8f:80:1a:c9:80:4f:23:3a: 32:11:1f:b1:ce:e7:ec:dc:4e:bf:e0:99:80:1e:35:7b:52:b0: 02:e0:a3:35:fb:e0:6a:0d:b2:b1:98:09:4d:ed:c4:45:f8:fe: 72:cf:2a:73 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSEmsUExTd37BSLtZGpuX8UAnqKAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzcwQTM0MzkzMjk5MTI4MUY5MTc5NkRCODdCMDExOTg3 NjAzQkJGNDAeFw0yNTAxMjEwMjU3MzRaFw0yNjAxMjAwMzAyMzRaMDMxMTAvBgNV BAMTKDM3OEQ1M0E5M0QzMzNFQTc2QzJCNEE3NzI4MDgzMjM5Rjc2MDA4NzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0mwpdZQibo4Y7xbWQtG9xGO/n MuMiX5TW4POL5DbBC8CeJMIK8rKEXjrwzBlYPW/wqHlbj76+lyvXuNFuNkRPKkdr ENIr9Iyhe8SXloV0642+jLIhP5vS/apUWp3Cqom+B+uglvzPKyxwIiWypKL1lUti aDLUHYapU7p4/PSOyDsJKmqUxa3C8oG9q/yubi93QPzVF1EoWg/n+IQLOrWF8ipd FmFtKjANHKbI4qLJuaj6oPXN8UkriTjC00+KsA9GhacF4dfcs9r1yYKa/c2LetKy 4dMV2fnf83fxsdnLM1QFK34A1OVu7m7cV+A0N35tj/r0FnvewEDYNefSy3t/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUN41TqT0zPqdsK0p3KAgyOfdgCHEwHwYDVR0j BBgwFoAUxwo0OTKZEoH5F5bbh7ARmHYDu/QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZmMxN2NjMi1mNGEyLTQxNWUtOGVhMi1mOWM0N2Y3NWM0Y2EvMC9DNzBBMzQzOTMy OTkxMjgxRjkxNzk2REI4N0IwMTE5ODc2MDNCQkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzcwQTM0MzkzMjk5MTI4MUY5MTc5NkRCODdCMDExOTg3NjAz QkJGNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JmYzE3Y2MyLWY0YTItNDE1ZS04 ZWEyLWY5YzQ3Zjc1YzRjYS8wLzMxMzAzMzJlMzEzODM0MmUzMTMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNjM2MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnuHgwDQYJ KoZIhvcNAQELBQADggEBAK7gmmlKz979pvOqTX5w/ZX+hJl4xbwzwu2xyokKYrJP k5zTPIhdwTCsp0vmSqAKlMYkzPzjj1iX/0I9FaRgYmnfEGM5in6FrOx2H+ubynG8 UHYaHLYapHCjxDd2xegqNRiqwo/EICKli5Xin6EP7g24ki9p5dlCUCz7dNlydd4P uWAGoiM8mvonQxrtLbm8uadaEg2nNHfID6G4rKaYjEjFGlmq0F0dQRvdhhw36EwZ js+jYJywYS9gaZ8n+u06jffj5uIkBnbhDl5NDwcByqePgBrJgE8jOjIRH7HO5+zc Tr/gmYAeNXtSsALgozX74GoNsrGYCU3txEX4/nLPKnM= -----END CERTIFICATE-----Generated at Sun Apr 6 23:56:50 2025 by rpki-client