$ rpki-client -vvf repo-rpki.idnic.net/repo/c846f422-c302-4462-b584-700e9346ca09/0/3130332e32332e39382e302f32332d3233203d3e20313530323435.roa File: 3130332e32332e39382e302f32332d3233203d3e20313530323435.roa (raw, json) Hash identifier: 4vMfmSE2Nr1Jh9euWzmJY0IXJeyMyzfrb4vovMJmB9A= Subject key identifier: 43:5A:90:37:18:71:E3:DE:C5:47:FF:31:CB:25:52:AA:6E:AA:C1:3C Certificate issuer: /CN=B2B2F42BF1978AD094186480A7DA0086FD7C2919 Certificate serial: 4F62B7BCFE833BC26E1871EC9C1B25F51F0012F1 Authority key identifier: B2:B2:F4:2B:F1:97:8A:D0:94:18:64:80:A7:DA:00:86:FD:7C:29:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2B2F42BF1978AD094186480A7DA0086FD7C2919.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c846f422-c302-4462-b584-700e9346ca09/0/3130332e32332e39382e302f32332d3233203d3e20313530323435.roa Signing time: Sat 15 Feb 2025 07:00:01 +0000 ROA not before: Sat 15 Feb 2025 06:55:01 +0000 ROA not after: Sat 14 Feb 2026 07:00:01 +0000 asID: 150245 IP address blocks: 103.23.98.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c846f422-c302-4462-b584-700e9346ca09/0/B2B2F42BF1978AD094186480A7DA0086FD7C2919.crl rsync://repo-rpki.idnic.net/repo/c846f422-c302-4462-b584-700e9346ca09/0/B2B2F42BF1978AD094186480A7DA0086FD7C2919.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2B2F42BF1978AD094186480A7DA0086FD7C2919.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 16:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:62:b7:bc:fe:83:3b:c2:6e:18:71:ec:9c:1b:25:f5:1f:00:12:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2B2F42BF1978AD094186480A7DA0086FD7C2919 Validity Not Before: Feb 15 06:55:01 2025 GMT Not After : Feb 14 07:00:01 2026 GMT Subject: CN=435A90371871E3DEC547FF31CB2552AA6EAAC13C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:dd:5e:93:bc:ea:70:00:cb:3a:d5:de:b6:5e: d6:29:a7:cd:98:d3:79:c6:a2:bb:e0:8c:47:f2:0d: 4e:f8:49:fd:51:07:54:9a:ce:54:86:bb:a2:7c:75: e9:7a:6e:50:37:27:ba:27:1c:22:cd:4e:56:35:3f: d7:0e:22:c0:da:a8:de:fd:5d:a8:c0:b4:ac:c7:8d: 56:86:95:13:19:11:22:c6:62:cc:18:ad:4f:47:34: 6c:a1:6c:ff:f4:78:56:de:4d:15:3a:b0:fb:30:da: 04:3b:45:4c:d6:bb:6d:53:6c:f1:16:3a:37:82:f2: c5:da:2f:7c:fb:a6:85:4c:19:43:c0:ae:d8:33:b5: a9:1f:7f:ec:4e:b9:97:a6:28:9b:cb:01:f3:d2:17: c0:48:e0:1a:50:02:28:ca:7f:be:c0:4e:a1:df:d0: 2b:29:4d:60:cc:93:57:46:bf:65:ef:b0:4f:82:1d: 53:df:89:88:1d:b5:5a:6e:8f:af:75:69:3b:41:7b: 6a:aa:1f:ef:ee:02:8e:98:4c:f2:15:f5:49:8c:21: 5f:e4:9d:ca:d8:ee:bc:2a:8a:81:46:95:62:12:47: 71:53:3c:aa:35:43:2d:c1:9e:a3:b0:8b:73:b3:4f: e8:e6:d5:2c:0c:d0:de:e9:5e:a9:7b:df:ef:b3:21: 39:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:5A:90:37:18:71:E3:DE:C5:47:FF:31:CB:25:52:AA:6E:AA:C1:3C X509v3 Authority Key Identifier: keyid:B2:B2:F4:2B:F1:97:8A:D0:94:18:64:80:A7:DA:00:86:FD:7C:29:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c846f422-c302-4462-b584-700e9346ca09/0/B2B2F42BF1978AD094186480A7DA0086FD7C2919.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2B2F42BF1978AD094186480A7DA0086FD7C2919.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c846f422-c302-4462-b584-700e9346ca09/0/3130332e32332e39382e302f32332d3233203d3e20313530323435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.23.98.0/23 Signature Algorithm: sha256WithRSAEncryption 92:1f:ae:2b:89:9a:ba:94:13:23:d0:2d:e4:fb:f7:02:e1:13: 8b:6b:01:72:02:17:fc:d6:96:b6:c4:e7:8a:df:9b:9d:a6:2d: e2:40:af:e0:d6:b5:80:78:5e:6a:f8:95:fc:b0:4d:a5:ad:63: 0f:22:d7:67:e1:94:d1:ff:1f:cd:8c:91:51:53:05:16:35:3f: 69:fd:16:02:c5:78:34:61:7d:f7:f2:31:7b:a3:48:a1:4d:aa: f2:67:8b:4b:66:29:ab:8f:72:32:32:49:86:69:c3:d2:4a:13: 71:c2:cc:98:ee:5c:23:6a:67:1d:8d:12:98:6e:03:73:86:53: 59:27:f2:d1:fc:59:3c:a6:a4:58:7c:66:b6:d1:70:c8:34:6c: 44:3a:02:66:00:df:64:cf:bd:77:a7:d2:44:d2:59:66:ff:dc: 60:c1:d6:b1:57:b6:f2:53:c6:06:34:22:49:f3:f2:21:4c:92: ab:ca:a2:a6:60:47:eb:e8:e0:a2:60:81:fa:8a:8e:8d:d8:7b: e8:4b:5a:2e:30:76:4a:2e:52:7c:84:31:9e:8e:0e:ba:6f:9a: cb:0c:0e:24:7f:14:55:7d:3d:88:75:fb:08:14:96:d4:76:1e: 5b:b0:78:89:bc:e8:f9:78:fe:21:d2:cc:56:36:8d:bf:8b:85: e8:9c:4c:f6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUT2K3vP6DO8JuGHHsnBsl9R8AEvEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjJCMkY0MkJGMTk3OEFEMDk0MTg2NDgwQTdEQTAwODZG RDdDMjkxOTAeFw0yNTAyMTUwNjU1MDFaFw0yNjAyMTQwNzAwMDFaMDMxMTAvBgNV BAMTKDQzNUE5MDM3MTg3MUUzREVDNTQ3RkYzMUNCMjU1MkFBNkVBQUMxM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr3V6TvOpwAMs61d62XtYpp82Y 03nGorvgjEfyDU74Sf1RB1SazlSGu6J8del6blA3J7onHCLNTlY1P9cOIsDaqN79 XajAtKzHjVaGlRMZESLGYswYrU9HNGyhbP/0eFbeTRU6sPsw2gQ7RUzWu21TbPEW OjeC8sXaL3z7poVMGUPArtgztakff+xOuZemKJvLAfPSF8BI4BpQAijKf77ATqHf 0CspTWDMk1dGv2XvsE+CHVPfiYgdtVpuj691aTtBe2qqH+/uAo6YTPIV9UmMIV/k ncrY7rwqioFGlWISR3FTPKo1Qy3BnqOwi3OzT+jm1SwM0N7pXql73++zITlBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUQ1qQNxhx497FR/8xyyVSqm6qwTwwHwYDVR0j BBgwFoAUsrL0K/GXitCUGGSAp9oAhv18KRkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ODQ2ZjQyMi1jMzAyLTQ0NjItYjU4NC03MDBlOTM0NmNhMDkvMC9CMkIyRjQyQkYx OTc4QUQwOTQxODY0ODBBN0RBMDA4NkZEN0MyOTE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjJCMkY0MkJGMTk3OEFEMDk0MTg2NDgwQTdEQTAwODZGRDdD MjkxOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4NDZmNDIyLWMzMDItNDQ2Mi1i NTg0LTcwMGU5MzQ2Y2EwOS8wLzMxMzAzMzJlMzIzMzJlMzkzODJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMDMyMzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcXYjANBgkqhkiG 9w0BAQsFAAOCAQEAkh+uK4maupQTI9At5Pv3AuETi2sBcgIX/NaWtsTnit+bnaYt 4kCv4Na1gHheaviV/LBNpa1jDyLXZ+GU0f8fzYyRUVMFFjU/af0WAsV4NGF99/Ix e6NIoU2q8meLS2Ypq49yMjJJhmnD0koTccLMmO5cI2pnHY0SmG4Dc4ZTWSfy0fxZ PKakWHxmttFwyDRsRDoCZgDfZM+9d6fSRNJZZv/cYMHWsVe28lPGBjQiSfPyIUyS q8qipmBH6+jgomCB+oqOjdh76EtaLjB2Si5SfIQxno4Oum+aywwOJH8UVX09iHX7 CBSW1HYeW7B4ibzo+Xj+IdLMVjaNv4uF6JxM9g== -----END CERTIFICATE-----Generated at Sun Apr 6 14:52:08 2025 by rpki-client