$ rpki-client -vvf repo-rpki.idnic.net/repo/ca631d77-f805-439c-98f4-b0da60fe8dd1/0/3130332e31302e3137302e302f32342d3234203d3e203536323535.roa File: 3130332e31302e3137302e302f32342d3234203d3e203536323535.roa (raw, json) Hash identifier: oyYL/ZrPIXcKrR/gCu+KLuQHBsbf7zO4u+0wSABNiSw= Subject key identifier: 76:7F:D2:14:32:D6:34:3B:F8:46:09:21:FD:18:2E:53:4A:3C:EB:FF Certificate issuer: /CN=B3032084B1211BBB522E01AB56EC94BFBD1C91BB Certificate serial: 6FF97A983F3F9BB79CB876561C7819F5CC07B2DD Authority key identifier: B3:03:20:84:B1:21:1B:BB:52:2E:01:AB:56:EC:94:BF:BD:1C:91:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3032084B1211BBB522E01AB56EC94BFBD1C91BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ca631d77-f805-439c-98f4-b0da60fe8dd1/0/3130332e31302e3137302e302f32342d3234203d3e203536323535.roa Signing time: Tue 28 Jan 2025 10:01:28 +0000 ROA not before: Tue 28 Jan 2025 09:56:28 +0000 ROA not after: Tue 27 Jan 2026 10:01:28 +0000 asID: 56255 IP address blocks: 103.10.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ca631d77-f805-439c-98f4-b0da60fe8dd1/0/B3032084B1211BBB522E01AB56EC94BFBD1C91BB.crl rsync://repo-rpki.idnic.net/repo/ca631d77-f805-439c-98f4-b0da60fe8dd1/0/B3032084B1211BBB522E01AB56EC94BFBD1C91BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3032084B1211BBB522E01AB56EC94BFBD1C91BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 20:36:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:f9:7a:98:3f:3f:9b:b7:9c:b8:76:56:1c:78:19:f5:cc:07:b2:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3032084B1211BBB522E01AB56EC94BFBD1C91BB Validity Not Before: Jan 28 09:56:28 2025 GMT Not After : Jan 27 10:01:28 2026 GMT Subject: CN=767FD21432D6343BF8460921FD182E534A3CEBFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:60:a0:6a:7a:f1:8d:ea:7c:57:bf:ad:d5:6e: 4e:e7:8b:5d:9a:b8:eb:9f:20:59:8d:0c:16:df:aa: 33:fc:e3:31:dc:dd:f3:67:ed:c3:13:6a:10:d8:3a: 09:0d:fc:6e:56:59:e0:a3:51:83:86:00:59:82:13: 8c:35:c3:73:1b:7f:03:8f:80:e1:a7:45:98:d0:e7: 36:3c:80:b2:0b:5a:22:f3:30:e5:14:5e:0d:83:b2: 77:03:79:3b:ad:61:e9:9b:01:1c:f5:60:c2:5e:ba: a1:c1:b1:6b:5a:e4:f5:60:c9:2d:e2:e1:6b:89:53: 8e:60:1e:e6:f3:fa:b3:bc:8e:32:61:d0:93:f0:55: c4:82:07:0d:1f:0a:44:78:37:cd:b5:4c:0f:74:14: 20:18:1f:ea:f1:be:5a:ce:25:5b:44:02:af:4d:c1: 93:b9:d6:28:55:3b:5e:c1:28:07:d7:0c:0c:93:03: f3:6e:d8:39:22:48:9e:f6:31:91:92:12:e6:ed:9a: e1:7f:00:c3:70:15:98:f9:2e:97:2b:3b:0d:3b:e6: 06:21:b9:c7:a9:8c:17:cd:05:a4:45:67:4b:b8:18: df:1a:0f:6d:95:06:43:0e:c8:28:3a:20:35:40:be: 9e:d6:59:10:48:4b:cb:19:58:23:43:43:db:4c:9d: 77:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:7F:D2:14:32:D6:34:3B:F8:46:09:21:FD:18:2E:53:4A:3C:EB:FF X509v3 Authority Key Identifier: keyid:B3:03:20:84:B1:21:1B:BB:52:2E:01:AB:56:EC:94:BF:BD:1C:91:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ca631d77-f805-439c-98f4-b0da60fe8dd1/0/B3032084B1211BBB522E01AB56EC94BFBD1C91BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3032084B1211BBB522E01AB56EC94BFBD1C91BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca631d77-f805-439c-98f4-b0da60fe8dd1/0/3130332e31302e3137302e302f32342d3234203d3e203536323535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.170.0/24 Signature Algorithm: sha256WithRSAEncryption 22:c9:00:0d:c2:49:56:d6:a4:ce:1a:95:cd:6e:5f:8e:af:bc: 3c:bf:ec:05:27:70:cf:22:5d:c3:fc:80:fa:f8:74:ff:6c:14: ba:a1:ec:a4:b7:1a:06:9e:0e:dc:d3:eb:32:36:83:3a:bc:79: 33:e5:22:f2:b5:c0:cd:f9:e6:51:ab:6a:a4:fc:06:b7:83:4f: ba:6c:37:b7:e1:41:86:22:81:c8:3d:8d:d4:de:7a:d0:e0:86: 3f:64:69:69:24:af:e7:74:28:13:e3:58:33:02:0e:6c:f0:a4: 8f:5c:78:18:a7:a7:06:8a:af:c0:ad:fa:c4:45:4a:a9:f4:14: 1b:a5:11:16:09:c7:38:be:fb:3e:62:90:29:08:35:c7:6a:d9: ee:ce:d3:6f:6d:80:cc:b5:6a:22:bb:11:7f:ac:3c:7f:5a:e5: d5:41:ef:b0:bb:44:f8:d8:9e:95:1c:2c:04:5c:4a:eb:c8:26: fe:ca:75:5c:5f:8a:0e:b3:72:5d:9a:ca:e3:25:b8:a5:b9:fc: 5e:2b:d2:1c:c3:6e:14:a8:49:87:fc:9f:14:72:71:df:ff:d3: 7f:09:2b:0b:0e:45:2d:a2:35:d4:2c:47:1c:1e:03:12:d4:cb: ec:bf:66:40:cc:01:cb:ee:bc:a2:87:ae:87:95:a0:7b:27:6f: d2:4a:2b:76 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUb/l6mD8/m7ecuHZWHHgZ9cwHst0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjMwMzIwODRCMTIxMUJCQjUyMkUwMUFCNTZFQzk0QkZC RDFDOTFCQjAeFw0yNTAxMjgwOTU2MjhaFw0yNjAxMjcxMDAxMjhaMDMxMTAvBgNV BAMTKDc2N0ZEMjE0MzJENjM0M0JGODQ2MDkyMUZEMTgyRTUzNEEzQ0VCRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLYKBqevGN6nxXv63Vbk7ni12a uOufIFmNDBbfqjP84zHc3fNn7cMTahDYOgkN/G5WWeCjUYOGAFmCE4w1w3MbfwOP gOGnRZjQ5zY8gLILWiLzMOUUXg2DsncDeTutYembARz1YMJeuqHBsWta5PVgyS3i 4WuJU45gHubz+rO8jjJh0JPwVcSCBw0fCkR4N821TA90FCAYH+rxvlrOJVtEAq9N wZO51ihVO17BKAfXDAyTA/Nu2DkiSJ72MZGSEubtmuF/AMNwFZj5LpcrOw075gYh ucepjBfNBaRFZ0u4GN8aD22VBkMOyCg6IDVAvp7WWRBIS8sZWCNDQ9tMnXf3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUdn/SFDLWNDv4Rgkh/RguU0o86/8wHwYDVR0j BBgwFoAUswMghLEhG7tSLgGrVuyUv70ckbswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YTYzMWQ3Ny1mODA1LTQzOWMtOThmNC1iMGRhNjBmZThkZDEvMC9CMzAzMjA4NEIx MjExQkJCNTIyRTAxQUI1NkVDOTRCRkJEMUM5MUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjMwMzIwODRCMTIxMUJCQjUyMkUwMUFCNTZFQzk0QkZCRDFD OTFCQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhNjMxZDc3LWY4MDUtNDM5Yy05 OGY0LWIwZGE2MGZlOGRkMS8wLzMxMzAzMzJlMzEzMDJlMzEzNzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzUzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcKqjANBgkqhkiG 9w0BAQsFAAOCAQEAIskADcJJVtakzhqVzW5fjq+8PL/sBSdwzyJdw/yA+vh0/2wU uqHspLcaBp4O3NPrMjaDOrx5M+Ui8rXAzfnmUatqpPwGt4NPumw3t+FBhiKByD2N 1N560OCGP2RpaSSv53QoE+NYMwIObPCkj1x4GKenBoqvwK36xEVKqfQUG6URFgnH OL77PmKQKQg1x2rZ7s7Tb22AzLVqIrsRf6w8f1rl1UHvsLtE+NielRwsBFxK68gm /sp1XF+KDrNyXZrK4yW4pbn8XivSHMNuFKhJh/yfFHJx3//TfwkrCw5FLaI11CxH HB4DEtTL7L9mQMwBy+68ooeuh5Wgeydv0kordg== -----END CERTIFICATE-----Generated at Sun Apr 6 17:44:19 2025 by rpki-client