$ rpki-client -vvf repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235322e302f32322d3232203d3e20313333373939.roa File: 3130332e34322e3235322e302f32322d3232203d3e20313333373939.roa (raw, json) Hash identifier: 02uGPdQ9hFird7xTsc25uxwhcDH5++RrfPud5wB034E= Subject key identifier: 74:62:35:43:68:31:0C:65:4A:3A:BE:94:D9:39:D8:1D:E7:0A:FF:DD Certificate issuer: /CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Certificate serial: 1F7CD5D3051F93F67D7DF01FB348B2EE62C5B0C3 Authority key identifier: 10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235322e302f32322d3232203d3e20313333373939.roa Signing time: Sat 05 Apr 2025 17:00:00 +0000 ROA not before: Sat 05 Apr 2025 16:55:00 +0000 ROA not after: Sat 04 Apr 2026 17:00:00 +0000 asID: 133799 IP address blocks: 103.42.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 01:59:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:7c:d5:d3:05:1f:93:f6:7d:7d:f0:1f:b3:48:b2:ee:62:c5:b0:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Validity Not Before: Apr 5 16:55:00 2025 GMT Not After : Apr 4 17:00:00 2026 GMT Subject: CN=7462354368310C654A3ABE94D939D81DE70AFFDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d6:03:98:5b:c6:f0:89:51:70:0a:5e:db:16: 0e:27:ba:6f:08:2e:98:1f:c7:98:4e:ca:7f:96:05: e3:f8:e7:10:d8:ed:d2:90:a2:0d:94:0b:5c:85:74: ea:0b:bb:f8:ba:92:09:bf:45:e0:e8:00:42:64:55: ce:57:47:8e:bc:0a:d6:c1:a9:a4:a9:1e:94:1b:a3: b3:61:ba:b3:c0:fa:86:b1:50:c4:19:59:ac:b0:e6: 88:c8:61:07:23:80:47:d9:09:24:93:b8:6e:63:ee: fb:d5:d1:cf:62:ae:b7:07:b5:b6:d9:38:67:68:40: 81:b8:dd:a1:9f:06:ca:d4:d7:c3:59:62:fb:c1:53: 86:63:a6:a1:eb:e9:8a:84:c2:e7:44:94:1f:42:83: 75:52:2d:a8:1c:15:13:7a:30:28:94:ba:70:92:3c: 6e:36:c9:61:3b:ce:6a:89:0a:56:67:82:6c:07:b1: 38:73:fd:72:69:cb:54:e7:2b:f1:71:6c:9c:d1:11: c5:33:5c:47:77:bf:d5:49:6c:b2:d1:05:3a:a5:7a: 84:38:93:27:d2:64:83:45:e3:35:0b:c2:0d:53:c0: d1:d5:3d:a8:b8:af:2a:bc:be:e6:13:8b:56:29:c1: 70:4f:72:2e:44:44:0e:dd:b4:83:f6:4b:a1:db:2f: d1:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:62:35:43:68:31:0C:65:4A:3A:BE:94:D9:39:D8:1D:E7:0A:FF:DD X509v3 Authority Key Identifier: keyid:10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235322e302f32322d3232203d3e20313333373939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.42.252.0/22 Signature Algorithm: sha256WithRSAEncryption 0e:26:67:d6:e3:2c:7c:88:01:99:82:66:8e:39:c0:85:d4:ba: 34:ee:b1:84:be:d7:e3:d0:ef:33:ee:84:a6:a9:d3:36:c1:7f: 56:5a:b7:b8:f2:b0:cf:e0:b3:f3:45:51:df:c7:3e:26:b9:af: b5:88:d1:df:62:70:2b:3d:d4:84:3f:85:75:cc:c7:bd:14:38: 3a:33:66:2c:55:04:33:44:c8:df:56:fc:ca:f2:8d:87:8b:f0: 35:26:e2:4c:ab:51:e6:b9:e0:92:1c:aa:86:33:d7:15:e7:5d: 91:d3:db:4c:13:b3:55:da:c2:c5:82:f0:0b:e7:79:57:39:5b: bb:d3:78:93:d5:24:88:d3:9d:df:fe:1e:26:35:c1:82:d4:05: e7:d0:6e:98:6f:c1:29:a3:1a:3a:4c:af:a9:f2:ce:11:27:9f: e4:2b:29:15:7a:5b:39:33:a6:0e:59:47:50:d5:e2:9a:95:f0: af:f2:eb:e7:8c:7b:25:41:32:0e:1e:b8:c9:72:e5:86:85:ce: 6c:bc:a1:a2:48:79:d6:2c:1b:39:d4:c9:5a:dd:19:bd:8b:02: 04:d6:d3:af:91:fa:b2:24:4f:49:ad:4b:0f:cf:27:09:07:e5: c4:e0:0c:24:f5:a5:a8:b1:7b:86:5d:a1:27:13:79:d1:78:34: 6d:f9:d4:42 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUH3zV0wUfk/Z9ffAfs0iy7mLFsMMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZD MTIwMjg1MzAeFw0yNTA0MDUxNjU1MDBaFw0yNjA0MDQxNzAwMDBaMDMxMTAvBgNV BAMTKDc0NjIzNTQzNjgzMTBDNjU0QTNBQkU5NEQ5MzlEODFERTcwQUZGREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb1gOYW8bwiVFwCl7bFg4num8I Lpgfx5hOyn+WBeP45xDY7dKQog2UC1yFdOoLu/i6kgm/ReDoAEJkVc5XR468CtbB qaSpHpQbo7NhurPA+oaxUMQZWayw5ojIYQcjgEfZCSSTuG5j7vvV0c9irrcHtbbZ OGdoQIG43aGfBsrU18NZYvvBU4ZjpqHr6YqEwudElB9Cg3VSLagcFRN6MCiUunCS PG42yWE7zmqJClZngmwHsThz/XJpy1TnK/FxbJzREcUzXEd3v9VJbLLRBTqleoQ4 kyfSZINF4zULwg1TwNHVPai4ryq8vuYTi1YpwXBPci5ERA7dtIP2S6HbL9HjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdGI1Q2gxDGVKOr6U2TnYHecK/90wHwYDVR0j BBgwFoAUEIJhsrWh88yCjvKlMu2U38EgKFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YjYzZjc3MS1hOTVmLTRiNTMtODdiYy04YmZmNTA0ZGExZjQvMC8xMDgyNjFCMkI1 QTFGM0NDODI4RUYyQTUzMkVEOTRERkMxMjAyODUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZDMTIw Mjg1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NiNjNmNzcxLWE5NWYtNGI1My04 N2JjLThiZmY1MDRkYTFmNC8wLzMxMzAzMzJlMzQzMjJlMzIzNTMyMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzEzMzMzMzczOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZyr8MA0GCSqG SIb3DQEBCwUAA4IBAQAOJmfW4yx8iAGZgmaOOcCF1Lo07rGEvtfj0O8z7oSmqdM2 wX9WWre48rDP4LPzRVHfxz4mua+1iNHfYnArPdSEP4V1zMe9FDg6M2YsVQQzRMjf VvzK8o2Hi/A1JuJMq1HmueCSHKqGM9cV512R09tME7NV2sLFgvAL53lXOVu703iT 1SSI053f/h4mNcGC1AXn0G6Yb8Epoxo6TK+p8s4RJ5/kKykVels5M6YOWUdQ1eKa lfCv8uvnjHslQTIOHrjJcuWGhc5svKGiSHnWLBs51Mla3Rm9iwIE1tOvkfqyJE9J rUsPzycJB+XE4Awk9aWosXuGXaEnE3nReDRt+dRC -----END CERTIFICATE-----Generated at Sun Apr 6 14:49:23 2025 by rpki-client