$ rpki-client -vvf repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235322e302f32342d3234203d3e20313333373939.roa File: 3130332e34322e3235322e302f32342d3234203d3e20313333373939.roa (raw, json) Hash identifier: KSUbvXfR6wqgEtV1jcjWsrQSqy5TRuM5IxH97Spd5gE= Subject key identifier: C2:D5:85:C4:24:19:24:3D:BD:E7:5A:67:29:44:A1:9B:E7:8E:86:52 Certificate issuer: /CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Certificate serial: 0C1A908F94AE23C4A1572EB297E13C659C1AC54B Authority key identifier: 10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235322e302f32342d3234203d3e20313333373939.roa Signing time: Sat 05 Apr 2025 17:00:01 +0000 ROA not before: Sat 05 Apr 2025 16:55:01 +0000 ROA not after: Sat 04 Apr 2026 17:00:01 +0000 asID: 133799 IP address blocks: 103.42.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 01:59:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:1a:90:8f:94:ae:23:c4:a1:57:2e:b2:97:e1:3c:65:9c:1a:c5:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Validity Not Before: Apr 5 16:55:01 2025 GMT Not After : Apr 4 17:00:01 2026 GMT Subject: CN=C2D585C42419243DBDE75A672944A19BE78E8652 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:15:0c:eb:7b:99:47:d5:bb:61:7d:28:2a:1a: 04:4e:3b:d5:ad:23:c2:62:71:02:c2:9b:b8:ce:a2: 41:42:b4:ab:b0:ab:d9:03:5b:79:cb:49:3f:f9:ea: 12:d9:ff:85:b1:42:e1:a5:73:ce:12:ed:2b:a9:ca: e3:4e:fe:7e:80:19:43:bb:7b:fe:e3:b2:cc:67:c1: c5:c6:ed:52:4a:db:2f:7d:9a:1f:6a:63:04:df:eb: 2e:58:54:35:da:41:e8:ee:fc:16:dc:e4:02:9a:70: f3:1e:a8:7b:7d:7b:4c:f8:e4:7f:e8:40:1e:b7:e3: c4:30:0e:7f:43:6b:be:d5:c3:b6:f0:99:74:56:67: ab:2a:5a:1d:b3:22:8c:4d:c8:30:70:f2:8f:ae:fe: b5:e2:8f:ff:0d:4a:7c:ef:e9:07:c5:b1:5b:8f:07: 78:f5:81:56:04:72:dc:1b:20:f7:ee:53:52:33:ee: 04:81:bf:a8:30:5b:3d:c9:f7:21:b3:1f:02:95:17: 96:67:3c:05:f7:3a:ed:68:2f:78:20:4e:3e:04:8e: 5d:49:05:11:a8:f9:41:c3:bc:13:b2:51:21:aa:d6: 1c:e5:c9:81:d3:29:0a:f3:25:27:2d:64:61:c5:ba: 42:5b:e8:28:94:ad:86:8e:7a:17:41:16:5c:f6:e4: 77:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:D5:85:C4:24:19:24:3D:BD:E7:5A:67:29:44:A1:9B:E7:8E:86:52 X509v3 Authority Key Identifier: keyid:10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235322e302f32342d3234203d3e20313333373939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.42.252.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:15:8c:cd:eb:8a:5d:b6:61:6b:e5:2e:f0:2c:9e:49:41:4a: a5:71:f2:95:e2:8a:05:88:08:0d:58:9c:c7:a6:01:f5:20:d9: a8:10:24:ec:df:fc:9d:db:7d:ae:2c:e2:19:5f:7f:f7:12:31: ae:ad:0b:47:6e:10:7f:a6:1c:1b:c8:11:d6:f4:e7:83:be:f5: f7:9e:52:b3:9a:82:18:7c:30:3d:ec:30:4b:7c:11:6c:a7:dd: 9b:56:bf:52:df:b0:3e:76:3e:09:c9:1a:11:d1:0c:a5:f9:70: 28:94:dc:52:f1:69:d1:5d:d4:bf:35:12:ee:e5:af:20:b7:35: ea:de:d1:44:1c:89:7d:63:02:96:5c:78:4c:ed:69:95:8f:6f: 9d:1c:a2:0d:7b:88:fa:36:ea:bf:5d:fb:52:2f:e2:f3:56:fe: 8f:ba:1b:be:3e:01:f6:66:db:7d:fb:3e:b0:8b:75:5e:cd:e4: e6:20:e5:02:a1:f7:69:c1:68:de:0d:19:f8:70:90:a9:19:14: 1e:f7:d0:9c:16:23:4b:b3:90:ad:bb:70:c0:40:ba:54:17:92: 4a:a2:f1:1b:b0:e4:85:c8:be:6d:f6:57:92:30:90:fd:bb:3c: 8b:7f:52:c6:f8:5f:8f:6d:4f:e5:3e:c4:b5:89:8c:0b:b0:93: 83:c3:80:a3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDBqQj5SuI8ShVy6yl+E8ZZwaxUswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZD MTIwMjg1MzAeFw0yNTA0MDUxNjU1MDFaFw0yNjA0MDQxNzAwMDFaMDMxMTAvBgNV BAMTKEMyRDU4NUM0MjQxOTI0M0RCREU3NUE2NzI5NDRBMTlCRTc4RTg2NTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEFQzre5lH1bthfSgqGgROO9Wt I8JicQLCm7jOokFCtKuwq9kDW3nLST/56hLZ/4WxQuGlc84S7SupyuNO/n6AGUO7 e/7jssxnwcXG7VJK2y99mh9qYwTf6y5YVDXaQeju/Bbc5AKacPMeqHt9e0z45H/o QB6348QwDn9Da77Vw7bwmXRWZ6sqWh2zIoxNyDBw8o+u/rXij/8NSnzv6QfFsVuP B3j1gVYEctwbIPfuU1Iz7gSBv6gwWz3J9yGzHwKVF5ZnPAX3Ou1oL3ggTj4Ejl1J BRGo+UHDvBOyUSGq1hzlyYHTKQrzJSctZGHFukJb6CiUrYaOehdBFlz25HcNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwtWFxCQZJD2951pnKUShm+eOhlIwHwYDVR0j BBgwFoAUEIJhsrWh88yCjvKlMu2U38EgKFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YjYzZjc3MS1hOTVmLTRiNTMtODdiYy04YmZmNTA0ZGExZjQvMC8xMDgyNjFCMkI1 QTFGM0NDODI4RUYyQTUzMkVEOTRERkMxMjAyODUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZDMTIw Mjg1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NiNjNmNzcxLWE5NWYtNGI1My04 N2JjLThiZmY1MDRkYTFmNC8wLzMxMzAzMzJlMzQzMjJlMzIzNTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzczOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZyr8MA0GCSqG SIb3DQEBCwUAA4IBAQCaFYzN64pdtmFr5S7wLJ5JQUqlcfKV4ooFiAgNWJzHpgH1 INmoECTs3/yd232uLOIZX3/3EjGurQtHbhB/phwbyBHW9OeDvvX3nlKzmoIYfDA9 7DBLfBFsp92bVr9S37A+dj4JyRoR0Qyl+XAolNxS8WnRXdS/NRLu5a8gtzXq3tFE HIl9YwKWXHhM7WmVj2+dHKINe4j6Nuq/XftSL+LzVv6Puhu+PgH2Ztt9+z6wi3Ve zeTmIOUCofdpwWjeDRn4cJCpGRQe99CcFiNLs5Ctu3DAQLpUF5JKovEbsOSFyL5t 9leSMJD9uzyLf1LG+F+PbU/lPsS1iYwLsJODw4Cj -----END CERTIFICATE-----Generated at Sun Apr 6 14:52:13 2025 by rpki-client