$ rpki-client -vvf repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235352e302f32342d3234203d3e20313333373939.roa File: 3130332e34322e3235352e302f32342d3234203d3e20313333373939.roa (raw, json) Hash identifier: wR+IWZMCxrwb5/faol2/GF6hZhc853OeCuHNs3ivUEk= Subject key identifier: 95:C7:5F:78:7A:4E:F1:C7:22:42:80:4E:8F:0F:76:FA:10:81:D8:5B Certificate issuer: /CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Certificate serial: 4C37CE67358FE069BC2A89AF683309B4B756BEBE Authority key identifier: 10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235352e302f32342d3234203d3e20313333373939.roa Signing time: Sat 05 Apr 2025 17:00:02 +0000 ROA not before: Sat 05 Apr 2025 16:55:02 +0000 ROA not after: Sat 04 Apr 2026 17:00:02 +0000 asID: 133799 IP address blocks: 103.42.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 01:59:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:37:ce:67:35:8f:e0:69:bc:2a:89:af:68:33:09:b4:b7:56:be:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Validity Not Before: Apr 5 16:55:02 2025 GMT Not After : Apr 4 17:00:02 2026 GMT Subject: CN=95C75F787A4EF1C72242804E8F0F76FA1081D85B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:33:3d:38:43:84:d2:94:4e:69:fc:fd:69:08: 3b:da:2a:82:4a:a0:0b:e6:1e:b2:cf:4c:41:8b:a0: 22:d5:f4:e5:1e:9d:59:fe:cb:0d:7d:db:5e:21:c0: 80:ce:59:5c:3d:4a:ce:fb:2e:70:cd:e9:76:89:34: fe:4f:3e:31:a6:d2:85:d6:4d:31:d6:f6:65:98:eb: 78:6c:02:59:a5:23:32:08:14:4f:aa:36:cc:f8:df: 58:4a:70:4f:91:e8:c9:0d:62:78:a5:65:a3:da:bb: 9e:e1:4b:38:89:6e:0b:b3:46:8f:9c:1b:7a:9b:18: 40:fe:ef:f9:8b:11:9b:13:88:97:54:cf:64:34:73: bf:20:ca:f7:fa:98:fe:82:1b:d0:23:38:13:51:77: 3d:2a:aa:5f:56:03:d5:ab:da:51:24:e7:8c:0a:92: 14:e9:f7:14:04:b8:4e:f2:59:12:46:5a:e5:aa:ec: 88:9e:b0:73:28:cc:44:10:63:a7:1f:39:7e:a3:f0: 69:36:c0:19:26:67:1d:2d:df:40:66:71:f8:4f:95: 6f:68:ce:08:40:32:b6:3d:db:e9:7c:7f:25:09:ee: 6d:1b:0c:71:75:73:d3:14:21:3a:1c:24:45:ac:82: 53:71:40:aa:1f:37:d3:23:e5:82:0a:44:75:ea:63: b0:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:C7:5F:78:7A:4E:F1:C7:22:42:80:4E:8F:0F:76:FA:10:81:D8:5B X509v3 Authority Key Identifier: keyid:10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235352e302f32342d3234203d3e20313333373939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.42.255.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:6e:77:07:d5:b0:6e:21:fc:b1:cb:22:aa:1b:79:ba:57:89: c3:60:6d:2e:80:a3:86:39:48:97:58:0f:4d:82:ac:be:6d:80: 57:78:8e:bd:c2:7f:80:c4:7a:62:4f:2a:50:d0:13:f0:cf:2d: ab:a8:6e:b3:a7:79:ba:16:ce:f5:1e:f8:4a:a2:eb:ec:d0:e5: 1f:d1:9a:cb:9c:ae:d5:bb:9c:d2:16:72:f2:97:09:40:2a:af: e9:7b:06:43:ce:2f:c8:10:77:6e:1e:73:67:53:2d:88:e4:cc: af:25:0b:c0:dc:3d:b7:93:ad:fd:5c:44:14:35:77:04:7a:9a: 2e:b7:5c:44:1c:32:d6:86:d9:8e:99:f6:4d:a6:e6:24:c6:ab: 9d:6c:14:d9:08:b5:d6:9e:df:ec:18:fb:ad:5f:b4:df:5b:2f: 5b:16:32:0e:a6:4e:4c:2a:9a:2e:c6:24:bd:11:2a:84:92:1a: e3:1b:d2:09:d6:a7:c2:c9:7d:ed:e2:12:e5:c1:8e:67:82:c0: 11:3a:58:0d:49:a9:ba:e3:61:47:c7:e4:60:4d:6d:f5:1c:2a: c4:ab:54:ad:85:4c:13:68:41:c6:00:a1:3e:56:f7:b5:82:a4: 0e:8e:5c:1b:bc:c8:01:7b:fc:8e:a6:bb:0c:ac:38:7c:29:c7: cf:52:3a:86 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTDfOZzWP4Gm8KomvaDMJtLdWvr4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZD MTIwMjg1MzAeFw0yNTA0MDUxNjU1MDJaFw0yNjA0MDQxNzAwMDJaMDMxMTAvBgNV BAMTKDk1Qzc1Rjc4N0E0RUYxQzcyMjQyODA0RThGMEY3NkZBMTA4MUQ4NUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQMz04Q4TSlE5p/P1pCDvaKoJK oAvmHrLPTEGLoCLV9OUenVn+yw19214hwIDOWVw9Ss77LnDN6XaJNP5PPjGm0oXW TTHW9mWY63hsAlmlIzIIFE+qNsz431hKcE+R6MkNYnilZaPau57hSziJbguzRo+c G3qbGED+7/mLEZsTiJdUz2Q0c78gyvf6mP6CG9AjOBNRdz0qql9WA9Wr2lEk54wK khTp9xQEuE7yWRJGWuWq7IiesHMozEQQY6cfOX6j8Gk2wBkmZx0t30BmcfhPlW9o zghAMrY92+l8fyUJ7m0bDHF1c9MUITocJEWsglNxQKofN9Mj5YIKRHXqY7C1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUlcdfeHpO8cciQoBOjw92+hCB2FswHwYDVR0j BBgwFoAUEIJhsrWh88yCjvKlMu2U38EgKFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YjYzZjc3MS1hOTVmLTRiNTMtODdiYy04YmZmNTA0ZGExZjQvMC8xMDgyNjFCMkI1 QTFGM0NDODI4RUYyQTUzMkVEOTRERkMxMjAyODUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZDMTIw Mjg1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NiNjNmNzcxLWE5NWYtNGI1My04 N2JjLThiZmY1MDRkYTFmNC8wLzMxMzAzMzJlMzQzMjJlMzIzNTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzczOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZyr/MA0GCSqG SIb3DQEBCwUAA4IBAQB7bncH1bBuIfyxyyKqG3m6V4nDYG0ugKOGOUiXWA9Ngqy+ bYBXeI69wn+AxHpiTypQ0BPwzy2rqG6zp3m6Fs71HvhKouvs0OUf0ZrLnK7Vu5zS FnLylwlAKq/pewZDzi/IEHduHnNnUy2I5MyvJQvA3D23k639XEQUNXcEepout1xE HDLWhtmOmfZNpuYkxqudbBTZCLXWnt/sGPutX7TfWy9bFjIOpk5MKpouxiS9ESqE khrjG9IJ1qfCyX3t4hLlwY5ngsAROlgNSam642FHx+RgTW31HCrEq1SthUwTaEHG AKE+Vve1gqQOjlwbvMgBe/yOprsMrDh8KcfPUjqG -----END CERTIFICATE-----Generated at Sun Apr 6 14:52:10 2025 by rpki-client