$ rpki-client -vvf repo-rpki.idnic.net/repo/dd48bd04-f787-414a-a501-5138a6d6b3e1/0/3130332e3130372e3138372e302f32342d3234203d3e20313337333030.roa File: 3130332e3130372e3138372e302f32342d3234203d3e20313337333030.roa (raw, json) Hash identifier: KKxu3hPM0InDJZ99FC0Xq3EDadMAbvI+i8LW1aPaZ8E= Subject key identifier: 42:B0:35:BD:68:22:03:8E:B6:11:76:28:54:E6:97:ED:1F:C7:E2:A9 Certificate issuer: /CN=71E51A9B65D8A123513A350F0D99F98D6C9B72E2 Certificate serial: 50245467D673BDF09B802219EF91FA0BC88FF8D1 Authority key identifier: 71:E5:1A:9B:65:D8:A1:23:51:3A:35:0F:0D:99:F9:8D:6C:9B:72:E2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71E51A9B65D8A123513A350F0D99F98D6C9B72E2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dd48bd04-f787-414a-a501-5138a6d6b3e1/0/3130332e3130372e3138372e302f32342d3234203d3e20313337333030.roa Signing time: Thu 13 Feb 2025 07:00:31 +0000 ROA not before: Thu 13 Feb 2025 06:55:31 +0000 ROA not after: Thu 12 Feb 2026 07:00:31 +0000 asID: 137300 IP address blocks: 103.107.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dd48bd04-f787-414a-a501-5138a6d6b3e1/0/71E51A9B65D8A123513A350F0D99F98D6C9B72E2.crl rsync://repo-rpki.idnic.net/repo/dd48bd04-f787-414a-a501-5138a6d6b3e1/0/71E51A9B65D8A123513A350F0D99F98D6C9B72E2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71E51A9B65D8A123513A350F0D99F98D6C9B72E2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 01:10:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:24:54:67:d6:73:bd:f0:9b:80:22:19:ef:91:fa:0b:c8:8f:f8:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71E51A9B65D8A123513A350F0D99F98D6C9B72E2 Validity Not Before: Feb 13 06:55:31 2025 GMT Not After : Feb 12 07:00:31 2026 GMT Subject: CN=42B035BD6822038EB611762854E697ED1FC7E2A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:74:1d:d1:bd:3c:d9:85:36:c5:ca:1b:f5:99: dd:68:5e:e4:d9:a3:17:a3:8f:70:d8:2b:ba:7d:9e: 69:3a:b3:db:74:77:d9:4e:ed:2c:a9:a3:a2:c9:c0: ce:dd:65:8c:c1:6c:9b:37:c4:26:09:10:9f:b5:bc: 66:e2:eb:69:ab:d6:69:2a:83:57:de:4b:de:ef:08: 06:b8:57:74:19:8d:7a:f3:ab:db:72:a9:40:72:60: 8c:b0:86:93:cb:82:f4:6b:01:be:a4:24:17:9e:63: 12:2c:85:b2:65:34:07:ce:58:59:68:56:85:c7:17: bf:85:89:c9:1e:f6:03:f3:21:c6:17:2c:68:ed:0c: c3:a3:ae:ca:9d:a5:ee:3c:e6:4e:00:cf:c5:cd:fd: 65:82:9b:52:9d:5c:d7:7b:11:53:f0:71:5d:24:00: 6f:76:67:d7:e4:a4:19:d0:dd:43:a0:e1:bd:e5:74: 50:ae:46:d2:d4:a2:72:d1:24:5f:62:c7:d7:b8:f8: 4a:fc:20:1f:86:1f:f7:e5:5e:2f:0f:4e:d3:27:3c: 03:6f:59:d1:f7:0c:46:9f:da:9d:85:11:55:72:e4: 09:d8:6e:89:3c:f6:5e:b3:b7:85:17:70:7e:ce:c0: 2a:d2:03:a1:35:f6:6f:f2:23:66:93:5a:05:73:25: 2d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:B0:35:BD:68:22:03:8E:B6:11:76:28:54:E6:97:ED:1F:C7:E2:A9 X509v3 Authority Key Identifier: keyid:71:E5:1A:9B:65:D8:A1:23:51:3A:35:0F:0D:99:F9:8D:6C:9B:72:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dd48bd04-f787-414a-a501-5138a6d6b3e1/0/71E51A9B65D8A123513A350F0D99F98D6C9B72E2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71E51A9B65D8A123513A350F0D99F98D6C9B72E2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dd48bd04-f787-414a-a501-5138a6d6b3e1/0/3130332e3130372e3138372e302f32342d3234203d3e20313337333030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.107.187.0/24 Signature Algorithm: sha256WithRSAEncryption a4:ca:c9:93:16:04:4d:78:e3:eb:d4:f6:82:a8:7e:cc:c7:c0: b1:c1:d3:37:2d:81:30:9b:2f:ea:9a:22:7d:3e:3d:91:dc:2d: bb:12:2a:6d:59:ef:4c:23:cc:b3:eb:8d:30:78:8c:47:8e:7e: 10:82:c8:3f:04:ca:09:dc:c7:f9:b4:25:66:43:97:7c:49:fa: f2:7d:ed:ce:39:06:22:d6:a1:c3:ae:7d:24:df:2a:d0:2d:3b: b0:8e:c8:9b:90:dc:43:32:0c:a6:c1:0d:a2:ce:2b:e6:76:ce: a7:5a:ed:17:1a:cf:21:05:88:b5:f0:f7:9b:c7:fa:33:2a:08: 76:9d:1e:13:39:39:d0:20:cc:91:4f:28:a8:3b:38:84:07:e4: 48:68:fd:75:87:87:3f:e3:c3:9d:d4:bb:19:e5:98:ea:6b:df: a7:10:48:8f:78:ab:53:8d:77:d1:1e:b7:40:e7:04:72:00:07: f4:0b:7b:a4:bc:1c:d6:51:6e:b3:26:57:20:26:1c:29:bb:ce: 33:c1:31:4f:b0:ec:0d:d6:1b:f9:c6:9a:fa:bd:0f:5e:72:e6: 29:38:06:aa:a5:2a:43:a0:da:7f:37:69:91:18:b5:f3:30:cc: 10:e0:18:9f:5a:da:d3:86:67:47:3f:93:81:85:13:4c:0e:e2: 60:4b:86:af -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUCRUZ9ZzvfCbgCIZ75H6C8iP+NEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFFNTFBOUI2NUQ4QTEyMzUxM0EzNTBGMEQ5OUY5OEQ2 QzlCNzJFMjAeFw0yNTAyMTMwNjU1MzFaFw0yNjAyMTIwNzAwMzFaMDMxMTAvBgNV BAMTKDQyQjAzNUJENjgyMjAzOEVCNjExNzYyODU0RTY5N0VEMUZDN0UyQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCydB3RvTzZhTbFyhv1md1oXuTZ oxejj3DYK7p9nmk6s9t0d9lO7Sypo6LJwM7dZYzBbJs3xCYJEJ+1vGbi62mr1mkq g1feS97vCAa4V3QZjXrzq9tyqUByYIywhpPLgvRrAb6kJBeeYxIshbJlNAfOWFlo VoXHF7+Ficke9gPzIcYXLGjtDMOjrsqdpe485k4Az8XN/WWCm1KdXNd7EVPwcV0k AG92Z9fkpBnQ3UOg4b3ldFCuRtLUonLRJF9ix9e4+Er8IB+GH/flXi8PTtMnPANv WdH3DEaf2p2FEVVy5AnYbok89l6zt4UXcH7OwCrSA6E19m/yI2aTWgVzJS0BAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUQrA1vWgiA462EXYoVOaX7R/H4qkwHwYDVR0j BBgwFoAUceUam2XYoSNROjUPDZn5jWybcuIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZDQ4YmQwNC1mNzg3LTQxNGEtYTUwMS01MTM4YTZkNmIzZTEvMC83MUU1MUE5QjY1 RDhBMTIzNTEzQTM1MEYwRDk5Rjk4RDZDOUI3MkUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzFFNTFBOUI2NUQ4QTEyMzUxM0EzNTBGMEQ5OUY5OEQ2QzlC NzJFMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RkNDhiZDA0LWY3ODctNDE0YS1h NTAxLTUxMzhhNmQ2YjNlMS8wLzMxMzAzMzJlMzEzMDM3MmUzMTM4MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMwMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABna7swDQYJ KoZIhvcNAQELBQADggEBAKTKyZMWBE144+vU9oKofszHwLHB0zctgTCbL+qaIn0+ PZHcLbsSKm1Z70wjzLPrjTB4jEeOfhCCyD8Eygncx/m0JWZDl3xJ+vJ97c45BiLW ocOufSTfKtAtO7COyJuQ3EMyDKbBDaLOK+Z2zqda7RcazyEFiLXw95vH+jMqCHad HhM5OdAgzJFPKKg7OIQH5Eho/XWHhz/jw53UuxnlmOpr36cQSI94q1ONd9Eet0Dn BHIAB/QLe6S8HNZRbrMmVyAmHCm7zjPBMU+w7A3WG/nGmvq9D15y5ik4BqqlKkOg 2n83aZEYtfMwzBDgGJ9a2tOGZ0c/k4GFE0wO4mBLhq8= -----END CERTIFICATE-----Generated at Sun Apr 20 02:25:27 2025 by rpki-client