$ rpki-client -vvf repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/3130332e3235322e3130302e302f32342d3234203d3e203539313437.roa File: 3130332e3235322e3130302e302f32342d3234203d3e203539313437.roa (raw, json) Hash identifier: YM9KbHhAudmxJLriUiNFwnyRKQIeMezebhltKdO9iVg= Subject key identifier: 5D:DB:62:0B:93:07:5C:AB:AE:2B:9A:2D:28:01:69:3D:E7:5E:9E:89 Certificate issuer: /CN=0E7BF2CE27D899D8E985DBD9311DF8B250C58581 Certificate serial: 137582777AC9BCB9A31B31B495326F5A7283365F Authority key identifier: 0E:7B:F2:CE:27:D8:99:D8:E9:85:DB:D9:31:1D:F8:B2:50:C5:85:81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/3130332e3235322e3130302e302f32342d3234203d3e203539313437.roa Signing time: Thu 20 Feb 2025 08:00:01 +0000 ROA not before: Thu 20 Feb 2025 07:55:01 +0000 ROA not after: Thu 19 Feb 2026 08:00:01 +0000 asID: 59147 IP address blocks: 103.252.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.crl rsync://repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 23:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:75:82:77:7a:c9:bc:b9:a3:1b:31:b4:95:32:6f:5a:72:83:36:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E7BF2CE27D899D8E985DBD9311DF8B250C58581 Validity Not Before: Feb 20 07:55:01 2025 GMT Not After : Feb 19 08:00:01 2026 GMT Subject: CN=5DDB620B93075CABAE2B9A2D2801693DE75E9E89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:c9:d0:46:3b:3b:a6:4b:2a:08:af:31:1f:0b: ba:9e:77:c8:39:4e:65:35:75:19:bc:98:49:81:fb: 77:be:8d:ea:5f:eb:0c:4c:12:11:93:50:6f:1a:da: a5:cc:33:28:5b:cf:48:cf:0c:81:2c:87:ea:a6:61: ec:01:0c:a7:ca:16:dc:80:5e:ca:5c:ed:54:71:ab: 92:36:5d:1d:74:1f:d8:da:f9:5f:bc:7d:cd:d2:7e: 99:85:a7:48:37:da:83:b7:56:b2:9d:e8:2f:c8:01: 72:04:0a:bf:a5:dc:83:66:70:62:a7:96:b0:b6:f8: 6f:5e:ae:4d:96:46:12:07:4a:8b:5a:a0:f1:22:df: 4b:8a:e7:af:9f:c0:39:82:50:12:38:3c:89:3c:04: 4e:be:96:9b:40:13:d7:cd:d0:f6:e4:6b:26:30:ff: 3e:db:4c:58:c9:36:ab:21:90:97:76:d0:b0:82:33: 38:64:ca:58:54:d5:ae:29:30:9d:df:2b:70:7e:f0: 9d:d1:f7:be:f5:35:e2:7e:3b:3a:f3:be:f8:be:02: 0d:a9:cf:4d:85:68:6c:d3:79:2a:6d:0a:64:e7:84: 02:5f:a9:31:c5:6d:ba:71:c4:6c:f5:95:69:e6:39: 60:9a:70:cd:0f:32:49:84:11:b2:72:c9:b2:ad:27: 7d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:DB:62:0B:93:07:5C:AB:AE:2B:9A:2D:28:01:69:3D:E7:5E:9E:89 X509v3 Authority Key Identifier: keyid:0E:7B:F2:CE:27:D8:99:D8:E9:85:DB:D9:31:1D:F8:B2:50:C5:85:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/3130332e3235322e3130302e302f32342d3234203d3e203539313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.252.100.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:87:0f:be:68:6a:c9:30:58:8c:c3:f8:d9:32:e8:99:79:11: 4d:fa:a0:32:bd:ff:5c:3d:08:97:b5:26:32:ce:07:65:98:10: 48:09:86:ff:47:44:93:86:7f:e6:98:6f:4a:15:f4:fa:10:72: 90:0c:d2:92:44:f6:29:45:2c:35:39:b3:99:2f:87:87:ba:31: 6d:d3:13:41:b1:41:43:be:4e:1b:9e:55:ca:25:4f:e2:e3:33: a1:31:70:02:47:70:68:2d:41:2a:04:8e:61:2d:1d:e9:1b:11: 1b:29:ee:43:21:cf:73:18:16:a6:8b:07:36:36:40:9a:2a:ed: e0:68:23:ba:7a:27:1d:e7:42:76:e5:d8:aa:47:a7:7d:59:00: c9:6e:65:80:cd:a4:7f:fb:76:e7:4d:35:f6:05:d3:ec:61:11: dc:b8:d6:95:ee:d1:ae:88:71:29:ab:e4:ff:c7:56:ef:bc:d0: ca:e3:61:ce:c8:64:d7:c6:41:d6:9f:ac:0c:a5:3d:b8:19:6e: 2d:3b:cd:38:d1:78:32:50:0c:01:3c:cb:0e:27:bc:16:2a:ef: 61:25:1f:26:27:e5:8f:e6:fd:64:5c:06:20:fc:92:7d:55:66: 98:52:8e:c8:f9:69:27:f8:da:aa:f2:79:7b:8c:cb:ad:6c:4d: a0:a9:42:8a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUE3WCd3rJvLmjGzG0lTJvWnKDNl8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEU3QkYyQ0UyN0Q4OTlEOEU5ODVEQkQ5MzExREY4QjI1 MEM1ODU4MTAeFw0yNTAyMjAwNzU1MDFaFw0yNjAyMTkwODAwMDFaMDMxMTAvBgNV BAMTKDVEREI2MjBCOTMwNzVDQUJBRTJCOUEyRDI4MDE2OTNERTc1RTlFODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrydBGOzumSyoIrzEfC7qed8g5 TmU1dRm8mEmB+3e+jepf6wxMEhGTUG8a2qXMMyhbz0jPDIEsh+qmYewBDKfKFtyA Xspc7VRxq5I2XR10H9ja+V+8fc3SfpmFp0g32oO3VrKd6C/IAXIECr+l3INmcGKn lrC2+G9erk2WRhIHSotaoPEi30uK56+fwDmCUBI4PIk8BE6+lptAE9fN0PbkayYw /z7bTFjJNqshkJd20LCCMzhkylhU1a4pMJ3fK3B+8J3R9771NeJ+Ozrzvvi+Ag2p z02FaGzTeSptCmTnhAJfqTHFbbpxxGz1lWnmOWCacM0PMkmEEbJyybKtJ309AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXdtiC5MHXKuuK5otKAFpPedenokwHwYDVR0j BBgwFoAUDnvyzifYmdjphdvZMR34slDFhYEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MGM1NTAzNC01ZjM2LTQxNzMtYjY0Yy1hOTc1ZTMyMzEzOGEvMC8wRTdCRjJDRTI3 RDg5OUQ4RTk4NURCRDkzMTFERjhCMjUwQzU4NTgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEU3QkYyQ0UyN0Q4OTlEOEU5ODVEQkQ5MzExREY4QjI1MEM1 ODU4MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwYzU1MDM0LTVmMzYtNDE3My1i NjRjLWE5NzVlMzIzMTM4YS8wLzMxMzAzMzJlMzIzNTMyMmUzMTMwMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/xkMA0GCSqG SIb3DQEBCwUAA4IBAQBPhw++aGrJMFiMw/jZMuiZeRFN+qAyvf9cPQiXtSYyzgdl mBBICYb/R0SThn/mmG9KFfT6EHKQDNKSRPYpRSw1ObOZL4eHujFt0xNBsUFDvk4b nlXKJU/i4zOhMXACR3BoLUEqBI5hLR3pGxEbKe5DIc9zGBamiwc2NkCaKu3gaCO6 eicd50J25diqR6d9WQDJbmWAzaR/+3bnTTX2BdPsYRHcuNaV7tGuiHEpq+T/x1bv vNDK42HOyGTXxkHWn6wMpT24GW4tO8040XgyUAwBPMsOJ7wWKu9hJR8mJ+WP5v1k XAYg/JJ9VWaYUo7I+Wkn+Nqq8nl7jMutbE2gqUKK -----END CERTIFICATE-----Generated at Sun Apr 6 07:46:01 2025 by rpki-client