$ rpki-client -vvf repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/3130332e3130362e3231382e302f32332d3233203d3e20313337333239.roa File: 3130332e3130362e3231382e302f32332d3233203d3e20313337333239.roa (raw, json) Hash identifier: WVx/ix5t6VQi7ceJyWAbTr87vAQ7LkzqKm1y/Aicb4Q= Subject key identifier: C9:98:44:D8:19:89:61:9A:89:33:D5:F7:99:40:2B:01:A9:C6:DD:3F Certificate issuer: /CN=19093F7761A9E337D03405604750BFD4ADC2121E Certificate serial: 2B8494C0B34333792C2F6CA1A2272A4049243A30 Authority key identifier: 19:09:3F:77:61:A9:E3:37:D0:34:05:60:47:50:BF:D4:AD:C2:12:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/3130332e3130362e3231382e302f32332d3233203d3e20313337333239.roa Signing time: Sun 12 Jan 2025 07:00:02 +0000 ROA not before: Sun 12 Jan 2025 06:55:02 +0000 ROA not after: Sun 11 Jan 2026 07:00:02 +0000 asID: 137329 IP address blocks: 103.106.218.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.crl rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 07:50:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:84:94:c0:b3:43:33:79:2c:2f:6c:a1:a2:27:2a:40:49:24:3a:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19093F7761A9E337D03405604750BFD4ADC2121E Validity Not Before: Jan 12 06:55:02 2025 GMT Not After : Jan 11 07:00:02 2026 GMT Subject: CN=C99844D81989619A8933D5F799402B01A9C6DD3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:69:34:60:e1:87:ee:0d:46:70:d8:f1:f2:7f: 37:89:1f:f3:11:dc:86:4d:9a:5f:c2:81:0c:a8:ed: f2:47:1f:73:33:b8:fe:0f:98:72:33:fe:a4:68:a2: 33:4c:7d:0a:35:16:75:32:1c:0c:c3:69:e8:0e:62: 28:7b:6a:56:07:41:34:05:78:db:6c:cd:43:2c:34: 60:66:58:fb:9f:d9:7f:a1:2c:f7:d4:26:25:60:dc: bd:a3:f0:47:e2:04:7d:50:c2:8a:b3:fa:31:38:5f: f0:ae:67:22:8d:7f:b0:37:28:7e:e7:bd:bf:82:7d: 99:1e:0d:7a:69:8e:01:8e:77:3e:88:a6:db:57:52: ac:d4:1e:03:79:60:9d:c8:05:78:34:73:82:21:fa: 09:84:b3:0f:81:22:e6:4c:d4:e1:ab:5a:e3:66:16: 17:ef:3a:d2:76:e4:d6:c3:79:df:27:f7:c9:ef:96: 0c:32:bb:ca:19:1f:c6:dc:7f:36:d8:33:f9:6e:de: c9:ab:5f:48:fa:89:ca:68:c1:b5:54:0f:9c:0a:ae: 9f:8b:12:39:b6:18:c7:1d:b5:9f:76:12:02:fd:c6: 78:e1:9b:8e:90:7c:a8:a0:78:e5:25:be:4f:d3:bc: 8e:74:5f:4f:c9:f5:56:64:42:ff:eb:d5:05:dd:33: c9:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:98:44:D8:19:89:61:9A:89:33:D5:F7:99:40:2B:01:A9:C6:DD:3F X509v3 Authority Key Identifier: keyid:19:09:3F:77:61:A9:E3:37:D0:34:05:60:47:50:BF:D4:AD:C2:12:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/3130332e3130362e3231382e302f32332d3233203d3e20313337333239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.106.218.0/23 Signature Algorithm: sha256WithRSAEncryption 42:53:32:1f:f0:e3:fa:96:0a:b0:4a:77:7c:10:cc:97:b4:e7: 6a:2f:dd:80:21:fc:47:bf:71:26:70:1c:45:4a:e0:56:c5:01: 4c:e0:be:b5:5b:f1:8a:e1:34:33:ce:8f:c8:69:54:6a:43:5d: a3:d7:13:77:a6:91:2d:d9:9e:58:cb:7a:b1:cd:c2:e2:39:6d: 34:b6:2f:86:f8:6f:5f:be:82:c9:c9:06:e4:67:67:40:24:20: fa:8a:0d:f1:79:7e:71:96:14:f2:02:11:2f:5a:18:b7:9c:db: 82:4b:95:00:38:35:9c:46:1f:d3:11:11:21:f2:0e:3f:bf:59: 58:46:f2:a4:05:a7:ad:07:53:48:a8:4b:79:40:52:12:cb:36: a4:7e:6b:9b:60:5b:c0:3f:60:a8:95:13:3b:28:23:59:b4:d4: 78:b5:9d:30:9d:54:be:b8:cd:d7:cd:94:dc:58:89:0b:ab:36: 2b:e8:21:7d:8f:c6:82:cc:81:56:5f:4d:67:51:f3:dc:8c:d8: 82:51:1f:11:50:4c:0c:b7:c1:f0:3d:60:b4:c4:d4:61:6a:8d: e9:5d:4d:4a:ba:60:09:7c:45:4d:ba:f7:53:b7:b3:3c:67:56: a9:c7:b2:fa:ab:b9:88:c7:bc:f5:bc:61:ea:01:46:19:4a:52: 92:1b:79:84 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUK4SUwLNDM3ksL2yhoicqQEkkOjAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTkwOTNGNzc2MUE5RTMzN0QwMzQwNTYwNDc1MEJGRDRB REMyMTIxRTAeFw0yNTAxMTIwNjU1MDJaFw0yNjAxMTEwNzAwMDJaMDMxMTAvBgNV BAMTKEM5OTg0NEQ4MTk4OTYxOUE4OTMzRDVGNzk5NDAyQjAxQTlDNkREM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2aTRg4YfuDUZw2PHyfzeJH/MR 3IZNml/CgQyo7fJHH3MzuP4PmHIz/qRoojNMfQo1FnUyHAzDaegOYih7alYHQTQF eNtszUMsNGBmWPuf2X+hLPfUJiVg3L2j8EfiBH1Qwoqz+jE4X/CuZyKNf7A3KH7n vb+CfZkeDXppjgGOdz6IpttXUqzUHgN5YJ3IBXg0c4Ih+gmEsw+BIuZM1OGrWuNm FhfvOtJ25NbDed8n98nvlgwyu8oZH8bcfzbYM/lu3smrX0j6icpowbVUD5wKrp+L Ejm2GMcdtZ92EgL9xnjhm46QfKigeOUlvk/TvI50X0/J9VZkQv/r1QXdM8k1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUyZhE2BmJYZqJM9X3mUArAanG3T8wHwYDVR0j BBgwFoAUGQk/d2Gp4zfQNAVgR1C/1K3CEh4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MTdiZDUwMi00MmMyLTQwMGQtYTJhZC1kMTc1NDM2NWE0NWQvMC8xOTA5M0Y3NzYx QTlFMzM3RDAzNDA1NjA0NzUwQkZENEFEQzIxMjFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTkwOTNGNzc2MUE5RTMzN0QwMzQwNTYwNDc1MEJGRDRBREMy MTIxRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UxN2JkNTAyLTQyYzItNDAwZC1h MmFkLWQxNzU0MzY1YTQ1ZC8wLzMxMzAzMzJlMzEzMDM2MmUzMjMxMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzczMzMyMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnatowDQYJ KoZIhvcNAQELBQADggEBAEJTMh/w4/qWCrBKd3wQzJe052ov3YAh/Ee/cSZwHEVK 4FbFAUzgvrVb8YrhNDPOj8hpVGpDXaPXE3emkS3ZnljLerHNwuI5bTS2L4b4b1++ gsnJBuRnZ0AkIPqKDfF5fnGWFPICES9aGLec24JLlQA4NZxGH9MRESHyDj+/WVhG 8qQFp60HU0ioS3lAUhLLNqR+a5tgW8A/YKiVEzsoI1m01Hi1nTCdVL64zdfNlNxY iQurNivoIX2PxoLMgVZfTWdR89yM2IJRHxFQTAy3wfA9YLTE1GFqjeldTUq6YAl8 RU2691O3szxnVqnHsvqruYjHvPW8YeoBRhlKUpIbeYQ= -----END CERTIFICATE-----Generated at Sun Apr 20 13:07:31 2025 by rpki-client