$ rpki-client -vvf repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/3130332e3131312e3231392e302f32342d3234203d3e20313337333233.roa File: 3130332e3131312e3231392e302f32342d3234203d3e20313337333233.roa (raw, json) Hash identifier: N8Hp5zFXrvVRTETGbbuYPmuPvC+hIoWpg8/FhaH5avg= Subject key identifier: 3B:74:8A:95:7B:29:AB:CA:A0:09:FE:41:7A:89:EE:FB:B9:1E:67:99 Certificate issuer: /CN=DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F Certificate serial: 3491645295C7AFDED3A726BE68FC8D34C6E63422 Authority key identifier: DC:FC:FE:4E:81:97:FF:AF:B9:A5:79:20:BD:40:DC:C1:AC:F0:F3:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/3130332e3131312e3231392e302f32342d3234203d3e20313337333233.roa Signing time: Tue 11 Mar 2025 13:00:01 +0000 ROA not before: Tue 11 Mar 2025 12:55:01 +0000 ROA not after: Tue 10 Mar 2026 13:00:01 +0000 asID: 137323 IP address blocks: 103.111.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.crl rsync://repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Mar 2025 23:12:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:91:64:52:95:c7:af:de:d3:a7:26:be:68:fc:8d:34:c6:e6:34:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F Validity Not Before: Mar 11 12:55:01 2025 GMT Not After : Mar 10 13:00:01 2026 GMT Subject: CN=3B748A957B29ABCAA009FE417A89EEFBB91E6799 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:30:ab:e3:fc:82:6a:38:d1:3a:6f:93:14:c5: ac:65:29:eb:d2:a8:3f:89:a9:6c:d7:33:06:9f:c8: 12:1f:51:f7:36:46:60:56:fa:ea:58:7c:b6:2a:1e: 31:02:b3:df:46:73:c1:9f:ca:e2:fb:fd:fc:7b:5e: 07:4f:56:13:e1:f1:dc:d6:38:ff:9a:e0:50:a3:29: 56:8c:f6:7e:b6:e8:cb:f6:55:70:2e:2b:17:5c:6e: 74:79:7f:ad:2a:90:aa:33:bd:59:eb:d4:7b:ca:cd: 70:92:59:20:8e:e7:c3:1c:db:77:a5:eb:7e:22:d7: f5:87:8d:e7:e0:e3:85:1f:af:be:dc:1a:3f:b0:e0: dc:45:5f:da:29:d4:74:61:ee:ad:2f:b3:2e:ab:b5: 07:9c:94:31:c2:85:98:48:57:52:b4:e7:e5:a6:df: 84:86:5d:3a:d1:c6:82:78:d6:6f:0e:ea:88:5c:58: 8c:61:57:ce:41:41:2a:df:16:9a:53:a0:1a:a5:8e: 24:f2:9e:38:81:04:10:5c:f9:f6:5e:66:ac:6b:fa: 89:6d:3d:05:05:23:75:e5:f4:f7:7b:21:40:7e:f6: 8c:d8:c2:6a:54:bd:21:4a:97:37:85:e6:65:27:30: ce:45:cc:1f:3b:4e:76:f7:47:25:fd:5a:3e:b5:66: 0b:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:74:8A:95:7B:29:AB:CA:A0:09:FE:41:7A:89:EE:FB:B9:1E:67:99 X509v3 Authority Key Identifier: keyid:DC:FC:FE:4E:81:97:FF:AF:B9:A5:79:20:BD:40:DC:C1:AC:F0:F3:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/3130332e3131312e3231392e302f32342d3234203d3e20313337333233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.111.219.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:25:11:bf:2c:ba:1e:9e:f4:49:b3:23:f4:19:2b:cd:62:7b: f0:a1:1c:64:08:60:2f:d4:ef:aa:9a:2e:c3:9b:f3:73:d7:18: 16:71:65:dd:69:de:b0:3f:2f:81:53:f6:24:b8:80:cd:77:be: 27:f0:04:de:06:00:dc:d8:f4:ba:a0:de:c1:68:b8:b2:8c:9d: 23:6b:38:ca:28:e0:05:eb:52:7e:0a:b8:d8:aa:03:82:ad:a1: 0f:a9:3d:52:5e:c0:c7:31:ba:49:b9:69:7d:e8:a0:92:84:29: 7e:d4:e3:2f:7a:96:96:47:93:6c:6c:8f:45:21:63:3a:e2:06: ec:48:65:42:70:0d:59:4a:b6:18:7a:bd:99:4a:40:6c:75:65: bf:a0:f8:fb:91:fb:22:ff:f2:f0:da:bf:aa:12:16:03:51:e0: 74:7f:ef:bc:ac:5f:b9:7b:09:6a:09:81:1c:f5:a9:b1:66:6a: e6:76:e1:df:6b:e8:2c:3b:1d:39:1c:da:78:61:bf:ce:9e:2f: cc:5b:a9:01:c2:19:2d:45:8d:6c:ae:99:5f:b0:b9:38:6d:87: 94:34:1e:f6:d4:7c:c4:f9:06:dc:37:c8:4b:f3:02:f3:6a:6d: b7:a6:cc:35:c9:91:f1:df:4f:48:55:fc:9b:34:8a:a3:3f:01: f3:6f:6e:6d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNJFkUpXHr97Tpya+aPyNNMbmNCIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRENGQ0ZFNEU4MTk3RkZBRkI5QTU3OTIwQkQ0MERDQzFB Q0YwRjMwRjAeFw0yNTAzMTExMjU1MDFaFw0yNjAzMTAxMzAwMDFaMDMxMTAvBgNV BAMTKDNCNzQ4QTk1N0IyOUFCQ0FBMDA5RkU0MTdBODlFRUZCQjkxRTY3OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtMKvj/IJqONE6b5MUxaxlKevS qD+JqWzXMwafyBIfUfc2RmBW+upYfLYqHjECs99Gc8GfyuL7/fx7XgdPVhPh8dzW OP+a4FCjKVaM9n626Mv2VXAuKxdcbnR5f60qkKozvVnr1HvKzXCSWSCO58Mc23el 634i1/WHjefg44Ufr77cGj+w4NxFX9op1HRh7q0vsy6rtQeclDHChZhIV1K05+Wm 34SGXTrRxoJ41m8O6ohcWIxhV85BQSrfFppToBqljiTynjiBBBBc+fZeZqxr+olt PQUFI3Xl9Pd7IUB+9ozYwmpUvSFKlzeF5mUnMM5FzB87Tnb3RyX9Wj61ZguPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUO3SKlXspq8qgCf5Beonu+7keZ5kwHwYDVR0j BBgwFoAU3Pz+ToGX/6+5pXkgvUDcwazw8w8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MWFmMTQ0Yi1iOTJlLTRmZmYtYjY0MS1lNDZmZGRlOGM2ZGYvMC9EQ0ZDRkU0RTgx OTdGRkFGQjlBNTc5MjBCRDQwRENDMUFDRjBGMzBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRENGQ0ZFNEU4MTk3RkZBRkI5QTU3OTIwQkQ0MERDQzFBQ0Yw RjMwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UxYWYxNDRiLWI5MmUtNGZmZi1i NjQxLWU0NmZkZGU4YzZkZi8wLzMxMzAzMzJlMzEzMTMxMmUzMjMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnb9swDQYJ KoZIhvcNAQELBQADggEBAEslEb8suh6e9EmzI/QZK81ie/ChHGQIYC/U76qaLsOb 83PXGBZxZd1p3rA/L4FT9iS4gM13vifwBN4GANzY9Lqg3sFouLKMnSNrOMoo4AXr Un4KuNiqA4KtoQ+pPVJewMcxukm5aX3ooJKEKX7U4y96lpZHk2xsj0UhYzriBuxI ZUJwDVlKthh6vZlKQGx1Zb+g+PuR+yL/8vDav6oSFgNR4HR/77ysX7l7CWoJgRz1 qbFmauZ24d9r6Cw7HTkc2nhhv86eL8xbqQHCGS1FjWyumV+wuThth5Q0HvbUfMT5 Btw3yEvzAvNqbbemzDXJkfHfT0hV/Js0iqM/AfNvbm0= -----END CERTIFICATE-----Generated at Fri Mar 14 00:34:48 2025 by rpki-client