$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/3130332e3131322e3139302e302f32342d3234203d3e203338353236.roa File: 3130332e3131322e3139302e302f32342d3234203d3e203338353236.roa (raw, json) Hash identifier: OuY5AxNRMOHukTxkCZ8qWdJwC0ehf2Wyn4z1qTL9mq0= Subject key identifier: C1:01:21:57:48:D5:9A:86:78:85:56:68:66:7B:3B:B5:01:BC:39:62 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 030842C05FD0A6222957BE405F63FCDB7D1CA7F4 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/3130332e3131322e3139302e302f32342d3234203d3e203338353236.roa Signing time: Tue 21 Jan 2025 09:00:03 +0000 ROA not before: Tue 21 Jan 2025 08:55:03 +0000 ROA not after: Tue 20 Jan 2026 09:00:03 +0000 asID: 38526 IP address blocks: 103.112.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 19:56:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:08:42:c0:5f:d0:a6:22:29:57:be:40:5f:63:fc:db:7d:1c:a7:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Jan 21 08:55:03 2025 GMT Not After : Jan 20 09:00:03 2026 GMT Subject: CN=C101215748D59A8678855668667B3BB501BC3962 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:13:04:d6:a6:9d:6f:e3:40:f1:f8:9f:d2:0e: e9:64:36:47:a2:4f:be:3a:06:1b:f6:19:74:4d:11: 65:7e:9f:eb:e6:bb:a4:ec:c4:78:ae:3f:53:2a:20: 4b:6f:92:f5:79:63:ef:82:de:39:91:3d:31:f4:28: 8f:86:7b:83:b2:1c:d9:62:8d:f8:ab:1d:2c:e6:65: a2:7b:06:28:78:36:b5:e1:b9:e7:6d:41:03:9f:02: 08:a8:72:cf:6a:d4:c5:57:81:30:b7:1a:7a:3e:30: f2:e7:20:0b:27:57:f5:b4:55:cc:86:a3:3c:60:68: b4:14:9c:f0:79:5d:80:91:70:83:c3:13:86:81:45: ff:53:e5:fa:29:b3:d2:71:c5:04:f0:79:c7:8d:d8: 1d:b2:ed:df:aa:d7:92:40:61:ca:da:7c:fe:0c:02: a6:66:45:b3:87:73:d7:a7:37:9d:2f:83:fc:38:f4: 8e:74:6a:68:2a:62:77:5b:4c:71:cf:5d:fd:f7:4d: 63:34:69:1d:53:77:be:3d:7f:1a:69:06:7c:15:35: 18:29:70:7f:7f:21:11:46:9f:a5:d5:5f:31:bc:4c: c9:b1:5c:5a:e6:00:53:43:bb:66:fa:d1:fd:2d:36: 44:67:b3:e9:f8:f9:c9:0e:22:30:96:ea:75:e0:c8: c6:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:01:21:57:48:D5:9A:86:78:85:56:68:66:7B:3B:B5:01:BC:39:62 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/3130332e3131322e3139302e302f32342d3234203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.190.0/24 Signature Algorithm: sha256WithRSAEncryption 42:c0:ff:48:db:32:e8:d8:0a:e7:f3:c4:d3:b1:fb:28:b9:04: 11:1c:40:11:c1:8c:b7:13:c6:da:f3:3e:1e:a0:e2:39:cb:1f: 34:7c:80:ac:f4:a1:96:d4:61:de:c0:b1:d7:50:ac:0f:ef:46: b1:08:31:ee:76:81:55:a2:3d:49:2a:9d:35:ab:6b:42:60:85: 10:0d:52:b2:1d:ad:60:4d:b3:05:65:0c:f1:0f:cd:67:ab:85: db:09:a8:72:ec:d8:5a:c6:34:7b:6d:70:89:4e:52:54:71:4c: a9:31:0a:fc:47:a1:ab:e4:fc:cc:fb:65:e3:e7:1d:53:7a:d2: f9:88:1a:fd:0d:37:ee:67:c1:5f:ed:02:a5:c2:fb:aa:80:46: 23:47:fc:03:e8:d9:0c:ce:f8:10:a4:21:6a:7a:5e:e1:b5:f5: b6:f2:c5:65:9b:70:f7:b1:94:19:ea:e5:9a:3e:43:91:a3:85: e0:bb:36:ac:9a:65:a8:86:ce:5e:07:36:0c:65:d6:7f:63:14: bb:8f:74:fc:0c:54:83:cc:1f:85:b4:f9:b8:b3:6e:2e:14:16: f3:0d:64:0b:03:03:5f:52:8e:69:1b:08:e2:de:98:64:55:ff: 5e:de:10:4a:ae:db:61:a9:6d:8f:67:f5:53:6f:64:f2:a2:24: ed:8d:b0:7f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAwhCwF/QpiIpV75AX2P8230cp/QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNTAxMjEwODU1MDNaFw0yNjAxMjAwOTAwMDNaMDMxMTAvBgNV BAMTKEMxMDEyMTU3NDhENTlBODY3ODg1NTY2ODY2N0IzQkI1MDFCQzM5NjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaEwTWpp1v40Dx+J/SDulkNkei T746Bhv2GXRNEWV+n+vmu6TsxHiuP1MqIEtvkvV5Y++C3jmRPTH0KI+Ge4OyHNli jfirHSzmZaJ7Bih4NrXhuedtQQOfAgiocs9q1MVXgTC3Gno+MPLnIAsnV/W0VcyG ozxgaLQUnPB5XYCRcIPDE4aBRf9T5fops9JxxQTweceN2B2y7d+q15JAYcrafP4M AqZmRbOHc9enN50vg/w49I50amgqYndbTHHPXf33TWM0aR1Td749fxppBnwVNRgp cH9/IRFGn6XVXzG8TMmxXFrmAFNDu2b60f0tNkRns+n4+ckOIjCW6nXgyMZrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwQEhV0jVmoZ4hVZoZns7tQG8OWIwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMxMzAzMzJlMzEzMTMyMmUzMTM5MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3C+MA0GCSqG SIb3DQEBCwUAA4IBAQBCwP9I2zLo2Arn88TTsfsouQQRHEARwYy3E8ba8z4eoOI5 yx80fICs9KGW1GHewLHXUKwP70axCDHudoFVoj1JKp01q2tCYIUQDVKyHa1gTbMF ZQzxD81nq4XbCahy7NhaxjR7bXCJTlJUcUypMQr8R6Gr5PzM+2Xj5x1TetL5iBr9 DTfuZ8Ff7QKlwvuqgEYjR/wD6NkMzvgQpCFqel7htfW28sVlm3D3sZQZ6uWaPkOR o4XguzasmmWohs5eBzYMZdZ/YxS7j3T8DFSDzB+FtPm4s24uFBbzDWQLAwNfUo5p Gwji3phkVf9e3hBKrtthqW2PZ/VTb2TyoiTtjbB/ -----END CERTIFICATE-----Generated at Sun Apr 6 17:56:27 2025 by rpki-client