$ rpki-client -vvf repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/3130332e3132302e36362e302f32342d3234203d3e20313337333733.roa File: 3130332e3132302e36362e302f32342d3234203d3e20313337333733.roa (raw, json) Hash identifier: 8JbwHHtI2+x8Q7Ly9bJcp9ZLV+q/WXTIRy0nL9ot5M8= Subject key identifier: 75:57:D7:2D:0A:AD:2B:84:52:50:09:2C:A9:95:8F:DA:86:87:08:08 Certificate issuer: /CN=6B647F696A9BB5C718605E8922BEF1BEE566F94E Certificate serial: 2F2B7203981A04218E894D725E3DA03F5DA7D497 Authority key identifier: 6B:64:7F:69:6A:9B:B5:C7:18:60:5E:89:22:BE:F1:BE:E5:66:F9:4E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B647F696A9BB5C718605E8922BEF1BEE566F94E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/3130332e3132302e36362e302f32342d3234203d3e20313337333733.roa Signing time: Tue 04 Feb 2025 17:00:01 +0000 ROA not before: Tue 04 Feb 2025 16:55:01 +0000 ROA not after: Tue 03 Feb 2026 17:00:01 +0000 asID: 137373 IP address blocks: 103.120.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/6B647F696A9BB5C718605E8922BEF1BEE566F94E.crl rsync://repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/6B647F696A9BB5C718605E8922BEF1BEE566F94E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B647F696A9BB5C718605E8922BEF1BEE566F94E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 01:28:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:2b:72:03:98:1a:04:21:8e:89:4d:72:5e:3d:a0:3f:5d:a7:d4:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B647F696A9BB5C718605E8922BEF1BEE566F94E Validity Not Before: Feb 4 16:55:01 2025 GMT Not After : Feb 3 17:00:01 2026 GMT Subject: CN=7557D72D0AAD2B845250092CA9958FDA86870808 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:28:d5:32:d7:b0:75:e5:93:e2:d3:84:f2:4f: e1:98:5b:cd:b5:95:27:29:0b:9b:44:03:fb:35:5f: 28:37:3c:3c:42:20:32:59:2c:e7:2f:e0:10:6f:12: fb:2a:99:7a:2f:fa:10:30:c0:bd:87:71:a5:9d:88: 30:12:ea:7b:47:75:a5:35:c2:ff:3f:0e:c9:a0:2d: 86:df:12:40:cf:bb:1c:30:60:06:c9:28:ea:99:50: 4a:ee:6b:7e:f6:4c:c9:e9:5d:e0:7d:cd:e9:80:4a: 1c:3c:81:48:9a:1b:57:20:fb:a2:5a:db:26:5c:2d: f1:9b:d3:0b:17:db:32:fa:b1:38:e4:a7:f9:30:7a: 9c:4c:bd:38:aa:08:15:52:ff:f2:25:4c:31:da:bb: 75:96:9d:58:af:65:b6:7f:64:3c:ee:ed:7e:16:2a: da:c8:b9:1b:06:ab:38:30:3e:ef:9c:22:f6:e6:52: 8f:09:3f:27:71:f8:2b:47:6f:9b:f0:47:97:55:d4: 67:b8:c3:36:03:a8:8b:9c:e7:c0:b4:ed:df:d8:23: 28:e6:c6:bf:5c:da:f1:3b:98:28:0e:ea:3f:42:e0: 1c:55:cd:a3:58:e0:db:f4:00:ac:96:55:24:b7:3c: 71:19:a4:be:d5:f4:2d:53:b8:85:c8:f1:4c:84:fc: ba:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:57:D7:2D:0A:AD:2B:84:52:50:09:2C:A9:95:8F:DA:86:87:08:08 X509v3 Authority Key Identifier: keyid:6B:64:7F:69:6A:9B:B5:C7:18:60:5E:89:22:BE:F1:BE:E5:66:F9:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/6B647F696A9BB5C718605E8922BEF1BEE566F94E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B647F696A9BB5C718605E8922BEF1BEE566F94E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/3130332e3132302e36362e302f32342d3234203d3e20313337333733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.66.0/24 Signature Algorithm: sha256WithRSAEncryption 01:87:1e:14:e5:37:44:d6:13:b0:32:e3:f1:b7:98:29:d9:90: 1a:14:17:cd:3c:f6:6a:0d:42:f0:91:ae:62:43:cb:e0:9b:bc: 56:59:79:7b:3c:fe:86:4b:5c:35:a8:0d:a8:ab:c8:cf:6e:d3: 11:94:70:fb:50:a1:a9:ca:d0:cf:ac:0f:68:6f:c3:f7:a7:69: f4:2f:9e:d1:88:30:32:6e:a2:44:d7:1e:8a:bb:05:4b:65:bd: 43:24:cc:85:f6:78:94:84:57:20:12:c1:39:27:41:b2:0a:af: 21:db:f1:47:90:24:0a:26:5d:33:01:0a:1e:fc:02:e7:36:28: 07:d6:d3:54:6f:0c:df:d5:0a:ab:b0:fa:63:07:d8:2c:8a:82: 41:96:06:89:85:6a:f3:56:48:37:7b:ce:3e:82:d1:7b:ec:1a: 13:d3:11:05:f2:c3:ec:70:cd:76:ef:e2:24:e9:6c:bc:cd:a8: 77:9f:e9:1d:c5:db:43:c2:7c:c4:62:03:94:22:bb:ce:ff:98: 3c:28:4e:6c:85:af:b7:81:2f:59:15:53:62:fc:25:ab:f9:31: 43:3c:ae:78:e8:e8:b5:57:a6:2b:41:a3:c4:ce:3d:81:d3:67: 60:14:a6:95:69:4e:36:7f:2f:85:07:79:1e:6e:a7:e9:a2:1c: 27:83:52:92 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULytyA5gaBCGOiU1yXj2gP12n1JcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkI2NDdGNjk2QTlCQjVDNzE4NjA1RTg5MjJCRUYxQkVF NTY2Rjk0RTAeFw0yNTAyMDQxNjU1MDFaFw0yNjAyMDMxNzAwMDFaMDMxMTAvBgNV BAMTKDc1NTdENzJEMEFBRDJCODQ1MjUwMDkyQ0E5OTU4RkRBODY4NzA4MDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8KNUy17B15ZPi04TyT+GYW821 lScpC5tEA/s1Xyg3PDxCIDJZLOcv4BBvEvsqmXov+hAwwL2HcaWdiDAS6ntHdaU1 wv8/DsmgLYbfEkDPuxwwYAbJKOqZUErua372TMnpXeB9zemAShw8gUiaG1cg+6Ja 2yZcLfGb0wsX2zL6sTjkp/kwepxMvTiqCBVS//IlTDHau3WWnVivZbZ/ZDzu7X4W KtrIuRsGqzgwPu+cIvbmUo8JPydx+CtHb5vwR5dV1Ge4wzYDqIuc58C07d/YIyjm xr9c2vE7mCgO6j9C4BxVzaNY4Nv0AKyWVSS3PHEZpL7V9C1TuIXI8UyE/LrrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdVfXLQqtK4RSUAksqZWP2oaHCAgwHwYDVR0j BBgwFoAUa2R/aWqbtccYYF6JIr7xvuVm+U4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODZlNDZlYy1kZjVjLTRiNGQtYTMwZS0xMGIyYzY4OGMyZmMvMC82QjY0N0Y2OTZB OUJCNUM3MTg2MDVFODkyMkJFRjFCRUU1NjZGOTRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkI2NDdGNjk2QTlCQjVDNzE4NjA1RTg5MjJCRUYxQkVFNTY2 Rjk0RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NmU0NmVjLWRmNWMtNGI0ZC1h MzBlLTEwYjJjNjg4YzJmYy8wLzMxMzAzMzJlMzEzMjMwMmUzNjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM3MzMzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3hCMA0GCSqG SIb3DQEBCwUAA4IBAQABhx4U5TdE1hOwMuPxt5gp2ZAaFBfNPPZqDULwka5iQ8vg m7xWWXl7PP6GS1w1qA2oq8jPbtMRlHD7UKGpytDPrA9ob8P3p2n0L57RiDAybqJE 1x6KuwVLZb1DJMyF9niUhFcgEsE5J0GyCq8h2/FHkCQKJl0zAQoe/ALnNigH1tNU bwzf1QqrsPpjB9gsioJBlgaJhWrzVkg3e84+gtF77BoT0xEF8sPscM127+Ik6Wy8 zah3n+kdxdtDwnzEYgOUIrvO/5g8KE5sha+3gS9ZFVNi/CWr+TFDPK546Oi1V6Yr QaPEzj2B02dgFKaVaU42fy+FB3kebqfpohwng1KS -----END CERTIFICATE-----Generated at Sun Apr 6 18:58:40 2025 by rpki-client