$ rpki-client -vvf repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/3130332e37312e3232342e302f32322d3234203d3e2039383735.roa File: 3130332e37312e3232342e302f32322d3234203d3e2039383735.roa (raw, json) Hash identifier: BhrGTMcOlTnS9+LXizZepRTc8dUVDoSk9wrBjorwUZI= Subject key identifier: 7A:B3:15:1C:DC:25:98:EF:79:1A:6C:00:2E:82:65:88:83:00:12:A5 Certificate issuer: /CN=F33127B2252454B491C5DC9FE3937C56F28F8066 Certificate serial: 6A9D0829DCA3DF1F1903B35C2F85DBF07982F7AE Authority key identifier: F3:31:27:B2:25:24:54:B4:91:C5:DC:9F:E3:93:7C:56:F2:8F:80:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/3130332e37312e3232342e302f32322d3234203d3e2039383735.roa Signing time: Fri 31 Jan 2025 09:02:47 +0000 ROA not before: Fri 31 Jan 2025 08:57:47 +0000 ROA not after: Fri 30 Jan 2026 09:02:47 +0000 asID: 9875 IP address blocks: 103.71.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.crl rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 16:34:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:9d:08:29:dc:a3:df:1f:19:03:b3:5c:2f:85:db:f0:79:82:f7:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33127B2252454B491C5DC9FE3937C56F28F8066 Validity Not Before: Jan 31 08:57:47 2025 GMT Not After : Jan 30 09:02:47 2026 GMT Subject: CN=7AB3151CDC2598EF791A6C002E826588830012A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:0a:75:fd:95:69:77:db:5e:d6:f5:01:ef:54: fd:c9:06:7f:87:00:64:4a:cd:cd:f8:60:32:0b:d4: 76:3a:7e:9f:f4:07:96:5f:31:4d:f0:9e:70:05:bf: da:70:5f:2b:43:00:f1:ef:06:50:02:1f:f5:31:da: b0:17:39:ba:9e:81:d3:41:d8:f8:ac:02:9f:f6:1b: 9e:3c:27:f3:c2:e4:ae:6e:b7:85:3d:93:a3:f0:ce: 52:80:55:ba:50:81:ae:6f:fc:83:60:00:4d:31:67: f7:cb:f2:0d:85:58:16:21:18:07:0f:f7:ac:c5:c3: 9d:81:e6:73:98:ec:8b:91:68:08:bd:23:54:e3:80: 2c:d5:f0:8c:38:ad:44:df:34:08:41:d8:b4:6a:2a: 50:34:8e:72:34:c7:a4:e2:0f:24:26:8d:b8:cc:67: ee:dc:df:6b:f8:50:8b:c7:cd:2c:2a:6c:e1:d1:aa: 60:4e:d6:44:74:92:14:32:fb:eb:44:81:cb:a5:87: 14:43:82:34:05:48:60:5d:ee:ac:e4:24:18:a2:da: 39:7b:83:2a:d5:d4:b8:15:95:9e:54:5a:97:ce:be: bf:dd:64:eb:a5:ac:9d:b9:83:98:d7:ed:49:63:6b: 08:23:0a:52:aa:80:b2:b8:89:bb:87:61:8b:a6:37: 5b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:B3:15:1C:DC:25:98:EF:79:1A:6C:00:2E:82:65:88:83:00:12:A5 X509v3 Authority Key Identifier: keyid:F3:31:27:B2:25:24:54:B4:91:C5:DC:9F:E3:93:7C:56:F2:8F:80:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/3130332e37312e3232342e302f32322d3234203d3e2039383735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.224.0/22 Signature Algorithm: sha256WithRSAEncryption 28:91:12:43:9c:77:88:b9:f4:36:99:5c:19:23:7c:7b:2a:e3: 17:0f:f7:15:84:18:48:00:ba:ad:fe:4f:bc:3e:94:0b:71:81: d7:42:28:4e:ec:4a:74:3d:ad:f9:72:a9:e9:9e:be:bb:ee:3b: 6a:f4:a3:18:72:6d:5f:24:da:31:84:45:f1:4d:b8:c6:08:0c: 5c:ba:2c:33:d6:13:61:0d:05:0b:de:87:6e:70:27:ef:66:ea: 71:c5:73:fb:35:ad:5a:d3:d3:fb:2f:ae:11:c0:50:91:28:85: 3c:12:54:66:f2:85:ee:70:42:0d:43:55:f5:2a:f2:eb:d9:61: 46:38:cb:c8:39:47:6a:89:75:9c:1c:3f:01:02:4e:c7:2f:3d: 48:bb:23:11:28:6f:18:c6:c5:e4:d3:85:ae:a1:ad:b9:23:b6: d3:bf:8b:c3:c1:2a:9b:19:b3:89:18:e7:69:ad:2d:16:61:17: 7b:f2:db:c1:e6:0c:65:97:de:21:6d:f3:ea:10:a4:5c:31:8c: 41:fe:9b:3b:a1:00:b3:12:86:e0:6e:67:52:09:f7:15:51:e9: 12:20:56:d7:b1:c8:01:7d:67:5d:e8:5d:50:2d:22:18:56:5e: 1e:e1:8a:53:46:e9:29:24:55:2d:54:6c:92:e7:42:be:f7:ae: d1:61:23:9e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUap0IKdyj3x8ZA7NcL4Xb8HmC964wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjMzMTI3QjIyNTI0NTRCNDkxQzVEQzlGRTM5MzdDNTZG MjhGODA2NjAeFw0yNTAxMzEwODU3NDdaFw0yNjAxMzAwOTAyNDdaMDMxMTAvBgNV BAMTKDdBQjMxNTFDREMyNTk4RUY3OTFBNkMwMDJFODI2NTg4ODMwMDEyQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUCnX9lWl3217W9QHvVP3JBn+H AGRKzc34YDIL1HY6fp/0B5ZfMU3wnnAFv9pwXytDAPHvBlACH/Ux2rAXObqegdNB 2PisAp/2G548J/PC5K5ut4U9k6PwzlKAVbpQga5v/INgAE0xZ/fL8g2FWBYhGAcP 96zFw52B5nOY7IuRaAi9I1TjgCzV8Iw4rUTfNAhB2LRqKlA0jnI0x6TiDyQmjbjM Z+7c32v4UIvHzSwqbOHRqmBO1kR0khQy++tEgculhxRDgjQFSGBd7qzkJBii2jl7 gyrV1LgVlZ5UWpfOvr/dZOulrJ25g5jX7UljawgjClKqgLK4ibuHYYumN1vDAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUerMVHNwlmO95GmwALoJliIMAEqUwHwYDVR0j BBgwFoAU8zEnsiUkVLSRxdyf45N8VvKPgGYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YmJmZTc3Ni0wMGEzLTQ3NzYtYmYzZi01MjExOTQ2MTAxYzMvMC9GMzMxMjdCMjI1 MjQ1NEI0OTFDNURDOUZFMzkzN0M1NkYyOEY4MDY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjMzMTI3QjIyNTI0NTRCNDkxQzVEQzlGRTM5MzdDNTZGMjhG ODA2Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViYmZlNzc2LTAwYTMtNDc3Ni1i ZjNmLTUyMTE5NDYxMDFjMy8wLzMxMzAzMzJlMzczMTJlMzIzMjM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzkzODM3MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnR+AwDQYJKoZIhvcN AQELBQADggEBACiREkOcd4i59DaZXBkjfHsq4xcP9xWEGEgAuq3+T7w+lAtxgddC KE7sSnQ9rflyqemevrvuO2r0oxhybV8k2jGERfFNuMYIDFy6LDPWE2ENBQveh25w J+9m6nHFc/s1rVrT0/svrhHAUJEohTwSVGbyhe5wQg1DVfUq8uvZYUY4y8g5R2qJ dZwcPwECTscvPUi7IxEobxjGxeTTha6hrbkjttO/i8PBKpsZs4kY52mtLRZhF3vy 28HmDGWX3iFt8+oQpFwxjEH+mzuhALMShuBuZ1IJ9xVR6RIgVtexyAF9Z13oXVAt IhhWXh7hilNG6SkkVS1UbJLnQr73rtFhI54= -----END CERTIFICATE-----Generated at Thu Jun 5 18:41:21 2025 by rpki-client