$ rpki-client -vvf repo-rpki.idnic.net/repo/f00102d0-714f-4b52-9be5-ded16edfe4a2/0/3130332e3135362e37342e302f32332d3234203d3e20313431303832.roa File: 3130332e3135362e37342e302f32332d3234203d3e20313431303832.roa (raw, json) Hash identifier: +uanKrOlJ1inyxGrMVmi+UClp9vCCzs4JkeBJaqGWYc= Subject key identifier: BE:75:7F:7C:AB:26:F0:40:93:C7:EF:64:A3:09:6A:51:85:3D:49:D6 Certificate issuer: /CN=E003E850B77C76F0E024F1DA6EFBD8767B411A81 Certificate serial: 317AB10C3A2036CD72DF63B0D423B74193121B58 Authority key identifier: E0:03:E8:50:B7:7C:76:F0:E0:24:F1:DA:6E:FB:D8:76:7B:41:1A:81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E003E850B77C76F0E024F1DA6EFBD8767B411A81.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f00102d0-714f-4b52-9be5-ded16edfe4a2/0/3130332e3135362e37342e302f32332d3234203d3e20313431303832.roa Signing time: Tue 04 Feb 2025 01:00:02 +0000 ROA not before: Tue 04 Feb 2025 00:55:02 +0000 ROA not after: Tue 03 Feb 2026 01:00:02 +0000 asID: 141082 IP address blocks: 103.156.74.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f00102d0-714f-4b52-9be5-ded16edfe4a2/0/E003E850B77C76F0E024F1DA6EFBD8767B411A81.crl rsync://repo-rpki.idnic.net/repo/f00102d0-714f-4b52-9be5-ded16edfe4a2/0/E003E850B77C76F0E024F1DA6EFBD8767B411A81.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E003E850B77C76F0E024F1DA6EFBD8767B411A81.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 09:33:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:7a:b1:0c:3a:20:36:cd:72:df:63:b0:d4:23:b7:41:93:12:1b:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E003E850B77C76F0E024F1DA6EFBD8767B411A81 Validity Not Before: Feb 4 00:55:02 2025 GMT Not After : Feb 3 01:00:02 2026 GMT Subject: CN=BE757F7CAB26F04093C7EF64A3096A51853D49D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:57:34:49:aa:53:3b:43:c0:fb:9d:04:42:e8: 9d:c8:a7:46:b6:d5:47:1a:21:75:13:0b:7f:aa:9a: 82:bd:c3:b8:82:59:66:89:2f:ee:7a:81:2d:9a:d2: 49:a9:cf:af:6f:68:7e:5e:99:04:ec:10:22:11:0b: b0:c7:10:58:c5:07:0e:82:35:62:06:a5:66:00:54: 9b:22:1a:e9:5b:49:62:65:6d:35:ce:b5:c3:12:a3: 18:e9:42:1c:29:46:d2:cf:4c:12:80:2a:5c:80:ae: 12:16:eb:7a:e3:01:ca:0f:1a:31:19:9a:4e:c8:f9: 51:be:cd:df:6d:5f:a2:d2:89:b2:9c:fe:4a:69:c9: 4f:2c:3b:da:5e:b8:7a:c7:c6:61:1a:d6:cf:ff:24: 59:73:95:a9:26:6d:16:83:59:4b:29:91:c2:f9:e9: d1:a5:b3:d2:a1:61:e2:2f:ee:08:f2:39:e8:ef:f0: 84:4f:ff:fc:d2:06:2a:1c:51:86:94:4f:0d:7d:4e: 6f:dd:fa:b6:db:2b:ca:e2:ee:bc:eb:ed:31:ae:da: a3:ad:68:9a:7d:60:5d:cd:9f:cb:0f:0b:14:1e:b8: 67:2a:74:c2:21:7b:91:71:35:f9:26:7f:dc:8e:35: d7:cd:7b:4a:b4:74:96:b9:f8:61:eb:f8:63:30:77: 4d:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:75:7F:7C:AB:26:F0:40:93:C7:EF:64:A3:09:6A:51:85:3D:49:D6 X509v3 Authority Key Identifier: keyid:E0:03:E8:50:B7:7C:76:F0:E0:24:F1:DA:6E:FB:D8:76:7B:41:1A:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f00102d0-714f-4b52-9be5-ded16edfe4a2/0/E003E850B77C76F0E024F1DA6EFBD8767B411A81.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E003E850B77C76F0E024F1DA6EFBD8767B411A81.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f00102d0-714f-4b52-9be5-ded16edfe4a2/0/3130332e3135362e37342e302f32332d3234203d3e20313431303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.74.0/23 Signature Algorithm: sha256WithRSAEncryption 57:75:09:48:38:1d:2f:e4:55:d7:1a:86:2c:94:ac:77:d7:aa: 14:1b:6f:74:c6:3f:7e:ea:62:ba:8e:30:23:e2:bc:95:54:d9: b7:b3:f4:f5:ff:20:b6:87:21:fb:ad:46:5c:7c:f0:77:86:dc: b4:5e:97:60:cf:23:ac:1c:52:3c:2b:e5:50:da:bb:73:59:96: 01:36:c3:f1:1c:f8:dd:09:1a:a3:91:71:95:ba:15:e2:ab:ce: b9:8f:f5:a3:be:3f:46:2c:3d:c4:3d:90:30:6c:f2:79:b3:cb: 6f:ca:b0:a6:da:86:1e:d0:f9:98:93:07:0c:7d:cb:e6:3e:6c: 63:47:61:bc:9f:b6:63:9d:2f:a1:84:23:95:5c:16:8f:5f:cd: 1b:4c:f5:ba:7c:9f:a1:57:94:a8:53:a9:3f:41:53:66:c2:db: a2:f1:9c:bd:61:81:d0:cc:d4:07:1e:e7:8c:2b:aa:f7:25:f9: 51:d4:78:d9:5c:e9:cf:c6:db:fa:0a:8e:e0:37:7c:9b:9e:1d: 01:53:aa:8c:b5:8d:98:56:9d:51:30:02:4d:a0:cf:3f:43:71: 5c:bf:fa:32:24:74:74:b3:6e:ab:23:87:1e:72:bb:ba:d3:29: 18:b9:55:48:34:5e:15:fa:be:17:c9:af:83:8b:8e:86:e4:b0: 63:21:1d:8e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMXqxDDogNs1y32Ow1CO3QZMSG1gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTAwM0U4NTBCNzdDNzZGMEUwMjRGMURBNkVGQkQ4NzY3 QjQxMUE4MTAeFw0yNTAyMDQwMDU1MDJaFw0yNjAyMDMwMTAwMDJaMDMxMTAvBgNV BAMTKEJFNzU3RjdDQUIyNkYwNDA5M0M3RUY2NEEzMDk2QTUxODUzRDQ5RDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIVzRJqlM7Q8D7nQRC6J3Ip0a2 1UcaIXUTC3+qmoK9w7iCWWaJL+56gS2a0kmpz69vaH5emQTsECIRC7DHEFjFBw6C NWIGpWYAVJsiGulbSWJlbTXOtcMSoxjpQhwpRtLPTBKAKlyArhIW63rjAcoPGjEZ mk7I+VG+zd9tX6LSibKc/kppyU8sO9peuHrHxmEa1s//JFlzlakmbRaDWUspkcL5 6dGls9KhYeIv7gjyOejv8IRP//zSBiocUYaUTw19Tm/d+rbbK8ri7rzr7TGu2qOt aJp9YF3Nn8sPCxQeuGcqdMIhe5FxNfkmf9yONdfNe0q0dJa5+GHr+GMwd01hAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvnV/fKsm8ECTx+9kowlqUYU9SdYwHwYDVR0j BBgwFoAU4APoULd8dvDgJPHabvvYdntBGoEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MDAxMDJkMC03MTRmLTRiNTItOWJlNS1kZWQxNmVkZmU0YTIvMC9FMDAzRTg1MEI3 N0M3NkYwRTAyNEYxREE2RUZCRDg3NjdCNDExQTgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTAwM0U4NTBCNzdDNzZGMEUwMjRGMURBNkVGQkQ4NzY3QjQx MUE4MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YwMDEwMmQwLTcxNGYtNGI1Mi05 YmU1LWRlZDE2ZWRmZTRhMi8wLzMxMzAzMzJlMzEzNTM2MmUzNzM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMxMzAzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5xKMA0GCSqG SIb3DQEBCwUAA4IBAQBXdQlIOB0v5FXXGoYslKx316oUG290xj9+6mK6jjAj4ryV VNm3s/T1/yC2hyH7rUZcfPB3hty0XpdgzyOsHFI8K+VQ2rtzWZYBNsPxHPjdCRqj kXGVuhXiq865j/Wjvj9GLD3EPZAwbPJ5s8tvyrCm2oYe0PmYkwcMfcvmPmxjR2G8 n7ZjnS+hhCOVXBaPX80bTPW6fJ+hV5SoU6k/QVNmwtui8Zy9YYHQzNQHHueMK6r3 JflR1HjZXOnPxtv6Co7gN3ybnh0BU6qMtY2YVp1RMAJNoM8/Q3Fcv/oyJHR0s26r I4cecru60ykYuVVINF4V+r4Xya+Di46G5LBjIR2O -----END CERTIFICATE-----Generated at Sun Apr 6 08:25:24 2025 by rpki-client