$ rpki-client -vvf repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/3130332e3138322e37382e302f32332d3234203d3e20313439363635.roa File: 3130332e3138322e37382e302f32332d3234203d3e20313439363635.roa (raw, json) Hash identifier: gY0MYBLnrNGMInBtjBk2fVW/5Y8HTuVN7KMpfZNbvwM= Subject key identifier: 16:DF:01:33:CD:07:55:87:3D:04:21:36:DF:CE:A9:83:24:20:34:DC Certificate issuer: /CN=D1F72E67DA9CCE09044FA4204EA993AE93D196D6 Certificate serial: 53B417BC4277642CF7C0ABF7EE770E22EC1F5D72 Authority key identifier: D1:F7:2E:67:DA:9C:CE:09:04:4F:A4:20:4E:A9:93:AE:93:D1:96:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/3130332e3138322e37382e302f32332d3234203d3e20313439363635.roa Signing time: Tue 01 Apr 2025 14:51:52 +0000 ROA not before: Tue 01 Apr 2025 14:46:52 +0000 ROA not after: Tue 31 Mar 2026 14:51:52 +0000 asID: 149665 IP address blocks: 103.182.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.crl rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 10:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:b4:17:bc:42:77:64:2c:f7:c0:ab:f7:ee:77:0e:22:ec:1f:5d:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1F72E67DA9CCE09044FA4204EA993AE93D196D6 Validity Not Before: Apr 1 14:46:52 2025 GMT Not After : Mar 31 14:51:52 2026 GMT Subject: CN=16DF0133CD0755873D042136DFCEA983242034DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:87:c5:7c:0e:48:2e:a6:ec:fd:90:43:4a:73: 6d:14:45:84:13:42:81:2a:10:ec:25:ec:33:63:f6: 25:51:84:25:6d:da:61:c3:c6:83:f7:52:8b:4e:c7: a6:16:62:10:62:a3:ee:e7:cb:b2:4f:51:81:e5:d4: 25:de:38:93:f9:ea:3d:93:cf:e8:db:c9:78:c3:e6: 2c:3a:98:f1:69:11:01:74:ce:4b:11:25:e2:f0:69: 89:64:e0:68:9e:e8:b7:ae:95:e3:fe:2b:fb:21:22: 0d:2e:a6:30:24:1d:b5:e0:29:59:f7:e9:e5:b8:d1: f6:fc:d3:bc:67:1c:e8:19:b1:40:e0:18:96:f9:3d: 61:7f:96:21:fd:f3:ef:42:e1:6a:dc:92:c1:23:1b: fd:31:37:02:31:01:74:26:7b:31:f2:63:f6:7c:f4: e1:80:e2:36:81:0d:0b:c2:c2:ea:66:4d:76:ab:81: ff:d9:bc:e8:e9:89:03:af:c2:85:bf:af:73:bd:b8: 81:e8:25:2a:7e:38:8b:05:6d:7b:03:72:3b:27:1c: d0:82:79:48:9e:d8:09:d9:97:b2:ac:aa:20:44:44: ec:f4:68:76:62:10:f3:bb:71:5f:db:0f:a8:25:46: 6c:92:93:73:58:22:cb:8b:e1:e9:36:83:54:39:a8: 4b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:DF:01:33:CD:07:55:87:3D:04:21:36:DF:CE:A9:83:24:20:34:DC X509v3 Authority Key Identifier: keyid:D1:F7:2E:67:DA:9C:CE:09:04:4F:A4:20:4E:A9:93:AE:93:D1:96:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/3130332e3138322e37382e302f32332d3234203d3e20313439363635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.182.78.0/23 Signature Algorithm: sha256WithRSAEncryption 6b:01:d8:e7:2e:70:f1:a9:c4:35:d8:a1:39:3f:10:12:fb:43: 8c:05:99:d2:30:60:2c:23:9c:54:f0:cc:91:ad:ae:3e:1d:a2: 01:a8:b9:04:cc:4f:13:42:e4:7f:c4:52:42:2b:39:33:44:eb: 2a:3d:a8:18:fb:94:32:56:2c:5c:38:33:3a:a5:a9:07:ba:10: 33:c4:40:04:9d:58:6b:df:95:05:08:a3:e5:32:b5:6d:9a:29: b8:3f:90:65:dc:9a:a3:98:e2:5e:78:7d:dc:77:b5:e3:78:cc: 1a:ce:8a:d2:3d:09:ec:86:ef:de:39:96:3a:df:a7:81:da:db: 0a:75:39:58:67:37:db:19:6b:6e:d2:2d:3f:05:bc:19:5f:04: 51:fb:77:13:2b:be:f0:67:7d:53:de:1a:ba:43:e1:ab:7a:d4: 63:f3:32:2b:9e:78:03:ab:6b:3d:0f:0f:91:78:38:98:0d:a0: 8c:54:8d:5e:2a:d2:59:4d:0e:08:6c:83:d2:b1:34:42:83:34: 3a:2c:d6:f7:b1:58:f6:10:1f:12:04:92:a1:e7:04:10:7d:bf: f7:65:d6:9b:3d:3b:98:eb:14:2e:a0:d8:dd:39:77:85:bc:8c: d4:26:14:6a:28:14:46:6c:47:48:34:5a:d9:36:f1:a2:60:e6: 5e:88:87:65 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUU7QXvEJ3ZCz3wKv37ncOIuwfXXIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDFGNzJFNjdEQTlDQ0UwOTA0NEZBNDIwNEVBOTkzQUU5 M0QxOTZENjAeFw0yNTA0MDExNDQ2NTJaFw0yNjAzMzExNDUxNTJaMDMxMTAvBgNV BAMTKDE2REYwMTMzQ0QwNzU1ODczRDA0MjEzNkRGQ0VBOTgzMjQyMDM0REMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIh8V8Dkgupuz9kENKc20URYQT QoEqEOwl7DNj9iVRhCVt2mHDxoP3UotOx6YWYhBio+7ny7JPUYHl1CXeOJP56j2T z+jbyXjD5iw6mPFpEQF0zksRJeLwaYlk4Gie6LeuleP+K/shIg0upjAkHbXgKVn3 6eW40fb807xnHOgZsUDgGJb5PWF/liH98+9C4WrcksEjG/0xNwIxAXQmezHyY/Z8 9OGA4jaBDQvCwupmTXargf/ZvOjpiQOvwoW/r3O9uIHoJSp+OIsFbXsDcjsnHNCC eUie2AnZl7KsqiBEROz0aHZiEPO7cV/bD6glRmySk3NYIsuL4ek2g1Q5qEvXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFt8BM80HVYc9BCE2386pgyQgNNwwHwYDVR0j BBgwFoAU0fcuZ9qczgkET6QgTqmTrpPRltYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRjMzNiOC05ZDQyLTQyMDgtOGFjNC1mMTcyYTE0NGQ4NjgvMC9EMUY3MkU2N0RB OUNDRTA5MDQ0RkE0MjA0RUE5OTNBRTkzRDE5NkQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDFGNzJFNjdEQTlDQ0UwOTA0NEZBNDIwNEVBOTkzQUU5M0Qx OTZENi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGMzM2I4LTlkNDItNDIwOC04 YWM0LWYxNzJhMTQ0ZDg2OC8wLzMxMzAzMzJlMzEzODMyMmUzNzM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM5MzYzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7ZOMA0GCSqG SIb3DQEBCwUAA4IBAQBrAdjnLnDxqcQ12KE5PxAS+0OMBZnSMGAsI5xU8MyRra4+ HaIBqLkEzE8TQuR/xFJCKzkzROsqPagY+5QyVixcODM6pakHuhAzxEAEnVhr35UF CKPlMrVtmim4P5Bl3JqjmOJeeH3cd7XjeMwazorSPQnshu/eOZY636eB2tsKdTlY ZzfbGWtu0i0/BbwZXwRR+3cTK77wZ31T3hq6Q+GretRj8zIrnngDq2s9Dw+ReDiY DaCMVI1eKtJZTQ4IbIPSsTRCgzQ6LNb3sVj2EB8SBJKh5wQQfb/3ZdabPTuY6xQu oNjdOXeFvIzUJhRqKBRGbEdINFrZNvGiYOZeiIdl -----END CERTIFICATE-----Generated at Sun Apr 6 13:38:50 2025 by rpki-client