$ rpki-client -vvf repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/3130332e3138322e37392e302f32342d3234203d3e20313439363635.roa File: 3130332e3138322e37392e302f32342d3234203d3e20313439363635.roa (raw, json) Hash identifier: dJaS59sTNR5P0zfWxcM9Q8SeRwLPq4ilnHYQElEDNMo= Subject key identifier: D8:C1:5A:A8:BA:33:7A:7F:F7:C3:BE:A2:67:69:00:85:4E:A8:95:91 Certificate issuer: /CN=D1F72E67DA9CCE09044FA4204EA993AE93D196D6 Certificate serial: 485FC16F2827FD875128A526A80CF559B80E521E Authority key identifier: D1:F7:2E:67:DA:9C:CE:09:04:4F:A4:20:4E:A9:93:AE:93:D1:96:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/3130332e3138322e37392e302f32342d3234203d3e20313439363635.roa Signing time: Tue 01 Apr 2025 14:53:14 +0000 ROA not before: Tue 01 Apr 2025 14:48:14 +0000 ROA not after: Tue 31 Mar 2026 14:53:14 +0000 asID: 149665 IP address blocks: 103.182.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.crl rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 10:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:5f:c1:6f:28:27:fd:87:51:28:a5:26:a8:0c:f5:59:b8:0e:52:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1F72E67DA9CCE09044FA4204EA993AE93D196D6 Validity Not Before: Apr 1 14:48:14 2025 GMT Not After : Mar 31 14:53:14 2026 GMT Subject: CN=D8C15AA8BA337A7FF7C3BEA2676900854EA89591 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:93:72:6f:2d:25:22:6d:5c:2a:77:8e:44:33: 07:53:56:7d:98:89:3b:2f:2d:b4:fb:c6:b9:f3:ca: 1b:0b:72:0e:d5:dc:0d:3b:77:b4:f5:c5:49:ac:04: 9d:d6:54:d9:32:1d:22:38:2f:62:ac:bb:ff:ea:a1: fb:7c:d3:b1:fc:3b:7c:f2:13:ee:bc:44:7d:cb:16: d1:5f:70:54:87:75:98:46:4f:20:04:a8:85:e9:09: 39:a0:ff:81:4e:ac:a5:c7:b5:a5:91:03:1f:83:ce: 0f:a4:58:61:4f:93:4a:6a:62:6c:80:e6:3c:fa:2a: 91:e7:d9:00:45:d3:dc:35:16:9b:34:66:3d:c5:a8: 95:f6:3c:e9:77:8b:08:ed:68:09:b8:db:cb:f6:d0: 61:9e:03:64:2b:31:a9:8e:6c:cf:3d:24:23:f2:ac: 8d:30:6a:85:53:84:80:3b:a1:06:3e:1c:97:a0:03: dd:d1:72:cc:f6:4d:1e:7e:62:b4:47:f8:12:64:76: 1b:d6:73:61:39:5b:1e:82:1b:2b:0e:6f:44:38:db: 7a:3b:0f:16:23:13:e0:51:79:62:47:8b:64:54:02: 83:12:f5:df:df:f9:d9:b2:ac:4a:1b:95:52:c9:48: 39:06:76:88:9e:ae:b7:d9:38:c9:dd:60:1c:86:b8: c2:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:C1:5A:A8:BA:33:7A:7F:F7:C3:BE:A2:67:69:00:85:4E:A8:95:91 X509v3 Authority Key Identifier: keyid:D1:F7:2E:67:DA:9C:CE:09:04:4F:A4:20:4E:A9:93:AE:93:D1:96:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/3130332e3138322e37392e302f32342d3234203d3e20313439363635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.182.79.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:93:09:04:59:04:bf:04:6b:02:2e:cc:4f:52:8a:4f:81:2b: 3b:5f:e0:3e:a0:15:91:31:d3:58:4e:ad:0c:a2:3f:b4:a6:24: 32:4b:f2:cd:ff:94:06:fb:da:e0:5b:67:eb:44:e8:e2:51:68: 7a:38:01:96:51:fc:53:76:b9:35:0f:b6:c7:ad:d6:2c:4e:99: 4c:66:57:11:75:9b:1e:d3:12:53:a9:03:be:45:c9:0d:2a:9f: 56:41:f7:c7:a9:ab:3c:9d:9b:c3:18:5f:f8:e8:c6:2c:6f:c8: c0:fb:dd:24:1f:f9:1a:7a:bf:bc:e5:da:06:fa:29:15:87:b5: 13:1f:92:14:b2:1d:a8:38:2c:00:70:8c:51:71:3d:98:54:61: 04:23:2a:9a:33:aa:95:e8:aa:77:fe:61:d6:4d:7b:52:58:42: c3:6c:4f:53:66:52:14:5d:9e:e2:bb:8e:4f:f4:9d:6a:d5:8d: 94:a8:22:01:90:59:68:39:28:4f:5d:32:2d:6e:46:c2:62:1d: 53:8c:f0:50:32:d6:de:43:52:06:70:db:bf:0c:26:11:90:84: 82:83:54:c0:96:d1:ef:cd:60:75:03:cb:bf:af:2d:6c:06:b8: 16:17:dd:95:bf:37:0c:5f:d5:b4:16:e3:bf:fb:08:f1:88:f8: 49:92:09:2f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSF/Bbygn/YdRKKUmqAz1WbgOUh4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDFGNzJFNjdEQTlDQ0UwOTA0NEZBNDIwNEVBOTkzQUU5 M0QxOTZENjAeFw0yNTA0MDExNDQ4MTRaFw0yNjAzMzExNDUzMTRaMDMxMTAvBgNV BAMTKEQ4QzE1QUE4QkEzMzdBN0ZGN0MzQkVBMjY3NjkwMDg1NEVBODk1OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFk3JvLSUibVwqd45EMwdTVn2Y iTsvLbT7xrnzyhsLcg7V3A07d7T1xUmsBJ3WVNkyHSI4L2Ksu//qoft807H8O3zy E+68RH3LFtFfcFSHdZhGTyAEqIXpCTmg/4FOrKXHtaWRAx+Dzg+kWGFPk0pqYmyA 5jz6KpHn2QBF09w1Fps0Zj3FqJX2POl3iwjtaAm428v20GGeA2QrMamObM89JCPy rI0waoVThIA7oQY+HJegA93Rcsz2TR5+YrRH+BJkdhvWc2E5Wx6CGysOb0Q423o7 DxYjE+BReWJHi2RUAoMS9d/f+dmyrEoblVLJSDkGdoierrfZOMndYByGuMKRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2MFaqLozen/3w76iZ2kAhU6olZEwHwYDVR0j BBgwFoAU0fcuZ9qczgkET6QgTqmTrpPRltYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRjMzNiOC05ZDQyLTQyMDgtOGFjNC1mMTcyYTE0NGQ4NjgvMC9EMUY3MkU2N0RB OUNDRTA5MDQ0RkE0MjA0RUE5OTNBRTkzRDE5NkQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDFGNzJFNjdEQTlDQ0UwOTA0NEZBNDIwNEVBOTkzQUU5M0Qx OTZENi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGMzM2I4LTlkNDItNDIwOC04 YWM0LWYxNzJhMTQ0ZDg2OC8wLzMxMzAzMzJlMzEzODMyMmUzNzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzYzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7ZPMA0GCSqG SIb3DQEBCwUAA4IBAQAMkwkEWQS/BGsCLsxPUopPgSs7X+A+oBWRMdNYTq0Moj+0 piQyS/LN/5QG+9rgW2frROjiUWh6OAGWUfxTdrk1D7bHrdYsTplMZlcRdZse0xJT qQO+RckNKp9WQffHqas8nZvDGF/46MYsb8jA+90kH/kaer+85doG+ikVh7UTH5IU sh2oOCwAcIxRcT2YVGEEIyqaM6qV6Kp3/mHWTXtSWELDbE9TZlIUXZ7iu45P9J1q 1Y2UqCIBkFloOShPXTItbkbCYh1TjPBQMtbeQ1IGcNu/DCYRkISCg1TAltHvzWB1 A8u/ry1sBrgWF92VvzcMX9W0FuO/+wjxiPhJkgkv -----END CERTIFICATE-----Generated at Sun Apr 6 13:38:58 2025 by rpki-client