$ rpki-client -vvf repo-rpki.idnic.net/repo/f5b8459a-e351-4c8d-bc29-5fd08c4c5941/0/3130332e3137352e38372e302f32342d3234203d3e20313437313434.roa File: 3130332e3137352e38372e302f32342d3234203d3e20313437313434.roa (raw, json) Hash identifier: rSj9OVlqtiPPskUUwR+sB8KTVHxG2CyA4iMG/fwGrQ8= Subject key identifier: 34:62:5F:59:73:88:7E:9B:6F:79:D4:6D:CF:80:1B:41:6D:29:23:14 Certificate issuer: /CN=D84954514E2FF8171F1DC8D8C911A96481911DBB Certificate serial: B70B9DFE32D0C882F087941B76072D45475289 Authority key identifier: D8:49:54:51:4E:2F:F8:17:1F:1D:C8:D8:C9:11:A9:64:81:91:1D:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D84954514E2FF8171F1DC8D8C911A96481911DBB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f5b8459a-e351-4c8d-bc29-5fd08c4c5941/0/3130332e3137352e38372e302f32342d3234203d3e20313437313434.roa Signing time: Mon 14 Apr 2025 09:00:00 +0000 ROA not before: Mon 14 Apr 2025 08:55:00 +0000 ROA not after: Mon 13 Apr 2026 09:00:00 +0000 asID: 147144 IP address blocks: 103.175.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f5b8459a-e351-4c8d-bc29-5fd08c4c5941/0/D84954514E2FF8171F1DC8D8C911A96481911DBB.crl rsync://repo-rpki.idnic.net/repo/f5b8459a-e351-4c8d-bc29-5fd08c4c5941/0/D84954514E2FF8171F1DC8D8C911A96481911DBB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D84954514E2FF8171F1DC8D8C911A96481911DBB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 02:02:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: b7:0b:9d:fe:32:d0:c8:82:f0:87:94:1b:76:07:2d:45:47:52:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D84954514E2FF8171F1DC8D8C911A96481911DBB Validity Not Before: Apr 14 08:55:00 2025 GMT Not After : Apr 13 09:00:00 2026 GMT Subject: CN=34625F5973887E9B6F79D46DCF801B416D292314 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:17:31:30:c9:f2:42:ef:54:67:f6:33:21:c7: 73:10:ec:90:3f:05:2b:67:ca:56:0f:62:03:f2:5d: 35:68:f3:68:dc:05:ca:84:8d:8c:11:3d:83:04:98: 97:b4:f6:fa:29:f2:ad:6c:f1:b7:fd:a2:5d:e4:9e: e8:af:41:b6:00:70:67:a4:7a:1c:b1:05:5b:08:cc: e6:b4:72:8d:fe:16:92:9a:bf:ac:40:f5:58:52:80: b2:cf:5a:36:fd:e2:6b:1b:c5:b2:a6:0c:9f:dc:04: 82:c2:2d:a6:4c:3b:ee:f2:14:9d:87:29:78:d9:94: a2:f6:8e:3e:70:f6:ec:db:55:fa:c7:04:18:af:29: 18:02:5d:6e:5d:29:24:0e:60:0d:42:16:ac:81:60: d8:d9:4d:be:7b:f2:32:77:0f:3a:0c:2d:be:d4:f5: bd:e7:b4:f8:e2:a7:5f:8b:96:0c:bf:95:51:ee:60: d7:d1:c8:8d:dd:46:7b:49:1d:c8:44:5e:82:45:23: 93:1f:a0:56:2f:4c:ea:ea:a7:2c:34:bf:01:f2:25: fe:98:e4:45:6b:bf:8e:7a:55:f8:d5:c3:99:7c:73: b3:2b:93:bf:7a:28:8e:18:fb:0f:ad:bb:dc:58:fd: 18:85:37:75:fe:8d:f0:1f:0c:e6:2a:70:9b:c1:df: 1a:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:62:5F:59:73:88:7E:9B:6F:79:D4:6D:CF:80:1B:41:6D:29:23:14 X509v3 Authority Key Identifier: keyid:D8:49:54:51:4E:2F:F8:17:1F:1D:C8:D8:C9:11:A9:64:81:91:1D:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f5b8459a-e351-4c8d-bc29-5fd08c4c5941/0/D84954514E2FF8171F1DC8D8C911A96481911DBB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D84954514E2FF8171F1DC8D8C911A96481911DBB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f5b8459a-e351-4c8d-bc29-5fd08c4c5941/0/3130332e3137352e38372e302f32342d3234203d3e20313437313434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.87.0/24 Signature Algorithm: sha256WithRSAEncryption 88:0b:22:d9:2f:36:ec:3e:ee:5c:3b:10:0f:a8:85:a7:e3:e0: f4:5d:2d:99:78:34:d9:28:b7:32:c0:8c:4c:10:39:3f:ff:16: f7:65:44:a7:29:a2:63:1d:b5:6b:cd:c7:fb:bd:03:e9:b6:2e: b2:4b:54:38:43:28:7b:46:ee:52:0f:69:e6:11:0b:05:b8:27: 15:0c:04:e2:ce:e6:2b:49:44:76:d4:dd:51:3b:40:49:32:74: 0d:89:46:b6:9f:79:35:43:91:10:28:53:78:0c:d4:b8:0d:6f: 85:c2:a5:16:eb:14:e6:1e:b6:e5:ed:bf:85:7a:94:84:20:72: 59:07:bb:fb:7d:0e:87:f4:df:53:85:e6:8e:a8:7c:51:22:2c: 03:15:ce:8d:a8:81:45:44:43:c2:3e:62:c4:ad:7b:51:e3:36: ee:86:1e:9f:14:34:02:bb:ab:b9:ef:a3:3a:e7:40:4e:08:79: c2:47:5e:70:68:71:5e:b3:75:3b:7c:89:02:99:82:52:9a:26: d1:09:5f:75:b3:26:4e:0b:f5:7b:5e:32:2a:4d:54:a7:04:ca: 75:95:27:ed:c1:91:03:51:e3:cf:08:3c:eb:eb:e8:bb:55:38: 2d:7f:b8:a9:93:6b:dc:56:bc:b8:9b:1c:f4:fd:12:1c:62:9f: 14:be:84:d1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUALcLnf4y0MiC8IeUG3YHLUVHUokwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg0OTU0NTE0RTJGRjgxNzFGMURDOEQ4QzkxMUE5NjQ4 MTkxMURCQjAeFw0yNTA0MTQwODU1MDBaFw0yNjA0MTMwOTAwMDBaMDMxMTAvBgNV BAMTKDM0NjI1RjU5NzM4ODdFOUI2Rjc5RDQ2RENGODAxQjQxNkQyOTIzMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTFzEwyfJC71Rn9jMhx3MQ7JA/ BStnylYPYgPyXTVo82jcBcqEjYwRPYMEmJe09vop8q1s8bf9ol3knuivQbYAcGek ehyxBVsIzOa0co3+FpKav6xA9VhSgLLPWjb94msbxbKmDJ/cBILCLaZMO+7yFJ2H KXjZlKL2jj5w9uzbVfrHBBivKRgCXW5dKSQOYA1CFqyBYNjZTb578jJ3DzoMLb7U 9b3ntPjip1+Llgy/lVHuYNfRyI3dRntJHchEXoJFI5MfoFYvTOrqpyw0vwHyJf6Y 5EVrv456VfjVw5l8c7Mrk796KI4Y+w+tu9xY/RiFN3X+jfAfDOYqcJvB3xpRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNGJfWXOIfptvedRtz4AbQW0pIxQwHwYDVR0j BBgwFoAU2ElUUU4v+BcfHcjYyRGpZIGRHbswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NWI4NDU5YS1lMzUxLTRjOGQtYmMyOS01ZmQwOGM0YzU5NDEvMC9EODQ5NTQ1MTRF MkZGODE3MUYxREM4RDhDOTExQTk2NDgxOTExREJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDg0OTU0NTE0RTJGRjgxNzFGMURDOEQ4QzkxMUE5NjQ4MTkx MURCQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y1Yjg0NTlhLWUzNTEtNGM4ZC1i YzI5LTVmZDA4YzRjNTk0MS8wLzMxMzAzMzJlMzEzNzM1MmUzODM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM3MzEzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ69XMA0GCSqG SIb3DQEBCwUAA4IBAQCICyLZLzbsPu5cOxAPqIWn4+D0XS2ZeDTZKLcywIxMEDk/ /xb3ZUSnKaJjHbVrzcf7vQPpti6yS1Q4Qyh7Ru5SD2nmEQsFuCcVDATizuYrSUR2 1N1RO0BJMnQNiUa2n3k1Q5EQKFN4DNS4DW+FwqUW6xTmHrbl7b+FepSEIHJZB7v7 fQ6H9N9TheaOqHxRIiwDFc6NqIFFREPCPmLErXtR4zbuhh6fFDQCu6u576M650BO CHnCR15waHFes3U7fIkCmYJSmibRCV91syZOC/V7XjIqTVSnBMp1lSftwZEDUePP CDzr6+i7VTgtf7ipk2vcVry4mxz0/RIcYp8UvoTR -----END CERTIFICATE-----Generated at Fri Apr 18 00:00:43 2025 by rpki-client