$ rpki-client -vvf repo-rpki.idnic.net/repo/f7180704-6b64-4a40-8f3d-ffdfd5e37def/0/3130332e32332e3130302e302f32322d3234203d3e203538343030.roa File: 3130332e32332e3130302e302f32322d3234203d3e203538343030.roa (raw, json) Hash identifier: X1zuW7ewqOs7galNtjkQMnHEEBdiMyZOmIpDqdwYj+Q= Subject key identifier: E4:50:34:C3:53:90:40:E6:BA:51:CB:27:CB:A2:FF:91:5F:FA:9F:18 Certificate issuer: /CN=22CD3A20CF621A5B0B99E428C8E57319C0A9CE2C Certificate serial: 7BBBE34B089259B9310C4F5A2DB7F8E1A2184315 Authority key identifier: 22:CD:3A:20:CF:62:1A:5B:0B:99:E4:28:C8:E5:73:19:C0:A9:CE:2C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/22CD3A20CF621A5B0B99E428C8E57319C0A9CE2C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7180704-6b64-4a40-8f3d-ffdfd5e37def/0/3130332e32332e3130302e302f32322d3234203d3e203538343030.roa Signing time: Mon 27 Jan 2025 08:00:01 +0000 ROA not before: Mon 27 Jan 2025 07:55:01 +0000 ROA not after: Mon 26 Jan 2026 08:00:01 +0000 asID: 58400 IP address blocks: 103.23.100.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7180704-6b64-4a40-8f3d-ffdfd5e37def/0/22CD3A20CF621A5B0B99E428C8E57319C0A9CE2C.crl rsync://repo-rpki.idnic.net/repo/f7180704-6b64-4a40-8f3d-ffdfd5e37def/0/22CD3A20CF621A5B0B99E428C8E57319C0A9CE2C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/22CD3A20CF621A5B0B99E428C8E57319C0A9CE2C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 18:07:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:bb:e3:4b:08:92:59:b9:31:0c:4f:5a:2d:b7:f8:e1:a2:18:43:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22CD3A20CF621A5B0B99E428C8E57319C0A9CE2C Validity Not Before: Jan 27 07:55:01 2025 GMT Not After : Jan 26 08:00:01 2026 GMT Subject: CN=E45034C3539040E6BA51CB27CBA2FF915FFA9F18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:17:c3:98:07:78:4c:ea:d5:31:46:4a:30:c0: 91:22:ef:9b:ac:cc:3c:d3:6e:73:d3:94:39:e4:af: a1:80:9a:6a:2b:9b:1d:ae:fd:5c:0c:02:1f:09:2e: 50:72:ec:e2:e5:c1:e7:40:9f:64:e5:95:39:8a:0e: e7:f3:e9:63:63:73:5b:74:a3:b8:3b:58:a1:4f:50: b4:bc:92:94:e2:c7:1e:ae:5d:19:3d:e8:fc:da:4c: 9b:6e:f2:21:29:f1:5c:2d:52:cb:82:e6:02:ff:f6: ab:b8:63:de:19:f5:06:68:c0:77:4d:a1:31:f7:92: f8:13:f1:a7:1e:9e:b2:14:61:77:1b:a8:68:8f:42: f0:5a:d5:a7:8b:50:46:a7:18:4d:87:6c:5e:c3:9a: 02:d0:f1:07:ad:3c:6b:10:b5:0d:d5:f0:cf:ce:d8: dc:01:0e:ee:ca:57:73:5e:ca:6c:d8:e5:58:93:db: 41:75:93:10:28:81:de:f7:13:12:e2:5d:60:81:5d: b5:8e:9e:1f:5e:46:76:53:d4:10:63:04:39:8d:ca: aa:83:cc:94:b7:bf:42:33:d7:01:a0:98:7c:ed:e0: 8a:8a:51:0f:76:34:82:2d:6d:33:d4:47:31:82:27: 12:a5:2d:f4:a5:38:fe:d3:ac:ea:26:14:06:e4:d4: ed:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:50:34:C3:53:90:40:E6:BA:51:CB:27:CB:A2:FF:91:5F:FA:9F:18 X509v3 Authority Key Identifier: keyid:22:CD:3A:20:CF:62:1A:5B:0B:99:E4:28:C8:E5:73:19:C0:A9:CE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7180704-6b64-4a40-8f3d-ffdfd5e37def/0/22CD3A20CF621A5B0B99E428C8E57319C0A9CE2C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/22CD3A20CF621A5B0B99E428C8E57319C0A9CE2C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7180704-6b64-4a40-8f3d-ffdfd5e37def/0/3130332e32332e3130302e302f32322d3234203d3e203538343030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.23.100.0/22 Signature Algorithm: sha256WithRSAEncryption af:0f:f2:7a:0b:98:35:27:4e:2e:21:13:22:d3:32:98:dd:17: 1e:3c:24:95:9d:d9:a8:5a:57:eb:36:db:37:4c:fa:fe:8b:93: 4f:65:05:91:99:68:34:e8:6e:13:f1:f5:af:a0:b7:f1:00:24: 58:28:d6:93:c3:46:c9:30:57:57:ca:2a:60:9d:6c:00:6c:54: ed:b8:9f:09:3c:22:35:7d:ea:73:12:a8:b3:42:f3:3b:1e:18: f5:3e:50:b4:be:c5:1e:ff:3c:81:6b:7c:78:e6:49:41:87:e9: 1b:11:01:c2:b5:9c:ca:e8:89:17:ec:45:22:03:89:a1:6a:03: b1:bc:47:ed:c0:2a:ac:05:11:97:0c:eb:fb:92:da:41:75:40: 6d:e2:8f:e2:b2:61:5c:23:e6:9f:2a:2d:f2:d8:68:7b:b2:fb: ca:7b:63:32:c9:39:80:a2:a8:c2:56:79:d8:a6:32:3f:45:74: 47:21:5c:39:f1:67:aa:f9:d1:6d:0b:41:fe:09:33:70:92:28: 92:16:62:79:a5:d6:21:71:85:ba:b1:a1:34:e1:43:f3:07:67: dc:4f:43:29:43:35:bf:5b:bd:f7:61:d8:56:ef:ce:e7:89:55: 9f:7d:05:dc:b4:86:33:0e:90:ee:72:40:65:37:99:95:d0:e0: 6f:ea:59:c7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUe7vjSwiSWbkxDE9aLbf44aIYQxUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjJDRDNBMjBDRjYyMUE1QjBCOTlFNDI4QzhFNTczMTlD MEE5Q0UyQzAeFw0yNTAxMjcwNzU1MDFaFw0yNjAxMjYwODAwMDFaMDMxMTAvBgNV BAMTKEU0NTAzNEMzNTM5MDQwRTZCQTUxQ0IyN0NCQTJGRjkxNUZGQTlGMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUF8OYB3hM6tUxRkowwJEi75us zDzTbnPTlDnkr6GAmmormx2u/VwMAh8JLlBy7OLlwedAn2TllTmKDufz6WNjc1t0 o7g7WKFPULS8kpTixx6uXRk96PzaTJtu8iEp8VwtUsuC5gL/9qu4Y94Z9QZowHdN oTH3kvgT8acenrIUYXcbqGiPQvBa1aeLUEanGE2HbF7DmgLQ8QetPGsQtQ3V8M/O 2NwBDu7KV3NeymzY5ViT20F1kxAogd73ExLiXWCBXbWOnh9eRnZT1BBjBDmNyqqD zJS3v0Iz1wGgmHzt4IqKUQ92NIItbTPURzGCJxKlLfSlOP7TrOomFAbk1O0PAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU5FA0w1OQQOa6Ucsny6L/kV/6nxgwHwYDVR0j BBgwFoAUIs06IM9iGlsLmeQoyOVzGcCpziwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NzE4MDcwNC02YjY0LTRhNDAtOGYzZC1mZmRmZDVlMzdkZWYvMC8yMkNEM0EyMENG NjIxQTVCMEI5OUU0MjhDOEU1NzMxOUMwQTlDRTJDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjJDRDNBMjBDRjYyMUE1QjBCOTlFNDI4QzhFNTczMTlDMEE5 Q0UyQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3MTgwNzA0LTZiNjQtNGE0MC04 ZjNkLWZmZGZkNWUzN2RlZi8wLzMxMzAzMzJlMzIzMzJlMzEzMDMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzODM0MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcXZDANBgkqhkiG 9w0BAQsFAAOCAQEArw/yeguYNSdOLiETItMymN0XHjwklZ3ZqFpX6zbbN0z6/ouT T2UFkZloNOhuE/H1r6C38QAkWCjWk8NGyTBXV8oqYJ1sAGxU7bifCTwiNX3qcxKo s0LzOx4Y9T5QtL7FHv88gWt8eOZJQYfpGxEBwrWcyuiJF+xFIgOJoWoDsbxH7cAq rAURlwzr+5LaQXVAbeKP4rJhXCPmnyot8thoe7L7yntjMsk5gKKowlZ52KYyP0V0 RyFcOfFnqvnRbQtB/gkzcJIokhZieaXWIXGFurGhNOFD8wdn3E9DKUM1v1u992HY Vu/O54lVn30F3LSGMw6Q7nJAZTeZldDgb+pZxw== -----END CERTIFICATE-----Generated at Sun Apr 6 10:46:09 2025 by rpki-client