$ rpki-client -vvf repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/3130332e3136392e3133342e302f32342d3234203d3e20313432333338.roa File: 3130332e3136392e3133342e302f32342d3234203d3e20313432333338.roa (raw, json) Hash identifier: hMyDLqAom528DiTqwsKMUbv/O7C6Y2ZAhArZmLvzcpE= Subject key identifier: 1F:C2:B0:CF:7F:73:BF:E5:2B:86:81:E1:44:50:3A:2D:DF:10:9D:3B Certificate issuer: /CN=42CB30013F9704EFBDCF784FCD60289C7620A373 Certificate serial: 6551CB572F5F68EE0A165BC35799CADE74E7C1F8 Authority key identifier: 42:CB:30:01:3F:97:04:EF:BD:CF:78:4F:CD:60:28:9C:76:20:A3:73 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CB30013F9704EFBDCF784FCD60289C7620A373.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/3130332e3136392e3133342e302f32342d3234203d3e20313432333338.roa Signing time: Thu 03 Apr 2025 12:00:36 +0000 ROA not before: Thu 03 Apr 2025 11:55:36 +0000 ROA not after: Thu 02 Apr 2026 12:00:36 +0000 asID: 142338 IP address blocks: 103.169.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/42CB30013F9704EFBDCF784FCD60289C7620A373.crl rsync://repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/42CB30013F9704EFBDCF784FCD60289C7620A373.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CB30013F9704EFBDCF784FCD60289C7620A373.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 00:59:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:51:cb:57:2f:5f:68:ee:0a:16:5b:c3:57:99:ca:de:74:e7:c1:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42CB30013F9704EFBDCF784FCD60289C7620A373 Validity Not Before: Apr 3 11:55:36 2025 GMT Not After : Apr 2 12:00:36 2026 GMT Subject: CN=1FC2B0CF7F73BFE52B8681E144503A2DDF109D3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:38:1f:62:9d:b6:9c:bf:67:a6:49:a3:12:43: 7b:c4:3b:e2:ca:45:c2:65:ac:0b:12:30:f7:9d:5e: 72:f2:fc:10:88:8b:3a:e9:79:e1:b1:47:86:12:98: 10:db:9e:42:48:40:59:d9:63:c6:ba:b6:ab:d8:63: 43:af:85:d7:a1:43:85:2e:05:3b:7b:57:c5:86:c5: e4:f9:65:16:3d:1e:ce:20:60:05:29:1f:89:a2:c4: 16:a0:92:01:78:75:86:f4:7d:76:ea:11:85:60:e7: ff:33:65:12:10:8c:17:19:b1:0e:b7:ac:f5:ce:2d: 82:d7:f3:d3:41:5d:1f:18:05:21:5e:7d:d4:c4:83: 9a:d9:48:b7:57:9b:f4:30:9d:6d:fd:e4:44:68:ae: 0e:97:6b:1b:de:a3:2f:e5:af:e3:3d:7b:ac:88:c3: 10:39:a1:b9:b0:13:b4:d5:3e:a7:51:23:ed:47:59: ca:c4:ee:0f:25:f2:86:65:00:1f:12:65:99:7d:03: e8:96:0f:c8:75:c5:54:9e:0a:7e:ec:43:5b:9a:6c: 34:b5:8a:72:b3:66:37:8d:70:fc:07:a6:22:5d:1c: a6:ba:29:39:0b:f0:19:cf:fb:d5:81:5b:fa:a7:ee: db:27:70:3e:03:c8:96:db:be:76:20:c4:3f:12:e3: 80:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:C2:B0:CF:7F:73:BF:E5:2B:86:81:E1:44:50:3A:2D:DF:10:9D:3B X509v3 Authority Key Identifier: keyid:42:CB:30:01:3F:97:04:EF:BD:CF:78:4F:CD:60:28:9C:76:20:A3:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/42CB30013F9704EFBDCF784FCD60289C7620A373.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CB30013F9704EFBDCF784FCD60289C7620A373.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f9003d6c-95f1-47a4-9d5d-f7b48caaa7f4/0/3130332e3136392e3133342e302f32342d3234203d3e20313432333338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.134.0/24 Signature Algorithm: sha256WithRSAEncryption aa:9f:38:bc:37:27:49:f7:2d:ba:18:c1:3c:9e:cb:21:28:11: f0:e8:4a:be:d4:5f:2c:51:cc:8d:41:2e:a9:92:c1:a9:cc:e3: 45:9c:8c:e6:56:fb:c3:64:b0:07:31:38:54:8b:7b:58:70:02: 4b:ba:ce:4f:72:60:ba:a7:3c:99:96:2d:fe:d0:b9:ef:5b:41: 25:7f:cc:97:45:e0:47:15:bb:09:13:eb:03:f0:5e:e2:21:0f: 04:91:6b:e7:d6:0c:29:5c:2c:2a:2a:d1:80:68:28:07:29:3d: cb:3c:95:ca:24:24:6e:c0:e5:3d:79:37:c6:51:12:c5:83:43: 95:ec:4e:ec:d5:4b:c6:ef:ca:8f:58:bc:46:17:7c:81:50:56: 7d:5e:7d:40:85:e2:a2:98:57:64:7d:a6:1b:8c:ec:bd:40:f2: d6:a6:46:86:6c:f2:77:6f:39:58:a3:9f:54:95:46:55:a7:3a: 75:e3:9e:d6:9b:52:39:96:dd:b2:d8:a3:e9:71:a1:bb:df:29: 6b:b5:cf:f7:39:23:a1:00:b3:19:31:f4:89:4e:a6:22:a1:44: 42:85:09:bc:ac:41:d0:e3:5d:09:99:19:17:23:37:5d:0d:f2: 08:f6:3e:c6:95:8c:5f:02:21:0a:1e:52:2b:90:8e:cc:63:25: 56:0f:8c:e5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZVHLVy9faO4KFlvDV5nK3nTnwfgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJDQjMwMDEzRjk3MDRFRkJEQ0Y3ODRGQ0Q2MDI4OUM3 NjIwQTM3MzAeFw0yNTA0MDMxMTU1MzZaFw0yNjA0MDIxMjAwMzZaMDMxMTAvBgNV BAMTKDFGQzJCMENGN0Y3M0JGRTUyQjg2ODFFMTQ0NTAzQTJEREYxMDlEM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjOB9inbacv2emSaMSQ3vEO+LK RcJlrAsSMPedXnLy/BCIizrpeeGxR4YSmBDbnkJIQFnZY8a6tqvYY0OvhdehQ4Uu BTt7V8WGxeT5ZRY9Hs4gYAUpH4mixBagkgF4dYb0fXbqEYVg5/8zZRIQjBcZsQ63 rPXOLYLX89NBXR8YBSFefdTEg5rZSLdXm/QwnW395ERorg6Xaxveoy/lr+M9e6yI wxA5obmwE7TVPqdRI+1HWcrE7g8l8oZlAB8SZZl9A+iWD8h1xVSeCn7sQ1uabDS1 inKzZjeNcPwHpiJdHKa6KTkL8BnP+9WBW/qn7tsncD4DyJbbvnYgxD8S44DbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUH8Kwz39zv+UrhoHhRFA6Ld8QnTswHwYDVR0j BBgwFoAUQsswAT+XBO+9z3hPzWAonHYgo3MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OTAwM2Q2Yy05NWYxLTQ3YTQtOWQ1ZC1mN2I0OGNhYWE3ZjQvMC80MkNCMzAwMTNG OTcwNEVGQkRDRjc4NEZDRDYwMjg5Qzc2MjBBMzczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDJDQjMwMDEzRjk3MDRFRkJEQ0Y3ODRGQ0Q2MDI4OUM3NjIw QTM3My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5MDAzZDZjLTk1ZjEtNDdhNC05 ZDVkLWY3YjQ4Y2FhYTdmNC8wLzMxMzAzMzJlMzEzNjM5MmUzMTMzMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzMzMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqYYwDQYJ KoZIhvcNAQELBQADggEBAKqfOLw3J0n3LboYwTyeyyEoEfDoSr7UXyxRzI1BLqmS wanM40WcjOZW+8NksAcxOFSLe1hwAku6zk9yYLqnPJmWLf7Que9bQSV/zJdF4EcV uwkT6wPwXuIhDwSRa+fWDClcLCoq0YBoKAcpPcs8lcokJG7A5T15N8ZREsWDQ5Xs TuzVS8bvyo9YvEYXfIFQVn1efUCF4qKYV2R9phuM7L1A8tamRoZs8ndvOVijn1SV RlWnOnXjntabUjmW3bLYo+lxobvfKWu1z/c5I6EAsxkx9IlOpiKhREKFCbysQdDj XQmZGRcjN10N8gj2PsaVjF8CIQoeUiuQjsxjJVYPjOU= -----END CERTIFICATE-----Generated at Sat Apr 19 12:08:53 2025 by rpki-client