$ rpki-client -vvf repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/3130332e35322e31362e302f32322d3234203d3e20313333383131.roa File: 3130332e35322e31362e302f32322d3234203d3e20313333383131.roa (raw, json) Hash identifier: E70nlSvwN/YRzt3ipt5eUpiof5ZiDppc9oAiJGHFIb4= Subject key identifier: 4B:75:57:12:A0:57:05:75:FC:11:11:E9:87:8D:E1:EA:41:46:37:33 Certificate issuer: /CN=821F16581F931A19A14B40DBF1E2B053A9C0B6A0 Certificate serial: 4BC1AC6EF612A6B6611485A362206D5932D454F4 Authority key identifier: 82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/3130332e35322e31362e302f32322d3234203d3e20313333383131.roa Signing time: Tue 01 Apr 2025 11:01:24 +0000 ROA not before: Tue 01 Apr 2025 10:56:24 +0000 ROA not after: Tue 31 Mar 2026 11:01:24 +0000 asID: 133811 IP address blocks: 103.52.16.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 09:57:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:c1:ac:6e:f6:12:a6:b6:61:14:85:a3:62:20:6d:59:32:d4:54:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821F16581F931A19A14B40DBF1E2B053A9C0B6A0 Validity Not Before: Apr 1 10:56:24 2025 GMT Not After : Mar 31 11:01:24 2026 GMT Subject: CN=4B755712A0570575FC1111E9878DE1EA41463733 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:ab:dc:94:05:21:b6:72:28:9a:99:c9:40:3b: c0:74:7d:90:f7:9c:1a:c5:c4:31:ac:a0:fd:3c:8e: 9c:c6:8f:9a:88:6e:55:fe:13:7b:5c:c1:67:d3:3b: 5e:d8:4b:a8:70:47:e2:6f:ac:42:76:b1:9c:cb:e7: f9:58:33:b3:64:0f:ee:fc:57:ff:f1:84:89:69:b6: 4e:d8:5e:6a:df:6f:77:36:14:93:41:00:8c:7f:a5: 39:33:4b:66:cd:5e:a7:b8:8a:b4:3d:4c:9b:8f:92: 64:a2:db:89:e3:28:89:f0:7f:46:07:16:58:a2:41: 16:df:e7:b6:f8:82:6e:6c:03:d0:b1:ab:9e:6d:65: 4b:a5:09:e1:28:3b:81:74:4c:7d:84:95:55:4c:fc: 48:76:e7:14:95:51:e5:2e:20:e1:b6:3b:81:30:92: 92:82:0d:cf:ca:c8:1d:80:a7:38:c0:4c:ae:1b:a7: 32:2f:13:d9:32:43:df:6f:cf:ff:1a:21:fb:5e:9e: f4:8a:7b:08:91:ef:be:05:ba:2e:a0:dc:b7:b8:95: 61:66:4c:86:d9:55:bb:2a:3c:4e:4e:7b:de:80:ea: 37:5b:0b:26:12:91:d6:dd:76:8e:8e:65:25:fc:27: a1:bb:a1:46:ff:37:5e:9e:cd:42:3a:f5:6d:6d:53: 89:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:75:57:12:A0:57:05:75:FC:11:11:E9:87:8D:E1:EA:41:46:37:33 X509v3 Authority Key Identifier: keyid:82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/3130332e35322e31362e302f32322d3234203d3e20313333383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.52.16.0/22 Signature Algorithm: sha256WithRSAEncryption 76:45:ae:1d:b9:b9:ad:1a:71:2e:bd:80:60:83:e7:ab:95:aa: df:f9:e2:16:e4:0e:d3:0f:f4:90:2f:7d:54:ff:ad:53:a5:9c: 20:7c:81:ec:c2:d3:01:ce:e4:61:60:c0:1c:b6:3f:f8:e6:63: c7:3f:d8:1e:0a:a3:4c:43:05:a3:56:c2:94:6a:24:d7:19:a4: d2:04:f7:4e:47:b5:1e:5c:0c:27:40:21:57:ad:01:93:39:e3: 8d:78:e4:94:bf:ec:1d:3e:2e:d2:bd:e5:06:64:57:14:52:3d: ab:28:b9:79:0c:75:fe:a9:65:3d:5a:fa:82:46:e0:b4:67:4c: a2:65:3e:c8:dd:40:e4:04:71:7d:50:31:a9:cb:6f:fc:9c:9e: 0f:16:99:b7:0b:77:66:23:a9:e4:f6:c4:16:07:4e:50:9d:e5: 7c:53:7c:c5:d3:72:00:2b:ee:e4:f3:0f:a0:09:8e:06:e4:42: 96:2b:a0:07:97:e0:b7:61:d2:7c:b3:fd:ac:e3:59:53:dd:a9: 18:cf:6d:d3:2b:65:08:75:01:58:d7:6d:a9:db:df:a5:0c:0e: 6e:f8:7b:41:9b:13:eb:f1:11:6a:25:ea:c7:2a:82:2f:3d:17: bc:4c:d7:80:1b:2d:b4:97:c3:21:84:63:b9:f2:62:5b:1f:8e: 81:9a:fd:e4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUS8GsbvYSprZhFIWjYiBtWTLUVPQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIwNTNB OUMwQjZBMDAeFw0yNTA0MDExMDU2MjRaFw0yNjAzMzExMTAxMjRaMDMxMTAvBgNV BAMTKDRCNzU1NzEyQTA1NzA1NzVGQzExMTFFOTg3OERFMUVBNDE0NjM3MzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwq9yUBSG2ciiamclAO8B0fZD3 nBrFxDGsoP08jpzGj5qIblX+E3tcwWfTO17YS6hwR+JvrEJ2sZzL5/lYM7NkD+78 V//xhIlptk7YXmrfb3c2FJNBAIx/pTkzS2bNXqe4irQ9TJuPkmSi24njKInwf0YH FliiQRbf57b4gm5sA9Cxq55tZUulCeEoO4F0TH2ElVVM/Eh25xSVUeUuIOG2O4Ew kpKCDc/KyB2ApzjATK4bpzIvE9kyQ99vz/8aIftenvSKewiR774Fui6g3Le4lWFm TIbZVbsqPE5Oe96A6jdbCyYSkdbddo6OZSX8J6G7oUb/N16ezUI69W1tU4l9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUS3VXEqBXBXX8ERHph43h6kFGNzMwHwYDVR0j BBgwFoAUgh8WWB+TGhmhS0Db8eKwU6nAtqAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YWRkN2MwZi0wMmQzLTQyMTctOWZjMy0wMDQ3YWUxODM2ZGMvMC84MjFGMTY1ODFG OTMxQTE5QTE0QjQwREJGMUUyQjA1M0E5QzBCNkEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIwNTNBOUMw QjZBMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZhZGQ3YzBmLTAyZDMtNDIxNy05 ZmMzLTAwNDdhZTE4MzZkYy8wLzMxMzAzMzJlMzUzMjJlMzEzNjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzMzMzM4MzEzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmc0EDANBgkqhkiG 9w0BAQsFAAOCAQEAdkWuHbm5rRpxLr2AYIPnq5Wq3/niFuQO0w/0kC99VP+tU6Wc IHyB7MLTAc7kYWDAHLY/+OZjxz/YHgqjTEMFo1bClGok1xmk0gT3Tke1HlwMJ0Ah V60BkznjjXjklL/sHT4u0r3lBmRXFFI9qyi5eQx1/qllPVr6gkbgtGdMomU+yN1A 5ARxfVAxqctv/JyeDxaZtwt3ZiOp5PbEFgdOUJ3lfFN8xdNyACvu5PMPoAmOBuRC liugB5fgt2HSfLP9rONZU92pGM9t0ytlCHUBWNdtqdvfpQwObvh7QZsT6/ERaiXq xyqCLz0XvEzXgBsttJfDIYRjufJiWx+OgZr95A== -----END CERTIFICATE-----Generated at Sun Apr 6 17:48:08 2025 by rpki-client