$ rpki-client -vvf repo-rpki.idnic.net/repo/fe330633-a7d1-4d0a-a1cc-b6c3eedfbc17/0/3130332e35342e3136382e302f32332d3233203d3e20313530343833.roa File: 3130332e35342e3136382e302f32332d3233203d3e20313530343833.roa (raw, json) Hash identifier: Nf1gJItG6184KCSXBcwB3dOHt5qHqt2wOtxt68ogTdg= Subject key identifier: 46:1B:39:25:AC:56:96:99:00:E6:02:6C:69:2F:29:70:DC:98:7E:CA Certificate issuer: /CN=F1F25C19AB419E370912452242B8B55038581157 Certificate serial: 2B3257267F8E44F82A7FC830BF6162F01D623DBB Authority key identifier: F1:F2:5C:19:AB:41:9E:37:09:12:45:22:42:B8:B5:50:38:58:11:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1F25C19AB419E370912452242B8B55038581157.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fe330633-a7d1-4d0a-a1cc-b6c3eedfbc17/0/3130332e35342e3136382e302f32332d3233203d3e20313530343833.roa Signing time: Fri 14 Mar 2025 06:00:00 +0000 ROA not before: Fri 14 Mar 2025 05:55:00 +0000 ROA not after: Fri 13 Mar 2026 06:00:00 +0000 asID: 150483 IP address blocks: 103.54.168.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fe330633-a7d1-4d0a-a1cc-b6c3eedfbc17/0/F1F25C19AB419E370912452242B8B55038581157.crl rsync://repo-rpki.idnic.net/repo/fe330633-a7d1-4d0a-a1cc-b6c3eedfbc17/0/F1F25C19AB419E370912452242B8B55038581157.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1F25C19AB419E370912452242B8B55038581157.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 10:38:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:32:57:26:7f:8e:44:f8:2a:7f:c8:30:bf:61:62:f0:1d:62:3d:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1F25C19AB419E370912452242B8B55038581157 Validity Not Before: Mar 14 05:55:00 2025 GMT Not After : Mar 13 06:00:00 2026 GMT Subject: CN=461B3925AC56969900E6026C692F2970DC987ECA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0f:1f:09:79:40:61:1c:c1:33:d3:10:94:6d: 42:ae:ff:72:eb:88:8f:f0:90:c4:74:6b:07:69:ad: b7:b3:b0:d7:3f:1c:ef:95:6d:93:36:9a:48:59:4a: 06:a4:43:fb:77:c6:84:f8:91:da:28:23:43:5b:12: 65:a8:fd:be:dd:e0:09:ba:db:67:7d:9c:50:32:f2: af:ee:59:be:e1:4b:53:9a:80:b7:26:f6:ec:bf:5f: 5b:dd:06:de:1d:7a:41:38:46:86:2b:de:e1:76:f0: 21:35:b2:79:dc:fa:14:de:fd:9d:fb:b4:a4:24:0c: fb:a9:17:32:bf:09:9e:76:71:ba:11:40:2e:11:2d: 00:7f:fa:98:30:49:49:6c:db:72:9b:dc:9b:df:18: 36:9c:2c:39:19:07:18:46:04:22:8e:f5:76:18:a6: 35:f4:ed:c9:ec:46:d8:80:31:7f:d7:7a:a6:ad:40: 32:af:0e:15:0a:c4:cf:84:a9:8a:4a:98:12:c9:06: 2d:46:90:71:8b:49:b8:be:cb:3b:8b:18:17:26:73: 2c:0d:6b:09:d2:f6:3b:12:68:20:f3:f0:5e:ee:69: cb:bf:9b:e6:51:b1:25:ac:eb:cf:05:0b:56:32:4b: f7:d6:4b:93:a5:2d:3c:62:ba:81:a4:ed:dd:ff:ec: 45:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:1B:39:25:AC:56:96:99:00:E6:02:6C:69:2F:29:70:DC:98:7E:CA X509v3 Authority Key Identifier: keyid:F1:F2:5C:19:AB:41:9E:37:09:12:45:22:42:B8:B5:50:38:58:11:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fe330633-a7d1-4d0a-a1cc-b6c3eedfbc17/0/F1F25C19AB419E370912452242B8B55038581157.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1F25C19AB419E370912452242B8B55038581157.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fe330633-a7d1-4d0a-a1cc-b6c3eedfbc17/0/3130332e35342e3136382e302f32332d3233203d3e20313530343833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.54.168.0/23 Signature Algorithm: sha256WithRSAEncryption bb:5a:df:22:e1:12:6c:23:39:ec:fc:1c:2b:b9:16:4a:df:93: 29:d6:c2:3c:96:fa:b8:80:c7:0a:6d:04:e7:d1:f1:e6:0c:ec: ff:72:aa:29:a3:e0:12:c1:c2:93:67:11:a4:0c:36:cb:43:d8: a2:73:22:61:66:eb:87:ef:cf:02:ba:3d:a8:28:6a:3a:03:00: 01:9f:fe:88:1a:da:db:92:28:4c:94:f3:58:03:e7:71:dc:12: fd:82:26:e3:e4:1a:2f:b6:5f:e2:b0:ad:7c:bf:4c:09:37:39: 4f:f8:9b:12:a1:6b:4e:08:86:73:aa:41:61:8a:9b:1b:58:c4: 2f:64:bc:e3:3b:9c:58:6b:3f:ff:01:51:57:55:a8:4d:ab:5a: ee:1e:8b:e3:32:90:3f:45:be:9e:be:f4:92:9a:bc:92:10:a2: 39:cc:46:15:63:81:a0:e8:33:e3:be:e7:80:5a:c6:f5:65:9d: 8c:fc:48:e0:8a:0e:5c:fe:2b:ee:c3:7b:5b:4e:5f:84:64:8c: f6:73:0a:ef:47:8f:dc:4c:e7:4f:0f:70:6f:83:bd:41:5f:1d: fb:85:7f:aa:3a:a8:46:a5:4a:9e:c5:be:84:35:56:6e:89:05: 4d:50:99:a2:0b:87:0f:4b:3d:fa:94:f8:1f:01:b3:a1:c0:0c: 96:a4:a2:f2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKzJXJn+ORPgqf8gwv2Fi8B1iPbswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjFGMjVDMTlBQjQxOUUzNzA5MTI0NTIyNDJCOEI1NTAz ODU4MTE1NzAeFw0yNTAzMTQwNTU1MDBaFw0yNjAzMTMwNjAwMDBaMDMxMTAvBgNV BAMTKDQ2MUIzOTI1QUM1Njk2OTkwMEU2MDI2QzY5MkYyOTcwREM5ODdFQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9Dx8JeUBhHMEz0xCUbUKu/3Lr iI/wkMR0awdprbezsNc/HO+VbZM2mkhZSgakQ/t3xoT4kdooI0NbEmWo/b7d4Am6 22d9nFAy8q/uWb7hS1OagLcm9uy/X1vdBt4dekE4RoYr3uF28CE1snnc+hTe/Z37 tKQkDPupFzK/CZ52cboRQC4RLQB/+pgwSUls23Kb3JvfGDacLDkZBxhGBCKO9XYY pjX07cnsRtiAMX/XeqatQDKvDhUKxM+EqYpKmBLJBi1GkHGLSbi+yzuLGBcmcywN awnS9jsSaCDz8F7uacu/m+ZRsSWs688FC1YyS/fWS5OlLTxiuoGk7d3/7EVlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURhs5JaxWlpkA5gJsaS8pcNyYfsowHwYDVR0j BBgwFoAU8fJcGatBnjcJEkUiQri1UDhYEVcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ZTMzMDYzMy1hN2QxLTRkMGEtYTFjYy1iNmMzZWVkZmJjMTcvMC9GMUYyNUMxOUFC NDE5RTM3MDkxMjQ1MjI0MkI4QjU1MDM4NTgxMTU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjFGMjVDMTlBQjQxOUUzNzA5MTI0NTIyNDJCOEI1NTAzODU4 MTE1Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZlMzMwNjMzLWE3ZDEtNGQwYS1h MWNjLWI2YzNlZWRmYmMxNy8wLzMxMzAzMzJlMzUzNDJlMzEzNjM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMwMzQzODMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZzaoMA0GCSqG SIb3DQEBCwUAA4IBAQC7Wt8i4RJsIzns/BwruRZK35Mp1sI8lvq4gMcKbQTn0fHm DOz/cqopo+ASwcKTZxGkDDbLQ9iicyJhZuuH788Cuj2oKGo6AwABn/6IGtrbkihM lPNYA+dx3BL9gibj5Bovtl/isK18v0wJNzlP+JsSoWtOCIZzqkFhipsbWMQvZLzj O5xYaz//AVFXVahNq1ruHovjMpA/Rb6evvSSmrySEKI5zEYVY4Gg6DPjvueAWsb1 ZZ2M/Ejgig5c/ivuw3tbTl+EZIz2cwrvR4/cTOdPD3Bvg71BXx37hX+qOqhGpUqe xb6ENVZuiQVNUJmiC4cPSz36lPgfAbOhwAyWpKLy -----END CERTIFICATE-----Generated at Sun Apr 6 08:15:00 2025 by rpki-client