$ rpki-client -vvf repo-rpki.idnic.net/repo/16c1c529-6244-4503-af56-69459e4a760f/0/3130332e3135382e3136322e302f32342d3234203d3e203137393935.roa File: 3130332e3135382e3136322e302f32342d3234203d3e203137393935.roa (raw, json) Hash identifier: uQ2lNYFZctQjtseGT/wzHT4giq7wlDo/uVXWwYPTnAY= Subject key identifier: 47:E3:EF:85:69:58:E9:35:5E:AD:E6:19:F5:F8:A3:93:6C:98:CC:36 Certificate issuer: /CN=A398FBDF357790C7DC67C6D92A15A3D4617558A6 Certificate serial: 4075F4C1C8827454C238492DBA7501267675D65B Authority key identifier: A3:98:FB:DF:35:77:90:C7:DC:67:C6:D9:2A:15:A3:D4:61:75:58:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A398FBDF357790C7DC67C6D92A15A3D4617558A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16c1c529-6244-4503-af56-69459e4a760f/0/3130332e3135382e3136322e302f32342d3234203d3e203137393935.roa Signing time: Wed 09 Apr 2025 10:02:03 +0000 ROA not before: Wed 09 Apr 2025 09:57:03 +0000 ROA not after: Wed 08 Apr 2026 10:02:03 +0000 asID: 17995 IP address blocks: 103.158.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16c1c529-6244-4503-af56-69459e4a760f/0/A398FBDF357790C7DC67C6D92A15A3D4617558A6.crl rsync://repo-rpki.idnic.net/repo/16c1c529-6244-4503-af56-69459e4a760f/0/A398FBDF357790C7DC67C6D92A15A3D4617558A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A398FBDF357790C7DC67C6D92A15A3D4617558A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 12:45:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:75:f4:c1:c8:82:74:54:c2:38:49:2d:ba:75:01:26:76:75:d6:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A398FBDF357790C7DC67C6D92A15A3D4617558A6 Validity Not Before: Apr 9 09:57:03 2025 GMT Not After : Apr 8 10:02:03 2026 GMT Subject: CN=47E3EF856958E9355EADE619F5F8A3936C98CC36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d2:b2:24:f1:14:d3:7e:3b:0f:6c:74:e5:90: 0e:26:84:f5:09:d2:3d:1f:e4:04:c9:48:19:45:0e: 31:66:c1:54:6f:56:56:56:92:5f:8d:9f:80:71:7b: d8:10:f7:80:cc:52:74:e9:3d:15:a7:7f:6d:a7:e9: ef:08:35:83:9b:61:8c:40:80:68:8d:a6:f2:0b:a2: 0f:57:4b:85:2e:3f:41:25:99:8d:ea:32:bf:23:9c: 01:ed:e3:ae:42:af:56:74:b1:fe:a0:53:fc:b1:49: 20:b1:19:7c:ee:f0:72:84:71:59:a1:e4:02:ed:67: e9:7c:32:58:b7:0e:4c:00:d8:ec:ea:29:a1:d4:f7: 2f:d4:33:0e:92:24:2c:8b:dc:07:87:3b:7e:33:37: 87:31:74:b1:8d:59:2f:fb:0f:e6:95:e9:d9:da:fa: 32:e1:bd:52:c6:37:ce:97:89:31:3e:dd:9d:a1:7b: 32:15:e4:a1:19:3d:41:88:cd:fb:3c:2e:d7:8d:2c: 51:c0:93:16:96:81:28:d9:63:fb:6e:c2:de:48:c2: cd:a2:9f:02:ba:86:a9:88:b2:4e:82:32:4b:1b:5e: 44:55:95:42:32:6b:85:8d:a8:37:39:54:19:e4:83: d4:cf:4f:ff:76:2e:e5:f4:06:48:ce:a4:02:de:46: 8a:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:E3:EF:85:69:58:E9:35:5E:AD:E6:19:F5:F8:A3:93:6C:98:CC:36 X509v3 Authority Key Identifier: keyid:A3:98:FB:DF:35:77:90:C7:DC:67:C6:D9:2A:15:A3:D4:61:75:58:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16c1c529-6244-4503-af56-69459e4a760f/0/A398FBDF357790C7DC67C6D92A15A3D4617558A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A398FBDF357790C7DC67C6D92A15A3D4617558A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16c1c529-6244-4503-af56-69459e4a760f/0/3130332e3135382e3136322e302f32342d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.162.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:16:89:55:26:f4:27:52:96:57:85:e0:10:cb:ef:ce:89:8f: ff:ff:8a:5e:d2:ad:0d:f2:33:34:10:22:6d:7d:24:d6:8c:f4: a1:f6:5c:f4:aa:0f:2d:1a:ab:42:2d:ff:4c:a6:f7:5b:07:df: be:2a:f3:82:78:88:ef:66:63:26:0d:1e:1c:bc:bd:d1:f1:a7: 11:a9:60:12:1a:9f:7b:36:b7:61:92:96:bd:06:e9:17:ef:6f: bd:4c:84:61:93:f2:ff:06:21:23:2c:28:80:0f:29:d2:c0:28: 22:1b:6e:57:93:1f:85:fb:9d:9d:c1:97:db:11:79:ab:c4:1f: 45:6e:01:34:a7:cf:ee:83:1d:2e:7c:aa:cd:9f:04:89:2e:a8: 7f:8f:e4:10:49:12:be:f1:72:5e:67:9a:3e:b7:2e:2e:f0:8d: 92:ca:e7:f8:b5:05:75:f1:ce:89:f8:64:48:83:26:ee:16:4f: 3d:2d:d1:8d:e4:fe:55:c7:b6:05:d7:90:59:c0:73:5b:14:4a: 20:c7:0c:42:32:68:42:b0:1b:1d:dc:46:05:ac:70:ed:cc:ec: c0:3b:a5:00:1f:ed:50:62:b1:47:da:60:14:33:a5:30:3b:c2: 92:2c:3d:5a:20:44:9c:f1:0c:84:b4:5c:00:71:43:35:a7:d6: 81:a4:65:44 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQHX0wciCdFTCOEktunUBJnZ11lswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTM5OEZCREYzNTc3OTBDN0RDNjdDNkQ5MkExNUEzRDQ2 MTc1NThBNjAeFw0yNTA0MDkwOTU3MDNaFw0yNjA0MDgxMDAyMDNaMDMxMTAvBgNV BAMTKDQ3RTNFRjg1Njk1OEU5MzU1RUFERTYxOUY1RjhBMzkzNkM5OENDMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY0rIk8RTTfjsPbHTlkA4mhPUJ 0j0f5ATJSBlFDjFmwVRvVlZWkl+Nn4Bxe9gQ94DMUnTpPRWnf22n6e8INYObYYxA gGiNpvILog9XS4UuP0ElmY3qMr8jnAHt465Cr1Z0sf6gU/yxSSCxGXzu8HKEcVmh 5ALtZ+l8Mli3DkwA2OzqKaHU9y/UMw6SJCyL3AeHO34zN4cxdLGNWS/7D+aV6dna +jLhvVLGN86XiTE+3Z2hezIV5KEZPUGIzfs8LteNLFHAkxaWgSjZY/tuwt5Iws2i nwK6hqmIsk6CMksbXkRVlUIya4WNqDc5VBnkg9TPT/92LuX0BkjOpALeRorDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUR+PvhWlY6TVereYZ9fijk2yYzDYwHwYDVR0j BBgwFoAUo5j73zV3kMfcZ8bZKhWj1GF1WKYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmMxYzUyOS02MjQ0LTQ1MDMtYWY1Ni02OTQ1OWU0YTc2MGYvMC9BMzk4RkJERjM1 Nzc5MEM3REM2N0M2RDkyQTE1QTNENDYxNzU1OEE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTM5OEZCREYzNTc3OTBDN0RDNjdDNkQ5MkExNUEzRDQ2MTc1 NThBNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2YzFjNTI5LTYyNDQtNDUwMy1h ZjU2LTY5NDU5ZTRhNzYwZi8wLzMxMzAzMzJlMzEzNTM4MmUzMTM2MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM3MzkzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ56iMA0GCSqG SIb3DQEBCwUAA4IBAQAOFolVJvQnUpZXheAQy+/OiY///4pe0q0N8jM0ECJtfSTW jPSh9lz0qg8tGqtCLf9MpvdbB9++KvOCeIjvZmMmDR4cvL3R8acRqWASGp97Nrdh kpa9BukX72+9TIRhk/L/BiEjLCiADynSwCgiG25Xkx+F+52dwZfbEXmrxB9FbgE0 p8/ugx0ufKrNnwSJLqh/j+QQSRK+8XJeZ5o+ty4u8I2Syuf4tQV18c6J+GRIgybu Fk89LdGN5P5Vx7YF15BZwHNbFEogxwxCMmhCsBsd3EYFrHDtzOzAO6UAH+1QYrFH 2mAUM6UwO8KSLD1aIESc8QyEtFwAcUM1p9aBpGVE -----END CERTIFICATE-----Generated at Sat Apr 26 16:52:33 2025 by rpki-client