$ rpki-client -vvf repo-rpki.idnic.net/repo/2677b00c-dc2c-419c-a100-50b2fc7b1bc1/0/3130332e3136342e31372e302f32342d3234203d3e203137393935.roa File: 3130332e3136342e31372e302f32342d3234203d3e203137393935.roa (raw, json) Hash identifier: HXG6M2lkHdM7H0q8sMHL2RuqzQnwYr9btslEMX8iQ9s= Subject key identifier: 13:DB:39:DF:9E:83:6E:9E:F4:14:55:E6:50:53:C7:CD:35:D3:1B:06 Certificate issuer: /CN=A51BB787CE84E18D5A972818D11BBD38618D7D30 Certificate serial: 4E60495CB3B3EC38608DC40144A76D7A7962E686 Authority key identifier: A5:1B:B7:87:CE:84:E1:8D:5A:97:28:18:D1:1B:BD:38:61:8D:7D:30 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51BB787CE84E18D5A972818D11BBD38618D7D30.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2677b00c-dc2c-419c-a100-50b2fc7b1bc1/0/3130332e3136342e31372e302f32342d3234203d3e203137393935.roa Signing time: Tue 25 Mar 2025 05:00:01 +0000 ROA not before: Tue 25 Mar 2025 04:55:01 +0000 ROA not after: Tue 24 Mar 2026 05:00:01 +0000 asID: 17995 IP address blocks: 103.164.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2677b00c-dc2c-419c-a100-50b2fc7b1bc1/0/A51BB787CE84E18D5A972818D11BBD38618D7D30.crl rsync://repo-rpki.idnic.net/repo/2677b00c-dc2c-419c-a100-50b2fc7b1bc1/0/A51BB787CE84E18D5A972818D11BBD38618D7D30.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51BB787CE84E18D5A972818D11BBD38618D7D30.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 13:48:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:60:49:5c:b3:b3:ec:38:60:8d:c4:01:44:a7:6d:7a:79:62:e6:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A51BB787CE84E18D5A972818D11BBD38618D7D30 Validity Not Before: Mar 25 04:55:01 2025 GMT Not After : Mar 24 05:00:01 2026 GMT Subject: CN=13DB39DF9E836E9EF41455E65053C7CD35D31B06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:17:1d:c9:d2:a0:fd:90:53:ea:e2:8f:aa:93: 7f:58:54:9b:bd:a5:f1:f1:3e:e7:ab:02:11:87:a6: d6:43:ec:97:17:50:18:76:0e:06:5a:be:ae:e8:38: f6:5e:fe:a0:0b:d4:17:bd:ab:f6:8d:d2:f5:86:62: 3d:b9:99:5c:b4:e2:7d:d7:46:99:89:47:43:b3:56: 28:dc:96:93:78:1b:46:e1:7a:c3:f5:6d:a4:af:5e: 15:1d:27:c5:98:e8:ba:4b:41:27:70:9e:10:79:99: a3:cc:e1:18:fd:ea:76:80:3f:da:3e:36:29:7e:64: 4e:4d:6d:dc:66:07:38:4a:9f:90:1b:04:73:f1:a5: 9d:37:77:fc:c7:1d:56:cf:07:f9:f2:41:a0:1f:1d: cc:56:21:49:6b:45:32:68:ef:89:de:3b:63:e0:f9: 37:eb:1a:5d:c0:59:44:b2:d7:df:03:72:d8:4e:7c: 3e:50:22:ac:30:9c:96:84:0d:ad:21:c4:52:0a:7b: 00:8c:91:48:3c:d0:28:a5:e7:b2:19:37:a9:bc:84: 00:cd:1f:7c:42:a0:ed:78:bf:b1:83:3d:b6:1b:72: fa:c1:63:ae:fb:12:0d:da:c2:36:bc:79:4b:10:70: 5b:27:91:7e:c5:00:65:36:cb:e4:49:ad:64:10:86: 10:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:DB:39:DF:9E:83:6E:9E:F4:14:55:E6:50:53:C7:CD:35:D3:1B:06 X509v3 Authority Key Identifier: keyid:A5:1B:B7:87:CE:84:E1:8D:5A:97:28:18:D1:1B:BD:38:61:8D:7D:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2677b00c-dc2c-419c-a100-50b2fc7b1bc1/0/A51BB787CE84E18D5A972818D11BBD38618D7D30.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51BB787CE84E18D5A972818D11BBD38618D7D30.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2677b00c-dc2c-419c-a100-50b2fc7b1bc1/0/3130332e3136342e31372e302f32342d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.17.0/24 Signature Algorithm: sha256WithRSAEncryption 48:2a:dc:d6:ed:33:6a:87:e8:d1:56:3f:7d:fa:5a:c9:7d:17: 12:bc:36:10:63:6d:0e:06:56:c5:34:89:f1:19:79:0a:de:c0: 5d:ed:96:30:c7:77:0c:2a:21:f3:80:99:33:25:13:f4:cb:ed: 73:06:26:8a:3f:41:9b:6a:7c:45:58:7b:2c:ed:5f:e4:91:cb: 1f:0c:00:e5:36:62:b5:a5:99:13:71:8e:c0:68:f8:2e:40:65: cd:4b:1f:ae:91:55:1b:ae:90:90:0b:5a:08:60:f3:01:c4:cf: d6:f8:7c:5e:39:c8:7a:3a:e9:c8:89:5d:4b:7d:6b:39:87:8d: 26:85:11:39:8d:38:af:cc:1d:4d:84:ad:2a:9a:3d:0a:d3:38: 97:8a:8b:eb:3b:e7:37:4f:77:f0:f5:a4:3f:0a:21:ff:40:9a: 0d:cd:6e:6e:e0:c4:7f:10:f6:73:12:35:74:a2:b6:1a:67:09: a5:55:32:53:79:ef:a1:57:64:f6:58:eb:ec:f4:5e:4f:8f:91: 4a:5a:c0:f9:49:da:f4:12:f0:8c:62:6d:a8:e8:02:98:c2:a5: f4:71:ac:d6:e5:f3:e4:23:49:ca:b5:8b:1f:37:d7:8d:fd:7c: 8d:a1:2b:2c:74:da:57:fb:2c:c0:60:20:0b:dc:f3:96:be:45: 65:ed:f5:d1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTmBJXLOz7DhgjcQBRKdtenli5oYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUxQkI3ODdDRTg0RTE4RDVBOTcyODE4RDExQkJEMzg2 MThEN0QzMDAeFw0yNTAzMjUwNDU1MDFaFw0yNjAzMjQwNTAwMDFaMDMxMTAvBgNV BAMTKDEzREIzOURGOUU4MzZFOUVGNDE0NTVFNjUwNTNDN0NEMzVEMzFCMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkFx3J0qD9kFPq4o+qk39YVJu9 pfHxPuerAhGHptZD7JcXUBh2DgZavq7oOPZe/qAL1Be9q/aN0vWGYj25mVy04n3X RpmJR0OzVijclpN4G0bhesP1baSvXhUdJ8WY6LpLQSdwnhB5maPM4Rj96naAP9o+ Nil+ZE5NbdxmBzhKn5AbBHPxpZ03d/zHHVbPB/nyQaAfHcxWIUlrRTJo74neO2Pg +TfrGl3AWUSy198DcthOfD5QIqwwnJaEDa0hxFIKewCMkUg80Cil57IZN6m8hADN H3xCoO14v7GDPbYbcvrBY677Eg3awja8eUsQcFsnkX7FAGU2y+RJrWQQhhCdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUE9s5356Dbp70FFXmUFPHzTXTGwYwHwYDVR0j BBgwFoAUpRu3h86E4Y1alygY0Ru9OGGNfTAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y Njc3YjAwYy1kYzJjLTQxOWMtYTEwMC01MGIyZmM3YjFiYzEvMC9BNTFCQjc4N0NF ODRFMThENUE5NzI4MThEMTFCQkQzODYxOEQ3RDMwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTUxQkI3ODdDRTg0RTE4RDVBOTcyODE4RDExQkJEMzg2MThE N0QzMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2NzdiMDBjLWRjMmMtNDE5Yy1h MTAwLTUwYjJmYzdiMWJjMS8wLzMxMzAzMzJlMzEzNjM0MmUzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM5MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGekETANBgkqhkiG 9w0BAQsFAAOCAQEASCrc1u0zaofo0VY/ffpayX0XErw2EGNtDgZWxTSJ8Rl5Ct7A Xe2WMMd3DCoh84CZMyUT9MvtcwYmij9Bm2p8RVh7LO1f5JHLHwwA5TZitaWZE3GO wGj4LkBlzUsfrpFVG66QkAtaCGDzAcTP1vh8XjnIejrpyIldS31rOYeNJoUROY04 r8wdTYStKpo9CtM4l4qL6zvnN0938PWkPwoh/0CaDc1ubuDEfxD2cxI1dKK2GmcJ pVUyU3nvoVdk9ljr7PReT4+RSlrA+Una9BLwjGJtqOgCmMKl9HGs1uXz5CNJyrWL HzfXjf18jaErLHTaV/sswGAgC9zzlr5FZe310Q== -----END CERTIFICATE-----Generated at Sat Apr 26 18:28:54 2025 by rpki-client