$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/3130332e3131382e3137352e302f32342d3234203d3e20323131343037.roa File: 3130332e3131382e3137352e302f32342d3234203d3e20323131343037.roa (raw, json) Hash identifier: D7vL0dWhHLWGMsR8H6EfhySZTfu+/ovgCxiI8LpMnhg= Subject key identifier: 7C:16:E9:EE:7B:67:7E:88:E9:2F:1E:89:97:78:51:ED:B1:DD:BD:17 Certificate issuer: /CN=DBB18CCF58914524AFB113FE13359CC6B08EFBF3 Certificate serial: 5446BDDA44E03A3E14472621F798E92F8CC2D998 Authority key identifier: DB:B1:8C:CF:58:91:45:24:AF:B1:13:FE:13:35:9C:C6:B0:8E:FB:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/3130332e3131382e3137352e302f32342d3234203d3e20323131343037.roa Signing time: Fri 18 Apr 2025 01:00:00 +0000 ROA not before: Fri 18 Apr 2025 00:55:00 +0000 ROA not after: Fri 17 Apr 2026 01:00:00 +0000 asID: 211407 IP address blocks: 103.118.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.crl rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 10:01:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:46:bd:da:44:e0:3a:3e:14:47:26:21:f7:98:e9:2f:8c:c2:d9:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBB18CCF58914524AFB113FE13359CC6B08EFBF3 Validity Not Before: Apr 18 00:55:00 2025 GMT Not After : Apr 17 01:00:00 2026 GMT Subject: CN=7C16E9EE7B677E88E92F1E89977851EDB1DDBD17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:02:af:0e:d2:1e:e3:58:60:af:6d:1f:86:a9: ea:46:71:d3:11:c9:9d:35:b8:01:f0:84:f3:eb:11: 98:c8:e4:36:f8:03:f7:46:b7:4e:e7:6f:f6:6e:38: 26:67:ee:86:ad:62:d1:c2:9a:8e:e7:8a:dc:47:49: 33:a6:b1:d9:dc:08:81:bf:01:89:91:d1:87:6b:d3: 34:f6:0a:0a:cc:04:d2:0d:24:0c:f0:b8:f8:0b:19: ff:6f:79:2f:25:ad:0b:18:4c:7f:d8:6b:af:6d:28: 56:1b:4b:f0:76:e2:f6:6e:c7:23:34:80:11:b1:c0: cf:38:cd:14:08:2b:c7:e5:6a:1a:b9:29:7f:d2:ef: d5:17:53:cb:df:ce:17:b6:72:bd:71:c8:4b:e3:40: 72:5e:43:a1:7b:de:a1:82:da:45:a6:11:53:a2:17: 71:c4:00:f1:50:d1:7f:86:32:ae:8b:d1:31:eb:b5: d7:26:23:a6:23:dd:d0:23:f2:a8:12:b1:44:ff:79: ef:cf:45:5d:f6:0e:7c:a0:f2:c0:13:21:10:d3:c0: 58:5d:98:b3:4b:30:b2:f1:83:5d:50:e2:d9:c2:42: d9:e6:b4:59:da:38:9b:b5:c7:3f:1b:d3:b8:03:6d: 8e:26:7f:92:b8:6c:f9:29:2d:58:22:d4:bf:b2:25: 8b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:16:E9:EE:7B:67:7E:88:E9:2F:1E:89:97:78:51:ED:B1:DD:BD:17 X509v3 Authority Key Identifier: keyid:DB:B1:8C:CF:58:91:45:24:AF:B1:13:FE:13:35:9C:C6:B0:8E:FB:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/3130332e3131382e3137352e302f32342d3234203d3e20323131343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.118.175.0/24 Signature Algorithm: sha256WithRSAEncryption 58:b2:29:6f:e1:54:21:97:cf:61:7e:1d:62:9d:af:f3:76:93: 6f:60:01:17:2f:20:21:e6:5c:dc:fa:a2:5f:a6:fe:00:6f:83: 93:fb:a2:60:e9:ea:c7:10:44:6c:64:dd:9f:bf:35:ce:fd:bb: 98:c2:2b:94:b7:5a:62:3b:23:f5:57:0c:51:63:6d:10:6d:ad: 74:5c:46:d0:c0:48:78:13:6d:37:59:5a:54:62:c8:fa:6c:db: b0:22:16:72:9f:10:4b:bb:7f:7d:4b:b4:c5:af:42:7e:62:29: a7:2a:97:bb:90:a7:49:28:bf:0e:65:3a:50:de:37:63:8c:9a: 90:d3:ad:53:16:9f:53:b2:36:73:f3:98:81:3f:8e:ca:73:4e: d2:d1:97:43:70:90:6d:91:65:aa:fd:4e:cc:97:60:e3:73:0f: 93:b4:04:a0:22:f1:af:68:78:82:c8:f4:7d:0b:92:db:9b:5c: 09:57:8a:9d:84:9d:e5:b1:05:e0:63:8d:62:5d:bd:ce:d2:92: 9d:99:e0:10:ab:2a:8a:d3:21:3a:e3:dc:ea:8a:a7:54:ef:ea: 5f:61:4d:97:52:e8:54:81:0c:fc:87:65:ad:a0:22:43:ff:40: 5b:b3:52:e7:09:d3:28:08:6b:85:20:25:1b:ef:a0:a5:a9:84: 82:50:70:2a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVEa92kTgOj4URyYh95jpL4zC2ZgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREJCMThDQ0Y1ODkxNDUyNEFGQjExM0ZFMTMzNTlDQzZC MDhFRkJGMzAeFw0yNTA0MTgwMDU1MDBaFw0yNjA0MTcwMTAwMDBaMDMxMTAvBgNV BAMTKDdDMTZFOUVFN0I2NzdFODhFOTJGMUU4OTk3Nzg1MUVEQjFEREJEMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7Aq8O0h7jWGCvbR+GqepGcdMR yZ01uAHwhPPrEZjI5Db4A/dGt07nb/ZuOCZn7oatYtHCmo7nitxHSTOmsdncCIG/ AYmR0Ydr0zT2CgrMBNINJAzwuPgLGf9veS8lrQsYTH/Ya69tKFYbS/B24vZuxyM0 gBGxwM84zRQIK8flahq5KX/S79UXU8vfzhe2cr1xyEvjQHJeQ6F73qGC2kWmEVOi F3HEAPFQ0X+GMq6L0THrtdcmI6Yj3dAj8qgSsUT/ee/PRV32Dnyg8sATIRDTwFhd mLNLMLLxg11Q4tnCQtnmtFnaOJu1xz8b07gDbY4mf5K4bPkpLVgi1L+yJYstAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUfBbp7ntnfojpLx6Jl3hR7bHdvRcwHwYDVR0j BBgwFoAU27GMz1iRRSSvsRP+EzWcxrCO+/MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5ZDdjYi02Y2ZiLTRkZTAtOWRhYS1kMjIyYjdhODkwNzIvMC9EQkIxOENDRjU4 OTE0NTI0QUZCMTEzRkUxMzM1OUNDNkIwOEVGQkYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREJCMThDQ0Y1ODkxNDUyNEFGQjExM0ZFMTMzNTlDQzZCMDhF RkJGMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlkN2NiLTZjZmItNGRlMC05 ZGFhLWQyMjJiN2E4OTA3Mi8wLzMxMzAzMzJlMzEzMTM4MmUzMTM3MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjMxMzEzNDMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABndq8wDQYJ KoZIhvcNAQELBQADggEBAFiyKW/hVCGXz2F+HWKdr/N2k29gARcvICHmXNz6ol+m /gBvg5P7omDp6scQRGxk3Z+/Nc79u5jCK5S3WmI7I/VXDFFjbRBtrXRcRtDASHgT bTdZWlRiyPps27AiFnKfEEu7f31LtMWvQn5iKacql7uQp0kovw5lOlDeN2OMmpDT rVMWn1OyNnPzmIE/jspzTtLRl0NwkG2RZar9TsyXYONzD5O0BKAi8a9oeILI9H0L ktubXAlXip2EneWxBeBjjWJdvc7Skp2Z4BCrKorTITrj3OqKp1Tv6l9hTZdS6FSB DPyHZa2gIkP/QFuzUucJ0ygIa4UgJRvvoKWphIJQcCo= -----END CERTIFICATE-----Generated at Mon Apr 28 00:46:35 2025 by rpki-client