$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/3130332e3131382e3137352e302f32342d3234203d3e203530313034.roa File: 3130332e3131382e3137352e302f32342d3234203d3e203530313034.roa (raw, json) Hash identifier: 0f2PA52uub2AIW3HVhP+kRWDT2sjTpqTW3vdzs5HzME= Subject key identifier: 2D:53:FA:08:8A:6C:96:35:8E:FB:DD:39:39:8A:8C:E0:3E:34:F9:74 Certificate issuer: /CN=DBB18CCF58914524AFB113FE13359CC6B08EFBF3 Certificate serial: 6FF2280BA2B1D3B22965BEBF5DCD53593C154A01 Authority key identifier: DB:B1:8C:CF:58:91:45:24:AF:B1:13:FE:13:35:9C:C6:B0:8E:FB:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/3130332e3131382e3137352e302f32342d3234203d3e203530313034.roa Signing time: Tue 25 Feb 2025 03:00:00 +0000 ROA not before: Tue 25 Feb 2025 02:55:00 +0000 ROA not after: Tue 24 Feb 2026 03:00:00 +0000 asID: 50104 IP address blocks: 103.118.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.crl rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 10:01:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:f2:28:0b:a2:b1:d3:b2:29:65:be:bf:5d:cd:53:59:3c:15:4a:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBB18CCF58914524AFB113FE13359CC6B08EFBF3 Validity Not Before: Feb 25 02:55:00 2025 GMT Not After : Feb 24 03:00:00 2026 GMT Subject: CN=2D53FA088A6C96358EFBDD39398A8CE03E34F974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a2:e6:4e:74:44:19:de:a0:59:3f:f7:b3:c0: d9:f0:1a:ba:7b:04:70:3f:ac:c9:14:74:aa:14:83: 30:d1:7a:df:3f:75:39:f3:9a:1b:89:e2:b3:c0:45: 21:f7:87:ba:ca:a6:ba:27:61:d4:f5:b7:a6:f6:cb: d9:05:21:a0:53:cf:23:47:86:17:2b:88:4c:2e:7b: c9:95:84:ed:01:96:a3:3f:d2:6d:31:1f:75:0b:c1: 56:33:63:4a:38:72:5f:8a:f6:44:c3:5e:24:1e:32: 99:89:fe:b5:f8:6c:4e:82:8f:76:f2:1d:eb:c5:28: 8b:c3:66:3f:24:65:5f:9c:15:0c:97:9f:12:92:9f: ae:ba:e9:70:6c:e1:d1:7c:f9:ff:bd:45:b7:bb:48: 12:f1:0e:04:4a:5e:78:29:ac:5e:f9:35:0c:12:7b: e4:97:a4:c2:a3:f3:4d:f4:e5:8f:18:96:dd:58:72: 54:58:fb:f6:32:c1:5b:0a:12:bf:6f:4d:9a:d3:e3: 66:d4:d1:6e:66:dd:f7:4c:b6:8d:b9:2f:e9:39:66: 49:17:8a:f9:15:16:51:fb:19:9f:99:ed:8b:3e:36: 92:c3:98:cb:57:e3:bd:76:44:38:18:2f:e5:e9:13: 4a:e7:f4:79:0c:d4:43:42:20:30:52:63:d0:c8:94: 59:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:53:FA:08:8A:6C:96:35:8E:FB:DD:39:39:8A:8C:E0:3E:34:F9:74 X509v3 Authority Key Identifier: keyid:DB:B1:8C:CF:58:91:45:24:AF:B1:13:FE:13:35:9C:C6:B0:8E:FB:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/3130332e3131382e3137352e302f32342d3234203d3e203530313034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.118.175.0/24 Signature Algorithm: sha256WithRSAEncryption 91:df:b0:10:78:fa:ff:56:b6:0c:b1:7b:f3:4a:c4:62:12:a5: f3:01:e0:46:09:35:54:81:91:76:52:86:11:41:3d:96:d0:41: 1a:71:a7:99:31:46:fd:75:72:cc:90:d3:02:52:a2:38:4b:25: 34:a5:28:53:15:59:d4:07:ac:27:96:db:b2:ff:ff:0d:f3:a6: 5c:39:07:be:e5:66:52:50:2e:71:df:d7:7b:c3:3a:9c:fb:aa: d5:91:4f:75:79:e3:56:71:db:21:c7:41:73:2e:c1:12:81:c1: 6e:82:98:b9:cc:af:a9:b2:ed:b8:3a:43:45:c4:e7:0f:d4:71: 44:b5:7e:f2:82:02:9f:e9:dd:9a:88:11:a4:57:95:67:a2:e3: 97:23:24:ff:7e:17:00:c1:e9:92:89:37:04:e6:55:a6:2c:e9: 31:31:b4:36:e8:b9:65:25:32:b2:a7:e1:74:4e:31:e2:c1:6e: a7:48:6c:03:bd:b0:47:88:89:45:9d:0e:c1:2b:f1:22:b0:b4: 44:67:3b:a5:0c:29:35:12:44:00:9d:bb:ea:39:7c:fc:9f:92: ec:b0:56:d3:b7:25:65:95:77:e1:12:a0:63:c2:73:b1:39:06: 51:2b:bd:0d:fe:71:59:55:cf:e1:ce:00:22:bf:0e:d8:2d:ff: 77:53:11:b1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUb/IoC6Kx07IpZb6/Xc1TWTwVSgEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREJCMThDQ0Y1ODkxNDUyNEFGQjExM0ZFMTMzNTlDQzZC MDhFRkJGMzAeFw0yNTAyMjUwMjU1MDBaFw0yNjAyMjQwMzAwMDBaMDMxMTAvBgNV BAMTKDJENTNGQTA4OEE2Qzk2MzU4RUZCREQzOTM5OEE4Q0UwM0UzNEY5NzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcouZOdEQZ3qBZP/ezwNnwGrp7 BHA/rMkUdKoUgzDRet8/dTnzmhuJ4rPARSH3h7rKpronYdT1t6b2y9kFIaBTzyNH hhcriEwue8mVhO0BlqM/0m0xH3ULwVYzY0o4cl+K9kTDXiQeMpmJ/rX4bE6Cj3by HevFKIvDZj8kZV+cFQyXnxKSn6666XBs4dF8+f+9Rbe7SBLxDgRKXngprF75NQwS e+SXpMKj80305Y8Ylt1YclRY+/YywVsKEr9vTZrT42bU0W5m3fdMto25L+k5ZkkX ivkVFlH7GZ+Z7Ys+NpLDmMtX4712RDgYL+XpE0rn9HkM1ENCIDBSY9DIlFkBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQULVP6CIpsljWO+905OYqM4D40+XQwHwYDVR0j BBgwFoAU27GMz1iRRSSvsRP+EzWcxrCO+/MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5ZDdjYi02Y2ZiLTRkZTAtOWRhYS1kMjIyYjdhODkwNzIvMC9EQkIxOENDRjU4 OTE0NTI0QUZCMTEzRkUxMzM1OUNDNkIwOEVGQkYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREJCMThDQ0Y1ODkxNDUyNEFGQjExM0ZFMTMzNTlDQzZCMDhF RkJGMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlkN2NiLTZjZmItNGRlMC05 ZGFhLWQyMjJiN2E4OTA3Mi8wLzMxMzAzMzJlMzEzMTM4MmUzMTM3MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTMwMzEzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3avMA0GCSqG SIb3DQEBCwUAA4IBAQCR37AQePr/VrYMsXvzSsRiEqXzAeBGCTVUgZF2UoYRQT2W 0EEacaeZMUb9dXLMkNMCUqI4SyU0pShTFVnUB6wnltuy//8N86ZcOQe+5WZSUC5x 39d7wzqc+6rVkU91eeNWcdshx0FzLsESgcFugpi5zK+psu24OkNFxOcP1HFEtX7y ggKf6d2aiBGkV5VnouOXIyT/fhcAwemSiTcE5lWmLOkxMbQ26LllJTKyp+F0TjHi wW6nSGwDvbBHiIlFnQ7BK/EisLREZzulDCk1EkQAnbvqOXz8n5LssFbTtyVllXfh EqBjwnOxOQZRK70N/nFZVc/hzgAivw7YLf93UxGx -----END CERTIFICATE-----Generated at Tue Apr 29 09:36:12 2025 by rpki-client