$ rpki-client -vvf repo-rpki.idnic.net/repo/9a1794aa-3291-483b-ac0b-7bc7b1a67cc6/0/3130332e3136342e3233312e302f32342d3234203d3e20313431393133.roa File: 3130332e3136342e3233312e302f32342d3234203d3e20313431393133.roa (raw, json) Hash identifier: NK0HZEK3BAxoXUs/T9BsQ+3NHYIYmmtIH82zUm/fzDk= Subject key identifier: 2A:23:DF:FF:28:60:4B:1D:FA:DE:35:18:97:73:6C:99:F3:85:36:1B Certificate issuer: /CN=E7231D1A3E051BD903DB86D7DE0077C2333EBB58 Certificate serial: 19BE042070CB9C5946EED1C7737AEA2725DAF75F Authority key identifier: E7:23:1D:1A:3E:05:1B:D9:03:DB:86:D7:DE:00:77:C2:33:3E:BB:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7231D1A3E051BD903DB86D7DE0077C2333EBB58.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9a1794aa-3291-483b-ac0b-7bc7b1a67cc6/0/3130332e3136342e3233312e302f32342d3234203d3e20313431393133.roa Signing time: Sun 27 Apr 2025 02:00:02 +0000 ROA not before: Sun 27 Apr 2025 01:55:02 +0000 ROA not after: Sun 26 Apr 2026 02:00:02 +0000 asID: 141913 IP address blocks: 103.164.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9a1794aa-3291-483b-ac0b-7bc7b1a67cc6/0/E7231D1A3E051BD903DB86D7DE0077C2333EBB58.crl rsync://repo-rpki.idnic.net/repo/9a1794aa-3291-483b-ac0b-7bc7b1a67cc6/0/E7231D1A3E051BD903DB86D7DE0077C2333EBB58.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7231D1A3E051BD903DB86D7DE0077C2333EBB58.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 18:26:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:be:04:20:70:cb:9c:59:46:ee:d1:c7:73:7a:ea:27:25:da:f7:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E7231D1A3E051BD903DB86D7DE0077C2333EBB58 Validity Not Before: Apr 27 01:55:02 2025 GMT Not After : Apr 26 02:00:02 2026 GMT Subject: CN=2A23DFFF28604B1DFADE351897736C99F385361B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:51:b7:90:b1:aa:21:52:53:8c:29:20:07:79: cc:0a:c7:7e:95:2a:1a:0e:15:27:8a:dc:2a:3a:7c: dc:87:bd:1f:28:22:3d:e8:30:e8:b4:5d:ba:10:0c: 01:b0:c7:f1:30:65:45:86:ce:b2:6c:2a:c3:92:3b: 8d:7b:e8:a6:10:da:b5:42:46:9b:d7:78:96:80:f2: 90:c5:f9:33:50:67:b7:d7:a4:2d:ac:06:7d:58:3c: 96:54:1b:15:3e:0a:14:98:06:7d:6f:19:a3:79:a0: c6:30:cc:5d:8c:d9:6c:58:66:bd:b6:b4:f4:59:06: e4:ed:3b:f7:9a:bb:87:46:a3:df:b6:eb:c9:3f:3f: 54:e1:e4:73:6b:87:42:1e:e4:0c:ad:26:f2:dc:81: 10:f8:e0:37:f6:04:26:2e:7f:99:ef:df:3e:5b:c6: d0:32:20:8f:dd:23:c9:ef:0c:e8:11:78:c3:93:f2: c2:82:ac:c9:6f:e8:5b:e2:8f:95:cb:5b:97:a4:df: ee:ec:73:73:b7:cc:36:52:be:7c:89:8e:c8:b0:b9: 70:a8:0e:b5:fd:b9:33:f7:ec:ff:30:fe:94:c3:ad: 9f:8d:b0:77:73:5a:2c:c4:3f:45:36:dd:dc:5e:4c: 37:48:8f:c4:61:bf:bf:08:4f:04:0c:96:f2:27:36: 9c:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:23:DF:FF:28:60:4B:1D:FA:DE:35:18:97:73:6C:99:F3:85:36:1B X509v3 Authority Key Identifier: keyid:E7:23:1D:1A:3E:05:1B:D9:03:DB:86:D7:DE:00:77:C2:33:3E:BB:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9a1794aa-3291-483b-ac0b-7bc7b1a67cc6/0/E7231D1A3E051BD903DB86D7DE0077C2333EBB58.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7231D1A3E051BD903DB86D7DE0077C2333EBB58.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9a1794aa-3291-483b-ac0b-7bc7b1a67cc6/0/3130332e3136342e3233312e302f32342d3234203d3e20313431393133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.231.0/24 Signature Algorithm: sha256WithRSAEncryption 92:cb:f6:a6:3b:b3:22:73:2f:09:f8:1c:f5:64:67:a3:ad:8b: a9:72:25:6b:31:fc:71:ad:3d:90:fb:53:c6:60:97:96:3e:32: 91:c8:e3:1d:fb:81:17:43:61:64:97:23:60:3b:5b:18:bb:75: de:b4:1d:e8:fb:88:cf:4d:46:df:75:34:33:28:06:4e:70:52: d8:18:87:d3:f3:5d:98:38:43:0f:22:de:8e:3a:07:29:88:e6: 0d:1b:f7:56:8b:16:11:aa:30:d1:03:f2:b4:69:b2:f7:81:e4: b1:bf:ff:e8:1f:9a:90:87:ce:2b:7d:01:2e:4a:3e:92:04:56: bd:50:e4:f5:ee:e9:55:0e:ed:66:ae:61:5c:01:a1:b9:c7:24: 04:e4:79:ea:9c:2f:e1:74:0f:6d:5f:09:cc:b4:8f:f0:e8:56: de:c4:25:49:c1:ef:e6:dc:c0:4a:64:f9:84:c2:0b:8d:8f:5a: 45:a0:73:8c:6e:4c:aa:af:0d:c8:5d:56:72:68:12:3d:e6:11: c8:ba:5e:68:83:1f:02:a4:6f:96:ec:88:b8:72:06:52:24:45: d7:2e:75:c2:b4:d6:45:a8:0a:71:33:c1:f7:d2:3a:a4:db:44: 4a:f1:aa:0b:c3:23:ed:9e:94:49:9a:52:1d:40:2c:3b:03:c6: e2:84:7a:ef -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGb4EIHDLnFlG7tHHc3rqJyXa918wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTcyMzFEMUEzRTA1MUJEOTAzREI4NkQ3REUwMDc3QzIz MzNFQkI1ODAeFw0yNTA0MjcwMTU1MDJaFw0yNjA0MjYwMjAwMDJaMDMxMTAvBgNV BAMTKDJBMjNERkZGMjg2MDRCMURGQURFMzUxODk3NzM2Qzk5RjM4NTM2MUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7UbeQsaohUlOMKSAHecwKx36V KhoOFSeK3Co6fNyHvR8oIj3oMOi0XboQDAGwx/EwZUWGzrJsKsOSO4176KYQ2rVC RpvXeJaA8pDF+TNQZ7fXpC2sBn1YPJZUGxU+ChSYBn1vGaN5oMYwzF2M2WxYZr22 tPRZBuTtO/eau4dGo9+268k/P1Th5HNrh0Ie5AytJvLcgRD44Df2BCYuf5nv3z5b xtAyII/dI8nvDOgReMOT8sKCrMlv6Fvij5XLW5ek3+7sc3O3zDZSvnyJjsiwuXCo DrX9uTP37P8w/pTDrZ+NsHdzWizEP0U23dxeTDdIj8Rhv78ITwQMlvInNpzLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUKiPf/yhgSx363jUYl3NsmfOFNhswHwYDVR0j BBgwFoAU5yMdGj4FG9kD24bX3gB3wjM+u1gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YTE3OTRhYS0zMjkxLTQ4M2ItYWMwYi03YmM3YjFhNjdjYzYvMC9FNzIzMUQxQTNF MDUxQkQ5MDNEQjg2RDdERTAwNzdDMjMzM0VCQjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTcyMzFEMUEzRTA1MUJEOTAzREI4NkQ3REUwMDc3QzIzMzNF QkI1OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhMTc5NGFhLTMyOTEtNDgzYi1h YzBiLTdiYzdiMWE2N2NjNi8wLzMxMzAzMzJlMzEzNjM0MmUzMjMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpOcwDQYJ KoZIhvcNAQELBQADggEBAJLL9qY7syJzLwn4HPVkZ6Oti6lyJWsx/HGtPZD7U8Zg l5Y+MpHI4x37gRdDYWSXI2A7Wxi7dd60Hej7iM9NRt91NDMoBk5wUtgYh9PzXZg4 Qw8i3o46BymI5g0b91aLFhGqMNED8rRpsveB5LG//+gfmpCHzit9AS5KPpIEVr1Q 5PXu6VUO7WauYVwBobnHJATkeeqcL+F0D21fCcy0j/DoVt7EJUnB7+bcwEpk+YTC C42PWkWgc4xuTKqvDchdVnJoEj3mEci6XmiDHwKkb5bsiLhyBlIkRdcudcK01kWo CnEzwffSOqTbRErxqgvDI+2elEmaUh1ALDsDxuKEeu8= -----END CERTIFICATE-----Generated at Tue Apr 29 21:06:24 2025 by rpki-client