$ rpki-client -vvf repo-rpki.idnic.net/repo/de600486-9780-43ee-bb2d-b811094a1445/0/3130332e3137322e3132322e302f32342d3234203d3e20313431353935.roa File: 3130332e3137322e3132322e302f32342d3234203d3e20313431353935.roa (raw, json) Hash identifier: DLyhX1mkxtUQRH14nsnVNFFV/Lnw+00NFrAkbDg4bb4= Subject key identifier: 4C:94:FC:71:06:87:9D:CD:A7:43:50:91:CF:6F:72:20:F3:7D:8A:EC Certificate issuer: /CN=46A7C8702C547FC42210027DD254571031AE05DC Certificate serial: 40DC2EB39BC06D9CDDB55E74F81628E9805BBE32 Authority key identifier: 46:A7:C8:70:2C:54:7F:C4:22:10:02:7D:D2:54:57:10:31:AE:05:DC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/46A7C8702C547FC42210027DD254571031AE05DC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de600486-9780-43ee-bb2d-b811094a1445/0/3130332e3137322e3132322e302f32342d3234203d3e20313431353935.roa Signing time: Sun 09 Mar 2025 03:00:00 +0000 ROA not before: Sun 09 Mar 2025 02:55:00 +0000 ROA not after: Sun 08 Mar 2026 03:00:00 +0000 asID: 141595 IP address blocks: 103.172.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de600486-9780-43ee-bb2d-b811094a1445/0/46A7C8702C547FC42210027DD254571031AE05DC.crl rsync://repo-rpki.idnic.net/repo/de600486-9780-43ee-bb2d-b811094a1445/0/46A7C8702C547FC42210027DD254571031AE05DC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/46A7C8702C547FC42210027DD254571031AE05DC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 04:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:dc:2e:b3:9b:c0:6d:9c:dd:b5:5e:74:f8:16:28:e9:80:5b:be:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=46A7C8702C547FC42210027DD254571031AE05DC Validity Not Before: Mar 9 02:55:00 2025 GMT Not After : Mar 8 03:00:00 2026 GMT Subject: CN=4C94FC7106879DCDA7435091CF6F7220F37D8AEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:06:e0:5b:de:75:b4:f8:0e:0e:04:44:8c:77: f8:f4:69:9f:5b:79:5c:cc:7d:b3:51:be:dd:b3:d2: 0e:fe:bd:c2:43:05:92:9f:2a:ca:3a:f2:ed:34:44: 1f:bf:f6:0d:c2:2c:b9:4d:4a:f4:3e:12:c4:63:29: 94:e4:6f:22:dc:62:4d:59:1a:2b:c3:1a:49:51:84: bb:1d:12:55:74:56:68:e0:c7:5f:b1:95:bb:24:4b: 90:87:65:8b:46:9e:cd:2d:19:18:ee:2e:8f:2f:36: 10:00:0e:f3:bf:22:59:70:de:55:27:e6:1f:ec:83: 70:fc:f9:55:0e:8c:09:15:fa:df:4b:d5:9e:83:27: dd:f0:3e:c6:c6:58:64:a9:8f:13:2b:5e:96:b5:a2: c8:5a:b6:ba:6d:53:ba:12:6f:57:ae:ae:58:0f:71: 6e:28:34:c6:0d:63:c9:83:41:53:c2:ba:60:b9:7f: 5c:a5:cb:a4:48:d2:03:38:e2:8a:0f:1c:99:aa:c5: 30:89:70:5b:88:12:ee:7d:d5:6b:fe:5c:12:34:6f: 5f:7c:91:d7:c2:94:4f:bd:a7:3e:7f:f5:2e:d4:68: 82:36:4a:43:a6:35:87:0d:5b:59:fa:b6:27:78:e9: 97:ff:47:db:cb:8a:de:c8:91:85:49:80:7c:a9:c6: b3:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:94:FC:71:06:87:9D:CD:A7:43:50:91:CF:6F:72:20:F3:7D:8A:EC X509v3 Authority Key Identifier: keyid:46:A7:C8:70:2C:54:7F:C4:22:10:02:7D:D2:54:57:10:31:AE:05:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de600486-9780-43ee-bb2d-b811094a1445/0/46A7C8702C547FC42210027DD254571031AE05DC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/46A7C8702C547FC42210027DD254571031AE05DC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de600486-9780-43ee-bb2d-b811094a1445/0/3130332e3137322e3132322e302f32342d3234203d3e20313431353935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.122.0/24 Signature Algorithm: sha256WithRSAEncryption 91:a8:56:be:87:5f:db:4f:44:89:6d:96:b8:0f:66:59:88:10: 47:ed:bd:bd:96:36:09:86:1e:9d:79:40:27:d4:52:d2:49:fe: 67:1c:73:06:14:4c:3c:53:7e:26:38:d5:4b:79:a0:44:12:88: ab:66:2e:da:2c:6c:7a:14:b7:fb:36:d9:dc:5e:1f:00:28:a5: 72:29:12:67:0e:e6:b5:fe:40:fd:c2:31:35:86:6a:1e:f4:8e: a2:d6:f4:db:fb:55:e5:9c:97:41:c5:97:a3:83:b0:cb:35:38: b1:f1:3e:ba:df:29:84:22:85:b7:cd:d2:60:86:b0:c8:08:76: af:67:d4:5f:33:c6:37:4c:f5:a8:c9:6e:9f:6d:b4:5e:07:85: 90:14:d4:2a:e5:df:62:86:0f:bf:32:b9:ad:53:59:8f:c5:4f: 7c:70:2f:2c:7b:57:2c:83:79:84:84:de:fd:13:94:a0:bc:e6: 9d:b8:4a:93:52:89:f6:be:af:f6:8e:b4:84:29:c5:ec:8a:25: b9:15:ed:0b:f5:fc:df:10:f7:c6:5f:de:b2:76:21:c4:9e:8f: 21:1c:2d:ed:ee:3a:3c:80:56:0b:a7:7c:ac:3b:bf:c0:f0:f4: 6f:bb:8a:3a:86:5a:73:98:43:60:d8:f2:10:84:dc:de:62:f0: c4:f2:b5:bd -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQNwus5vAbZzdtV50+BYo6YBbvjIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDZBN0M4NzAyQzU0N0ZDNDIyMTAwMjdERDI1NDU3MTAz MUFFMDVEQzAeFw0yNTAzMDkwMjU1MDBaFw0yNjAzMDgwMzAwMDBaMDMxMTAvBgNV BAMTKDRDOTRGQzcxMDY4NzlEQ0RBNzQzNTA5MUNGNkY3MjIwRjM3RDhBRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeBuBb3nW0+A4OBESMd/j0aZ9b eVzMfbNRvt2z0g7+vcJDBZKfKso68u00RB+/9g3CLLlNSvQ+EsRjKZTkbyLcYk1Z GivDGklRhLsdElV0Vmjgx1+xlbskS5CHZYtGns0tGRjuLo8vNhAADvO/Illw3lUn 5h/sg3D8+VUOjAkV+t9L1Z6DJ93wPsbGWGSpjxMrXpa1oshatrptU7oSb1eurlgP cW4oNMYNY8mDQVPCumC5f1yly6RI0gM44ooPHJmqxTCJcFuIEu591Wv+XBI0b198 kdfClE+9pz5/9S7UaII2SkOmNYcNW1n6tid46Zf/R9vLit7IkYVJgHypxrNXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUTJT8cQaHnc2nQ1CRz29yIPN9iuwwHwYDVR0j BBgwFoAURqfIcCxUf8QiEAJ90lRXEDGuBdwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTYwMDQ4Ni05NzgwLTQzZWUtYmIyZC1iODExMDk0YTE0NDUvMC80NkE3Qzg3MDJD NTQ3RkM0MjIxMDAyN0REMjU0NTcxMDMxQUUwNURDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDZBN0M4NzAyQzU0N0ZDNDIyMTAwMjdERDI1NDU3MTAzMUFF MDVEQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RlNjAwNDg2LTk3ODAtNDNlZS1i YjJkLWI4MTEwOTRhMTQ0NS8wLzMxMzAzMzJlMzEzNzMyMmUzMTMyMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNTM5MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrHowDQYJ KoZIhvcNAQELBQADggEBAJGoVr6HX9tPRIltlrgPZlmIEEftvb2WNgmGHp15QCfU UtJJ/mcccwYUTDxTfiY41Ut5oEQSiKtmLtosbHoUt/s22dxeHwAopXIpEmcO5rX+ QP3CMTWGah70jqLW9Nv7VeWcl0HFl6ODsMs1OLHxPrrfKYQihbfN0mCGsMgIdq9n 1F8zxjdM9ajJbp9ttF4HhZAU1Crl32KGD78yua1TWY/FT3xwLyx7VyyDeYSE3v0T lKC85p24SpNSifa+r/aOtIQpxeyKJbkV7Qv1/N8Q98Zf3rJ2IcSejyEcLe3uOjyA VgunfKw7v8Dw9G+7ijqGWnOYQ2DY8hCE3N5i8MTytb0= -----END CERTIFICATE-----Generated at Thu May 1 07:21:59 2025 by rpki-client