$ rpki-client -vvf repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/3130332e3132322e36342e302f32322d3234203d3e20313338303634.roa File: 3130332e3132322e36342e302f32322d3234203d3e20313338303634.roa (raw, json) Hash identifier: dpkbleFDqkwX+EuMYZZpimYtRlL7Dy5gfGKwOre/oBA= Subject key identifier: 43:4F:E6:6B:92:75:58:9B:C3:6E:32:38:4D:18:46:5A:78:B3:07:B2 Certificate issuer: /CN=14A39FA5410EA57E0D416E032D769E52AB89CC75 Certificate serial: 750D6B38FC89612E134DCB187C3912AFF5CBA4BC Authority key identifier: 14:A3:9F:A5:41:0E:A5:7E:0D:41:6E:03:2D:76:9E:52:AB:89:CC:75 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14A39FA5410EA57E0D416E032D769E52AB89CC75.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/3130332e3132322e36342e302f32322d3234203d3e20313338303634.roa Signing time: Wed 02 Apr 2025 22:00:00 +0000 ROA not before: Wed 02 Apr 2025 21:55:00 +0000 ROA not after: Wed 01 Apr 2026 22:00:00 +0000 asID: 138064 IP address blocks: 103.122.64.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/14A39FA5410EA57E0D416E032D769E52AB89CC75.crl rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/14A39FA5410EA57E0D416E032D769E52AB89CC75.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14A39FA5410EA57E0D416E032D769E52AB89CC75.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 20:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:0d:6b:38:fc:89:61:2e:13:4d:cb:18:7c:39:12:af:f5:cb:a4:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14A39FA5410EA57E0D416E032D769E52AB89CC75 Validity Not Before: Apr 2 21:55:00 2025 GMT Not After : Apr 1 22:00:00 2026 GMT Subject: CN=434FE66B9275589BC36E32384D18465A78B307B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f0:78:e6:b1:b7:d3:9b:a9:b0:83:bb:c5:03: ed:3f:f8:d4:c1:56:79:61:21:2b:1e:6b:a6:91:15: d0:16:a4:b0:16:69:6d:5d:b9:cd:29:68:d7:dd:67: 7e:a6:25:85:9f:c3:5e:38:a2:4e:9f:03:53:ca:f5: e4:0c:b8:29:ba:00:a6:16:8f:68:55:89:95:f8:8c: e3:62:fe:e4:f1:fb:c9:5a:68:0c:ea:7f:e2:07:7b: d7:80:fe:7b:18:e5:c4:3b:6b:62:66:2a:89:93:f1: 15:cc:ab:2d:f8:ab:10:2a:f2:99:0a:a3:bc:05:45: 20:e4:46:25:92:62:03:dc:8f:b4:a6:8f:d6:b2:b9: 27:42:4a:3a:c1:ac:9f:c6:87:14:d1:9b:73:06:d1: cd:b6:ef:a2:f6:37:1c:6c:ab:98:83:3b:20:98:c6: 7c:a0:34:33:d3:de:35:5e:dd:65:ca:55:c6:e4:aa: d3:bc:c3:77:f1:9f:fb:56:3e:60:b7:02:7c:e9:64: 61:37:c3:76:6b:9f:01:4c:db:ab:6c:5b:dc:e9:73: ea:21:f5:c0:e8:77:9c:10:38:92:dd:bc:6b:d6:9f: 5b:e7:70:ba:f8:6b:83:1c:71:e6:a9:53:4f:57:1c: 37:b6:b0:22:99:97:69:42:77:d8:5e:d6:44:60:1c: 7a:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:4F:E6:6B:92:75:58:9B:C3:6E:32:38:4D:18:46:5A:78:B3:07:B2 X509v3 Authority Key Identifier: keyid:14:A3:9F:A5:41:0E:A5:7E:0D:41:6E:03:2D:76:9E:52:AB:89:CC:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/14A39FA5410EA57E0D416E032D769E52AB89CC75.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14A39FA5410EA57E0D416E032D769E52AB89CC75.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0d9a296-8228-4386-8fe9-97aa3091de0d/0/3130332e3132322e36342e302f32322d3234203d3e20313338303634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.64.0/22 Signature Algorithm: sha256WithRSAEncryption 98:91:55:fd:92:39:db:4c:a6:fe:0f:30:69:b0:be:66:c1:aa: 6e:62:94:7e:89:66:b0:8a:da:5f:dc:fe:4f:64:65:e6:5a:13: db:20:5a:ad:bf:ec:b3:c7:7c:bf:41:6d:f5:5a:be:a7:19:47: cc:a8:07:70:7a:a7:56:ce:54:1c:7d:fd:d2:cd:8f:b3:c7:c8: b1:09:33:3c:0f:25:ad:43:47:12:96:73:7b:d7:82:a5:a9:18: 04:57:d0:5e:6b:a6:f1:ee:ea:51:94:84:61:ab:51:6c:ae:4f: fd:aa:19:7c:36:54:c2:e1:c7:73:0c:d6:8c:c1:14:08:63:b9: 6e:0e:69:c6:d8:f5:fc:c1:64:aa:60:fb:2c:77:4b:53:e1:10: 62:d2:5a:d9:29:f9:64:8b:13:0c:19:39:97:09:e1:9c:bc:9f: d1:f9:95:0e:4d:5e:dd:f4:11:9a:45:e5:70:e8:32:75:f0:56: 9f:65:98:fb:8e:ee:5b:62:29:27:0e:af:2d:32:29:a1:db:db: ff:a9:2a:0c:68:40:fa:a8:bd:a5:07:d2:7c:cb:bb:ec:2c:35: 48:20:1d:d2:72:a1:1d:a6:fa:32:9e:0a:93:61:2d:1b:01:5a: 86:85:f5:85:5e:92:26:fe:68:da:3e:98:0f:f4:4b:74:8a:bc: e1:b1:28:3c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdQ1rOPyJYS4TTcsYfDkSr/XLpLwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRBMzlGQTU0MTBFQTU3RTBENDE2RTAzMkQ3NjlFNTJB Qjg5Q0M3NTAeFw0yNTA0MDIyMTU1MDBaFw0yNjA0MDEyMjAwMDBaMDMxMTAvBgNV BAMTKDQzNEZFNjZCOTI3NTU4OUJDMzZFMzIzODREMTg0NjVBNzhCMzA3QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+8HjmsbfTm6mwg7vFA+0/+NTB VnlhISsea6aRFdAWpLAWaW1duc0paNfdZ36mJYWfw144ok6fA1PK9eQMuCm6AKYW j2hViZX4jONi/uTx+8laaAzqf+IHe9eA/nsY5cQ7a2JmKomT8RXMqy34qxAq8pkK o7wFRSDkRiWSYgPcj7Smj9ayuSdCSjrBrJ/GhxTRm3MG0c2276L2Nxxsq5iDOyCY xnygNDPT3jVe3WXKVcbkqtO8w3fxn/tWPmC3AnzpZGE3w3ZrnwFM26tsW9zpc+oh 9cDod5wQOJLdvGvWn1vncLr4a4McceapU09XHDe2sCKZl2lCd9he1kRgHHrHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQ0/ma5J1WJvDbjI4TRhGWnizB7IwHwYDVR0j BBgwFoAUFKOfpUEOpX4NQW4DLXaeUquJzHUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MGQ5YTI5Ni04MjI4LTQzODYtOGZlOS05N2FhMzA5MWRlMGQvMC8xNEEzOUZBNTQx MEVBNTdFMEQ0MTZFMDMyRDc2OUU1MkFCODlDQzc1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTRBMzlGQTU0MTBFQTU3RTBENDE2RTAzMkQ3NjlFNTJBQjg5 Q0M3NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwZDlhMjk2LTgyMjgtNDM4Ni04 ZmU5LTk3YWEzMDkxZGUwZC8wLzMxMzAzMzJlMzEzMjMyMmUzNjM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ3pAMA0GCSqG SIb3DQEBCwUAA4IBAQCYkVX9kjnbTKb+DzBpsL5mwapuYpR+iWawitpf3P5PZGXm WhPbIFqtv+yzx3y/QW31Wr6nGUfMqAdweqdWzlQcff3SzY+zx8ixCTM8DyWtQ0cS lnN714KlqRgEV9Bea6bx7upRlIRhq1Fsrk/9qhl8NlTC4cdzDNaMwRQIY7luDmnG 2PX8wWSqYPssd0tT4RBi0lrZKflkixMMGTmXCeGcvJ/R+ZUOTV7d9BGaReVw6DJ1 8FafZZj7ju5bYiknDq8tMimh29v/qSoMaED6qL2lB9J8y7vsLDVIIB3ScqEdpvoy ngqTYS0bAVqGhfWFXpIm/mjaPpgP9Et0irzhsSg8 -----END CERTIFICATE-----Generated at Fri May 2 23:29:00 2025 by rpki-client