$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/3130332e3233312e3137312e302f32342d3234203d3e20313430343832.roa File: 3130332e3233312e3137312e302f32342d3234203d3e20313430343832.roa (raw, json) Hash identifier: Ruo+EyZLal8wuDVq0rDNTqbZhSofbWumTXD3E7q865Y= Subject key identifier: 82:19:3C:60:76:45:C9:CB:C8:5C:45:BE:92:CB:F5:7D:AB:19:7F:24 Certificate issuer: /CN=0421CA2FC5BF656F8F905B02A3D7EE4648B22045 Certificate serial: 0758A2B982823C0F6E54E192F54AE10F4730503A Authority key identifier: 04:21:CA:2F:C5:BF:65:6F:8F:90:5B:02:A3:D7:EE:46:48:B2:20:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/3130332e3233312e3137312e302f32342d3234203d3e20313430343832.roa Signing time: Sun 27 Apr 2025 22:00:02 +0000 ROA not before: Sun 27 Apr 2025 21:55:02 +0000 ROA not after: Sun 26 Apr 2026 22:00:02 +0000 asID: 140482 IP address blocks: 103.231.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.crl rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 02:50:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:58:a2:b9:82:82:3c:0f:6e:54:e1:92:f5:4a:e1:0f:47:30:50:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0421CA2FC5BF656F8F905B02A3D7EE4648B22045 Validity Not Before: Apr 27 21:55:02 2025 GMT Not After : Apr 26 22:00:02 2026 GMT Subject: CN=82193C607645C9CBC85C45BE92CBF57DAB197F24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e9:8c:83:b5:7f:d5:c0:c8:d7:21:e4:65:3a: b1:52:b8:08:1c:1d:e2:5e:2d:e9:eb:3a:7d:6c:d3: 82:52:2b:5d:35:0d:e8:41:1e:2c:41:ff:fd:80:7b: 96:e2:43:97:74:fb:55:d7:22:c7:1e:ee:9d:3e:a1: f8:f7:77:36:c1:33:a1:f1:9c:35:79:85:04:65:53: 36:90:23:8e:b0:0a:ca:28:7d:65:75:2d:81:9a:8e: 0b:b1:91:d3:9b:25:b6:b2:c6:86:68:27:ca:a8:b7: 87:c4:e1:1b:5d:71:40:ba:a0:ea:5a:c3:7b:9b:57: 1c:e3:11:c6:71:66:de:13:e5:d6:43:c6:2e:c5:49: 26:f2:a7:25:e9:c2:af:40:31:2e:69:3d:12:91:ee: 81:25:27:95:b1:a5:e8:64:b1:3f:f6:80:59:61:df: cb:e3:6b:a4:b0:1c:c0:70:98:1e:1f:15:47:dd:f3: 5e:3f:03:6c:64:1c:89:da:a0:ba:6e:77:e9:22:92: 04:34:ef:ec:1c:70:5b:f8:9e:69:50:fb:11:86:de: 2c:02:0c:84:fe:f3:86:7c:7f:d2:db:41:f4:de:ad: 5d:40:61:30:21:51:16:3e:20:0a:58:59:15:e3:07: 2f:84:9d:9f:fb:74:a4:78:a7:ee:f8:a3:e1:e0:08: fa:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:19:3C:60:76:45:C9:CB:C8:5C:45:BE:92:CB:F5:7D:AB:19:7F:24 X509v3 Authority Key Identifier: keyid:04:21:CA:2F:C5:BF:65:6F:8F:90:5B:02:A3:D7:EE:46:48:B2:20:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0421CA2FC5BF656F8F905B02A3D7EE4648B22045.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6ff38d-e547-4f73-bb30-2b14c08c89fb/0/3130332e3233312e3137312e302f32342d3234203d3e20313430343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.231.171.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:a1:99:ea:ef:0c:94:00:12:58:46:1c:2b:37:e7:71:87:f3: 31:5f:16:b2:b7:83:4a:c9:3b:77:ce:e6:5f:d3:b6:e7:7a:7e: 70:d5:5e:f7:77:96:6e:7d:bc:ee:fd:65:50:bc:41:64:3e:1e: 8c:7e:51:e9:39:73:48:f5:ae:f1:f2:8a:2e:ae:fe:39:af:52: ba:c6:bd:c0:5e:94:90:ce:28:05:79:b1:03:db:06:db:2e:d9: 3a:bd:2c:08:a5:42:ca:f4:59:83:86:b5:3f:a1:01:46:2e:e8: 75:e8:1a:90:4f:7c:6a:d8:30:77:21:bb:5a:e8:e3:b0:1a:7a: a7:e7:3f:74:a6:bb:42:a8:52:88:3f:89:e8:99:97:79:9d:6d: 58:f1:23:a1:7b:87:ac:68:40:80:9b:88:27:a0:d6:cb:37:3a: 33:08:ec:3a:a2:25:f1:2d:23:18:e8:cb:6d:96:1c:79:df:ae: a0:85:1e:d2:1a:25:4f:68:c7:54:10:2b:ba:a1:86:31:0a:94: c0:8e:b7:e1:21:24:23:f6:c6:99:4f:21:a4:ae:7f:40:6c:41: 36:d4:c0:76:ed:00:0f:ea:e4:6c:86:42:78:09:7b:79:72:a8: fb:83:cc:4d:4d:4e:67:f0:18:37:97:3c:be:7d:e7:8d:47:b2: ae:be:b0:84 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUB1iiuYKCPA9uVOGS9UrhD0cwUDowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDQyMUNBMkZDNUJGNjU2RjhGOTA1QjAyQTNEN0VFNDY0 OEIyMjA0NTAeFw0yNTA0MjcyMTU1MDJaFw0yNjA0MjYyMjAwMDJaMDMxMTAvBgNV BAMTKDgyMTkzQzYwNzY0NUM5Q0JDODVDNDVCRTkyQ0JGNTdEQUIxOTdGMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC56YyDtX/VwMjXIeRlOrFSuAgc HeJeLenrOn1s04JSK101DehBHixB//2Ae5biQ5d0+1XXIsce7p0+ofj3dzbBM6Hx nDV5hQRlUzaQI46wCsoofWV1LYGajguxkdObJbayxoZoJ8qot4fE4RtdcUC6oOpa w3ubVxzjEcZxZt4T5dZDxi7FSSbypyXpwq9AMS5pPRKR7oElJ5WxpehksT/2gFlh 38vja6SwHMBwmB4fFUfd814/A2xkHInaoLpud+kikgQ07+wccFv4nmlQ+xGG3iwC DIT+84Z8f9LbQfTerV1AYTAhURY+IApYWRXjBy+EnZ/7dKR4p+74o+HgCPrDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUghk8YHZFycvIXEW+ksv1fasZfyQwHwYDVR0j BBgwFoAUBCHKL8W/ZW+PkFsCo9fuRkiyIEUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZmZjM4ZC1lNTQ3LTRmNzMtYmIzMC0yYjE0YzA4Yzg5ZmIvMC8wNDIxQ0EyRkM1 QkY2NTZGOEY5MDVCMDJBM0Q3RUU0NjQ4QjIyMDQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDQyMUNBMkZDNUJGNjU2RjhGOTA1QjAyQTNEN0VFNDY0OEIy MjA0NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmZmMzhkLWU1NDctNGY3My1i YjMwLTJiMTRjMDhjODlmYi8wLzMxMzAzMzJlMzIzMzMxMmUzMTM3MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM4MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn56swDQYJ KoZIhvcNAQELBQADggEBAF2hmervDJQAElhGHCs353GH8zFfFrK3g0rJO3fO5l/T tud6fnDVXvd3lm59vO79ZVC8QWQ+Hox+Uek5c0j1rvHyii6u/jmvUrrGvcBelJDO KAV5sQPbBtsu2Tq9LAilQsr0WYOGtT+hAUYu6HXoGpBPfGrYMHchu1ro47Aaeqfn P3Smu0KoUog/ieiZl3mdbVjxI6F7h6xoQICbiCeg1ss3OjMI7DqiJfEtIxjoy22W HHnfrqCFHtIaJU9ox1QQK7qhhjEKlMCOt+EhJCP2xplPIaSuf0BsQTbUwHbtAA/q 5GyGQngJe3lyqPuDzE1NTmfwGDeXPL59541Hsq6+sIQ= -----END CERTIFICATE-----Generated at Sun May 11 05:33:43 2025 by rpki-client