$ rpki-client -vvf repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136382e302f32322d3232203d3e203539313439.roa File: 3130332e3235342e3136382e302f32322d3232203d3e203539313439.roa (raw, json) Hash identifier: wNLC96dZ0hf5g5SQzM5GoaCW4xx90rlAQngevEb0OMg= Subject key identifier: B8:A9:E0:B0:8A:EB:87:E9:B1:C3:B9:CB:78:41:98:CA:28:03:D9:07 Certificate issuer: /CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Certificate serial: 31165CA46C0C8B90865A9AF18C0127421B1535D9 Authority key identifier: 3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136382e302f32322d3232203d3e203539313439.roa Signing time: Thu 01 May 2025 13:00:36 +0000 ROA not before: Thu 01 May 2025 12:55:36 +0000 ROA not after: Thu 30 Apr 2026 13:00:36 +0000 asID: 59149 IP address blocks: 103.254.168.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 01:30:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:16:5c:a4:6c:0c:8b:90:86:5a:9a:f1:8c:01:27:42:1b:15:35:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Validity Not Before: May 1 12:55:36 2025 GMT Not After : Apr 30 13:00:36 2026 GMT Subject: CN=B8A9E0B08AEB87E9B1C3B9CB784198CA2803D907 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a0:d2:4f:91:da:94:c2:a2:bf:1c:0e:34:69: b0:d9:0d:ef:e1:67:84:73:50:16:a0:7f:1d:5a:7f: f8:9b:b7:52:1b:6b:d1:71:bc:0d:90:cb:41:61:c9: b1:22:51:88:5f:f0:29:44:fd:67:63:38:21:3c:ca: 7a:af:9b:4d:cc:a4:74:36:2a:80:5e:01:95:a1:30: 3e:f6:51:d9:8a:05:8a:2b:12:ff:36:62:71:09:98: f6:ce:ca:59:1c:2d:e8:73:79:21:eb:3d:05:a5:cc: 4c:77:09:69:e6:97:af:d6:b0:c6:61:85:9c:f3:9e: 70:07:ec:19:a1:25:2a:d8:70:79:63:64:1a:ec:48: 2e:0e:80:26:b0:b6:6e:e2:6e:25:e4:6e:c9:c6:f2: 53:42:50:af:24:32:36:09:8e:43:d6:6e:cb:b5:49: 85:c7:cc:6e:c5:bf:03:f1:cd:6f:32:b6:2f:88:43: b8:54:7a:2a:34:81:45:0f:5a:cd:0f:14:b6:69:1b: e7:9a:58:d7:fa:9b:a0:51:9c:4b:89:92:02:71:c1: af:8e:a2:8d:f0:b7:9e:5f:6f:c2:3d:7a:30:67:59: 48:4e:1f:1d:c4:25:3d:bb:49:e8:1f:c9:d6:17:4b: 58:f2:44:af:ff:48:ae:9d:e6:9e:8c:02:39:98:3b: 8a:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:A9:E0:B0:8A:EB:87:E9:B1:C3:B9:CB:78:41:98:CA:28:03:D9:07 X509v3 Authority Key Identifier: keyid:3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136382e302f32322d3232203d3e203539313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.254.168.0/22 Signature Algorithm: sha256WithRSAEncryption c6:f4:4c:70:da:4e:35:70:46:5d:23:b4:a2:8c:71:27:18:4c: 22:52:5a:0f:f0:41:12:33:41:8a:de:70:5f:fe:b4:1d:33:a9: 03:69:25:79:cf:f3:08:0c:20:6e:05:24:ac:98:bf:a2:7b:ed: 5c:e1:6e:0c:00:cd:1b:94:cb:c4:eb:ff:ee:98:6b:f7:ae:10: b1:ad:dd:43:34:37:52:ee:f0:73:31:d2:4a:8a:ab:10:1b:8a: ae:32:e9:aa:92:77:7c:96:a7:6d:75:03:17:df:2b:99:69:e8: 7e:80:d7:36:54:06:cb:02:36:23:58:88:e3:17:dd:b8:93:ab: eb:d7:07:f3:89:b4:c4:cb:59:69:a2:a7:a8:06:e9:10:f9:3f: 02:ec:2d:ee:22:50:3b:f5:09:2b:1a:64:d9:4a:f3:9c:ef:81: dc:47:a3:f8:87:b4:9b:3c:2c:6e:6d:51:c2:a1:c7:e3:ea:66: 7d:55:bd:6e:6f:c6:93:28:c8:94:6e:37:76:5c:d1:a6:45:b3: c7:11:cd:2a:a1:37:bd:88:ba:fc:6c:fb:ea:69:6a:84:41:07: ba:e0:48:3a:38:fe:da:d0:9f:4a:87:78:3a:09:bd:3d:55:77: 80:f4:97:5e:36:9e:35:b7:45:4f:c7:9c:68:3b:92:2b:10:b5: 2d:c2:7d:32 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMRZcpGwMi5CGWprxjAEnQhsVNdkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0MxQzU5 RTE4MjA3NDAeFw0yNTA1MDExMjU1MzZaFw0yNjA0MzAxMzAwMzZaMDMxMTAvBgNV BAMTKEI4QTlFMEIwOEFFQjg3RTlCMUMzQjlDQjc4NDE5OENBMjgwM0Q5MDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDboNJPkdqUwqK/HA40abDZDe/h Z4RzUBagfx1af/ibt1Iba9FxvA2Qy0FhybEiUYhf8ClE/WdjOCE8ynqvm03MpHQ2 KoBeAZWhMD72UdmKBYorEv82YnEJmPbOylkcLehzeSHrPQWlzEx3CWnml6/WsMZh hZzznnAH7BmhJSrYcHljZBrsSC4OgCawtm7ibiXkbsnG8lNCUK8kMjYJjkPWbsu1 SYXHzG7FvwPxzW8yti+IQ7hUeio0gUUPWs0PFLZpG+eaWNf6m6BRnEuJkgJxwa+O oo3wt55fb8I9ejBnWUhOHx3EJT27SegfydYXS1jyRK//SK6d5p6MAjmYO4rhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuKngsIrrh+mxw7nLeEGYyigD2QcwHwYDVR0j BBgwFoAUOyup6NU1er13a27EyvfBxZ4YIHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YWU3ZDQ2MS0wZTMyLTRlNjUtYmI4OC1kNzI0MDViMjQ0NTEvMC8zQjJCQTlFOEQ1 MzU3QUJENzc2QjZFQzRDQUY3QzFDNTlFMTgyMDc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0MxQzU5RTE4 MjA3NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhZTdkNDYxLTBlMzItNGU2NS1i Yjg4LWQ3MjQwNWIyNDQ1MS8wLzMxMzAzMzJlMzIzNTM0MmUzMTM2MzgyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzNTM5MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ/6oMA0GCSqG SIb3DQEBCwUAA4IBAQDG9Exw2k41cEZdI7SijHEnGEwiUloP8EESM0GK3nBf/rQd M6kDaSV5z/MIDCBuBSSsmL+ie+1c4W4MAM0blMvE6//umGv3rhCxrd1DNDdS7vBz MdJKiqsQG4quMumqknd8lqdtdQMX3yuZaeh+gNc2VAbLAjYjWIjjF924k6vr1wfz ibTEy1lpoqeoBukQ+T8C7C3uIlA79QkrGmTZSvOc74HcR6P4h7SbPCxubVHCocfj 6mZ9Vb1ub8aTKMiUbjd2XNGmRbPHEc0qoTe9iLr8bPvqaWqEQQe64Eg6OP7a0J9K h3g6Cb09VXeA9JdeNp41t0VPx5xoO5IrELUtwn0y -----END CERTIFICATE-----Generated at Sun May 11 04:13:25 2025 by rpki-client