$ rpki-client -vvf repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136382e302f32342d3234203d3e203539313439.roa File: 3130332e3235342e3136382e302f32342d3234203d3e203539313439.roa (raw, json) Hash identifier: mvmoi8dcnfPzFCUL4IZOH3T40kp0yAQpvbAqzxB1zYc= Subject key identifier: B8:17:10:14:1A:69:B6:55:ED:3B:7E:E6:BF:7A:65:84:0B:AB:47:20 Certificate issuer: /CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Certificate serial: 71059B814088F33603CACFA6CBA176CC1108E3A3 Authority key identifier: 3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136382e302f32342d3234203d3e203539313439.roa Signing time: Thu 01 May 2025 12:00:02 +0000 ROA not before: Thu 01 May 2025 11:55:02 +0000 ROA not after: Thu 30 Apr 2026 12:00:02 +0000 asID: 59149 IP address blocks: 103.254.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 01:30:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:05:9b:81:40:88:f3:36:03:ca:cf:a6:cb:a1:76:cc:11:08:e3:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Validity Not Before: May 1 11:55:02 2025 GMT Not After : Apr 30 12:00:02 2026 GMT Subject: CN=B81710141A69B655ED3B7EE6BF7A65840BAB4720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:83:2d:19:13:a2:27:fa:93:9e:f7:72:42:88: 52:47:1a:fb:c3:58:4e:85:bc:ab:e8:9e:59:c1:5e: 44:3a:99:ee:52:42:3b:9d:31:2c:ac:54:e6:73:45: b3:1f:e8:83:f9:a5:d5:c8:1d:2e:52:e4:ce:73:bc: 8f:05:6f:5a:85:b7:24:8e:ce:e0:cd:3a:f3:fa:d1: 0f:ab:ad:5b:bf:52:cc:69:94:a3:ee:2e:a3:92:8e: 86:dc:98:14:27:8e:66:d9:65:ff:cc:4f:83:af:31: 3d:7f:47:39:c3:62:bb:a5:9a:b4:8a:43:2c:3d:ff: 7f:de:f8:22:1a:79:7b:e3:0e:6a:22:c2:03:0e:78: 2a:8a:d8:a4:f6:4c:5a:fa:13:a9:ca:bc:7f:1b:6f: 8d:a7:b2:b8:6d:ec:f1:60:05:d0:58:1f:f7:89:25: 18:d5:04:0e:54:9b:65:a8:2e:2f:78:46:d5:33:3f: 0c:0f:26:00:0c:48:58:40:cb:91:c4:d2:3e:5c:d3: 9f:4c:c1:9e:50:61:97:7c:22:9b:aa:1d:6c:bf:6e: 5e:92:de:46:d7:eb:f2:3e:93:c7:e8:90:b0:e1:ab: f8:24:0f:68:f4:e5:f5:9f:93:c0:49:5f:17:29:5a: a9:0b:b2:b3:3b:09:a5:50:98:a0:a6:ab:87:b0:c3: 58:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:17:10:14:1A:69:B6:55:ED:3B:7E:E6:BF:7A:65:84:0B:AB:47:20 X509v3 Authority Key Identifier: keyid:3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136382e302f32342d3234203d3e203539313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.254.168.0/24 Signature Algorithm: sha256WithRSAEncryption c9:83:5e:ea:88:ea:5e:69:92:c3:a3:b6:f0:f2:e6:6a:76:01: 92:d0:25:e8:5a:a3:2b:c1:0c:79:dc:50:46:83:1e:b6:27:49: ae:2a:b2:ec:a0:75:aa:23:f5:e5:c8:ce:60:2a:e8:1f:9a:fc: a9:b0:ad:30:f8:9f:86:23:9e:da:2e:72:24:38:73:68:c8:cd: da:61:86:f3:33:af:e2:42:06:1a:fa:ea:ed:36:e2:b7:1e:24: 5c:60:00:3a:e6:35:81:c7:54:a8:3a:58:e2:b2:f2:0e:5b:ea: ab:fc:72:fe:70:af:62:53:b1:54:e1:02:ef:37:02:47:62:a4: 22:49:b2:ed:f4:c0:f5:3c:a3:c3:85:de:1a:07:b5:76:20:a5: 29:3c:e4:b9:9b:7a:9e:97:63:d5:62:25:d3:71:03:26:bc:be: 41:ab:bf:b7:4d:31:cc:21:15:a3:22:63:12:a2:31:d0:05:ce: 37:47:4a:1b:8f:5b:bf:91:4a:ee:31:42:c4:29:0c:0c:e6:6c: f5:96:0b:14:8e:aa:49:5e:f4:f3:8b:79:11:b9:70:c6:22:36: df:93:e1:57:56:c1:6b:e3:18:99:b6:37:b4:7f:4b:3a:84:f8: 68:65:b8:97:9f:e4:86:1d:ea:92:94:a4:5d:fa:f6:7d:0e:f0: 0c:48:37:5c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcQWbgUCI8zYDys+my6F2zBEI46MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0MxQzU5 RTE4MjA3NDAeFw0yNTA1MDExMTU1MDJaFw0yNjA0MzAxMjAwMDJaMDMxMTAvBgNV BAMTKEI4MTcxMDE0MUE2OUI2NTVFRDNCN0VFNkJGN0E2NTg0MEJBQjQ3MjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLgy0ZE6In+pOe93JCiFJHGvvD WE6FvKvonlnBXkQ6me5SQjudMSysVOZzRbMf6IP5pdXIHS5S5M5zvI8Fb1qFtySO zuDNOvP60Q+rrVu/UsxplKPuLqOSjobcmBQnjmbZZf/MT4OvMT1/RznDYrulmrSK Qyw9/3/e+CIaeXvjDmoiwgMOeCqK2KT2TFr6E6nKvH8bb42nsrht7PFgBdBYH/eJ JRjVBA5Um2WoLi94RtUzPwwPJgAMSFhAy5HE0j5c059MwZ5QYZd8IpuqHWy/bl6S 3kbX6/I+k8fokLDhq/gkD2j05fWfk8BJXxcpWqkLsrM7CaVQmKCmq4eww1ifAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuBcQFBpptlXtO37mv3plhAurRyAwHwYDVR0j BBgwFoAUOyup6NU1er13a27EyvfBxZ4YIHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YWU3ZDQ2MS0wZTMyLTRlNjUtYmI4OC1kNzI0MDViMjQ0NTEvMC8zQjJCQTlFOEQ1 MzU3QUJENzc2QjZFQzRDQUY3QzFDNTlFMTgyMDc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0MxQzU5RTE4 MjA3NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhZTdkNDYxLTBlMzItNGU2NS1i Yjg4LWQ3MjQwNWIyNDQ1MS8wLzMxMzAzMzJlMzIzNTM0MmUzMTM2MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/6oMA0GCSqG SIb3DQEBCwUAA4IBAQDJg17qiOpeaZLDo7bw8uZqdgGS0CXoWqMrwQx53FBGgx62 J0muKrLsoHWqI/XlyM5gKugfmvypsK0w+J+GI57aLnIkOHNoyM3aYYbzM6/iQgYa +urtNuK3HiRcYAA65jWBx1SoOljisvIOW+qr/HL+cK9iU7FU4QLvNwJHYqQiSbLt 9MD1PKPDhd4aB7V2IKUpPOS5m3qel2PVYiXTcQMmvL5Bq7+3TTHMIRWjImMSojHQ Bc43R0obj1u/kUruMULEKQwM5mz1lgsUjqpJXvTzi3kRuXDGIjbfk+FXVsFr4xiZ tje0f0s6hPhoZbiXn+SGHeqSlKRd+vZ9DvAMSDdc -----END CERTIFICATE-----Generated at Sun May 11 16:49:41 2025 by rpki-client