$ rpki-client -vvf repo-rpki.idnic.net/repo/349dc5eb-3260-428a-a6c0-dc0f636b3307/0/3130332e3136362e34352e302f32342d3234203d3e20313431393335.roa File: 3130332e3136362e34352e302f32342d3234203d3e20313431393335.roa (raw, json) Hash identifier: fj/lt2lCYjvk1PSbkoRTgwJqQIbOPA+L+ew0qDsvTdY= Subject key identifier: 2B:F1:B5:48:CF:5B:04:F1:83:3F:A9:28:47:67:C8:F3:52:72:11:11 Certificate issuer: /CN=BD9D1FA2782F66A5D2247CCF76F98733944DDB1E Certificate serial: 4E7FAA378C14ED017D2540309C7DD2F8B977EF2B Authority key identifier: BD:9D:1F:A2:78:2F:66:A5:D2:24:7C:CF:76:F9:87:33:94:4D:DB:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD9D1FA2782F66A5D2247CCF76F98733944DDB1E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/349dc5eb-3260-428a-a6c0-dc0f636b3307/0/3130332e3136362e34352e302f32342d3234203d3e20313431393335.roa Signing time: Tue 29 Apr 2025 02:02:25 +0000 ROA not before: Tue 29 Apr 2025 01:57:25 +0000 ROA not after: Tue 28 Apr 2026 02:02:25 +0000 asID: 141935 IP address blocks: 103.166.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/349dc5eb-3260-428a-a6c0-dc0f636b3307/0/BD9D1FA2782F66A5D2247CCF76F98733944DDB1E.crl rsync://repo-rpki.idnic.net/repo/349dc5eb-3260-428a-a6c0-dc0f636b3307/0/BD9D1FA2782F66A5D2247CCF76F98733944DDB1E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD9D1FA2782F66A5D2247CCF76F98733944DDB1E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 18:52:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:7f:aa:37:8c:14:ed:01:7d:25:40:30:9c:7d:d2:f8:b9:77:ef:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD9D1FA2782F66A5D2247CCF76F98733944DDB1E Validity Not Before: Apr 29 01:57:25 2025 GMT Not After : Apr 28 02:02:25 2026 GMT Subject: CN=2BF1B548CF5B04F1833FA9284767C8F352721111 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d9:11:1a:b3:04:28:a5:ce:08:82:58:f8:c9: 54:a8:bb:40:55:5e:f7:51:62:85:34:c6:76:d2:c6: a1:a1:b9:e2:f6:51:d7:f7:62:6a:9c:fc:89:31:01: 76:25:50:6b:83:31:74:00:af:e8:28:0f:53:53:69: 7a:2a:18:8f:e8:2c:48:24:61:57:05:0b:b9:83:73: 84:20:2c:7f:cf:5d:20:46:d7:1c:3d:5c:be:56:04: ef:9f:da:88:07:3f:92:38:00:0e:36:72:a2:a7:5e: 0f:e9:66:c2:12:38:bb:ab:c4:4a:d7:a4:b4:ea:c4: 3c:bb:63:b5:5f:ed:7e:5f:e0:e2:83:5c:96:54:12: 9e:b7:1f:67:8e:b2:b5:b9:88:d0:1d:22:1b:30:97: f1:31:44:6d:06:df:34:71:7e:64:3a:29:34:6d:5c: 3d:6c:fd:91:85:c4:2b:8a:46:50:e1:d6:f4:32:35: 03:5e:6c:74:75:11:ad:d8:01:0e:a1:06:d6:92:c6: 2b:c6:ad:91:ec:7d:b5:83:ad:7d:dd:7d:d3:a5:b6: 23:dd:33:59:98:4b:36:27:7c:73:5e:2e:82:86:6d: fa:c4:69:6a:f2:86:5e:39:97:3a:83:f7:5c:7c:d8: 25:90:9f:6d:61:31:67:78:5b:6a:ca:d0:08:e1:ca: db:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:F1:B5:48:CF:5B:04:F1:83:3F:A9:28:47:67:C8:F3:52:72:11:11 X509v3 Authority Key Identifier: keyid:BD:9D:1F:A2:78:2F:66:A5:D2:24:7C:CF:76:F9:87:33:94:4D:DB:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/349dc5eb-3260-428a-a6c0-dc0f636b3307/0/BD9D1FA2782F66A5D2247CCF76F98733944DDB1E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD9D1FA2782F66A5D2247CCF76F98733944DDB1E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/349dc5eb-3260-428a-a6c0-dc0f636b3307/0/3130332e3136362e34352e302f32342d3234203d3e20313431393335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.45.0/24 Signature Algorithm: sha256WithRSAEncryption 40:24:c6:04:91:81:98:01:4e:b6:e2:63:0a:83:f3:26:5f:41: b6:72:ab:ce:6c:a6:51:a1:06:a3:97:d9:6e:bf:47:03:e0:e8: 67:5c:86:2a:9b:bd:2c:98:9d:cd:a7:22:28:19:f1:ea:39:1a: 7d:f7:9b:35:d5:8f:22:33:ca:ea:f4:a6:e7:99:5a:bf:36:bd: ee:01:cb:78:a3:b0:44:1c:9d:35:9b:4e:11:dd:f0:ba:dc:d9: ec:49:d8:65:70:a5:40:ce:f8:da:3b:7c:42:70:43:96:60:e5: af:d8:ae:b5:a6:24:e7:25:e3:72:64:60:fa:d3:71:fb:1d:65: 01:bf:2d:13:05:26:2b:af:5a:21:6b:d6:c9:b0:8c:59:a0:ff: 11:91:ff:c0:8c:44:e9:b8:78:ca:0b:21:70:e9:e2:7f:4d:d4: 97:2b:48:67:85:0f:84:ee:02:30:e3:ba:00:25:da:c6:ec:e5: 20:07:42:50:67:26:e6:cd:cb:6e:a0:bc:96:6a:07:7c:7e:2b: 95:4e:d3:17:a2:16:17:5a:d4:8a:3f:0a:b9:f8:fb:55:dd:a7: 49:ce:3e:51:4b:f2:f2:49:e1:7b:1e:35:8f:b0:5f:60:f1:ba: 74:0a:80:aa:f7:6c:96:47:f4:ea:67:39:93:ea:d3:a7:65:e3: a2:f6:f1:50 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTn+qN4wU7QF9JUAwnH3S+Ll37yswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ5RDFGQTI3ODJGNjZBNUQyMjQ3Q0NGNzZGOTg3MzM5 NDREREIxRTAeFw0yNTA0MjkwMTU3MjVaFw0yNjA0MjgwMjAyMjVaMDMxMTAvBgNV BAMTKDJCRjFCNTQ4Q0Y1QjA0RjE4MzNGQTkyODQ3NjdDOEYzNTI3MjExMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH2REaswQopc4Iglj4yVSou0BV XvdRYoU0xnbSxqGhueL2Udf3Ymqc/IkxAXYlUGuDMXQAr+goD1NTaXoqGI/oLEgk YVcFC7mDc4QgLH/PXSBG1xw9XL5WBO+f2ogHP5I4AA42cqKnXg/pZsISOLurxErX pLTqxDy7Y7Vf7X5f4OKDXJZUEp63H2eOsrW5iNAdIhswl/ExRG0G3zRxfmQ6KTRt XD1s/ZGFxCuKRlDh1vQyNQNebHR1Ea3YAQ6hBtaSxivGrZHsfbWDrX3dfdOltiPd M1mYSzYnfHNeLoKGbfrEaWryhl45lzqD91x82CWQn21hMWd4W2rK0Ajhytt9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUK/G1SM9bBPGDP6koR2fI81JyEREwHwYDVR0j BBgwFoAUvZ0fongvZqXSJHzPdvmHM5RN2x4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NDlkYzVlYi0zMjYwLTQyOGEtYTZjMC1kYzBmNjM2YjMzMDcvMC9CRDlEMUZBMjc4 MkY2NkE1RDIyNDdDQ0Y3NkY5ODczMzk0NEREQjFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ5RDFGQTI3ODJGNjZBNUQyMjQ3Q0NGNzZGOTg3MzM5NDRE REIxRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM0OWRjNWViLTMyNjAtNDI4YS1h NmMwLWRjMGY2MzZiMzMwNy8wLzMxMzAzMzJlMzEzNjM2MmUzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzkzMzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6YtMA0GCSqG SIb3DQEBCwUAA4IBAQBAJMYEkYGYAU624mMKg/MmX0G2cqvObKZRoQajl9luv0cD 4OhnXIYqm70smJ3NpyIoGfHqORp995s11Y8iM8rq9KbnmVq/Nr3uAct4o7BEHJ01 m04R3fC63NnsSdhlcKVAzvjaO3xCcEOWYOWv2K61piTnJeNyZGD603H7HWUBvy0T BSYrr1oha9bJsIxZoP8Rkf/AjETpuHjKCyFw6eJ/TdSXK0hnhQ+E7gIw47oAJdrG 7OUgB0JQZybmzctuoLyWagd8fiuVTtMXohYXWtSKPwq5+PtV3adJzj5RS/LySeF7 HjWPsF9g8bp0CoCq92yWR/TqZzmT6tOnZeOi9vFQ -----END CERTIFICATE-----Generated at Sun May 11 15:02:10 2025 by rpki-client