$ rpki-client -vvf repo-rpki.idnic.net/repo/54c77666-4c74-440d-9167-af63faa6eb9e/0/3130332e3137352e38342e302f32342d3234203d3e20313437313137.roa File: 3130332e3137352e38342e302f32342d3234203d3e20313437313137.roa (raw, json) Hash identifier: X7jlC8806cONOESjfeaSOO4BlCs60fPKPrtTWgAwSss= Subject key identifier: 8D:1F:43:C5:9E:23:C2:36:01:16:E7:EE:94:CC:60:F4:0B:31:A1:AC Certificate issuer: /CN=1A88815F25C9ADC8E68E2145CC20A00096657347 Certificate serial: 453A70F55E02B7384725192EC4E00D8C9861E6ED Authority key identifier: 1A:88:81:5F:25:C9:AD:C8:E6:8E:21:45:CC:20:A0:00:96:65:73:47 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1A88815F25C9ADC8E68E2145CC20A00096657347.cer Subject info access: rsync://repo-rpki.idnic.net/repo/54c77666-4c74-440d-9167-af63faa6eb9e/0/3130332e3137352e38342e302f32342d3234203d3e20313437313137.roa Signing time: Wed 07 May 2025 07:03:56 +0000 ROA not before: Wed 07 May 2025 06:58:56 +0000 ROA not after: Wed 06 May 2026 07:03:56 +0000 asID: 147117 IP address blocks: 103.175.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/54c77666-4c74-440d-9167-af63faa6eb9e/0/1A88815F25C9ADC8E68E2145CC20A00096657347.crl rsync://repo-rpki.idnic.net/repo/54c77666-4c74-440d-9167-af63faa6eb9e/0/1A88815F25C9ADC8E68E2145CC20A00096657347.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1A88815F25C9ADC8E68E2145CC20A00096657347.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 00:57:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:3a:70:f5:5e:02:b7:38:47:25:19:2e:c4:e0:0d:8c:98:61:e6:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A88815F25C9ADC8E68E2145CC20A00096657347 Validity Not Before: May 7 06:58:56 2025 GMT Not After : May 6 07:03:56 2026 GMT Subject: CN=8D1F43C59E23C2360116E7EE94CC60F40B31A1AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a3:e8:15:be:c7:85:c0:b5:86:fd:55:1f:b3: 9c:42:10:e4:cf:50:d3:c0:ab:d4:dc:77:3a:98:8a: ee:5e:fc:61:22:f3:c8:2e:f9:18:16:e2:78:8d:8f: c8:91:17:bc:4e:bb:d4:06:0c:b6:b9:c0:7b:e5:48: 96:d6:3a:92:ba:5c:e6:27:21:f6:bb:e9:a6:7c:6c: c4:0b:e2:ec:f1:b2:c5:2f:29:ad:74:f8:93:b7:35: d1:f2:3d:04:35:4b:5c:4a:03:6e:bc:58:ec:7a:c1: 6c:27:63:91:06:1b:c7:80:9b:9f:43:11:f0:29:da: 89:89:5c:9e:7a:5e:67:cd:86:4f:96:49:12:cb:32: 9e:35:e2:af:7b:d5:bb:3f:2c:77:7d:3c:72:09:cd: 7f:84:7d:f0:3f:f9:22:b8:31:15:2f:7a:59:a3:2f: 5d:3b:85:d0:c9:d0:66:4d:50:7c:b2:b3:c9:4e:7e: 96:1e:0d:56:93:fd:e0:a4:48:2a:84:88:0e:83:cc: 33:d9:ce:f7:e2:62:ea:f1:35:e0:4d:75:36:df:90: 02:f2:aa:f8:88:e5:0d:78:5f:8a:fd:fb:30:bf:e0: 8e:2c:0d:72:80:46:64:60:4d:92:af:10:22:be:80: 71:28:29:ec:78:49:2c:b3:36:78:23:f0:23:71:2c: fe:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:1F:43:C5:9E:23:C2:36:01:16:E7:EE:94:CC:60:F4:0B:31:A1:AC X509v3 Authority Key Identifier: keyid:1A:88:81:5F:25:C9:AD:C8:E6:8E:21:45:CC:20:A0:00:96:65:73:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/54c77666-4c74-440d-9167-af63faa6eb9e/0/1A88815F25C9ADC8E68E2145CC20A00096657347.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1A88815F25C9ADC8E68E2145CC20A00096657347.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/54c77666-4c74-440d-9167-af63faa6eb9e/0/3130332e3137352e38342e302f32342d3234203d3e20313437313137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.84.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:e9:3c:f2:92:75:33:b8:95:93:ed:5f:3e:06:ff:5c:89:8c: 7a:3e:b3:1b:8b:da:85:8d:01:0f:b8:dd:e3:82:e9:09:9a:26: 42:8a:a1:bb:5a:6f:e4:db:41:3c:5e:14:0a:6d:f3:5c:54:19: 2a:65:94:88:aa:a2:e6:f7:80:52:7f:27:b1:7b:6e:d1:c8:78: bd:8d:9d:63:be:a0:b4:23:c8:a0:5c:15:c8:bc:dc:de:09:b3: fb:59:7b:11:5e:a8:76:55:16:59:f4:2d:1c:75:f7:50:d6:ee: a7:42:79:fa:5f:fe:c7:c3:2a:4b:26:9b:5d:0e:e1:11:5d:b6: 1d:93:5b:a6:ad:1d:3b:1c:50:0c:f6:9d:fb:4d:ea:b2:43:27: 4f:b5:60:aa:0b:bc:00:2b:50:bb:ce:2f:3d:d7:70:0b:c6:0f: ab:6d:85:5c:1d:4e:54:b3:4c:18:ac:79:a8:98:a0:84:bd:b6: e7:35:f3:16:9a:15:e9:eb:45:3d:98:a9:70:55:4e:1c:b5:72: 88:00:70:6a:ed:c5:22:fa:f7:1b:c3:6f:f6:2f:9d:1b:21:b9: 06:04:21:5f:9c:92:61:db:74:e9:90:ea:74:93:80:89:8e:5a: 38:f4:e3:3d:f2:ac:eb:b4:52:84:bf:60:cc:3c:63:9a:33:3d: 14:f6:91:4c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURTpw9V4CtzhHJRkuxOANjJhh5u0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUE4ODgxNUYyNUM5QURDOEU2OEUyMTQ1Q0MyMEEwMDA5 NjY1NzM0NzAeFw0yNTA1MDcwNjU4NTZaFw0yNjA1MDYwNzAzNTZaMDMxMTAvBgNV BAMTKDhEMUY0M0M1OUUyM0MyMzYwMTE2RTdFRTk0Q0M2MEY0MEIzMUExQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCko+gVvseFwLWG/VUfs5xCEOTP UNPAq9TcdzqYiu5e/GEi88gu+RgW4niNj8iRF7xOu9QGDLa5wHvlSJbWOpK6XOYn Ifa76aZ8bMQL4uzxssUvKa10+JO3NdHyPQQ1S1xKA268WOx6wWwnY5EGG8eAm59D EfAp2omJXJ56XmfNhk+WSRLLMp414q971bs/LHd9PHIJzX+EffA/+SK4MRUvelmj L107hdDJ0GZNUHyys8lOfpYeDVaT/eCkSCqEiA6DzDPZzvfiYurxNeBNdTbfkALy qviI5Q14X4r9+zC/4I4sDXKARmRgTZKvECK+gHEoKex4SSyzNngj8CNxLP4/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjR9DxZ4jwjYBFufulMxg9AsxoawwHwYDVR0j BBgwFoAUGoiBXyXJrcjmjiFFzCCgAJZlc0cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NGM3NzY2Ni00Yzc0LTQ0MGQtOTE2Ny1hZjYzZmFhNmViOWUvMC8xQTg4ODE1RjI1 QzlBREM4RTY4RTIxNDVDQzIwQTAwMDk2NjU3MzQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUE4ODgxNUYyNUM5QURDOEU2OEUyMTQ1Q0MyMEEwMDA5NjY1 NzM0Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU0Yzc3NjY2LTRjNzQtNDQwZC05 MTY3LWFmNjNmYWE2ZWI5ZS8wLzMxMzAzMzJlMzEzNzM1MmUzODM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM3MzEzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ69UMA0GCSqG SIb3DQEBCwUAA4IBAQCb6TzyknUzuJWT7V8+Bv9ciYx6PrMbi9qFjQEPuN3jgukJ miZCiqG7Wm/k20E8XhQKbfNcVBkqZZSIqqLm94BSfyexe27RyHi9jZ1jvqC0I8ig XBXIvNzeCbP7WXsRXqh2VRZZ9C0cdfdQ1u6nQnn6X/7HwypLJptdDuERXbYdk1um rR07HFAM9p37TeqyQydPtWCqC7wAK1C7zi8913ALxg+rbYVcHU5Us0wYrHmomKCE vbbnNfMWmhXp60U9mKlwVU4ctXKIAHBq7cUi+vcbw2/2L50bIbkGBCFfnJJh23Tp kOp0k4CJjlo49OM98qzrtFKEv2DMPGOaMz0U9pFM -----END CERTIFICATE-----Generated at Tue May 13 09:59:14 2025 by rpki-client