$ rpki-client -vvf repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/3130332e3137302e3130302e302f32342d3234203d3e20313432333634.roa File: 3130332e3137302e3130302e302f32342d3234203d3e20313432333634.roa (raw, json) Hash identifier: Bv8GvXAWpJuOQ2Ct96QK+mo1xI0B5ow3KRvIax0cz0Y= Subject key identifier: D5:D7:E6:B9:13:A3:B1:8D:53:F3:49:00:B5:B4:64:BB:F9:5D:B5:38 Certificate issuer: /CN=CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F Certificate serial: 1BE1157A7BAA75A8FAC208A0745076C7836458D6 Authority key identifier: CE:C5:FE:18:3A:39:10:5C:9E:27:02:CC:2B:F0:89:1F:C3:5E:1E:4F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/3130332e3137302e3130302e302f32342d3234203d3e20313432333634.roa Signing time: Thu 08 May 2025 15:00:02 +0000 ROA not before: Thu 08 May 2025 14:55:02 +0000 ROA not after: Thu 07 May 2026 15:00:02 +0000 asID: 142364 IP address blocks: 103.170.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.crl rsync://repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 23:54:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:e1:15:7a:7b:aa:75:a8:fa:c2:08:a0:74:50:76:c7:83:64:58:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F Validity Not Before: May 8 14:55:02 2025 GMT Not After : May 7 15:00:02 2026 GMT Subject: CN=D5D7E6B913A3B18D53F34900B5B464BBF95DB538 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:4e:5d:f1:f2:bb:2a:00:e0:37:4e:21:91:07: b2:ff:2b:db:0c:bd:43:d4:62:66:a5:98:3a:ae:3d: be:40:c8:f9:ea:bf:c5:22:cc:8a:3d:cf:d6:fa:1b: ee:93:ed:60:e9:d9:b1:83:80:bb:93:c9:51:74:43: 06:18:d1:64:cb:7d:8b:32:47:29:b0:45:a2:9e:3b: 3f:c9:53:e4:c7:1d:4d:ec:f2:f5:68:af:4a:c6:9e: 23:57:c5:6d:d9:28:22:41:ba:be:58:9d:54:56:ed: d5:1e:07:dd:07:df:6b:71:86:26:96:b6:ff:4d:d9: 79:16:49:9c:db:8b:71:46:ee:14:e0:7f:c5:94:7d: 45:4c:16:05:6a:a2:1e:7d:f7:e5:75:9e:35:a8:57: 16:8e:e3:2f:5c:bd:87:03:94:10:e4:c8:fc:c2:70: 21:0c:e6:a2:78:7a:f4:96:92:cc:da:ad:10:52:b7: d6:a1:82:87:bb:6c:70:9b:62:d4:43:38:bf:36:93: 8c:d9:fe:70:5b:76:4e:65:dd:43:f5:a9:00:ad:0c: 95:d0:b4:b3:7d:22:b3:3d:fc:61:44:fb:0f:3b:c9: e7:98:a3:08:4f:06:98:de:d7:a3:11:7b:72:21:a4: 98:1e:09:22:5f:7b:6d:d7:84:b6:53:5e:c8:d6:9e: 9f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:D7:E6:B9:13:A3:B1:8D:53:F3:49:00:B5:B4:64:BB:F9:5D:B5:38 X509v3 Authority Key Identifier: keyid:CE:C5:FE:18:3A:39:10:5C:9E:27:02:CC:2B:F0:89:1F:C3:5E:1E:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/3130332e3137302e3130302e302f32342d3234203d3e20313432333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.100.0/24 Signature Algorithm: sha256WithRSAEncryption 13:4e:f9:62:cd:44:ac:fe:31:87:c9:49:0c:7a:fe:99:b3:f9: 82:aa:61:de:39:a4:07:6d:70:49:29:b5:24:06:4b:6f:a6:d0: d9:a7:f5:97:46:d6:dc:4a:92:89:3a:41:76:f0:53:7d:49:54: 2e:ec:c5:70:e0:6f:15:5a:2c:74:7d:6a:c1:d9:2a:b6:f5:75: 13:9c:ba:97:fe:46:74:9d:81:db:41:ff:d0:ae:a6:70:6d:6b: f3:da:e1:a6:f7:d7:2c:1e:26:ac:61:56:26:ad:28:d4:cd:14: 17:e6:73:9d:f6:f7:f3:2b:0f:e1:ad:a7:df:9c:32:7c:c5:86: fe:f4:cc:fe:91:49:c7:eb:24:dc:eb:7f:e7:27:a8:67:d8:63: 1c:f8:eb:89:dd:f7:df:69:16:d1:66:2e:7c:f5:b9:d9:ce:bc: f2:9d:e7:62:ff:50:84:e2:c7:6b:e8:7c:63:cc:fa:9f:30:44: 52:e2:0b:53:93:0d:45:7a:39:e9:a7:49:b5:17:f7:60:f6:1b: 57:02:a9:f4:02:e8:ae:a3:2a:4b:e7:6c:79:b1:aa:d1:f4:fe: 4b:76:4b:86:2e:76:be:58:88:0c:79:a9:87:f5:a0:10:ae:e4: e8:92:95:e3:b5:64:09:7f:60:06:58:c4:20:e7:47:ce:5d:9b: 32:de:e9:84 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUG+EVenuqdaj6wgigdFB2x4NkWNYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VDNUZFMTgzQTM5MTA1QzlFMjcwMkNDMkJGMDg5MUZD MzVFMUU0RjAeFw0yNTA1MDgxNDU1MDJaFw0yNjA1MDcxNTAwMDJaMDMxMTAvBgNV BAMTKEQ1RDdFNkI5MTNBM0IxOEQ1M0YzNDkwMEI1QjQ2NEJCRjk1REI1MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDATl3x8rsqAOA3TiGRB7L/K9sM vUPUYmalmDquPb5AyPnqv8UizIo9z9b6G+6T7WDp2bGDgLuTyVF0QwYY0WTLfYsy RymwRaKeOz/JU+THHU3s8vVor0rGniNXxW3ZKCJBur5YnVRW7dUeB90H32txhiaW tv9N2XkWSZzbi3FG7hTgf8WUfUVMFgVqoh599+V1njWoVxaO4y9cvYcDlBDkyPzC cCEM5qJ4evSWkszarRBSt9ahgoe7bHCbYtRDOL82k4zZ/nBbdk5l3UP1qQCtDJXQ tLN9IrM9/GFE+w87yeeYowhPBpje16MRe3IhpJgeCSJfe23XhLZTXsjWnp/5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1dfmuROjsY1T80kAtbRku/ldtTgwHwYDVR0j BBgwFoAUzsX+GDo5EFyeJwLMK/CJH8NeHk8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NjFjZjc3Ny04YWRmLTRlZjEtOGQ2Zi05ODYyYzU1NjIwZWEvMC9DRUM1RkUxODNB MzkxMDVDOUUyNzAyQ0MyQkYwODkxRkMzNUUxRTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0VDNUZFMTgzQTM5MTA1QzlFMjcwMkNDMkJGMDg5MUZDMzVF MUU0Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU2MWNmNzc3LThhZGYtNGVmMS04 ZDZmLTk4NjJjNTU2MjBlYS8wLzMxMzAzMzJlMzEzNzMwMmUzMTMwMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM2MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqmQwDQYJ KoZIhvcNAQELBQADggEBABNO+WLNRKz+MYfJSQx6/pmz+YKqYd45pAdtcEkptSQG S2+m0Nmn9ZdG1txKkok6QXbwU31JVC7sxXDgbxVaLHR9asHZKrb1dROcupf+RnSd gdtB/9CupnBta/Pa4ab31yweJqxhViatKNTNFBfmc5329/MrD+Gtp9+cMnzFhv70 zP6RScfrJNzrf+cnqGfYYxz464nd999pFtFmLnz1udnOvPKd52L/UITix2vofGPM +p8wRFLiC1OTDUV6OemnSbUX92D2G1cCqfQC6K6jKkvnbHmxqtH0/kt2S4Yudr5Y iAx5qYf1oBCu5OiSleO1ZAl/YAZYxCDnR85dmzLe6YQ= -----END CERTIFICATE-----Generated at Mon May 12 21:54:43 2025 by rpki-client