$ rpki-client -vvf repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/3130332e3136392e3235342e302f32342d3234203d3e20313432333730.roa File: 3130332e3136392e3235342e302f32342d3234203d3e20313432333730.roa (raw, json) Hash identifier: TptDi2yJ3flSSMDSqc9f0+quKLm9aeSrjexrkn5vS9o= Subject key identifier: C3:7D:AB:7E:A0:8E:42:83:62:8D:2E:47:AD:88:60:1B:B8:4A:67:DE Certificate issuer: /CN=DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1 Certificate serial: 62503F2CD41B930FC081235D30B87263C8D48B97 Authority key identifier: DF:68:55:96:DA:F9:D3:65:4A:2E:2F:21:CE:11:AA:0B:B8:0E:45:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/3130332e3136392e3235342e302f32342d3234203d3e20313432333730.roa Signing time: Sat 03 May 2025 03:00:00 +0000 ROA not before: Sat 03 May 2025 02:55:00 +0000 ROA not after: Sat 02 May 2026 03:00:00 +0000 asID: 142370 IP address blocks: 103.169.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.crl rsync://repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 00:32:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:50:3f:2c:d4:1b:93:0f:c0:81:23:5d:30:b8:72:63:c8:d4:8b:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1 Validity Not Before: May 3 02:55:00 2025 GMT Not After : May 2 03:00:00 2026 GMT Subject: CN=C37DAB7EA08E4283628D2E47AD88601BB84A67DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:3d:3a:ee:cd:b0:a4:47:54:b7:1b:56:9c:e8: df:10:0b:4b:ee:e8:c5:b6:ad:b2:09:77:c4:5f:b5: 5e:e5:ad:b3:b9:ed:d0:8a:a2:d8:de:6a:aa:fc:d1: 3e:1a:5b:04:ae:6d:69:dc:f0:15:0c:54:e2:bc:11: 91:95:a8:28:90:49:af:d0:08:82:35:62:ef:99:8c: d3:f3:b3:08:7b:88:28:df:08:05:a0:c0:f6:7e:79: 41:2e:21:c4:21:cc:0c:de:36:b0:28:71:3e:ad:b3: b5:22:21:e8:67:24:e8:61:bb:a0:c8:48:04:90:06: a6:56:f1:d0:6e:36:b9:86:8c:fa:c3:50:fb:b6:a4: 71:24:e2:00:4e:64:5f:3e:88:14:fc:1d:b2:0c:14: c3:7f:c0:74:ef:7b:ab:cb:04:94:50:17:8a:63:42: 70:14:64:83:5e:55:90:38:be:d5:b4:39:1c:0c:1f: 43:08:b5:ae:96:1d:b7:7d:93:b1:81:62:7a:ba:d6: d2:13:dd:f5:de:db:b1:10:58:94:87:79:3d:74:da: a7:48:17:23:68:41:d1:0c:2b:f2:68:71:29:0b:86: 64:7d:7d:2b:d5:13:2b:76:45:64:d9:c2:2f:6c:e6: eb:48:a1:63:66:45:57:b8:59:a8:7e:85:fb:f5:c5: 2c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:7D:AB:7E:A0:8E:42:83:62:8D:2E:47:AD:88:60:1B:B8:4A:67:DE X509v3 Authority Key Identifier: keyid:DF:68:55:96:DA:F9:D3:65:4A:2E:2F:21:CE:11:AA:0B:B8:0E:45:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/3130332e3136392e3235342e302f32342d3234203d3e20313432333730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.254.0/24 Signature Algorithm: sha256WithRSAEncryption bd:82:79:85:74:c5:ec:a6:65:e9:b9:72:f6:c8:0c:e3:ee:0b: 62:cc:7e:6e:ab:23:27:4c:6a:cc:45:e9:78:c3:52:bb:76:05: f3:8b:b7:09:e4:d0:60:e6:e3:6c:a6:ea:e2:37:79:05:6d:e5: 99:f6:c5:1c:ce:4a:d7:f4:c8:8c:f7:2c:92:84:a5:07:a6:83: 6a:17:21:ac:cc:06:75:87:b8:b4:3a:3c:d6:67:37:cf:c2:a6: bf:a0:fe:80:43:f6:c8:44:f8:18:00:e1:80:cc:50:a0:69:2e: c3:74:97:e9:cb:c4:aa:95:85:2f:03:f9:c6:33:7f:85:be:d1: 57:24:ec:8f:cf:56:13:b9:3c:18:2c:11:fe:1f:d5:68:ad:de: 97:c9:36:d0:06:af:9d:29:91:ab:98:8b:65:bc:22:b4:54:8b: 79:9b:24:5b:f5:ef:20:a0:02:9c:bf:07:1f:e2:67:79:a0:11: 15:41:61:9f:82:81:3b:f3:d3:5a:c4:e9:f1:cf:d0:b1:ef:65: b4:1a:3f:97:e7:13:7f:ae:bc:3e:ea:34:8d:13:a8:9f:9a:d5: 5c:b9:a2:66:ae:d4:58:1c:62:03:5d:42:2d:aa:4e:e0:2a:da: 71:15:36:e6:d6:0a:f5:d7:c8:0c:6e:b1:a5:b8:2e:93:ba:dd: 53:a6:e5:d5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYlA/LNQbkw/AgSNdMLhyY8jUi5cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREY2ODU1OTZEQUY5RDM2NTRBMkUyRjIxQ0UxMUFBMEJC ODBFNDVEMTAeFw0yNTA1MDMwMjU1MDBaFw0yNjA1MDIwMzAwMDBaMDMxMTAvBgNV BAMTKEMzN0RBQjdFQTA4RTQyODM2MjhEMkU0N0FEODg2MDFCQjg0QTY3REUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiPTruzbCkR1S3G1ac6N8QC0vu 6MW2rbIJd8RftV7lrbO57dCKotjeaqr80T4aWwSubWnc8BUMVOK8EZGVqCiQSa/Q CII1Yu+ZjNPzswh7iCjfCAWgwPZ+eUEuIcQhzAzeNrAocT6ts7UiIehnJOhhu6DI SASQBqZW8dBuNrmGjPrDUPu2pHEk4gBOZF8+iBT8HbIMFMN/wHTve6vLBJRQF4pj QnAUZINeVZA4vtW0ORwMH0MIta6WHbd9k7GBYnq61tIT3fXe27EQWJSHeT102qdI FyNoQdEMK/JocSkLhmR9fSvVEyt2RWTZwi9s5utIoWNmRVe4Wah+hfv1xSzDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUw32rfqCOQoNijS5HrYhgG7hKZ94wHwYDVR0j BBgwFoAU32hVltr502VKLi8hzhGqC7gORdEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NzUyYjNjMi0zZjMwLTQwNDAtOGIwNS04MzgyMTc3NzA0OGYvMC9ERjY4NTU5NkRB RjlEMzY1NEEyRTJGMjFDRTExQUEwQkI4MEU0NUQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREY2ODU1OTZEQUY5RDM2NTRBMkUyRjIxQ0UxMUFBMEJCODBF NDVEMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY3NTJiM2MyLTNmMzAtNDA0MC04 YjA1LTgzODIxNzc3MDQ4Zi8wLzMxMzAzMzJlMzEzNjM5MmUzMjM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqf4wDQYJ KoZIhvcNAQELBQADggEBAL2CeYV0xeymZem5cvbIDOPuC2LMfm6rIydMasxF6XjD Urt2BfOLtwnk0GDm42ym6uI3eQVt5Zn2xRzOStf0yIz3LJKEpQemg2oXIazMBnWH uLQ6PNZnN8/Cpr+g/oBD9shE+BgA4YDMUKBpLsN0l+nLxKqVhS8D+cYzf4W+0Vck 7I/PVhO5PBgsEf4f1Wit3pfJNtAGr50pkauYi2W8IrRUi3mbJFv17yCgApy/Bx/i Z3mgERVBYZ+CgTvz01rE6fHP0LHvZbQaP5fnE3+uvD7qNI0TqJ+a1Vy5omau1Fgc YgNdQi2qTuAq2nEVNubWCvXXyAxusaW4LpO63VOm5dU= -----END CERTIFICATE-----Generated at Sun May 11 04:36:02 2025 by rpki-client