$ rpki-client -vvf repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3130332e33312e3131302e302f32332d3234203d3e203435323837.roa File: 3130332e33312e3131302e302f32332d3234203d3e203435323837.roa (raw, json) Hash identifier: 4PaQM0H/onjaHT/Kh1zZPEAnjrQ5QUcaM+Ku8Nb2uPM= Subject key identifier: B2:BD:8B:7E:AF:D9:B3:5F:ED:43:0E:45:0F:EA:C9:EC:67:56:33:39 Certificate issuer: /CN=DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7 Certificate serial: 055D573A5F90ADF7FC26C3FD545A37B94029A5B7 Authority key identifier: DC:1F:CA:69:CA:5B:7A:3A:3E:48:25:B3:CA:FC:C3:BD:1B:C0:6E:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3130332e33312e3131302e302f32332d3234203d3e203435323837.roa Signing time: Wed 07 May 2025 11:24:23 +0000 ROA not before: Wed 07 May 2025 11:19:23 +0000 ROA not after: Wed 06 May 2026 11:24:23 +0000 asID: 45287 IP address blocks: 103.31.110.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.crl rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 00:17:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:5d:57:3a:5f:90:ad:f7:fc:26:c3:fd:54:5a:37:b9:40:29:a5:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7 Validity Not Before: May 7 11:19:23 2025 GMT Not After : May 6 11:24:23 2026 GMT Subject: CN=B2BD8B7EAFD9B35FED430E450FEAC9EC67563339 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ce:4a:78:ed:7b:b8:a2:bd:33:04:a7:fe:a8: 69:c8:48:65:6e:93:b3:cd:1c:3a:b7:54:fd:d8:15: af:69:e3:b3:c7:40:37:46:39:77:29:1e:dd:b1:a1: 47:ce:cb:9e:0a:c5:2b:28:08:30:d0:a0:0e:d6:b9: 6b:56:ba:14:3d:1d:14:6f:ea:c8:fa:7a:55:5e:5b: da:6f:13:a1:91:82:e6:42:9b:19:26:0f:21:e8:fc: bf:d0:ca:1d:f2:54:5d:2e:da:6a:36:f6:7b:b2:98: 0b:d1:af:d1:3f:59:ce:58:67:13:68:63:7a:22:86: d2:74:ca:f7:50:70:41:f2:0a:36:85:f1:cb:36:b2: 4a:32:12:ad:2e:66:05:38:ca:16:93:22:bd:24:c2: 3d:2a:7f:42:87:65:99:9a:aa:86:85:51:ee:0e:10: 5e:3f:54:4f:61:90:6b:1d:01:8f:b1:3f:57:87:71: c3:47:7a:a6:f1:ea:53:fc:f8:af:d2:19:c7:81:4e: ec:95:a0:b4:b8:17:aa:43:d7:6d:0d:fa:3b:d3:50: d1:fe:42:c5:5e:ec:54:4c:3e:5b:71:87:a8:dd:03: 00:f9:71:71:28:07:cb:6a:8b:ee:d4:54:ad:20:c0: c9:11:27:77:c1:c6:9f:5f:1f:d9:94:31:f1:38:ca: aa:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:BD:8B:7E:AF:D9:B3:5F:ED:43:0E:45:0F:EA:C9:EC:67:56:33:39 X509v3 Authority Key Identifier: keyid:DC:1F:CA:69:CA:5B:7A:3A:3E:48:25:B3:CA:FC:C3:BD:1B:C0:6E:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC1FCA69CA5B7A3A3E4825B3CAFCC3BD1BC06EB7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/98249fc3-6c84-4e91-b067-a0c6a840a3a9/0/3130332e33312e3131302e302f32332d3234203d3e203435323837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.31.110.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:92:b9:f4:e4:db:fd:c5:8b:31:33:e8:fc:bb:e9:1b:64:ee: 96:a2:ac:bc:80:6e:e9:07:93:db:f7:1f:dd:fc:91:91:8c:d0: 7b:c3:49:91:9e:fe:97:6e:74:91:e1:e4:0d:f3:19:79:2c:e7: f4:5d:33:d4:39:8b:32:d4:85:e8:17:4f:cb:91:30:b8:e2:65: 45:69:73:9b:b9:b2:81:4a:d1:5f:fb:0b:94:b9:8f:86:5c:fb: c7:11:eb:c8:a4:00:6d:d0:8e:e4:19:9e:fd:2a:dd:32:60:4f: 76:76:73:22:4b:8a:a2:72:05:ed:bf:64:d9:60:e2:6c:fa:51: d8:fc:8f:b1:ca:96:43:8a:46:66:11:c9:8d:8b:0d:17:84:dd: a1:59:cc:ae:76:22:41:d9:c2:c6:09:c0:6a:6b:12:1b:72:4c: db:c2:99:7c:1a:81:99:5d:09:bc:38:80:ce:1a:a1:ff:1d:66: 7d:9c:c3:c6:28:85:19:b3:18:21:db:79:77:af:96:68:fe:78: 44:d1:02:95:6a:e4:9e:36:ab:75:6d:ca:a6:99:bd:f8:9f:3f: bb:05:46:b1:28:c1:4d:88:0b:6e:bb:f5:c3:ab:31:83:41:ab: a5:f6:55:54:1b:ba:e3:ee:c8:29:8e:e2:eb:65:d2:be:ac:02: 3e:30:e4:8c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBV1XOl+Qrff8JsP9VFo3uUAppbcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREMxRkNBNjlDQTVCN0EzQTNFNDgyNUIzQ0FGQ0MzQkQx QkMwNkVCNzAeFw0yNTA1MDcxMTE5MjNaFw0yNjA1MDYxMTI0MjNaMDMxMTAvBgNV BAMTKEIyQkQ4QjdFQUZEOUIzNUZFRDQzMEU0NTBGRUFDOUVDNjc1NjMzMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPzkp47Xu4or0zBKf+qGnISGVu k7PNHDq3VP3YFa9p47PHQDdGOXcpHt2xoUfOy54KxSsoCDDQoA7WuWtWuhQ9HRRv 6sj6elVeW9pvE6GRguZCmxkmDyHo/L/Qyh3yVF0u2mo29nuymAvRr9E/Wc5YZxNo Y3oihtJ0yvdQcEHyCjaF8cs2skoyEq0uZgU4yhaTIr0kwj0qf0KHZZmaqoaFUe4O EF4/VE9hkGsdAY+xP1eHccNHeqbx6lP8+K/SGceBTuyVoLS4F6pD120N+jvTUNH+ QsVe7FRMPltxh6jdAwD5cXEoB8tqi+7UVK0gwMkRJ3fBxp9fH9mUMfE4yqrdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUsr2Lfq/Zs1/tQw5FD+rJ7GdWMzkwHwYDVR0j BBgwFoAU3B/Kacpbejo+SCWzyvzDvRvAbrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ODI0OWZjMy02Yzg0LTRlOTEtYjA2Ny1hMGM2YTg0MGEzYTkvMC9EQzFGQ0E2OUNB NUI3QTNBM0U0ODI1QjNDQUZDQzNCRDFCQzA2RUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREMxRkNBNjlDQTVCN0EzQTNFNDgyNUIzQ0FGQ0MzQkQxQkMw NkVCNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk4MjQ5ZmMzLTZjODQtNGU5MS1i MDY3LWEwYzZhODQwYTNhOS8wLzMxMzAzMzJlMzMzMTJlMzEzMTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNTMyMzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcfbjANBgkqhkiG 9w0BAQsFAAOCAQEADpK59OTb/cWLMTPo/LvpG2TulqKsvIBu6QeT2/cf3fyRkYzQ e8NJkZ7+l250keHkDfMZeSzn9F0z1DmLMtSF6BdPy5EwuOJlRWlzm7mygUrRX/sL lLmPhlz7xxHryKQAbdCO5Bme/SrdMmBPdnZzIkuKonIF7b9k2WDibPpR2PyPscqW Q4pGZhHJjYsNF4TdoVnMrnYiQdnCxgnAamsSG3JM28KZfBqBmV0JvDiAzhqh/x1m fZzDxiiFGbMYIdt5d6+WaP54RNEClWrknjardW3Kppm9+J8/uwVGsSjBTYgLbrv1 w6sxg0GrpfZVVBu64+7IKY7i62XSvqwCPjDkjA== -----END CERTIFICATE-----Generated at Sun May 11 05:32:15 2025 by rpki-client