$ rpki-client -vvf repo-rpki.idnic.net/repo/a35224c6-334d-4f3d-9837-1bacca5a022b/0/3130332e3137322e312e302f32342d3234203d3e20313431313236.roa File: 3130332e3137322e312e302f32342d3234203d3e20313431313236.roa (raw, json) Hash identifier: PYDr+jqmbYFowgu8iPDfPTaOY9K1BX5iJc2AVi/rh14= Subject key identifier: 64:1E:86:B1:1F:82:6D:26:9F:5F:C8:C7:DE:E2:C1:C8:D0:13:5E:00 Certificate issuer: /CN=CC17637DFC67C2C6373B352EF14C46124FCF9FCE Certificate serial: 0307DF173CB20B94C2CDE86E6F9394817DDE1390 Authority key identifier: CC:17:63:7D:FC:67:C2:C6:37:3B:35:2E:F1:4C:46:12:4F:CF:9F:CE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC17637DFC67C2C6373B352EF14C46124FCF9FCE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a35224c6-334d-4f3d-9837-1bacca5a022b/0/3130332e3137322e312e302f32342d3234203d3e20313431313236.roa Signing time: Thu 08 May 2025 05:02:22 +0000 ROA not before: Thu 08 May 2025 04:57:22 +0000 ROA not after: Thu 07 May 2026 05:02:22 +0000 asID: 141126 IP address blocks: 103.172.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a35224c6-334d-4f3d-9837-1bacca5a022b/0/CC17637DFC67C2C6373B352EF14C46124FCF9FCE.crl rsync://repo-rpki.idnic.net/repo/a35224c6-334d-4f3d-9837-1bacca5a022b/0/CC17637DFC67C2C6373B352EF14C46124FCF9FCE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC17637DFC67C2C6373B352EF14C46124FCF9FCE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 22:14:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:07:df:17:3c:b2:0b:94:c2:cd:e8:6e:6f:93:94:81:7d:de:13:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CC17637DFC67C2C6373B352EF14C46124FCF9FCE Validity Not Before: May 8 04:57:22 2025 GMT Not After : May 7 05:02:22 2026 GMT Subject: CN=641E86B11F826D269F5FC8C7DEE2C1C8D0135E00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:48:91:fa:c3:c2:ec:c2:b3:d0:95:c6:7a:8d: c4:cf:44:35:99:da:75:6d:94:c6:17:9c:a5:4c:8f: 8c:5c:45:1a:45:00:cb:d6:cc:76:fd:d1:6f:39:fb: c0:f8:26:d7:ea:9d:3d:11:ce:32:23:46:62:22:34: 87:6b:d0:84:28:3d:2d:72:19:b7:88:12:50:95:84: 32:21:d2:29:e9:c9:b1:32:ef:d7:09:73:6d:f2:22: a3:3e:a7:8b:62:e9:b7:5c:de:7e:f6:a3:92:82:c1: b0:68:80:3b:ca:7e:77:af:45:52:e3:d9:9f:7b:b0: e0:34:90:51:67:ff:6a:b5:ff:97:6d:9e:0a:d4:13: ae:43:b0:ab:c0:01:1d:e3:fa:ea:de:f3:e5:35:8e: 2c:ef:68:c1:51:42:97:96:5a:30:b2:89:93:d4:de: cc:88:96:bc:b5:1a:6f:55:6d:17:4a:2a:ee:fc:8f: a5:a8:0b:a2:7a:f7:a8:14:4c:8d:af:2d:32:18:e6: 79:f0:4f:87:1c:54:8b:25:d7:01:be:ae:27:95:7f: d0:00:91:46:7f:79:de:d3:f4:d4:63:c4:b5:3f:ff: 75:5a:cb:9f:22:96:bb:31:98:8f:ce:1b:56:73:57: c4:49:7b:86:da:f7:42:9a:57:d8:83:5d:a8:32:0a: 86:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:1E:86:B1:1F:82:6D:26:9F:5F:C8:C7:DE:E2:C1:C8:D0:13:5E:00 X509v3 Authority Key Identifier: keyid:CC:17:63:7D:FC:67:C2:C6:37:3B:35:2E:F1:4C:46:12:4F:CF:9F:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a35224c6-334d-4f3d-9837-1bacca5a022b/0/CC17637DFC67C2C6373B352EF14C46124FCF9FCE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC17637DFC67C2C6373B352EF14C46124FCF9FCE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a35224c6-334d-4f3d-9837-1bacca5a022b/0/3130332e3137322e312e302f32342d3234203d3e20313431313236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.1.0/24 Signature Algorithm: sha256WithRSAEncryption ab:47:c7:7e:15:46:53:03:70:31:8d:85:39:ba:33:eb:06:f6: 65:f0:59:23:2c:b1:31:c3:10:5d:72:f1:72:81:a8:9a:33:fd: a7:6a:a9:90:45:35:58:72:6b:a9:ee:88:2c:3c:7f:35:32:8f: 9e:9f:92:84:35:88:15:52:b9:44:7b:39:f7:e0:68:f8:6c:62: e0:51:4a:38:01:63:57:0d:8e:a2:32:79:f7:e6:bd:f4:b3:11: ed:8a:90:b4:e2:f0:93:cd:60:6e:9a:42:1d:d7:16:c7:04:45: 08:47:5b:ad:50:e4:e8:4c:f9:87:1b:d5:fe:d3:b7:fc:09:41: 67:0a:65:3a:f3:46:8b:04:1a:4a:ef:66:82:f1:58:32:ec:19: 75:6a:ff:71:33:75:45:7c:b7:8d:c4:1c:36:62:d0:5a:f6:17: 1d:7f:35:ea:e3:c4:18:12:62:1c:67:d0:2e:ad:52:33:76:8c: 92:74:ac:5e:93:f9:80:b7:6b:30:32:6e:71:f6:74:a4:61:4d: b6:69:e8:6c:e0:c7:93:7e:be:70:ea:88:7d:db:26:b5:34:14: 56:aa:c6:f0:df:45:e9:42:21:92:3c:98:bf:8b:8e:de:8c:27: 20:90:e4:b4:5b:9c:d9:77:7b:2d:fe:6d:9b:4b:eb:86:20:6e: c5:92:d8:c8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAwffFzyyC5TCzehub5OUgX3eE5AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0MxNzYzN0RGQzY3QzJDNjM3M0IzNTJFRjE0QzQ2MTI0 RkNGOUZDRTAeFw0yNTA1MDgwNDU3MjJaFw0yNjA1MDcwNTAyMjJaMDMxMTAvBgNV BAMTKDY0MUU4NkIxMUY4MjZEMjY5RjVGQzhDN0RFRTJDMUM4RDAxMzVFMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1SJH6w8LswrPQlcZ6jcTPRDWZ 2nVtlMYXnKVMj4xcRRpFAMvWzHb90W85+8D4JtfqnT0RzjIjRmIiNIdr0IQoPS1y GbeIElCVhDIh0inpybEy79cJc23yIqM+p4ti6bdc3n72o5KCwbBogDvKfnevRVLj 2Z97sOA0kFFn/2q1/5dtngrUE65DsKvAAR3j+ure8+U1jizvaMFRQpeWWjCyiZPU 3syIlry1Gm9VbRdKKu78j6WoC6J696gUTI2vLTIY5nnwT4ccVIsl1wG+rieVf9AA kUZ/ed7T9NRjxLU//3Vay58ilrsxmI/OG1ZzV8RJe4ba90KaV9iDXagyCobPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZB6GsR+CbSafX8jH3uLByNATXgAwHwYDVR0j BBgwFoAUzBdjffxnwsY3OzUu8UxGEk/Pn84wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MzUyMjRjNi0zMzRkLTRmM2QtOTgzNy0xYmFjY2E1YTAyMmIvMC9DQzE3NjM3REZD NjdDMkM2MzczQjM1MkVGMTRDNDYxMjRGQ0Y5RkNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0MxNzYzN0RGQzY3QzJDNjM3M0IzNTJFRjE0QzQ2MTI0RkNG OUZDRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzNTIyNGM2LTMzNGQtNGYzZC05 ODM3LTFiYWNjYTVhMDIyYi8wLzMxMzAzMzJlMzEzNzMyMmUzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTMxMzIzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGesATANBgkqhkiG 9w0BAQsFAAOCAQEAq0fHfhVGUwNwMY2FOboz6wb2ZfBZIyyxMcMQXXLxcoGomjP9 p2qpkEU1WHJrqe6ILDx/NTKPnp+ShDWIFVK5RHs59+Bo+Gxi4FFKOAFjVw2OojJ5 9+a99LMR7YqQtOLwk81gbppCHdcWxwRFCEdbrVDk6Ez5hxvV/tO3/AlBZwplOvNG iwQaSu9mgvFYMuwZdWr/cTN1RXy3jcQcNmLQWvYXHX816uPEGBJiHGfQLq1SM3aM knSsXpP5gLdrMDJucfZ0pGFNtmnobODHk36+cOqIfdsmtTQUVqrG8N9F6UIhkjyY v4uO3ownIJDktFuc2Xd7Lf5tm0vrhiBuxZLYyA== -----END CERTIFICATE-----Generated at Sun May 11 15:00:04 2025 by rpki-client