$ rpki-client -vvf repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/3130332e39372e3134302e302f32342d3234203d3e20313431303731.roa File: 3130332e39372e3134302e302f32342d3234203d3e20313431303731.roa (raw, json) Hash identifier: u+uBgrPGm+40zgnoGLAagJdkp/O9sV2Z6UZd95b5fdg= Subject key identifier: 51:70:82:C0:10:3D:6B:C2:67:AC:94:14:81:ED:79:DD:A4:5F:F0:48 Certificate issuer: /CN=F318D15D68E63CEBE4BFA026A5269F3877BE13C1 Certificate serial: 0A8DF88EF4B41C88AE97823521CAA166066E9382 Authority key identifier: F3:18:D1:5D:68:E6:3C:EB:E4:BF:A0:26:A5:26:9F:38:77:BE:13:C1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/3130332e39372e3134302e302f32342d3234203d3e20313431303731.roa Signing time: Wed 07 May 2025 11:19:07 +0000 ROA not before: Wed 07 May 2025 11:14:07 +0000 ROA not after: Wed 06 May 2026 11:19:07 +0000 asID: 141071 IP address blocks: 103.97.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.crl rsync://repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 21:59:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:8d:f8:8e:f4:b4:1c:88:ae:97:82:35:21:ca:a1:66:06:6e:93:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F318D15D68E63CEBE4BFA026A5269F3877BE13C1 Validity Not Before: May 7 11:14:07 2025 GMT Not After : May 6 11:19:07 2026 GMT Subject: CN=517082C0103D6BC267AC941481ED79DDA45FF048 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:78:bb:e3:dd:f8:97:58:5e:32:3b:bc:64:7b: e0:fd:2c:e6:ae:55:58:3d:c7:0c:02:68:14:15:88: db:ef:e3:d5:31:64:3b:3f:5c:11:94:38:0b:72:09: 15:b7:8c:ed:63:c6:12:41:ad:83:74:fe:8a:bf:e6: f8:c2:75:2e:a7:36:74:9f:be:4a:ec:38:42:f2:26: 20:81:fc:f7:4a:9e:ec:ae:b4:f3:25:71:99:0d:e1: 7e:e9:a7:d5:54:70:40:d3:3c:67:cd:5f:f7:49:e6: a3:2d:f4:b8:36:00:92:15:b3:d2:09:00:9f:fc:50: c2:0b:05:db:32:90:a9:fb:97:13:7a:d8:02:e4:96: bb:b5:e4:59:da:e9:c7:6f:74:8b:f1:5e:11:a6:ce: 2d:9f:e1:15:e3:96:7d:84:dd:c0:9c:a3:e1:cd:1b: bb:3e:fa:58:a7:af:97:4f:99:aa:a5:3a:d4:0d:e7: 31:4d:fd:7e:4a:7d:69:b0:81:49:4f:c0:74:b6:50: 99:7e:d3:da:bd:a6:9c:41:59:06:fb:e7:13:ff:66: 10:87:60:bd:b0:47:f8:0b:b0:4f:be:0a:89:47:3f: 42:fc:82:ae:45:ec:fa:66:4c:ea:3b:22:b1:54:6f: 56:ae:62:d7:a5:83:5d:ad:45:15:39:12:d5:7a:53: a1:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:70:82:C0:10:3D:6B:C2:67:AC:94:14:81:ED:79:DD:A4:5F:F0:48 X509v3 Authority Key Identifier: keyid:F3:18:D1:5D:68:E6:3C:EB:E4:BF:A0:26:A5:26:9F:38:77:BE:13:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F318D15D68E63CEBE4BFA026A5269F3877BE13C1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a401436b-0267-466b-a340-e288d2e934a8/0/3130332e39372e3134302e302f32342d3234203d3e20313431303731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.97.140.0/24 Signature Algorithm: sha256WithRSAEncryption 24:a8:6a:63:d2:18:82:2e:eb:04:be:60:4f:77:22:8a:ec:e0: 97:10:e4:76:c8:27:63:24:51:75:b4:37:34:37:04:1d:37:19: bc:39:25:37:51:c2:d1:d5:3e:59:e8:7d:74:fd:79:e9:34:ea: 1d:a8:7d:b2:c5:6e:21:c2:7f:6d:b6:67:ed:b7:a5:55:bb:48: cf:a8:ca:07:56:40:58:7f:ec:cd:f9:10:a1:60:8a:76:da:c2: ac:32:31:38:51:af:a7:a9:e1:9b:85:88:ca:0e:4c:c3:14:d0: 10:09:e8:b3:c3:9f:cd:e9:a7:0a:2f:2b:7c:0d:e3:cd:95:ff: 75:66:a3:50:3a:ee:38:6a:dd:75:a9:09:92:24:0f:76:52:c4: 1c:77:81:71:ee:bb:71:47:a1:d2:90:f6:ad:7c:db:f6:55:39: b0:a2:33:82:62:12:16:b9:9b:ac:f2:08:74:a5:f5:37:3f:e9: e8:aa:13:79:83:f3:1b:8b:0f:75:b3:8b:76:79:dd:6b:3d:ac: 53:f0:6e:29:53:56:2a:a8:ed:57:23:75:e5:7d:85:60:5e:4f: 36:1b:00:3e:79:e2:27:3b:0d:9e:a6:60:a0:4b:56:90:8a:5c: 8a:c0:35:59:a9:9d:6d:20:f7:d0:0f:4b:ec:b4:1b:07:77:65: ca:c0:91:3c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCo34jvS0HIiul4I1IcqhZgZuk4IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjMxOEQxNUQ2OEU2M0NFQkU0QkZBMDI2QTUyNjlGMzg3 N0JFMTNDMTAeFw0yNTA1MDcxMTE0MDdaFw0yNjA1MDYxMTE5MDdaMDMxMTAvBgNV BAMTKDUxNzA4MkMwMTAzRDZCQzI2N0FDOTQxNDgxRUQ3OUREQTQ1RkYwNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUeLvj3fiXWF4yO7xke+D9LOau VVg9xwwCaBQViNvv49UxZDs/XBGUOAtyCRW3jO1jxhJBrYN0/oq/5vjCdS6nNnSf vkrsOELyJiCB/PdKnuyutPMlcZkN4X7pp9VUcEDTPGfNX/dJ5qMt9Lg2AJIVs9IJ AJ/8UMILBdsykKn7lxN62ALklru15Fna6cdvdIvxXhGmzi2f4RXjln2E3cCco+HN G7s++linr5dPmaqlOtQN5zFN/X5KfWmwgUlPwHS2UJl+09q9ppxBWQb75xP/ZhCH YL2wR/gLsE++ColHP0L8gq5F7PpmTOo7IrFUb1auYtelg12tRRU5EtV6U6E3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUXCCwBA9a8JnrJQUge153aRf8EgwHwYDVR0j BBgwFoAU8xjRXWjmPOvkv6AmpSafOHe+E8EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NDAxNDM2Yi0wMjY3LTQ2NmItYTM0MC1lMjg4ZDJlOTM0YTgvMC9GMzE4RDE1RDY4 RTYzQ0VCRTRCRkEwMjZBNTI2OUYzODc3QkUxM0MxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjMxOEQxNUQ2OEU2M0NFQkU0QkZBMDI2QTUyNjlGMzg3N0JF MTNDMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E0MDE0MzZiLTAyNjctNDY2Yi1h MzQwLWUyODhkMmU5MzRhOC8wLzMxMzAzMzJlMzkzNzJlMzEzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzAzNzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2GMMA0GCSqG SIb3DQEBCwUAA4IBAQAkqGpj0hiCLusEvmBPdyKK7OCXEOR2yCdjJFF1tDc0NwQd Nxm8OSU3UcLR1T5Z6H10/XnpNOodqH2yxW4hwn9ttmftt6VVu0jPqMoHVkBYf+zN +RChYIp22sKsMjE4Ua+nqeGbhYjKDkzDFNAQCeizw5/N6acKLyt8DePNlf91ZqNQ Ou44at11qQmSJA92UsQcd4Fx7rtxR6HSkPatfNv2VTmwojOCYhIWuZus8gh0pfU3 P+noqhN5g/Mbiw91s4t2ed1rPaxT8G4pU1YqqO1XI3XlfYVgXk82GwA+eeInOw2e pmCgS1aQilyKwDVZqZ1tIPfQD0vstBsHd2XKwJE8 -----END CERTIFICATE-----Generated at Fri May 9 07:17:36 2025 by rpki-client