$ rpki-client -vvf repo-rpki.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/3130332e3137312e3138352e302f32342d3234203d3e20313432333734.roa File: 3130332e3137312e3138352e302f32342d3234203d3e20313432333734.roa (raw, json) Hash identifier: Un4jBswELs85PKZIKBQlwX0Wi2V6PoeRbOj08OHDeeg= Subject key identifier: F2:3C:4D:D9:36:BD:ED:5F:85:E4:0A:C0:58:58:DE:5C:DD:86:71:76 Certificate issuer: /CN=DFAE11418F2175A57D01D8F80A61497CC1F5306C Certificate serial: 24BACA9BA21A30936A0FA8AEAE2734939AA92851 Authority key identifier: DF:AE:11:41:8F:21:75:A5:7D:01:D8:F8:0A:61:49:7C:C1:F5:30:6C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DFAE11418F2175A57D01D8F80A61497CC1F5306C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/3130332e3137312e3138352e302f32342d3234203d3e20313432333734.roa Signing time: Tue 29 Apr 2025 10:00:01 +0000 ROA not before: Tue 29 Apr 2025 09:55:01 +0000 ROA not after: Tue 28 Apr 2026 10:00:01 +0000 asID: 142374 IP address blocks: 103.171.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/DFAE11418F2175A57D01D8F80A61497CC1F5306C.crl rsync://repo-rpki.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/DFAE11418F2175A57D01D8F80A61497CC1F5306C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DFAE11418F2175A57D01D8F80A61497CC1F5306C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 08:58:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:ba:ca:9b:a2:1a:30:93:6a:0f:a8:ae:ae:27:34:93:9a:a9:28:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFAE11418F2175A57D01D8F80A61497CC1F5306C Validity Not Before: Apr 29 09:55:01 2025 GMT Not After : Apr 28 10:00:01 2026 GMT Subject: CN=F23C4DD936BDED5F85E40AC05858DE5CDD867176 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:13:bb:6d:e8:4b:72:8b:2a:8e:5e:8a:72:da: 55:5f:17:da:91:85:91:bc:96:59:f6:0c:63:ba:5f: 3b:6f:9e:21:02:77:fb:54:77:c6:14:88:67:38:c4: 91:c3:90:c1:d9:3c:57:0b:95:f6:88:2e:99:ce:6c: 3f:4e:14:68:05:7a:bd:16:65:a7:6b:b7:be:5c:99: 5e:4d:5f:ea:9e:3b:5f:af:e9:69:47:ea:fc:a0:f1: 02:16:50:2a:da:c3:8a:28:45:aa:56:7e:c9:60:92: 3e:d0:16:11:0f:34:14:99:7c:73:94:6c:23:8a:88: dd:51:31:32:11:3c:ec:55:16:37:ae:00:d4:ac:c7: bc:d9:bd:07:f1:e9:30:c3:a7:99:f8:86:02:f4:71: 69:10:1a:3f:22:4a:cd:df:a2:61:8f:d9:bd:ce:7f: 76:f7:47:82:60:da:ec:54:c4:b4:ef:3c:48:9f:f9: 6e:9d:cd:ac:49:99:09:d7:11:e2:fe:87:6c:6a:e9: aa:c8:f9:88:b6:27:38:bb:a7:29:72:27:6f:e9:fb: 82:de:ae:22:41:fe:36:7c:73:b5:14:7d:5e:24:44: 60:3c:09:8c:44:2d:74:f1:17:80:9a:b1:40:e8:2d: 58:b3:52:fe:c8:77:a2:a3:87:a8:2f:74:e7:e1:fd: 46:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:3C:4D:D9:36:BD:ED:5F:85:E4:0A:C0:58:58:DE:5C:DD:86:71:76 X509v3 Authority Key Identifier: keyid:DF:AE:11:41:8F:21:75:A5:7D:01:D8:F8:0A:61:49:7C:C1:F5:30:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/DFAE11418F2175A57D01D8F80A61497CC1F5306C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DFAE11418F2175A57D01D8F80A61497CC1F5306C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/3130332e3137312e3138352e302f32342d3234203d3e20313432333734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.185.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:50:52:fe:ed:5d:1c:d1:4c:10:72:34:c1:d7:d4:e3:02:8b: 34:32:94:46:f6:46:7a:6e:e9:b5:cf:bd:79:90:7a:9c:fc:fd: 47:e2:82:1c:e3:8d:04:fa:1c:ff:a2:dd:37:00:b4:67:07:19: 7a:da:85:c0:38:cc:e4:c4:6e:a1:25:61:70:2e:8a:0e:78:fe: f2:21:90:6e:d6:cd:81:60:8b:f6:2d:c0:83:0e:4c:ee:d7:c3: 61:bc:66:c3:7e:c7:1d:02:5a:3c:e7:d0:56:46:82:05:07:6f: c9:1b:65:1a:fe:5a:76:51:de:f6:67:94:ca:36:63:00:10:55: 7d:83:f2:46:a0:8b:3f:b1:34:45:39:75:e3:4e:bc:d5:aa:4b: 5e:57:eb:bc:73:6d:52:99:8a:0d:50:5b:06:76:81:0d:52:6e: ca:41:9a:b0:a1:70:74:ab:bb:66:e4:ef:43:a9:1b:a6:72:23: 8c:d1:66:a2:0e:de:80:3f:88:3e:06:5b:2b:93:17:e3:f6:22: fa:1a:19:55:f2:2f:83:20:c8:7e:18:bc:77:d2:e9:c2:b0:ac: 0a:73:c2:c6:d7:05:9b:94:37:0e:fc:69:33:c0:bb:f3:b2:04: 36:41:2a:38:e7:f7:5a:d5:81:04:d2:01:5e:3f:eb:c2:b5:06: af:c2:7b:93 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJLrKm6IaMJNqD6iuric0k5qpKFEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREZBRTExNDE4RjIxNzVBNTdEMDFEOEY4MEE2MTQ5N0ND MUY1MzA2QzAeFw0yNTA0MjkwOTU1MDFaFw0yNjA0MjgxMDAwMDFaMDMxMTAvBgNV BAMTKEYyM0M0REQ5MzZCREVENUY4NUU0MEFDMDU4NThERTVDREQ4NjcxNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqE7tt6EtyiyqOXopy2lVfF9qR hZG8lln2DGO6XztvniECd/tUd8YUiGc4xJHDkMHZPFcLlfaILpnObD9OFGgFer0W Zadrt75cmV5NX+qeO1+v6WlH6vyg8QIWUCraw4ooRapWfslgkj7QFhEPNBSZfHOU bCOKiN1RMTIRPOxVFjeuANSsx7zZvQfx6TDDp5n4hgL0cWkQGj8iSs3fomGP2b3O f3b3R4Jg2uxUxLTvPEif+W6dzaxJmQnXEeL+h2xq6arI+Yi2Jzi7pylyJ2/p+4Le riJB/jZ8c7UUfV4kRGA8CYxELXTxF4CasUDoLVizUv7Id6Kjh6gvdOfh/UbNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU8jxN2Ta97V+F5ArAWFjeXN2GcXYwHwYDVR0j BBgwFoAU364RQY8hdaV9Adj4CmFJfMH1MGwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ODU1ZjQ1MC1lYjdmLTRhMjYtYTZjNC1mOTgyN2VlMGE1YjgvMC9ERkFFMTE0MThG MjE3NUE1N0QwMUQ4RjgwQTYxNDk3Q0MxRjUzMDZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREZBRTExNDE4RjIxNzVBNTdEMDFEOEY4MEE2MTQ5N0NDMUY1 MzA2Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4NTVmNDUwLWViN2YtNGEyNi1h NmM0LWY5ODI3ZWUwYTViOC8wLzMxMzAzMzJlMzEzNzMxMmUzMTM4MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM3MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnq7kwDQYJ KoZIhvcNAQELBQADggEBAAtQUv7tXRzRTBByNMHX1OMCizQylEb2Rnpu6bXPvXmQ epz8/UfighzjjQT6HP+i3TcAtGcHGXrahcA4zOTEbqElYXAuig54/vIhkG7WzYFg i/YtwIMOTO7Xw2G8ZsN+xx0CWjzn0FZGggUHb8kbZRr+WnZR3vZnlMo2YwAQVX2D 8kagiz+xNEU5deNOvNWqS15X67xzbVKZig1QWwZ2gQ1SbspBmrChcHSru2bk70Op G6ZyI4zRZqIO3oA/iD4GWyuTF+P2IvoaGVXyL4MgyH4YvHfS6cKwrApzwsbXBZuU Nw78aTPAu/OyBDZBKjjn91rVgQTSAV4/68K1Bq/Ce5M= -----END CERTIFICATE-----Generated at Fri May 9 02:39:52 2025 by rpki-client