$ rpki-client -vvf repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/3130332e3135382e32372e302f32342d3234203d3e20313431363735.roa File: 3130332e3135382e32372e302f32342d3234203d3e20313431363735.roa (raw, json) Hash identifier: 83g1exgFqaTQKU38X1D6x0BtWT5D2KATwMghhQSp0Hg= Subject key identifier: A9:8A:A1:3E:2F:54:CD:8C:69:FE:B3:52:F7:04:A4:C7:8D:C2:FC:E6 Certificate issuer: /CN=1952B074D19D5AB562D7EE537AD3059EA097353B Certificate serial: 2EA3B754069129FBEF6F1B54E77B20CCECE92D65 Authority key identifier: 19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/3130332e3135382e32372e302f32342d3234203d3e20313431363735.roa Signing time: Thu 08 May 2025 03:00:02 +0000 ROA not before: Thu 08 May 2025 02:55:02 +0000 ROA not after: Thu 07 May 2026 03:00:02 +0000 asID: 141675 IP address blocks: 103.158.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 08:52:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:a3:b7:54:06:91:29:fb:ef:6f:1b:54:e7:7b:20:cc:ec:e9:2d:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1952B074D19D5AB562D7EE537AD3059EA097353B Validity Not Before: May 8 02:55:02 2025 GMT Not After : May 7 03:00:02 2026 GMT Subject: CN=A98AA13E2F54CD8C69FEB352F704A4C78DC2FCE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e2:96:6b:60:dd:9e:d0:45:e0:9c:b7:7f:c6: 5f:15:37:46:fb:85:04:b9:38:49:a0:ad:20:ed:97: d7:26:81:ce:40:d2:54:45:d1:74:80:21:07:86:8e: 1f:5c:b1:e9:f7:8a:57:9c:3f:ba:bf:fa:ea:d7:66: 24:9a:1f:92:30:1f:b1:e8:c6:35:5d:7d:65:cb:9e: a4:3e:0a:3b:bb:08:37:a2:6d:3c:13:24:08:5a:38: 00:56:c7:0c:59:b5:1a:64:48:97:a9:cb:40:2d:ec: 60:ce:6b:4a:72:cf:1b:f9:db:77:13:b5:ff:9e:d4: dc:61:37:29:da:62:b3:78:bf:16:73:1c:07:9d:72: 1d:2f:9b:7d:6a:0c:55:a7:2f:f5:7c:9b:8a:22:50: 54:54:fd:24:60:f5:fa:02:bc:c2:1d:ef:d6:83:e9: bf:aa:0c:c5:65:bf:95:17:a6:ca:cb:dc:fd:5b:1d: f2:3d:0e:44:05:08:a3:b5:b7:5a:f9:b7:6e:03:29: c1:b7:bc:a0:ca:8c:8b:fc:b0:85:e8:9e:0d:fb:d5: a7:c9:40:05:2d:46:dc:3a:3c:e3:85:2f:7e:a6:6f: 7a:27:71:90:1d:e7:d1:31:2e:6a:31:36:9e:84:48: ca:86:65:5f:6a:bd:fa:39:2f:5b:86:01:e2:d9:ce: b2:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:8A:A1:3E:2F:54:CD:8C:69:FE:B3:52:F7:04:A4:C7:8D:C2:FC:E6 X509v3 Authority Key Identifier: keyid:19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/3130332e3135382e32372e302f32342d3234203d3e20313431363735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.27.0/24 Signature Algorithm: sha256WithRSAEncryption 28:62:bf:12:ed:a4:bc:c4:7d:73:09:95:c5:2f:a9:e4:e4:2f: b1:7f:8a:ec:d3:28:c7:e1:e2:e9:e4:25:d7:fd:81:1d:cd:f5: cf:42:1c:bd:92:aa:40:60:37:d6:79:4f:30:e1:66:47:27:23: d1:f3:f4:b8:58:ae:11:f4:bb:94:aa:d9:84:4d:f2:dc:29:97: 48:0e:fc:58:90:a6:50:99:d9:b9:cf:d9:7b:dd:da:8c:f4:49: b5:01:eb:04:4e:9c:4e:55:60:a0:58:5e:f8:07:f7:c1:5d:eb: be:8c:8d:c2:4a:4b:e2:c3:cb:2a:b0:9e:5e:49:8f:df:d3:42: b6:ef:88:9f:b4:03:84:bd:8b:d4:e5:5f:76:09:e2:8e:fe:a8: ed:78:2f:8d:c8:90:f1:cc:23:31:44:c4:05:9e:0f:c4:19:24: eb:4a:2c:cd:42:e0:22:a3:4e:f0:bf:1f:a2:46:14:14:92:72: 01:a9:e1:26:a9:76:61:c4:75:82:02:43:c5:4d:71:85:17:04: 67:ac:58:8c:17:95:83:47:7a:cc:22:d3:33:c8:6e:c6:7d:3f: 4c:d8:13:c3:c2:e2:ab:a4:ce:4e:33:a3:f2:44:fc:f0:3d:e3: b5:52:75:03:03:f9:ac:7c:c6:51:64:08:f6:78:6a:65:bb:f2: 1c:5b:d5:f4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULqO3VAaRKfvvbxtU53sgzOzpLWUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1OUVB MDk3MzUzQjAeFw0yNTA1MDgwMjU1MDJaFw0yNjA1MDcwMzAwMDJaMDMxMTAvBgNV BAMTKEE5OEFBMTNFMkY1NENEOEM2OUZFQjM1MkY3MDRBNEM3OERDMkZDRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw4pZrYN2e0EXgnLd/xl8VN0b7 hQS5OEmgrSDtl9cmgc5A0lRF0XSAIQeGjh9csen3ilecP7q/+urXZiSaH5IwH7Ho xjVdfWXLnqQ+Cju7CDeibTwTJAhaOABWxwxZtRpkSJepy0At7GDOa0pyzxv523cT tf+e1NxhNynaYrN4vxZzHAedch0vm31qDFWnL/V8m4oiUFRU/SRg9foCvMId79aD 6b+qDMVlv5UXpsrL3P1bHfI9DkQFCKO1t1r5t24DKcG3vKDKjIv8sIXong371afJ QAUtRtw6POOFL36mb3oncZAd59ExLmoxNp6ESMqGZV9qvfo5L1uGAeLZzrJBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqYqhPi9UzYxp/rNS9wSkx43C/OYwHwYDVR0j BBgwFoAUGVKwdNGdWrVi1+5TetMFnqCXNTswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NGYyYzAyNS0xZDc2LTRhMzYtODE2MC1hOWU4YWZlMzU3OWYvMC8xOTUyQjA3NEQx OUQ1QUI1NjJEN0VFNTM3QUQzMDU5RUEwOTczNTNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1OUVBMDk3 MzUzQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q0ZjJjMDI1LTFkNzYtNGEzNi04 MTYwLWE5ZThhZmUzNTc5Zi8wLzMxMzAzMzJlMzEzNTM4MmUzMjM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ54bMA0GCSqG SIb3DQEBCwUAA4IBAQAoYr8S7aS8xH1zCZXFL6nk5C+xf4rs0yjH4eLp5CXX/YEd zfXPQhy9kqpAYDfWeU8w4WZHJyPR8/S4WK4R9LuUqtmETfLcKZdIDvxYkKZQmdm5 z9l73dqM9Em1AesETpxOVWCgWF74B/fBXeu+jI3CSkviw8sqsJ5eSY/f00K274if tAOEvYvU5V92CeKO/qjteC+NyJDxzCMxRMQFng/EGSTrSizNQuAio07wvx+iRhQU knIBqeEmqXZhxHWCAkPFTXGFFwRnrFiMF5WDR3rMItMzyG7GfT9M2BPDwuKrpM5O M6PyRPzwPeO1UnUDA/msfMZRZAj2eGplu/IcW9X0 -----END CERTIFICATE-----Generated at Sat May 10 20:56:06 2025 by rpki-client