$ rpki-client -vvf repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3130332e3137312e3138322e302f32342d3234203d3e20313432333735.roa File: 3130332e3137312e3138322e302f32342d3234203d3e20313432333735.roa (raw, json) Hash identifier: YYGVRYPBp9IPNMR5VwzW826x/acetE+4Oj6LGMt7tPU= Subject key identifier: 36:25:C5:02:F6:AA:E8:BA:86:90:7F:CF:18:5D:8E:85:A2:30:6A:21 Certificate issuer: /CN=3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA Certificate serial: 69C8D47189EFFB92C3E9BA2172B14CCCC1C4F817 Authority key identifier: 3E:CE:7D:2E:9C:2F:F3:D5:D3:0D:29:4D:74:92:C3:FE:F6:51:BA:AA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3130332e3137312e3138322e302f32342d3234203d3e20313432333735.roa Signing time: Thu 01 May 2025 05:00:01 +0000 ROA not before: Thu 01 May 2025 04:55:01 +0000 ROA not after: Thu 30 Apr 2026 05:00:01 +0000 asID: 142375 IP address blocks: 103.171.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.crl rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 20:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:c8:d4:71:89:ef:fb:92:c3:e9:ba:21:72:b1:4c:cc:c1:c4:f8:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA Validity Not Before: May 1 04:55:01 2025 GMT Not After : Apr 30 05:00:01 2026 GMT Subject: CN=3625C502F6AAE8BA86907FCF185D8E85A2306A21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b3:a2:76:34:52:27:95:5d:67:16:63:bc:a4: c6:d8:9c:75:42:61:c8:0e:2a:67:11:46:5c:bb:d3: 80:68:1b:ce:7b:b7:62:ad:ce:c8:03:c8:8d:fa:d2: 1d:ab:d3:e1:fb:c0:fb:12:17:5f:5b:47:c4:aa:8f: 47:a8:7c:bb:ae:1f:d6:0a:90:55:06:51:73:6c:c8: db:59:ea:52:a2:60:3c:6c:86:9e:90:5b:0c:af:ec: 47:89:09:0f:91:67:aa:a0:90:a3:73:07:2d:fb:ce: b6:73:42:75:82:bf:ce:38:76:ec:02:ac:c8:83:0e: 92:1b:b2:a8:0c:f5:ac:50:06:74:df:ea:e1:f9:33: 00:48:b5:42:c6:e5:a6:0e:01:20:42:3d:66:29:c3: af:73:11:1e:60:bc:3a:55:d1:05:2d:62:eb:77:13: de:e9:ed:10:32:d1:13:ef:10:2e:65:37:59:96:1a: c9:7e:1b:2c:08:ad:b5:88:c4:3b:e2:cf:05:90:ff: 74:25:88:ec:d4:80:db:68:1b:4a:23:11:f9:53:94: 6c:b4:4c:06:d0:13:83:2b:fe:3c:b6:e3:56:a7:65: 43:b3:ee:57:d4:12:e8:f8:c8:37:bc:19:43:8b:aa: 36:dc:42:b4:37:22:1b:62:c3:ad:73:e2:d6:dd:ac: 07:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:25:C5:02:F6:AA:E8:BA:86:90:7F:CF:18:5D:8E:85:A2:30:6A:21 X509v3 Authority Key Identifier: keyid:3E:CE:7D:2E:9C:2F:F3:D5:D3:0D:29:4D:74:92:C3:FE:F6:51:BA:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3130332e3137312e3138322e302f32342d3234203d3e20313432333735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.182.0/24 Signature Algorithm: sha256WithRSAEncryption c1:b5:58:39:fc:27:53:66:3a:7f:b2:81:ee:dd:5b:10:f0:42: 28:7b:e6:86:41:cd:07:23:ce:6c:fb:3f:a3:2e:6f:b5:12:66: bb:e0:8d:1e:82:10:93:db:fc:99:c3:61:b0:d4:4c:ad:05:d5: 8e:ab:a9:27:52:46:2d:75:85:fd:7e:5f:d4:16:40:0f:08:ca: d8:d4:44:e4:bf:e3:d8:2f:84:fa:d0:b8:b5:cf:8c:0c:cd:8a: c1:9e:6d:e5:bc:bc:37:44:a9:62:91:0d:21:fb:17:70:ec:87: 23:dc:60:6b:d6:d2:b4:8f:69:09:86:08:3e:06:c3:73:52:0f: 4c:b1:54:ad:6b:ad:a4:c9:ba:21:45:08:a7:8f:52:34:0d:ff: 2d:02:f5:82:95:8f:a1:95:9d:11:f9:04:f7:77:86:e9:d2:3c: e1:63:b2:fc:99:51:cb:7f:e1:1a:c9:41:ce:69:f0:0d:12:79: cd:7c:35:94:d9:5d:27:17:59:52:f0:84:26:5f:b1:13:31:e3: 37:56:e5:13:a6:ea:49:a4:fd:14:55:41:52:a2:29:66:89:bc: 84:5d:57:32:0b:3b:56:ac:a3:74:7a:eb:54:ae:17:0f:7a:b4: db:0a:3b:47:03:56:f1:6d:a4:bd:e0:da:c1:fe:70:3f:f4:5a: b1:d3:b1:a7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUacjUcYnv+5LD6bohcrFMzMHE+BcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0VDRTdEMkU5QzJGRjNENUQzMEQyOTRENzQ5MkMzRkVG NjUxQkFBQTAeFw0yNTA1MDEwNDU1MDFaFw0yNjA0MzAwNTAwMDFaMDMxMTAvBgNV BAMTKDM2MjVDNTAyRjZBQUU4QkE4NjkwN0ZDRjE4NUQ4RTg1QTIzMDZBMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7s6J2NFInlV1nFmO8pMbYnHVC YcgOKmcRRly704BoG857t2KtzsgDyI360h2r0+H7wPsSF19bR8Sqj0eofLuuH9YK kFUGUXNsyNtZ6lKiYDxshp6QWwyv7EeJCQ+RZ6qgkKNzBy37zrZzQnWCv844duwC rMiDDpIbsqgM9axQBnTf6uH5MwBItULG5aYOASBCPWYpw69zER5gvDpV0QUtYut3 E97p7RAy0RPvEC5lN1mWGsl+GywIrbWIxDvizwWQ/3QliOzUgNtoG0ojEflTlGy0 TAbQE4Mr/jy241anZUOz7lfUEuj4yDe8GUOLqjbcQrQ3Ihtiw61z4tbdrAe3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUNiXFAvaq6LqGkH/PGF2OhaIwaiEwHwYDVR0j BBgwFoAUPs59Lpwv89XTDSlNdJLD/vZRuqowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MzUwNWNiMy1iNTVlLTQwZTQtYWM3OS02MzY1NjA2ZjRlZjkvMC8zRUNFN0QyRTlD MkZGM0Q1RDMwRDI5NEQ3NDkyQzNGRUY2NTFCQUFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0VDRTdEMkU5QzJGRjNENUQzMEQyOTRENzQ5MkMzRkVGNjUx QkFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UzNTA1Y2IzLWI1NWUtNDBlNC1h Yzc5LTYzNjU2MDZmNGVmOS8wLzMxMzAzMzJlMzEzNzMxMmUzMTM4MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM3MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnq7YwDQYJ KoZIhvcNAQELBQADggEBAMG1WDn8J1NmOn+yge7dWxDwQih75oZBzQcjzmz7P6Mu b7USZrvgjR6CEJPb/JnDYbDUTK0F1Y6rqSdSRi11hf1+X9QWQA8IytjUROS/49gv hPrQuLXPjAzNisGebeW8vDdEqWKRDSH7F3DshyPcYGvW0rSPaQmGCD4Gw3NSD0yx VK1rraTJuiFFCKePUjQN/y0C9YKVj6GVnRH5BPd3hunSPOFjsvyZUct/4RrJQc5p 8A0Sec18NZTZXScXWVLwhCZfsRMx4zdW5ROm6kmk/RRVQVKiKWaJvIRdVzILO1as o3R661SuFw96tNsKO0cDVvFtpL3g2sH+cD/0WrHTsac= -----END CERTIFICATE-----Generated at Tue May 13 06:40:40 2025 by rpki-client