$ rpki-client -vvf repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3130332e3137312e3138332e302f32342d3234203d3e20313432333735.roa File: 3130332e3137312e3138332e302f32342d3234203d3e20313432333735.roa (raw, json) Hash identifier: DCgYEPaVukPuYmvO5a2cczC4OgprkfQ5HG76ulQS39Q= Subject key identifier: 8D:36:2A:10:5A:18:6E:D2:97:59:BA:E1:B4:70:33:BD:99:CA:0F:34 Certificate issuer: /CN=3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA Certificate serial: 7DE9DF54E4156898463101D3F37FE2853CA2F95B Authority key identifier: 3E:CE:7D:2E:9C:2F:F3:D5:D3:0D:29:4D:74:92:C3:FE:F6:51:BA:AA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3130332e3137312e3138332e302f32342d3234203d3e20313432333735.roa Signing time: Thu 01 May 2025 05:00:01 +0000 ROA not before: Thu 01 May 2025 04:55:01 +0000 ROA not after: Thu 30 Apr 2026 05:00:01 +0000 asID: 142375 IP address blocks: 103.171.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.crl rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 20:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:e9:df:54:e4:15:68:98:46:31:01:d3:f3:7f:e2:85:3c:a2:f9:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA Validity Not Before: May 1 04:55:01 2025 GMT Not After : Apr 30 05:00:01 2026 GMT Subject: CN=8D362A105A186ED29759BAE1B47033BD99CA0F34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ab:d0:47:5c:1c:9d:e9:3a:73:ae:9b:4d:15: ff:a3:20:a4:1b:81:fe:ed:aa:9f:6d:4b:08:7e:a9: 45:2b:5a:dc:91:2a:37:a2:9a:cc:57:6c:48:9a:04: 30:8e:0e:85:4f:14:b2:9d:9f:71:9d:d9:7e:4e:9a: 53:0f:1f:d2:df:4b:af:27:b3:d2:0b:4a:a3:6c:cc: c5:d4:0e:64:8d:d4:f7:42:a1:5d:2e:6d:09:a9:b4: be:d8:6e:c8:1f:c0:42:e0:6e:6b:8f:73:bd:ae:c0: 29:94:4f:67:53:b3:32:b4:d7:71:84:ce:74:c1:1c: e5:35:76:d3:2b:8e:1b:30:41:2f:3b:cc:af:9d:70: 7e:39:b4:dc:78:f6:a6:d0:30:70:f2:4a:22:5c:f5: 93:32:5c:e1:6e:ed:a9:ed:13:9e:da:da:ca:1a:7b: f9:a3:98:65:bb:c2:d1:45:e5:f4:53:be:4f:b8:55: 7a:4f:d0:3a:2a:ca:74:b0:4f:b1:ea:21:79:35:10: 7b:3d:e5:7d:68:01:17:d5:9e:0c:ca:5e:60:51:f8: 6f:1d:62:69:82:51:f3:5d:8c:30:50:e9:70:5c:0c: aa:4d:ae:26:93:9c:74:9a:32:7d:82:f8:77:1b:bc: 6b:7c:4f:cb:84:fc:ff:75:f8:d2:21:68:50:ca:4c: 75:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:36:2A:10:5A:18:6E:D2:97:59:BA:E1:B4:70:33:BD:99:CA:0F:34 X509v3 Authority Key Identifier: keyid:3E:CE:7D:2E:9C:2F:F3:D5:D3:0D:29:4D:74:92:C3:FE:F6:51:BA:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3ECE7D2E9C2FF3D5D30D294D7492C3FEF651BAAA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e3505cb3-b55e-40e4-ac79-6365606f4ef9/0/3130332e3137312e3138332e302f32342d3234203d3e20313432333735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.183.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:28:85:74:88:0b:bd:fc:ce:62:8b:b9:c1:17:fe:75:d5:d8: a4:12:b5:b7:1d:3c:77:26:d0:a8:d1:34:39:fa:c0:26:83:7f: 74:01:23:64:4d:86:82:e1:b8:e5:4d:a8:78:5e:71:db:8a:fb: 03:09:f0:3d:ea:a6:df:c2:36:19:78:1b:46:4e:cb:9d:94:fc: 2c:bf:b7:75:34:f5:9d:82:23:3c:94:05:37:cd:0d:8c:de:5b: 85:ba:cb:6c:e7:8e:06:75:3d:96:48:dc:90:08:3d:bd:f5:52: 13:b8:d9:a3:ca:54:4d:bf:a0:25:eb:28:73:2f:95:79:ae:b6: 58:61:5a:04:eb:80:e5:98:a4:d5:af:91:57:3b:dc:04:e6:4e: 80:ef:af:36:53:17:78:93:f4:e5:e3:ca:20:2b:ae:06:de:d2: 54:6e:41:cf:cd:99:c7:df:0e:be:3f:33:57:f3:30:69:dc:ae: 91:39:bc:90:fc:c7:46:72:2e:42:fd:91:76:d3:7a:db:38:cf: 62:d3:18:32:b2:95:c9:30:19:2e:13:78:82:53:1c:4b:b4:06: e9:89:72:1b:5b:aa:e2:2f:89:ac:dc:5b:cb:5d:f1:53:9b:b8: 8f:e1:7c:3d:94:d1:8e:75:f3:c5:59:32:67:68:a0:1b:b8:dd: 20:de:05:10 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfenfVOQVaJhGMQHT83/ihTyi+VswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0VDRTdEMkU5QzJGRjNENUQzMEQyOTRENzQ5MkMzRkVG NjUxQkFBQTAeFw0yNTA1MDEwNDU1MDFaFw0yNjA0MzAwNTAwMDFaMDMxMTAvBgNV BAMTKDhEMzYyQTEwNUExODZFRDI5NzU5QkFFMUI0NzAzM0JEOTlDQTBGMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcq9BHXByd6TpzrptNFf+jIKQb gf7tqp9tSwh+qUUrWtyRKjeimsxXbEiaBDCODoVPFLKdn3Gd2X5OmlMPH9LfS68n s9ILSqNszMXUDmSN1PdCoV0ubQmptL7YbsgfwELgbmuPc72uwCmUT2dTszK013GE znTBHOU1dtMrjhswQS87zK+dcH45tNx49qbQMHDySiJc9ZMyXOFu7antE57a2soa e/mjmGW7wtFF5fRTvk+4VXpP0DoqynSwT7HqIXk1EHs95X1oARfVngzKXmBR+G8d YmmCUfNdjDBQ6XBcDKpNriaTnHSaMn2C+HcbvGt8T8uE/P91+NIhaFDKTHXNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjTYqEFoYbtKXWbrhtHAzvZnKDzQwHwYDVR0j BBgwFoAUPs59Lpwv89XTDSlNdJLD/vZRuqowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MzUwNWNiMy1iNTVlLTQwZTQtYWM3OS02MzY1NjA2ZjRlZjkvMC8zRUNFN0QyRTlD MkZGM0Q1RDMwRDI5NEQ3NDkyQzNGRUY2NTFCQUFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0VDRTdEMkU5QzJGRjNENUQzMEQyOTRENzQ5MkMzRkVGNjUx QkFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UzNTA1Y2IzLWI1NWUtNDBlNC1h Yzc5LTYzNjU2MDZmNGVmOS8wLzMxMzAzMzJlMzEzNzMxMmUzMTM4MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM3MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnq7cwDQYJ KoZIhvcNAQELBQADggEBAHoohXSIC738zmKLucEX/nXV2KQStbcdPHcm0KjRNDn6 wCaDf3QBI2RNhoLhuOVNqHhecduK+wMJ8D3qpt/CNhl4G0ZOy52U/Cy/t3U09Z2C IzyUBTfNDYzeW4W6y2znjgZ1PZZI3JAIPb31UhO42aPKVE2/oCXrKHMvlXmutlhh WgTrgOWYpNWvkVc73ATmToDvrzZTF3iT9OXjyiArrgbe0lRuQc/NmcffDr4/M1fz MGncrpE5vJD8x0ZyLkL9kXbTets4z2LTGDKylckwGS4TeIJTHEu0BumJchtbquIv iazcW8td8VObuI/hfD2U0Y5188VZMmdooBu43SDeBRA= -----END CERTIFICATE-----Generated at Tue May 13 06:45:22 2025 by rpki-client