$ rpki-client -vvf repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/3130332e3137372e31342e302f32342d3234203d3e20313437313338.roa File: 3130332e3137372e31342e302f32342d3234203d3e20313437313338.roa (raw, json) Hash identifier: 2HLKDZ4NotrKv5eD+avvVTu9dBP+/6Ewaq5ipG+lyWE= Subject key identifier: 29:62:C4:D4:98:B8:9F:52:22:C7:AA:38:78:C6:C5:B2:8B:B7:A1:A8 Certificate issuer: /CN=FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4 Certificate serial: 25869B12BDFE7AC62B6D0B592B11FE7B7F454ACE Authority key identifier: FF:77:50:7E:6D:1F:0E:0B:6E:B0:11:2E:9C:FB:D1:AF:1C:1F:6D:D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/3130332e3137372e31342e302f32342d3234203d3e20313437313338.roa Signing time: Fri 18 Apr 2025 09:00:01 +0000 ROA not before: Fri 18 Apr 2025 08:55:01 +0000 ROA not after: Fri 17 Apr 2026 09:00:01 +0000 asID: 147138 IP address blocks: 103.177.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.crl rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 09 May 2025 23:17:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:86:9b:12:bd:fe:7a:c6:2b:6d:0b:59:2b:11:fe:7b:7f:45:4a:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4 Validity Not Before: Apr 18 08:55:01 2025 GMT Not After : Apr 17 09:00:01 2026 GMT Subject: CN=2962C4D498B89F5222C7AA3878C6C5B28BB7A1A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a0:08:33:70:1c:31:29:d3:c2:1c:87:ab:b8: b5:71:5e:ff:ef:07:cf:f3:8a:cd:d1:2d:7d:6e:9e: f2:13:28:aa:3f:f5:f3:26:a5:ac:4b:2d:1c:ba:5e: 24:e5:2a:91:5b:f4:5e:75:79:27:c4:24:31:e9:e2: 59:9b:f8:b9:e7:26:00:0e:01:bc:84:c6:f4:47:d3: d6:64:a7:0e:82:5a:25:d7:45:bd:59:74:d7:e9:98: 34:07:f0:66:c3:0d:fb:33:cf:d3:35:cb:e3:57:0e: d7:da:1d:bb:69:a0:7d:85:a8:bc:b5:e0:6b:5f:a1: 90:e7:9c:e4:a3:c2:29:2a:af:4d:b0:77:fe:23:12: 49:ab:44:87:75:a3:05:e2:56:25:65:c3:4d:9f:d4: 09:f2:8e:6f:4f:3e:f0:d2:b8:25:62:4c:ca:cb:61: a0:87:9b:b4:37:85:e8:04:71:9b:fa:55:5e:2a:f8: 56:73:a8:31:2c:6f:86:60:1b:15:48:3d:41:9a:28: 63:f8:3d:8c:e9:63:f8:66:fd:13:e6:c4:6a:af:19: d7:af:98:46:3b:12:91:1d:98:da:9b:04:34:c9:51: 22:b9:5c:d0:f6:69:70:a2:d3:86:67:11:2b:60:90: cb:aa:96:02:ab:67:6c:92:80:29:b2:28:f0:96:30: 87:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:62:C4:D4:98:B8:9F:52:22:C7:AA:38:78:C6:C5:B2:8B:B7:A1:A8 X509v3 Authority Key Identifier: keyid:FF:77:50:7E:6D:1F:0E:0B:6E:B0:11:2E:9C:FB:D1:AF:1C:1F:6D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/3130332e3137372e31342e302f32342d3234203d3e20313437313338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.14.0/24 Signature Algorithm: sha256WithRSAEncryption 62:fa:38:5f:b9:34:4d:a8:f8:2f:d0:ff:b7:f1:81:87:2f:af: 1f:85:e7:dd:85:80:a6:0b:9d:ea:5e:a7:e3:57:a0:84:23:ed: 0d:3a:68:da:5c:ae:69:f8:99:79:65:38:1e:2a:9f:f8:e6:ca: 37:f0:75:20:6c:77:3c:8f:4c:09:fa:9f:1c:04:88:be:bb:2a: 82:00:3c:bc:ee:09:aa:ce:af:a8:db:75:89:56:0e:32:34:bf: 07:6d:da:d0:a0:83:23:f2:ea:2d:76:9d:aa:82:72:ac:b9:19: cf:2f:cf:71:d9:a0:1a:3c:8d:a7:91:a3:c1:03:a9:e8:7b:1e: b1:f1:36:4c:34:8c:db:50:9c:16:2f:25:d0:d0:e9:67:fb:34: f3:27:2d:ad:bc:fe:27:5f:b9:ec:2d:20:f4:e9:ea:19:e4:f0: d0:e7:8a:8e:52:a7:9e:e8:e2:c3:a8:27:b7:2c:71:4c:b5:dc: 20:37:a6:28:1a:bc:95:6b:08:ab:3b:3a:27:40:37:0b:af:60: 5a:10:cd:53:9f:92:e5:b7:b7:3e:48:8f:df:11:7b:21:d6:63: 71:cc:d0:97:67:ca:1c:71:4e:61:d7:a3:03:a2:e8:7a:a0:b6: 6e:03:6b:a4:64:ef:74:12:9b:ee:e4:e0:e9:a8:79:f2:09:43: 16:0f:2a:88 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJYabEr3+esYrbQtZKxH+e39FSs4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkY3NzUwN0U2RDFGMEUwQjZFQjAxMTJFOUNGQkQxQUYx QzFGNkRENDAeFw0yNTA0MTgwODU1MDFaFw0yNjA0MTcwOTAwMDFaMDMxMTAvBgNV BAMTKDI5NjJDNEQ0OThCODlGNTIyMkM3QUEzODc4QzZDNUIyOEJCN0ExQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2oAgzcBwxKdPCHIeruLVxXv/v B8/zis3RLX1unvITKKo/9fMmpaxLLRy6XiTlKpFb9F51eSfEJDHp4lmb+LnnJgAO AbyExvRH09Zkpw6CWiXXRb1ZdNfpmDQH8GbDDfszz9M1y+NXDtfaHbtpoH2FqLy1 4GtfoZDnnOSjwikqr02wd/4jEkmrRId1owXiViVlw02f1Anyjm9PPvDSuCViTMrL YaCHm7Q3hegEcZv6VV4q+FZzqDEsb4ZgGxVIPUGaKGP4PYzpY/hm/RPmxGqvGdev mEY7EpEdmNqbBDTJUSK5XND2aXCi04ZnEStgkMuqlgKrZ2ySgCmyKPCWMIelAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKWLE1Ji4n1Iix6o4eMbFsou3oagwHwYDVR0j BBgwFoAU/3dQfm0fDgtusBEunPvRrxwfbdQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmUwNDAzOC1hMWI2LTQzMmMtODU0Yi1jYzZlOGNmMzJlMDYvMC9GRjc3NTA3RTZE MUYwRTBCNkVCMDExMkU5Q0ZCRDFBRjFDMUY2REQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkY3NzUwN0U2RDFGMEUwQjZFQjAxMTJFOUNGQkQxQUYxQzFG NkRENC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZiZTA0MDM4LWExYjYtNDMyYy04 NTRiLWNjNmU4Y2YzMmUwNi8wLzMxMzAzMzJlMzEzNzM3MmUzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM3MzEzMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7EOMA0GCSqG SIb3DQEBCwUAA4IBAQBi+jhfuTRNqPgv0P+38YGHL68fhefdhYCmC53qXqfjV6CE I+0NOmjaXK5p+Jl5ZTgeKp/45so38HUgbHc8j0wJ+p8cBIi+uyqCADy87gmqzq+o 23WJVg4yNL8HbdrQoIMj8uotdp2qgnKsuRnPL89x2aAaPI2nkaPBA6noex6x8TZM NIzbUJwWLyXQ0Oln+zTzJy2tvP4nX7nsLSD06eoZ5PDQ54qOUqee6OLDqCe3LHFM tdwgN6YoGryVawirOzonQDcLr2BaEM1Tn5Llt7c+SI/fEXsh1mNxzNCXZ8occU5h 16MDouh6oLZuA2ukZO90Epvu5ODpqHnyCUMWDyqI -----END CERTIFICATE-----Generated at Thu May 8 01:47:19 2025 by rpki-client