$ rpki-client -vvf repo-rpki.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/3130332e3138392e3230362e302f32332d3233203d3e2039333431.roa File: 3130332e3138392e3230362e302f32332d3233203d3e2039333431.roa (raw, json) Hash identifier: VhmM6dwj6jhcWpHKGkB8nHv6O88nIuiPwR83QLa+WS8= Subject key identifier: D3:3F:1D:8B:62:A7:D9:9C:26:06:AF:1E:7A:D9:74:DF:93:AC:4F:74 Certificate issuer: /CN=69945C3869B3E429D4B0AECEDF9999EA5DAEE429 Certificate serial: 667CAC170A5CF9CA842788D3353354F9560A9550 Authority key identifier: 69:94:5C:38:69:B3:E4:29:D4:B0:AE:CE:DF:99:99:EA:5D:AE:E4:29 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69945C3869B3E429D4B0AECEDF9999EA5DAEE429.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/3130332e3138392e3230362e302f32332d3233203d3e2039333431.roa Signing time: Wed 02 Apr 2025 07:00:00 +0000 ROA not before: Wed 02 Apr 2025 06:55:00 +0000 ROA not after: Wed 01 Apr 2026 07:00:00 +0000 asID: 9341 IP address blocks: 103.189.206.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/69945C3869B3E429D4B0AECEDF9999EA5DAEE429.crl rsync://repo-rpki.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/69945C3869B3E429D4B0AECEDF9999EA5DAEE429.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69945C3869B3E429D4B0AECEDF9999EA5DAEE429.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 09:15:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:7c:ac:17:0a:5c:f9:ca:84:27:88:d3:35:33:54:f9:56:0a:95:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69945C3869B3E429D4B0AECEDF9999EA5DAEE429 Validity Not Before: Apr 2 06:55:00 2025 GMT Not After : Apr 1 07:00:00 2026 GMT Subject: CN=D33F1D8B62A7D99C2606AF1E7AD974DF93AC4F74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:54:21:99:c4:c0:24:39:0d:9a:71:9e:8b:0b: 49:54:a2:bb:e4:70:89:d2:89:58:aa:88:cd:76:49: 38:8d:90:cc:7a:05:23:6a:37:bf:6a:d3:8d:18:ea: 29:77:62:f5:25:02:09:47:09:0d:8b:df:dd:e8:91: 02:d5:ae:9d:22:e3:ac:54:a2:d6:98:c2:89:80:ca: ab:f1:59:20:64:8c:ae:66:ed:58:1c:2f:db:20:b9: 83:42:14:92:66:63:7b:8e:4f:15:72:fc:2f:72:13: 73:63:4a:4e:ac:60:8b:69:ee:1e:b8:9d:ea:08:dc: 64:83:2d:5b:a0:0e:41:86:52:57:b2:e8:6a:4a:49: 84:ba:53:c0:b2:0e:f3:2b:65:d0:23:95:50:52:03: 7a:b4:e9:4d:e5:0c:81:26:a6:40:08:d5:58:36:c1: dc:69:f7:44:c8:b7:a7:9d:07:19:70:a6:5a:b9:5a: fe:68:df:3b:7c:bf:e7:b4:7f:46:3c:bf:cb:3c:bd: a5:0d:5e:88:7a:62:7d:72:c5:6e:f0:49:d8:d4:f0: 1f:e2:90:23:b5:25:73:a5:85:db:e8:98:b5:82:61: 3b:e4:0c:17:1c:98:93:a2:7c:2f:d6:35:49:07:d9: 77:57:f8:6b:65:98:11:9b:6b:c0:36:d4:8b:a3:a7: d5:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:3F:1D:8B:62:A7:D9:9C:26:06:AF:1E:7A:D9:74:DF:93:AC:4F:74 X509v3 Authority Key Identifier: keyid:69:94:5C:38:69:B3:E4:29:D4:B0:AE:CE:DF:99:99:EA:5D:AE:E4:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/69945C3869B3E429D4B0AECEDF9999EA5DAEE429.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69945C3869B3E429D4B0AECEDF9999EA5DAEE429.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/3130332e3138392e3230362e302f32332d3233203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.206.0/23 Signature Algorithm: sha256WithRSAEncryption 0d:7c:bc:44:da:de:88:a5:18:a3:92:8b:2a:42:f6:1a:b3:11: 2f:13:2c:f0:33:44:34:12:cd:dc:00:52:94:96:07:28:07:1d: 2c:bf:e4:08:0c:5a:26:aa:12:54:11:bf:91:46:b7:2b:29:5f: 95:3e:4e:de:9d:b7:d4:0f:d9:41:5c:0f:59:35:ea:3b:85:e2: 77:e3:bf:ac:02:ae:ba:f8:55:71:3c:6d:11:1d:08:a3:9c:6a: ad:42:03:ab:98:cc:70:dc:81:df:ed:04:71:9d:7b:f0:51:d0: 20:8b:16:13:67:38:df:b1:0e:45:a7:35:fb:7f:dc:c7:8b:68: 38:4d:7f:5c:3c:38:d3:11:22:0a:64:f9:bc:b3:c6:fa:a3:2f: 0d:cf:d6:cc:3a:48:cc:49:5c:25:5a:57:bb:af:d4:f8:46:f9: 8b:e6:2f:8b:5e:4c:95:4a:82:82:8a:ba:05:da:aa:bc:2e:3c: 9f:66:48:07:58:b5:12:1e:cc:35:4c:a8:30:89:35:34:59:96: 7a:e4:af:5d:1e:6d:a9:b6:17:8c:85:d0:5a:68:db:cf:b8:95: a6:64:1f:fe:90:8f:ed:40:f6:77:d7:7a:e1:7a:82:f6:fb:05: 57:e5:9b:f0:8e:3d:0c:fe:5d:16:65:63:28:8c:76:52:09:a6: 77:db:63:58 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZnysFwpc+cqEJ4jTNTNU+VYKlVAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk5NDVDMzg2OUIzRTQyOUQ0QjBBRUNFREY5OTk5RUE1 REFFRTQyOTAeFw0yNTA0MDIwNjU1MDBaFw0yNjA0MDEwNzAwMDBaMDMxMTAvBgNV BAMTKEQzM0YxRDhCNjJBN0Q5OUMyNjA2QUYxRTdBRDk3NERGOTNBQzRGNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkVCGZxMAkOQ2acZ6LC0lUorvk cInSiViqiM12STiNkMx6BSNqN79q040Y6il3YvUlAglHCQ2L393okQLVrp0i46xU otaYwomAyqvxWSBkjK5m7VgcL9sguYNCFJJmY3uOTxVy/C9yE3NjSk6sYItp7h64 neoI3GSDLVugDkGGUley6GpKSYS6U8CyDvMrZdAjlVBSA3q06U3lDIEmpkAI1Vg2 wdxp90TIt6edBxlwplq5Wv5o3zt8v+e0f0Y8v8s8vaUNXoh6Yn1yxW7wSdjU8B/i kCO1JXOlhdvomLWCYTvkDBccmJOifC/WNUkH2XdX+GtlmBGba8A21Iujp9VHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0z8di2Kn2ZwmBq8eetl035OsT3QwHwYDVR0j BBgwFoAUaZRcOGmz5CnUsK7O35mZ6l2u5CkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODMxZWViNC1mMzU3LTQ1YTctOTI2NS00MjhiMDA3YTAyNzAvMC82OTk0NUMzODY5 QjNFNDI5RDRCMEFFQ0VERjk5OTlFQTVEQUVFNDI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk5NDVDMzg2OUIzRTQyOUQ0QjBBRUNFREY5OTk5RUE1REFF RTQyOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4MzFlZWI0LWYzNTctNDVhNy05 MjY1LTQyOGIwMDdhMDI3MC8wLzMxMzAzMzJlMzEzODM5MmUzMjMwMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWe9zjANBgkqhkiG 9w0BAQsFAAOCAQEADXy8RNreiKUYo5KLKkL2GrMRLxMs8DNENBLN3ABSlJYHKAcd LL/kCAxaJqoSVBG/kUa3KylflT5O3p231A/ZQVwPWTXqO4Xid+O/rAKuuvhVcTxt ER0Io5xqrUIDq5jMcNyB3+0EcZ178FHQIIsWE2c437EORac1+3/cx4toOE1/XDw4 0xEiCmT5vLPG+qMvDc/WzDpIzElcJVpXu6/U+Eb5i+Yvi15MlUqCgoq6BdqqvC48 n2ZIB1i1Eh7MNUyoMIk1NFmWeuSvXR5tqbYXjIXQWmjbz7iVpmQf/pCP7UD2d9d6 4XqC9vsFV+Wb8I49DP5dFmVjKIx2Ugmmd9tjWA== -----END CERTIFICATE-----Generated at Sat Apr 5 19:18:37 2025 by rpki-client