$ rpki-client -vvf repo-rpki.idnic.net/repo/064ff7c9-e905-44d6-bc35-c7dbb070b757/0/3130332e3139322e38312e302f32342d3234203d3e20313530393137.roa File: 3130332e3139322e38312e302f32342d3234203d3e20313530393137.roa (raw, json) Hash identifier: 3qZF8ggdlzs3ruDfQ9HAEp9ByaXAzt4cAU9kMTQ4y6s= Subject key identifier: 57:D6:16:1B:D9:3B:8E:83:CE:37:17:E7:0A:88:E6:B7:5F:18:32:C6 Certificate issuer: /CN=893997EF53FFBB5A3C55A47213135040C1C5B843 Certificate serial: 2306EBE5D8E5E5C221433938F710A63CA45FEC57 Authority key identifier: 89:39:97:EF:53:FF:BB:5A:3C:55:A4:72:13:13:50:40:C1:C5:B8:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/893997EF53FFBB5A3C55A47213135040C1C5B843.cer Subject info access: rsync://repo-rpki.idnic.net/repo/064ff7c9-e905-44d6-bc35-c7dbb070b757/0/3130332e3139322e38312e302f32342d3234203d3e20313530393137.roa Signing time: Thu 27 Mar 2025 09:02:54 +0000 ROA not before: Thu 27 Mar 2025 08:57:54 +0000 ROA not after: Thu 26 Mar 2026 09:02:54 +0000 asID: 150917 IP address blocks: 103.192.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/064ff7c9-e905-44d6-bc35-c7dbb070b757/0/893997EF53FFBB5A3C55A47213135040C1C5B843.crl rsync://repo-rpki.idnic.net/repo/064ff7c9-e905-44d6-bc35-c7dbb070b757/0/893997EF53FFBB5A3C55A47213135040C1C5B843.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/893997EF53FFBB5A3C55A47213135040C1C5B843.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 18:16:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:06:eb:e5:d8:e5:e5:c2:21:43:39:38:f7:10:a6:3c:a4:5f:ec:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=893997EF53FFBB5A3C55A47213135040C1C5B843 Validity Not Before: Mar 27 08:57:54 2025 GMT Not After : Mar 26 09:02:54 2026 GMT Subject: CN=57D6161BD93B8E83CE3717E70A88E6B75F1832C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5a:01:7a:30:03:4a:50:eb:96:d9:38:a3:c6: 5d:22:08:ec:19:97:07:7f:10:af:49:23:7c:29:60: 66:ab:5f:e1:6f:de:88:58:d2:c5:b9:35:4c:28:f1: 1f:96:c9:c2:68:18:78:0d:61:8b:b9:b9:a2:01:10: 16:39:b3:39:51:27:15:43:b2:99:ae:04:74:d4:bc: a3:f1:30:ad:ba:b8:39:bc:c8:d9:1f:c7:ae:1f:c1: 38:f4:3b:e3:dc:88:dc:2d:1c:81:04:94:96:ec:cd: d9:8c:69:d2:d8:21:10:15:91:59:09:a7:90:d7:60: 37:20:fb:9d:41:1c:08:f4:1d:58:bb:0d:55:d5:e3: 99:0d:f0:7e:48:4f:9c:26:71:86:ea:e7:82:48:f9: aa:67:46:95:66:1c:99:81:a6:79:fc:ff:58:36:bf: a2:9a:fc:a9:39:39:19:1e:05:ca:02:0b:78:c4:ae: 38:f7:b6:5a:e4:9c:14:1c:b0:ba:8d:d3:cb:2a:7b: 01:4b:6a:ef:db:7b:bb:a3:c5:97:73:81:6c:a4:eb: a8:cd:56:7c:1e:9b:37:4c:d9:57:04:f2:27:b0:98: 04:02:a8:22:4e:92:75:47:a0:03:4f:7e:f0:1b:0f: 1b:4c:2b:c1:bb:60:df:d8:f7:17:01:80:aa:ff:b2: 75:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:D6:16:1B:D9:3B:8E:83:CE:37:17:E7:0A:88:E6:B7:5F:18:32:C6 X509v3 Authority Key Identifier: keyid:89:39:97:EF:53:FF:BB:5A:3C:55:A4:72:13:13:50:40:C1:C5:B8:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/064ff7c9-e905-44d6-bc35-c7dbb070b757/0/893997EF53FFBB5A3C55A47213135040C1C5B843.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/893997EF53FFBB5A3C55A47213135040C1C5B843.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/064ff7c9-e905-44d6-bc35-c7dbb070b757/0/3130332e3139322e38312e302f32342d3234203d3e20313530393137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.192.81.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:3b:fd:1b:6c:08:d8:af:69:7f:ba:1d:90:a5:c8:d8:d9:90: 34:d3:84:65:59:aa:8e:d6:ea:f0:82:04:5e:83:c4:4e:61:78: 8e:bb:7d:44:50:3e:c9:08:16:e4:66:27:26:90:4c:ec:38:15: ac:b6:47:9c:5f:c3:b2:8a:6e:d4:10:7b:5a:5a:b2:75:3e:6d: 97:17:f3:ff:9c:42:ca:25:76:dd:42:5b:8f:2d:fd:9d:4e:7b: 8d:e4:e0:47:57:4d:f8:db:4b:0c:91:5b:6a:ef:a5:a5:d5:61: b9:df:5b:a1:a0:0a:16:62:c0:76:19:1e:9f:ab:11:12:25:6a: 39:bf:49:91:e2:c3:a6:ec:ea:56:f5:49:ce:20:07:f3:24:1f: 5f:81:35:dc:21:db:d0:fe:21:51:8f:51:58:02:09:6b:b8:d6: d2:79:7c:01:4d:7f:bd:9d:47:60:d1:db:44:e3:d1:ea:0d:92: d1:54:95:5e:df:a2:e1:87:a6:11:ff:9d:48:23:7c:f7:df:f0: ee:b5:4c:04:6f:41:26:28:0b:01:98:c6:a6:73:73:ad:e2:45: 5d:59:ee:80:76:05:72:42:0b:e4:16:5b:b6:25:7b:d1:b6:9d: 2e:9f:64:ca:05:28:dd:bc:a1:17:fd:91:0d:8a:65:17:0d:9c: ad:3e:3a:cc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIwbr5djl5cIhQzk49xCmPKRf7FcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODkzOTk3RUY1M0ZGQkI1QTNDNTVBNDcyMTMxMzUwNDBD MUM1Qjg0MzAeFw0yNTAzMjcwODU3NTRaFw0yNjAzMjYwOTAyNTRaMDMxMTAvBgNV BAMTKDU3RDYxNjFCRDkzQjhFODNDRTM3MTdFNzBBODhFNkI3NUYxODMyQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKWgF6MANKUOuW2Tijxl0iCOwZ lwd/EK9JI3wpYGarX+Fv3ohY0sW5NUwo8R+WycJoGHgNYYu5uaIBEBY5szlRJxVD spmuBHTUvKPxMK26uDm8yNkfx64fwTj0O+PciNwtHIEElJbszdmMadLYIRAVkVkJ p5DXYDcg+51BHAj0HVi7DVXV45kN8H5IT5wmcYbq54JI+apnRpVmHJmBpnn8/1g2 v6Ka/Kk5ORkeBcoCC3jErjj3tlrknBQcsLqN08sqewFLau/be7ujxZdzgWyk66jN VnwemzdM2VcE8iewmAQCqCJOknVHoANPfvAbDxtMK8G7YN/Y9xcBgKr/snV5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUV9YWG9k7joPONxfnCojmt18YMsYwHwYDVR0j BBgwFoAUiTmX71P/u1o8VaRyExNQQMHFuEMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjRmZjdjOS1lOTA1LTQ0ZDYtYmMzNS1jN2RiYjA3MGI3NTcvMC84OTM5OTdFRjUz RkZCQjVBM0M1NUE0NzIxMzEzNTA0MEMxQzVCODQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODkzOTk3RUY1M0ZGQkI1QTNDNTVBNDcyMTMxMzUwNDBDMUM1 Qjg0My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NGZmN2M5LWU5MDUtNDRkNi1i YzM1LWM3ZGJiMDcwYjc1Ny8wLzMxMzAzMzJlMzEzOTMyMmUzODMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8BRMA0GCSqG SIb3DQEBCwUAA4IBAQBuO/0bbAjYr2l/uh2QpcjY2ZA004RlWaqO1urwggReg8RO YXiOu31EUD7JCBbkZicmkEzsOBWstkecX8Oyim7UEHtaWrJ1Pm2XF/P/nELKJXbd QluPLf2dTnuN5OBHV03420sMkVtq76Wl1WG531uhoAoWYsB2GR6fqxESJWo5v0mR 4sOm7OpW9UnOIAfzJB9fgTXcIdvQ/iFRj1FYAglruNbSeXwBTX+9nUdg0dtE49Hq DZLRVJVe36Lhh6YR/51II3z33/DutUwEb0EmKAsBmMamc3Ot4kVdWe6AdgVyQgvk Flu2JXvRtp0un2TKBSjdvKEX/ZENimUXDZytPjrM -----END CERTIFICATE-----Generated at Sun Apr 6 07:34:58 2025 by rpki-client