$ rpki-client -vvf repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/3130332e3138392e36302e302f32332d3234203d3e20313439373432.roa File: 3130332e3138392e36302e302f32332d3234203d3e20313439373432.roa (raw, json) Hash identifier: uC/qnArDdSiiufGjxuhvh3127pXhWNHzqVlIjcIb2ME= Subject key identifier: 2F:78:D1:AF:04:AA:A0:BA:03:5A:02:0B:23:03:CD:C6:A4:88:74:6A Certificate issuer: /CN=528A271B82B6185862B06F250499140113F6FE20 Certificate serial: 717BBCA8209414D19A858A4AF9EC225ACA7297B6 Authority key identifier: 52:8A:27:1B:82:B6:18:58:62:B0:6F:25:04:99:14:01:13:F6:FE:20 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A271B82B6185862B06F250499140113F6FE20.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/3130332e3138392e36302e302f32332d3234203d3e20313439373432.roa Signing time: Fri 14 Mar 2025 09:00:01 +0000 ROA not before: Fri 14 Mar 2025 08:55:01 +0000 ROA not after: Fri 13 Mar 2026 09:00:01 +0000 asID: 149742 IP address blocks: 103.189.60.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.crl rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A271B82B6185862B06F250499140113F6FE20.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 04:16:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:7b:bc:a8:20:94:14:d1:9a:85:8a:4a:f9:ec:22:5a:ca:72:97:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528A271B82B6185862B06F250499140113F6FE20 Validity Not Before: Mar 14 08:55:01 2025 GMT Not After : Mar 13 09:00:01 2026 GMT Subject: CN=2F78D1AF04AAA0BA035A020B2303CDC6A488746A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e4:28:0b:c4:b2:87:1b:03:bb:a3:05:b3:38: bf:42:99:eb:2f:09:32:b5:cf:dd:64:7d:6c:49:85: c4:ff:df:2f:bf:fb:ab:2e:73:6b:6b:60:7d:3a:db: 69:13:73:8d:ed:f4:42:c6:96:1f:d3:df:e2:06:c1: ee:e2:61:db:7c:2c:7f:83:80:40:f0:d7:50:df:cd: cb:d0:89:e6:09:55:54:90:ec:eb:3c:03:fc:69:20: ec:18:9d:8b:0b:3e:03:fc:52:ca:bd:1c:28:da:a0: 90:4d:55:21:8b:ac:42:80:6b:61:05:f8:86:54:36: c1:ce:e6:98:17:7a:da:e0:29:7f:93:32:6f:a2:fd: e6:76:ff:9b:ae:28:e7:2c:a2:3e:8c:c0:99:d5:a7: 1b:bd:0c:d9:e8:61:64:b8:f6:94:d1:ed:f5:c9:fc: 5a:d4:14:45:d6:fd:55:07:1c:da:de:c6:aa:a5:87: 0c:ec:8e:32:b3:c0:92:64:da:77:e2:75:33:af:3a: 63:bf:b2:4d:42:5b:38:77:cb:bd:b6:78:4f:c6:3d: c8:32:a6:28:be:2e:e9:55:1e:f2:10:ff:0e:c0:22: ce:d3:ca:f7:65:d6:88:80:07:3e:05:66:84:c8:81: 94:0f:e3:01:3a:6e:9e:d4:df:47:09:4e:9e:fc:c6: 6c:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:78:D1:AF:04:AA:A0:BA:03:5A:02:0B:23:03:CD:C6:A4:88:74:6A X509v3 Authority Key Identifier: keyid:52:8A:27:1B:82:B6:18:58:62:B0:6F:25:04:99:14:01:13:F6:FE:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A271B82B6185862B06F250499140113F6FE20.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/3130332e3138392e36302e302f32332d3234203d3e20313439373432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.60.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:93:ae:28:46:cd:ed:24:d1:dc:cd:1e:b3:52:9f:61:b1:76: 32:e8:fa:7e:4a:3b:15:30:83:37:51:0d:a6:e1:86:9f:7f:24: d9:dd:b3:6b:61:36:da:18:5a:65:0d:3d:30:03:68:61:9b:2b: d1:fb:83:6c:e2:79:b4:ca:8a:3c:d9:dd:9b:5d:3a:7a:d5:6d: 64:29:fe:1f:12:ac:ba:5c:b6:0e:16:90:17:44:1d:b0:0e:48: 90:57:e8:3c:8f:2d:d0:81:df:0e:d6:d7:6d:eb:c3:00:61:1c: 18:45:70:bd:6a:83:d7:27:59:d3:b7:ca:ca:e6:02:c9:5f:3d: 0e:91:82:62:28:94:76:b7:7a:65:c1:17:8b:5a:4c:72:8c:ef: 4f:ba:20:40:b9:d2:cd:ae:cd:33:cc:1f:15:e5:53:09:b7:52: ac:8b:1a:d2:2a:ba:e6:80:a2:f9:75:0b:be:1e:a5:49:c8:c1: e8:7e:3c:5a:ed:bb:ff:db:db:dd:d0:3f:1e:57:fc:02:1a:6d: 72:e0:f5:76:a3:93:51:95:eb:b8:15:84:54:d3:0e:41:8e:c3: 54:95:71:16:55:32:1c:b1:c7:32:00:7f:26:15:41:7b:70:52: ea:e6:58:86:f4:29:80:06:86:96:46:96:8b:db:ed:35:a8:94: 04:ff:97:18 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcXu8qCCUFNGahYpK+ewiWspyl7YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4QTI3MUI4MkI2MTg1ODYyQjA2RjI1MDQ5OTE0MDEx M0Y2RkUyMDAeFw0yNTAzMTQwODU1MDFaFw0yNjAzMTMwOTAwMDFaMDMxMTAvBgNV BAMTKDJGNzhEMUFGMDRBQUEwQkEwMzVBMDIwQjIzMDNDREM2QTQ4ODc0NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC15CgLxLKHGwO7owWzOL9Cmesv CTK1z91kfWxJhcT/3y+/+6suc2trYH0622kTc43t9ELGlh/T3+IGwe7iYdt8LH+D gEDw11DfzcvQieYJVVSQ7Os8A/xpIOwYnYsLPgP8Usq9HCjaoJBNVSGLrEKAa2EF +IZUNsHO5pgXetrgKX+TMm+i/eZ2/5uuKOcsoj6MwJnVpxu9DNnoYWS49pTR7fXJ /FrUFEXW/VUHHNrexqqlhwzsjjKzwJJk2nfidTOvOmO/sk1CWzh3y722eE/GPcgy pii+LulVHvIQ/w7AIs7Tyvdl1oiABz4FZoTIgZQP4wE6bp7U30cJTp78xmzfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUL3jRrwSqoLoDWgILIwPNxqSIdGowHwYDVR0j BBgwFoAUUoonG4K2GFhisG8lBJkUARP2/iAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YWQzY2M4YS05NzM4LTQ1MWItYTc5OC03Yjc2YjA5NDBiNGIvMC81MjhBMjcxQjgy QjYxODU4NjJCMDZGMjUwNDk5MTQwMTEzRjZGRTIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTI4QTI3MUI4MkI2MTg1ODYyQjA2RjI1MDQ5OTE0MDExM0Y2 RkUyMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhZDNjYzhhLTk3MzgtNDUxYi1h Nzk4LTdiNzZiMDk0MGI0Yi8wLzMxMzAzMzJlMzEzODM5MmUzNjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM5MzczNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ708MA0GCSqG SIb3DQEBCwUAA4IBAQAMk64oRs3tJNHczR6zUp9hsXYy6Pp+SjsVMIM3UQ2m4Yaf fyTZ3bNrYTbaGFplDT0wA2hhmyvR+4Ns4nm0yoo82d2bXTp61W1kKf4fEqy6XLYO FpAXRB2wDkiQV+g8jy3Qgd8O1tdt68MAYRwYRXC9aoPXJ1nTt8rK5gLJXz0OkYJi KJR2t3plwReLWkxyjO9PuiBAudLNrs0zzB8V5VMJt1KsixrSKrrmgKL5dQu+HqVJ yMHofjxa7bv/29vd0D8eV/wCGm1y4PV2o5NRleu4FYRU0w5BjsNUlXEWVTIcsccy AH8mFUF7cFLq5liG9CmABoaWRpaL2+01qJQE/5cY -----END CERTIFICATE-----Generated at Sun Apr 6 19:08:07 2025 by rpki-client