$ rpki-client -vvf repo-rpki.idnic.net/repo/0c1e49ab-50ca-4b3e-823c-8b3d31ba85f2/0/3130332e3136332e3130322e302f32342d3234203d3e20313431363733.roa File: 3130332e3136332e3130322e302f32342d3234203d3e20313431363733.roa (raw, json) Hash identifier: HBCSlYe9SztvZ5iSEatkCght6QFzU9643YFr0LJkHe0= Subject key identifier: 12:8F:CC:FA:E6:43:2D:77:13:B3:91:FA:46:66:26:B4:1C:BC:73:D4 Certificate issuer: /CN=6FEAE120D8CD63D6824D8261F7B098631EF412E0 Certificate serial: 415D111CE329E5EBBE627C3428643328008A855B Authority key identifier: 6F:EA:E1:20:D8:CD:63:D6:82:4D:82:61:F7:B0:98:63:1E:F4:12:E0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6FEAE120D8CD63D6824D8261F7B098631EF412E0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c1e49ab-50ca-4b3e-823c-8b3d31ba85f2/0/3130332e3136332e3130322e302f32342d3234203d3e20313431363733.roa Signing time: Mon 03 Mar 2025 11:00:01 +0000 ROA not before: Mon 03 Mar 2025 10:55:01 +0000 ROA not after: Mon 02 Mar 2026 11:00:01 +0000 asID: 141673 IP address blocks: 103.163.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c1e49ab-50ca-4b3e-823c-8b3d31ba85f2/0/6FEAE120D8CD63D6824D8261F7B098631EF412E0.crl rsync://repo-rpki.idnic.net/repo/0c1e49ab-50ca-4b3e-823c-8b3d31ba85f2/0/6FEAE120D8CD63D6824D8261F7B098631EF412E0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6FEAE120D8CD63D6824D8261F7B098631EF412E0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 09:26:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:5d:11:1c:e3:29:e5:eb:be:62:7c:34:28:64:33:28:00:8a:85:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FEAE120D8CD63D6824D8261F7B098631EF412E0 Validity Not Before: Mar 3 10:55:01 2025 GMT Not After : Mar 2 11:00:01 2026 GMT Subject: CN=128FCCFAE6432D7713B391FA466626B41CBC73D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:bd:45:4d:ae:73:6f:eb:a6:39:8c:91:f9:95: 3c:7a:df:d5:db:3a:52:37:0f:82:89:38:a8:54:2f: 15:54:16:18:c0:26:36:3d:cc:48:65:14:02:72:00: 60:f7:b9:59:b1:58:09:8a:c2:a8:df:4e:4f:cf:e9: 37:c8:e2:60:82:74:af:90:38:30:d7:30:21:49:2d: 43:3b:f4:7a:b8:7b:da:83:f5:b8:10:8d:2b:a4:23: 46:5f:5f:90:90:18:ed:12:66:e3:f4:84:22:f4:9f: a5:3b:fe:d7:ee:e0:3b:14:92:d2:e4:3b:81:fd:e1: ab:f4:44:12:f1:16:2f:c2:29:d9:ba:70:c6:d6:71: f8:10:5b:1d:55:e5:7a:bc:3c:80:e7:ff:a3:8e:ac: 49:70:95:07:3c:0e:25:2f:52:9b:d1:10:59:89:cb: 3f:35:36:e1:a6:5b:a2:b4:48:05:01:97:1b:a8:4c: 21:20:7f:1b:b9:9a:f7:ca:df:6d:f7:74:3b:b1:a8: c5:d5:50:05:30:5c:fc:ab:56:5b:d1:96:5e:be:8c: d0:28:d7:a6:fc:36:05:32:4a:2d:06:67:d1:a9:98: 9e:6b:61:56:cf:aa:c5:2f:3f:cc:26:5e:1b:01:d8: 10:63:5e:07:dd:0f:71:83:26:21:26:88:31:3b:b3: b9:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:8F:CC:FA:E6:43:2D:77:13:B3:91:FA:46:66:26:B4:1C:BC:73:D4 X509v3 Authority Key Identifier: keyid:6F:EA:E1:20:D8:CD:63:D6:82:4D:82:61:F7:B0:98:63:1E:F4:12:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c1e49ab-50ca-4b3e-823c-8b3d31ba85f2/0/6FEAE120D8CD63D6824D8261F7B098631EF412E0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6FEAE120D8CD63D6824D8261F7B098631EF412E0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c1e49ab-50ca-4b3e-823c-8b3d31ba85f2/0/3130332e3136332e3130322e302f32342d3234203d3e20313431363733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.102.0/24 Signature Algorithm: sha256WithRSAEncryption a2:9a:20:e5:32:c8:03:56:c1:1c:53:ef:83:6c:56:1f:a8:25: 0b:be:55:32:1d:11:5a:d7:09:48:d0:77:aa:3e:f8:61:45:fd: d5:57:bc:62:62:de:0f:6c:0c:2c:e3:db:09:0d:e3:30:7c:45: 31:5d:ba:4a:71:75:34:f2:29:5b:c4:12:63:46:53:e5:7a:62: 4a:72:6f:2c:c9:b3:78:98:88:ce:49:83:2b:36:61:a8:a0:64: 27:d0:de:76:42:2f:e1:a8:30:f0:4d:e3:bd:47:df:5b:b5:90: 83:8d:a5:af:f7:d9:db:a7:16:0a:fb:b4:0c:3d:96:8e:97:bb: 47:fa:0c:50:bf:97:25:fa:e8:4e:83:d0:fc:32:f7:4b:5a:b7: 24:50:88:d3:11:34:1d:2f:ae:be:eb:e5:64:5c:e0:73:21:d2: cf:ce:cd:e2:da:bb:de:c0:fd:9f:8f:5e:12:e5:7e:fc:f8:64: 41:f1:4d:bf:2a:9f:b8:76:03:a6:97:b6:30:4f:5b:76:af:d8: e3:cf:30:76:50:98:d7:66:89:3a:71:be:94:62:a6:4c:0b:f7: 2b:47:cd:0e:21:aa:e3:c9:b9:cc:e8:d3:df:50:87:0b:95:0e: 47:d7:1a:28:14:56:19:df:d5:3d:db:6f:7d:85:ac:cb:1c:07: b5:86:78:33 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQV0RHOMp5eu+Ynw0KGQzKACKhVswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZFQUUxMjBEOENENjNENjgyNEQ4MjYxRjdCMDk4NjMx RUY0MTJFMDAeFw0yNTAzMDMxMDU1MDFaFw0yNjAzMDIxMTAwMDFaMDMxMTAvBgNV BAMTKDEyOEZDQ0ZBRTY0MzJENzcxM0IzOTFGQTQ2NjYyNkI0MUNCQzczRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOvUVNrnNv66Y5jJH5lTx639Xb OlI3D4KJOKhULxVUFhjAJjY9zEhlFAJyAGD3uVmxWAmKwqjfTk/P6TfI4mCCdK+Q ODDXMCFJLUM79Hq4e9qD9bgQjSukI0ZfX5CQGO0SZuP0hCL0n6U7/tfu4DsUktLk O4H94av0RBLxFi/CKdm6cMbWcfgQWx1V5Xq8PIDn/6OOrElwlQc8DiUvUpvREFmJ yz81NuGmW6K0SAUBlxuoTCEgfxu5mvfK3233dDuxqMXVUAUwXPyrVlvRll6+jNAo 16b8NgUySi0GZ9GpmJ5rYVbPqsUvP8wmXhsB2BBjXgfdD3GDJiEmiDE7s7mNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUEo/M+uZDLXcTs5H6RmYmtBy8c9QwHwYDVR0j BBgwFoAUb+rhINjNY9aCTYJh97CYYx70EuAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzFlNDlhYi01MGNhLTRiM2UtODIzYy04YjNkMzFiYTg1ZjIvMC82RkVBRTEyMEQ4 Q0Q2M0Q2ODI0RDgyNjFGN0IwOTg2MzFFRjQxMkUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkZFQUUxMjBEOENENjNENjgyNEQ4MjYxRjdCMDk4NjMxRUY0 MTJFMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMWU0OWFiLTUwY2EtNGIzZS04 MjNjLThiM2QzMWJhODVmMi8wLzMxMzAzMzJlMzEzNjMzMmUzMTMwMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjM3MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABno2YwDQYJ KoZIhvcNAQELBQADggEBAKKaIOUyyANWwRxT74NsVh+oJQu+VTIdEVrXCUjQd6o+ +GFF/dVXvGJi3g9sDCzj2wkN4zB8RTFdukpxdTTyKVvEEmNGU+V6YkpybyzJs3iY iM5Jgys2YaigZCfQ3nZCL+GoMPBN471H31u1kIONpa/32dunFgr7tAw9lo6Xu0f6 DFC/lyX66E6D0Pwy90tatyRQiNMRNB0vrr7r5WRc4HMh0s/OzeLau97A/Z+PXhLl fvz4ZEHxTb8qn7h2A6aXtjBPW3av2OPPMHZQmNdmiTpxvpRipkwL9ytHzQ4hquPJ uczo099QhwuVDkfXGigUVhnf1T3bb32FrMscB7WGeDM= -----END CERTIFICATE-----Generated at Sun Apr 6 08:25:43 2025 by rpki-client