$ rpki-client -vvf repo-rpki.idnic.net/repo/14758e8e-49c8-48b8-bdcb-35339e2ae601/0/3130332e3138382e3131392e302f32342d3234203d3e20313439373435.roa File: 3130332e3138382e3131392e302f32342d3234203d3e20313439373435.roa (raw, json) Hash identifier: VHhhP8m98Q6XFX6o9Io0DEj5+ACOMVpb0NESi8BC7x8= Subject key identifier: 91:E1:2F:32:D4:23:66:68:91:E0:8F:10:B9:91:03:76:47:5F:E1:FE Certificate issuer: /CN=8F9164714A1B3B906CF8A8B371F342EBA3540CD9 Certificate serial: 74C56B0990D25FD0D40CA30977B91625E55DDAEA Authority key identifier: 8F:91:64:71:4A:1B:3B:90:6C:F8:A8:B3:71:F3:42:EB:A3:54:0C:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F9164714A1B3B906CF8A8B371F342EBA3540CD9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14758e8e-49c8-48b8-bdcb-35339e2ae601/0/3130332e3138382e3131392e302f32342d3234203d3e20313439373435.roa Signing time: Wed 26 Mar 2025 09:00:00 +0000 ROA not before: Wed 26 Mar 2025 08:55:00 +0000 ROA not after: Wed 25 Mar 2026 09:00:00 +0000 asID: 149745 IP address blocks: 103.188.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14758e8e-49c8-48b8-bdcb-35339e2ae601/0/8F9164714A1B3B906CF8A8B371F342EBA3540CD9.crl rsync://repo-rpki.idnic.net/repo/14758e8e-49c8-48b8-bdcb-35339e2ae601/0/8F9164714A1B3B906CF8A8B371F342EBA3540CD9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F9164714A1B3B906CF8A8B371F342EBA3540CD9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 15:16:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:c5:6b:09:90:d2:5f:d0:d4:0c:a3:09:77:b9:16:25:e5:5d:da:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F9164714A1B3B906CF8A8B371F342EBA3540CD9 Validity Not Before: Mar 26 08:55:00 2025 GMT Not After : Mar 25 09:00:00 2026 GMT Subject: CN=91E12F32D423666891E08F10B9910376475FE1FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1c:e2:48:aa:c6:2f:76:c4:44:42:ef:4f:af: 8f:d4:4d:b2:26:0e:94:7e:21:9d:ea:8a:cb:43:63: 69:ce:fa:41:47:48:6c:3c:0b:47:d0:8e:4a:b2:b0: 96:29:97:29:2e:d5:9a:34:f3:c5:28:bd:e9:37:2b: 4e:48:82:08:e5:c9:e1:e9:4b:8e:7d:58:4c:04:77: 18:d0:6e:83:05:81:3d:a7:3b:52:58:40:87:d2:eb: 39:fb:67:b3:be:17:52:0b:65:20:d4:c2:22:91:95: 5b:af:b6:41:05:de:c3:02:c0:f2:0f:78:cc:3c:42: 65:93:96:51:c4:7e:0c:12:cc:2f:60:1c:03:1b:a9: 7a:6c:7f:7a:28:7f:11:e3:55:0c:a3:ba:79:89:71: a1:2d:84:ce:5b:6e:e6:36:fe:78:8b:16:b5:f7:3a: bb:c9:17:b2:07:22:94:22:f1:1d:6e:77:46:62:93: af:12:40:5e:37:3a:4a:cb:26:40:36:03:a0:07:62: 4d:93:e0:5f:44:c7:4a:4d:6d:9c:05:b8:b2:d4:2a: f2:20:98:c7:66:63:be:35:09:37:07:8a:34:5c:b2: d4:35:e6:e6:70:a4:03:91:59:70:a6:40:f3:90:07: eb:d9:d7:b9:1d:9f:85:eb:53:e3:f4:e4:e0:da:6a: f8:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:E1:2F:32:D4:23:66:68:91:E0:8F:10:B9:91:03:76:47:5F:E1:FE X509v3 Authority Key Identifier: keyid:8F:91:64:71:4A:1B:3B:90:6C:F8:A8:B3:71:F3:42:EB:A3:54:0C:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14758e8e-49c8-48b8-bdcb-35339e2ae601/0/8F9164714A1B3B906CF8A8B371F342EBA3540CD9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F9164714A1B3B906CF8A8B371F342EBA3540CD9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14758e8e-49c8-48b8-bdcb-35339e2ae601/0/3130332e3138382e3131392e302f32342d3234203d3e20313439373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.188.119.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:b1:32:0a:fe:e6:95:c7:fe:c8:7f:50:d2:97:3e:53:6d:e6: 65:c4:9b:8e:53:e5:1a:4f:35:91:b6:34:b5:f1:58:44:e7:00: 2a:e1:e3:86:d4:79:bd:53:50:c4:2d:53:22:37:b0:9d:f9:96: 64:f6:2c:f6:12:68:ca:28:f8:59:45:c0:90:ad:e7:4d:a6:a6: cd:e0:d4:9f:d9:5b:04:6a:e4:9e:a7:e8:2e:bc:09:ae:b9:78: c4:3c:63:de:fb:8a:06:a6:ab:f4:3a:1b:b4:9e:8b:20:f7:ff: 59:a2:61:11:fd:a8:e6:11:b0:5c:ae:81:fe:72:14:75:74:4c: c9:6c:b0:50:09:c8:eb:f7:e6:8c:39:ba:7b:b2:5b:08:04:3e: 9c:ff:d2:72:73:07:0d:92:5d:83:4d:16:de:49:d4:07:40:cd: 7e:27:0e:96:ee:c4:5a:48:f8:47:f9:03:e2:94:7c:4b:30:35: 3e:82:75:30:3f:05:73:5e:5b:98:de:f6:cf:e2:ee:95:15:ee: 33:fe:38:4f:74:cc:8c:07:0e:b7:3c:ea:35:67:eb:a8:e0:10: 7f:4b:e5:8f:04:07:8c:81:82:3a:9e:81:4e:33:3e:c0:10:18: af:8c:89:e1:b0:52:b7:4c:cf:58:26:40:3d:d9:4b:38:d4:1e: 72:68:a1:78 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdMVrCZDSX9DUDKMJd7kWJeVd2uowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY5MTY0NzE0QTFCM0I5MDZDRjhBOEIzNzFGMzQyRUJB MzU0MENEOTAeFw0yNTAzMjYwODU1MDBaFw0yNjAzMjUwOTAwMDBaMDMxMTAvBgNV BAMTKDkxRTEyRjMyRDQyMzY2Njg5MUUwOEYxMEI5OTEwMzc2NDc1RkUxRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5HOJIqsYvdsREQu9Pr4/UTbIm DpR+IZ3qistDY2nO+kFHSGw8C0fQjkqysJYplyku1Zo088Uovek3K05IggjlyeHp S459WEwEdxjQboMFgT2nO1JYQIfS6zn7Z7O+F1ILZSDUwiKRlVuvtkEF3sMCwPIP eMw8QmWTllHEfgwSzC9gHAMbqXpsf3oofxHjVQyjunmJcaEthM5bbuY2/niLFrX3 OrvJF7IHIpQi8R1ud0Zik68SQF43OkrLJkA2A6AHYk2T4F9Ex0pNbZwFuLLUKvIg mMdmY741CTcHijRcstQ15uZwpAORWXCmQPOQB+vZ17kdn4XrU+P05ODaavhfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUkeEvMtQjZmiR4I8QuZEDdkdf4f4wHwYDVR0j BBgwFoAUj5FkcUobO5Bs+KizcfNC66NUDNkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDc1OGU4ZS00OWM4LTQ4YjgtYmRjYi0zNTMzOWUyYWU2MDEvMC84RjkxNjQ3MTRB MUIzQjkwNkNGOEE4QjM3MUYzNDJFQkEzNTQwQ0Q5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY5MTY0NzE0QTFCM0I5MDZDRjhBOEIzNzFGMzQyRUJBMzU0 MENEOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0NzU4ZThlLTQ5YzgtNDhiOC1i ZGNiLTM1MzM5ZTJhZTYwMS8wLzMxMzAzMzJlMzEzODM4MmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvHcwDQYJ KoZIhvcNAQELBQADggEBAE2xMgr+5pXH/sh/UNKXPlNt5mXEm45T5RpPNZG2NLXx WETnACrh44bUeb1TUMQtUyI3sJ35lmT2LPYSaMoo+FlFwJCt502mps3g1J/ZWwRq 5J6n6C68Ca65eMQ8Y977igamq/Q6G7SeiyD3/1miYRH9qOYRsFyugf5yFHV0TMls sFAJyOv35ow5unuyWwgEPpz/0nJzBw2SXYNNFt5J1AdAzX4nDpbuxFpI+Ef5A+KU fEswNT6CdTA/BXNeW5je9s/i7pUV7jP+OE90zIwHDrc86jVn66jgEH9L5Y8EB4yB gjqegU4zPsAQGK+MieGwUrdMz1gmQD3ZSzjUHnJooXg= -----END CERTIFICATE-----Generated at Sun Apr 6 19:31:33 2025 by rpki-client