$ rpki-client -vvf repo-rpki.idnic.net/repo/42713a32-fada-484e-a68d-0cac0fffa33c/0/3130332e3138362e3136382e302f32332d3233203d3e20313439333135.roa File: 3130332e3138362e3136382e302f32332d3233203d3e20313439333135.roa (raw, json) Hash identifier: 0o9IBgjEwrH3ZJGqMXSmtJgW+TONR3n1c/K3AjhSCz0= Subject key identifier: 7D:FC:EE:D9:D4:E4:3F:8C:3B:83:E9:35:D6:D5:03:B6:02:0E:A5:E2 Certificate issuer: /CN=B0FA6C3ED4780E032B0A3F161E018A7C8FA82B45 Certificate serial: 30E5356283D403A36B6C0BF63E09BA0A7EF916E2 Authority key identifier: B0:FA:6C:3E:D4:78:0E:03:2B:0A:3F:16:1E:01:8A:7C:8F:A8:2B:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0FA6C3ED4780E032B0A3F161E018A7C8FA82B45.cer Subject info access: rsync://repo-rpki.idnic.net/repo/42713a32-fada-484e-a68d-0cac0fffa33c/0/3130332e3138362e3136382e302f32332d3233203d3e20313439333135.roa Signing time: Fri 21 Feb 2025 08:00:01 +0000 ROA not before: Fri 21 Feb 2025 07:55:01 +0000 ROA not after: Fri 20 Feb 2026 08:00:01 +0000 asID: 149315 IP address blocks: 103.186.168.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/42713a32-fada-484e-a68d-0cac0fffa33c/0/B0FA6C3ED4780E032B0A3F161E018A7C8FA82B45.crl rsync://repo-rpki.idnic.net/repo/42713a32-fada-484e-a68d-0cac0fffa33c/0/B0FA6C3ED4780E032B0A3F161E018A7C8FA82B45.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0FA6C3ED4780E032B0A3F161E018A7C8FA82B45.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 16:31:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:e5:35:62:83:d4:03:a3:6b:6c:0b:f6:3e:09:ba:0a:7e:f9:16:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B0FA6C3ED4780E032B0A3F161E018A7C8FA82B45 Validity Not Before: Feb 21 07:55:01 2025 GMT Not After : Feb 20 08:00:01 2026 GMT Subject: CN=7DFCEED9D4E43F8C3B83E935D6D503B6020EA5E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:7a:86:c0:b9:21:72:6b:95:85:d3:71:7e:a0: 7b:d0:30:bd:40:c1:fb:36:5b:44:46:56:4e:fe:a3: 94:63:f1:6d:72:76:e5:16:50:f4:5d:c7:95:10:1f: 02:86:fa:82:68:a5:ad:d8:e1:fe:ab:5e:21:ce:f5: 09:5c:c1:bd:95:f3:1a:79:c8:e2:ec:c6:c8:ff:6f: e7:1c:7c:3d:79:4e:01:4b:83:00:4b:ae:d9:e6:d0: da:61:fd:a5:8d:c6:c4:fe:99:2e:55:24:50:a7:ae: 81:ab:e9:5e:d6:5c:87:4c:92:f6:cb:24:72:0f:25: d3:a7:3d:8c:85:5c:72:bb:ee:a3:19:73:07:1d:44: 99:9d:ec:8c:41:fe:92:fd:d0:37:78:f9:ab:68:b6: dd:18:09:ce:b3:3c:0c:5a:af:a1:ca:37:13:65:d9: 6d:80:9a:bf:4a:6e:25:f5:57:93:0a:2c:ac:68:03: f5:77:47:fd:66:a7:fa:6a:8e:d5:9b:d6:36:0c:72: 79:b7:b9:a4:46:d5:59:0e:36:e4:33:de:72:2d:a9: 12:ee:7d:29:f9:5d:2e:65:8d:c6:2f:43:a7:b8:4f: 21:8e:46:de:b8:13:73:8d:97:13:7a:43:55:93:e4: 55:21:35:c3:34:9f:63:d6:a7:6e:f4:ae:47:33:a9: 04:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:FC:EE:D9:D4:E4:3F:8C:3B:83:E9:35:D6:D5:03:B6:02:0E:A5:E2 X509v3 Authority Key Identifier: keyid:B0:FA:6C:3E:D4:78:0E:03:2B:0A:3F:16:1E:01:8A:7C:8F:A8:2B:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/42713a32-fada-484e-a68d-0cac0fffa33c/0/B0FA6C3ED4780E032B0A3F161E018A7C8FA82B45.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0FA6C3ED4780E032B0A3F161E018A7C8FA82B45.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/42713a32-fada-484e-a68d-0cac0fffa33c/0/3130332e3138362e3136382e302f32332d3233203d3e20313439333135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.168.0/23 Signature Algorithm: sha256WithRSAEncryption 83:33:cc:4c:34:3d:41:f9:e8:30:a5:41:cf:2f:e1:9f:b5:12: 74:75:e6:5c:9c:2f:e1:27:5d:fd:f5:79:17:97:21:ec:d6:69: ba:f3:a4:05:26:f4:5a:74:21:92:38:c7:83:d6:12:50:89:8d: 84:38:f4:71:1a:79:67:39:ef:d1:04:da:96:19:7b:1d:63:0c: f7:46:5e:b0:43:08:82:90:20:95:a4:9e:ef:7f:51:21:f0:42: 34:0b:f2:62:26:bf:ea:c5:4c:69:1c:6a:60:bd:62:e6:89:32: 5c:95:28:22:f0:8c:b5:8a:2f:93:68:3d:c7:7b:bd:98:83:c8: 31:26:f2:fd:71:bf:94:cb:b4:ac:b9:74:43:32:8f:bf:0a:7f: e7:19:46:e8:1f:c4:e6:ed:1d:0a:8a:8d:d9:f5:be:20:3c:eb: 5e:cc:bd:e4:aa:22:5b:d9:e8:e7:3c:cc:07:d9:bb:2d:a9:8f: dd:96:37:68:c1:a5:23:95:54:46:35:5e:f3:b8:fc:de:f7:25: 76:a6:36:2b:eb:0c:db:3a:b0:3c:35:1f:ae:ad:fe:48:03:40: ca:eb:d0:cc:fd:43:72:49:93:8d:e1:ad:73:3f:be:a6:b2:b4: 6b:0e:c1:a9:be:ee:0b:e5:d8:c9:88:24:f1:61:fa:53:b2:6f: a1:19:0c:3d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMOU1YoPUA6NrbAv2Pgm6Cn75FuIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjBGQTZDM0VENDc4MEUwMzJCMEEzRjE2MUUwMThBN0M4 RkE4MkI0NTAeFw0yNTAyMjEwNzU1MDFaFw0yNjAyMjAwODAwMDFaMDMxMTAvBgNV BAMTKDdERkNFRUQ5RDRFNDNGOEMzQjgzRTkzNUQ2RDUwM0I2MDIwRUE1RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeeobAuSFya5WF03F+oHvQML1A wfs2W0RGVk7+o5Rj8W1yduUWUPRdx5UQHwKG+oJopa3Y4f6rXiHO9Qlcwb2V8xp5 yOLsxsj/b+ccfD15TgFLgwBLrtnm0Nph/aWNxsT+mS5VJFCnroGr6V7WXIdMkvbL JHIPJdOnPYyFXHK77qMZcwcdRJmd7IxB/pL90Dd4+atott0YCc6zPAxar6HKNxNl 2W2Amr9KbiX1V5MKLKxoA/V3R/1mp/pqjtWb1jYMcnm3uaRG1VkONuQz3nItqRLu fSn5XS5ljcYvQ6e4TyGORt64E3ONlxN6Q1WT5FUhNcM0n2PWp270rkczqQTVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUffzu2dTkP4w7g+k11tUDtgIOpeIwHwYDVR0j BBgwFoAUsPpsPtR4DgMrCj8WHgGKfI+oK0UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MjcxM2EzMi1mYWRhLTQ4NGUtYTY4ZC0wY2FjMGZmZmEzM2MvMC9CMEZBNkMzRUQ0 NzgwRTAzMkIwQTNGMTYxRTAxOEE3QzhGQTgyQjQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjBGQTZDM0VENDc4MEUwMzJCMEEzRjE2MUUwMThBN0M4RkE4 MkI0NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQyNzEzYTMyLWZhZGEtNDg0ZS1h NjhkLTBjYWMwZmZmYTMzYy8wLzMxMzAzMzJlMzEzODM2MmUzMTM2MzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzkzMzMxMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnuqgwDQYJ KoZIhvcNAQELBQADggEBAIMzzEw0PUH56DClQc8v4Z+1EnR15lycL+EnXf31eReX IezWabrzpAUm9Fp0IZI4x4PWElCJjYQ49HEaeWc579EE2pYZex1jDPdGXrBDCIKQ IJWknu9/USHwQjQL8mImv+rFTGkcamC9YuaJMlyVKCLwjLWKL5NoPcd7vZiDyDEm 8v1xv5TLtKy5dEMyj78Kf+cZRugfxObtHQqKjdn1viA8617MveSqIlvZ6Oc8zAfZ uy2pj92WN2jBpSOVVEY1XvO4/N73JXamNivrDNs6sDw1H66t/kgDQMrr0Mz9Q3JJ k43hrXM/vqaytGsOwam+7gvl2MmIJPFh+lOyb6EZDD0= -----END CERTIFICATE-----Generated at Sun Apr 6 20:08:17 2025 by rpki-client