$ rpki-client -vvf repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/3130332e3138392e3131382e302f32332d3233203d3e20313439383833.roa File: 3130332e3138392e3131382e302f32332d3233203d3e20313439383833.roa (raw, json) Hash identifier: N0XCMCw3s4kIWnX0GxZG8K7vrea02I3zr3x0DohynM4= Subject key identifier: 9B:D7:C3:30:17:7C:4E:80:B2:6D:39:9B:A6:4B:EC:7A:96:C0:F1:BC Certificate issuer: /CN=BAC82A4D55B368F48D80BE045E0F4A8418C3EA73 Certificate serial: 2C4D06E489843050F346575A0BF835D024E737A4 Authority key identifier: BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer Subject info access: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/3130332e3138392e3131382e302f32332d3233203d3e20313439383833.roa Signing time: Wed 28 May 2025 03:00:00 +0000 ROA not before: Wed 28 May 2025 02:55:00 +0000 ROA not after: Wed 27 May 2026 03:00:00 +0000 asID: 149883 IP address blocks: 103.189.118.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 03:45:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:4d:06:e4:89:84:30:50:f3:46:57:5a:0b:f8:35:d0:24:e7:37:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAC82A4D55B368F48D80BE045E0F4A8418C3EA73 Validity Not Before: May 28 02:55:00 2025 GMT Not After : May 27 03:00:00 2026 GMT Subject: CN=9BD7C330177C4E80B26D399BA64BEC7A96C0F1BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:57:a9:c3:f1:39:7f:d9:29:89:d3:f7:28:37: 02:5a:b7:fc:af:b2:b1:16:f7:18:74:20:2c:a1:9d: 25:0a:1f:0f:a2:25:c0:e6:e3:e7:66:f4:f4:ee:0e: c7:03:60:13:ef:72:23:ac:05:87:53:05:2b:6b:34: 5a:fc:d3:e9:f1:84:8b:6a:25:90:75:1b:94:f7:a4: bb:00:c4:3c:1f:fd:54:f1:ce:13:3e:1b:cf:f2:44: b6:46:5d:a1:c9:5f:5d:58:4b:1b:8d:6a:4d:d1:1b: d1:72:06:bc:6f:ab:b5:20:34:db:4a:1d:de:d9:a9: 9b:64:aa:c6:81:bb:0f:80:ec:d1:c9:b1:60:98:7d: 63:22:f2:25:ba:2d:b1:0e:23:13:c5:a1:3e:0b:7a: 52:da:bb:07:b4:2c:01:85:ef:5f:fb:56:e9:ce:19: ba:f6:27:93:02:c3:ea:a3:f0:32:6d:5e:71:db:50: 4c:33:a6:46:6e:ac:dc:b2:b3:69:37:29:95:ed:93: 5c:b2:97:e9:5b:e3:a5:c4:05:77:85:ec:b9:00:6c: 36:da:41:04:1e:74:2d:46:ce:67:30:55:75:84:20: 14:90:22:8a:38:b8:6f:81:a9:bf:eb:97:6d:f4:b3: 94:14:ec:2c:85:77:2a:b9:bc:23:ed:7f:f4:36:00: d6:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:D7:C3:30:17:7C:4E:80:B2:6D:39:9B:A6:4B:EC:7A:96:C0:F1:BC X509v3 Authority Key Identifier: keyid:BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/3130332e3138392e3131382e302f32332d3233203d3e20313439383833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.118.0/23 Signature Algorithm: sha256WithRSAEncryption 33:62:cf:f7:f7:df:1a:bf:64:95:1e:da:ae:c7:51:3b:76:b3: d6:04:23:d9:76:ae:37:b6:64:1d:94:a4:20:8d:fa:8d:2a:fd: 7c:ac:6d:22:58:06:be:5f:ea:56:d1:d0:23:0a:ea:7e:8c:08: 71:5b:92:27:b0:e0:ba:4b:54:9e:a9:10:40:77:e8:7f:85:5d: e9:ff:6f:35:67:0f:44:f6:1c:29:8b:df:3a:91:2e:35:47:e6: 55:a1:cd:ca:7c:f0:f2:6a:d6:12:d2:35:a2:00:23:59:6c:d4: fe:11:28:21:7f:91:c0:fc:b7:cd:8d:9f:17:c3:5f:34:85:d5: 31:c1:89:41:29:d7:14:89:e3:e9:16:5f:64:12:73:1c:7e:8e: 8b:76:e5:a1:d1:12:8e:01:88:a7:27:9c:5d:a4:5b:55:a1:1f: ea:63:da:d6:e4:27:26:75:22:4a:e8:ca:ed:dd:26:63:da:0e: fd:b8:2f:3c:92:d9:c2:81:47:0c:d9:93:8e:c7:d1:44:90:1e: 03:a4:8a:88:93:f2:e2:2a:de:79:c9:35:c7:6c:ac:29:82:8a: bf:23:28:0d:6c:95:ab:13:6c:5d:76:8b:ba:14:85:d5:bd:8b: f6:e1:0f:36:d3:a2:75:40:46:55:51:e7:e1:f4:ec:6c:59:e5: e3:57:43:b1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULE0G5ImEMFDzRldaC/g10CTnN6QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRBODQx OEMzRUE3MzAeFw0yNTA1MjgwMjU1MDBaFw0yNjA1MjcwMzAwMDBaMDMxMTAvBgNV BAMTKDlCRDdDMzMwMTc3QzRFODBCMjZEMzk5QkE2NEJFQzdBOTZDMEYxQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD6V6nD8Tl/2SmJ0/coNwJat/yv srEW9xh0ICyhnSUKHw+iJcDm4+dm9PTuDscDYBPvciOsBYdTBStrNFr80+nxhItq JZB1G5T3pLsAxDwf/VTxzhM+G8/yRLZGXaHJX11YSxuNak3RG9FyBrxvq7UgNNtK Hd7ZqZtkqsaBuw+A7NHJsWCYfWMi8iW6LbEOIxPFoT4LelLauwe0LAGF71/7VunO Gbr2J5MCw+qj8DJtXnHbUEwzpkZurNyys2k3KZXtk1yyl+lb46XEBXeF7LkAbDba QQQedC1GzmcwVXWEIBSQIoo4uG+Bqb/rl230s5QU7CyFdyq5vCPtf/Q2ANabAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUm9fDMBd8ToCybTmbpkvsepbA8bwwHwYDVR0j BBgwFoAUusgqTVWzaPSNgL4EXg9KhBjD6nMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 M2FkNTIyNi02NTZkLTQ2MWQtOWNmZi1jODNhYzA3NDJmMjAvMC9CQUM4MkE0RDU1 QjM2OEY0OEQ4MEJFMDQ1RTBGNEE4NDE4QzNFQTczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRBODQxOEMz RUE3My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzYWQ1MjI2LTY1NmQtNDYxZC05 Y2ZmLWM4M2FjMDc0MmYyMC8wLzMxMzAzMzJlMzEzODM5MmUzMTMxMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzkzODM4MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnvXYwDQYJ KoZIhvcNAQELBQADggEBADNiz/f33xq/ZJUe2q7HUTt2s9YEI9l2rje2ZB2UpCCN +o0q/XysbSJYBr5f6lbR0CMK6n6MCHFbkiew4LpLVJ6pEEB36H+FXen/bzVnD0T2 HCmL3zqRLjVH5lWhzcp88PJq1hLSNaIAI1ls1P4RKCF/kcD8t82NnxfDXzSF1THB iUEp1xSJ4+kWX2QScxx+jot25aHREo4BiKcnnF2kW1WhH+pj2tbkJyZ1Ikroyu3d JmPaDv24LzyS2cKBRwzZk47H0USQHgOkioiT8uIq3nnJNcdsrCmCir8jKA1slasT bF12i7oUhdW9i/bhDzbTonVARlVR5+H07GxZ5eNXQ7E= -----END CERTIFICATE-----Generated at Sat Jun 7 22:50:53 2025 by rpki-client