$ rpki-client -vvf repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/3130332e3138392e3131392e302f32342d3234203d3e20313439383833.roa File: 3130332e3138392e3131392e302f32342d3234203d3e20313439383833.roa (raw, json) Hash identifier: CeJsPXYZaSv3nt0/slveGAtFgQcdV+Sze89sGyxFRnw= Subject key identifier: 74:C8:4F:3C:3E:9F:86:6E:8B:3E:97:3D:EF:76:55:44:6F:12:11:A3 Certificate issuer: /CN=BAC82A4D55B368F48D80BE045E0F4A8418C3EA73 Certificate serial: 69F613E92E01BF811F3A02D346EBCC53C776740D Authority key identifier: BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer Subject info access: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/3130332e3138392e3131392e302f32342d3234203d3e20313439383833.roa Signing time: Wed 02 Apr 2025 05:00:00 +0000 ROA not before: Wed 02 Apr 2025 04:55:00 +0000 ROA not after: Wed 01 Apr 2026 05:00:00 +0000 asID: 149883 IP address blocks: 103.189.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 20:30:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:f6:13:e9:2e:01:bf:81:1f:3a:02:d3:46:eb:cc:53:c7:76:74:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAC82A4D55B368F48D80BE045E0F4A8418C3EA73 Validity Not Before: Apr 2 04:55:00 2025 GMT Not After : Apr 1 05:00:00 2026 GMT Subject: CN=74C84F3C3E9F866E8B3E973DEF7655446F1211A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3c:d5:57:2d:a2:e9:f6:cc:95:8b:97:39:fa: 84:c7:72:06:4e:18:49:64:bb:c2:4b:c4:21:86:8a: 6e:de:d8:24:c1:fd:86:f7:e0:96:ae:57:11:29:e2: d6:7d:29:b0:00:ed:e4:9f:d3:2c:17:94:6e:61:26: 23:ec:45:53:91:79:5f:7c:60:b0:68:f1:1e:f7:66: 8e:9b:31:4e:97:21:5b:6f:a7:c0:81:5d:70:8d:0c: c2:fe:f0:75:c6:1b:cf:e4:85:30:9d:f2:f0:ee:c1: 9b:84:96:ec:3f:b4:4a:ce:41:2b:2f:8f:0b:67:95: 49:8b:78:57:32:e3:a7:72:ae:63:30:d9:75:93:a6: 5f:37:e7:1c:aa:23:04:ca:24:81:a1:1d:73:1c:04: 09:54:3a:66:62:4c:76:93:89:0c:1d:70:94:9a:fc: b4:8f:a0:bf:8d:5b:a8:dc:02:ec:3a:e7:cf:7b:73: 45:82:16:d8:36:5d:3e:8f:13:61:15:de:b1:41:43: 75:fe:0b:01:2d:38:42:ac:69:a5:1e:c9:e6:fb:b8: e7:b9:78:a0:a0:62:f4:86:4a:93:41:d6:bb:92:e9: dd:b2:28:20:c9:17:62:fa:25:f6:8b:b6:b5:f2:15: 26:08:15:e9:8e:9c:c1:0c:48:36:f9:2b:7d:11:db: d4:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:C8:4F:3C:3E:9F:86:6E:8B:3E:97:3D:EF:76:55:44:6F:12:11:A3 X509v3 Authority Key Identifier: keyid:BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/3130332e3138392e3131392e302f32342d3234203d3e20313439383833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.119.0/24 Signature Algorithm: sha256WithRSAEncryption 31:8c:b0:c3:9f:78:97:a0:95:38:f8:b0:61:c8:ec:96:3a:5a: f0:dc:75:5f:52:dc:34:1f:75:cb:c9:e8:d1:8c:91:ad:7d:d7: 10:64:e4:b7:74:7a:cc:1b:be:4c:1b:22:a7:8e:bb:03:c1:90: e0:9c:84:9b:6e:09:10:d6:5b:e4:69:ee:97:c6:46:40:13:4d: 2f:de:ec:b4:6f:cf:fb:e7:5f:56:93:ab:41:27:1e:ab:e7:8a: cc:c6:0c:f7:56:2f:44:3e:f9:cc:47:79:e3:14:74:a3:bd:6c: 60:d0:63:45:e4:bc:3f:27:52:a0:45:fd:12:c9:47:9c:43:fc: db:ca:8b:ec:82:8b:bc:2b:41:f0:d2:97:81:59:76:f9:83:76: b2:c1:fe:ec:78:95:ca:95:9c:b7:3f:51:dd:a2:c9:09:36:aa: af:9d:5c:f1:d7:d8:24:a5:96:19:22:66:41:f6:84:89:a7:e7: 1d:02:21:3a:2c:c5:6c:fd:e3:ce:b7:40:4f:2c:8c:a3:35:75: 8b:d2:fd:4a:95:5f:e9:4c:ef:3a:81:e9:4c:76:c0:dc:e7:8e: 5b:03:e2:58:7f:9a:81:5e:73:1c:68:fd:68:df:1c:37:de:4f: e7:6d:03:d5:0d:ab:2a:7b:62:e5:a0:ce:e7:c6:b4:a2:63:00: 99:49:10:ab -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUafYT6S4Bv4EfOgLTRuvMU8d2dA0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRBODQx OEMzRUE3MzAeFw0yNTA0MDIwNDU1MDBaFw0yNjA0MDEwNTAwMDBaMDMxMTAvBgNV BAMTKDc0Qzg0RjNDM0U5Rjg2NkU4QjNFOTczREVGNzY1NTQ0NkYxMjExQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQPNVXLaLp9syVi5c5+oTHcgZO GElku8JLxCGGim7e2CTB/Yb34JauVxEp4tZ9KbAA7eSf0ywXlG5hJiPsRVOReV98 YLBo8R73Zo6bMU6XIVtvp8CBXXCNDML+8HXGG8/khTCd8vDuwZuEluw/tErOQSsv jwtnlUmLeFcy46dyrmMw2XWTpl835xyqIwTKJIGhHXMcBAlUOmZiTHaTiQwdcJSa /LSPoL+NW6jcAuw65897c0WCFtg2XT6PE2EV3rFBQ3X+CwEtOEKsaaUeyeb7uOe5 eKCgYvSGSpNB1ruS6d2yKCDJF2L6JfaLtrXyFSYIFemOnMEMSDb5K30R29QLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUdMhPPD6fhm6LPpc973ZVRG8SEaMwHwYDVR0j BBgwFoAUusgqTVWzaPSNgL4EXg9KhBjD6nMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 M2FkNTIyNi02NTZkLTQ2MWQtOWNmZi1jODNhYzA3NDJmMjAvMC9CQUM4MkE0RDU1 QjM2OEY0OEQ4MEJFMDQ1RTBGNEE4NDE4QzNFQTczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRBODQxOEMz RUE3My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzYWQ1MjI2LTY1NmQtNDYxZC05 Y2ZmLWM4M2FjMDc0MmYyMC8wLzMxMzAzMzJlMzEzODM5MmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzODM4MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvXcwDQYJ KoZIhvcNAQELBQADggEBADGMsMOfeJeglTj4sGHI7JY6WvDcdV9S3DQfdcvJ6NGM ka191xBk5Ld0eswbvkwbIqeOuwPBkOCchJtuCRDWW+Rp7pfGRkATTS/e7LRvz/vn X1aTq0EnHqvniszGDPdWL0Q++cxHeeMUdKO9bGDQY0XkvD8nUqBF/RLJR5xD/NvK i+yCi7wrQfDSl4FZdvmDdrLB/ux4lcqVnLc/Ud2iyQk2qq+dXPHX2CSllhkiZkH2 hImn5x0CITosxWz94863QE8sjKM1dYvS/UqVX+lM7zqB6Ux2wNznjlsD4lh/moFe cxxo/WjfHDfeT+dtA9UNqyp7YuWgzufGtKJjAJlJEKs= -----END CERTIFICATE-----Generated at Sun Apr 6 07:17:54 2025 by rpki-client