$ rpki-client -vvf repo-rpki.idnic.net/repo/4a238a62-6a96-43bc-87af-02db641f7109/0/3130332e3135392e3139342e302f32332d3234203d3e20313431313435.roa File: 3130332e3135392e3139342e302f32332d3234203d3e20313431313435.roa (raw, json) Hash identifier: 8i2rkzBjlPEti5Kr8Zm8/78pVX8xhxtJgE0QaB9hDOo= Subject key identifier: 99:37:46:C0:44:D3:05:A3:DC:B0:08:E4:31:3B:3C:E7:A2:B1:3E:A6 Certificate issuer: /CN=6FC857DF7FE5350A6C05A1F113F3DC2E5FE0BE11 Certificate serial: 075E35D4411BD8C382CCEB6CC148BC81F362E2AD Authority key identifier: 6F:C8:57:DF:7F:E5:35:0A:6C:05:A1:F1:13:F3:DC:2E:5F:E0:BE:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6FC857DF7FE5350A6C05A1F113F3DC2E5FE0BE11.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a238a62-6a96-43bc-87af-02db641f7109/0/3130332e3135392e3139342e302f32332d3234203d3e20313431313435.roa Signing time: Wed 19 Feb 2025 14:00:01 +0000 ROA not before: Wed 19 Feb 2025 13:55:01 +0000 ROA not after: Wed 18 Feb 2026 14:00:01 +0000 asID: 141145 IP address blocks: 103.159.194.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a238a62-6a96-43bc-87af-02db641f7109/0/6FC857DF7FE5350A6C05A1F113F3DC2E5FE0BE11.crl rsync://repo-rpki.idnic.net/repo/4a238a62-6a96-43bc-87af-02db641f7109/0/6FC857DF7FE5350A6C05A1F113F3DC2E5FE0BE11.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6FC857DF7FE5350A6C05A1F113F3DC2E5FE0BE11.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 03:48:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:5e:35:d4:41:1b:d8:c3:82:cc:eb:6c:c1:48:bc:81:f3:62:e2:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FC857DF7FE5350A6C05A1F113F3DC2E5FE0BE11 Validity Not Before: Feb 19 13:55:01 2025 GMT Not After : Feb 18 14:00:01 2026 GMT Subject: CN=993746C044D305A3DCB008E4313B3CE7A2B13EA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:29:60:0a:cd:db:ec:9b:a6:dc:e4:a6:87:c3: 14:86:23:43:1c:73:f2:7d:c4:0c:c3:8b:c3:64:85: a1:74:9f:4e:2f:3e:9e:9c:03:7f:09:9f:32:40:49: 7e:68:7a:f8:68:43:94:48:32:b8:d0:8c:eb:c0:4a: ed:da:91:f7:78:5c:89:c0:dd:df:a4:4d:04:c6:19: b7:30:5f:a0:d1:34:b9:1d:39:dc:a3:82:32:7d:7b: 8c:03:df:79:22:ea:01:4f:87:7e:19:19:88:13:b9: 72:b9:d3:44:99:10:7a:b4:b4:8d:07:42:53:18:c7: ec:f6:41:d5:a4:8c:38:4a:a9:86:0d:f6:81:aa:5b: 9a:5f:f0:89:8d:84:95:c2:27:e8:62:3b:ba:02:a2: 4a:4f:10:64:53:da:57:13:ac:a9:f5:71:7d:43:0b: 4e:da:ab:fc:75:18:cc:c1:c0:06:3c:cb:c6:bf:d6: 0e:3e:50:58:6b:fc:49:ae:6b:7c:39:fd:28:86:70: 8c:4d:aa:08:4d:75:79:49:0e:ba:cb:fe:50:a4:a8: 18:d7:48:71:43:37:19:d5:00:d6:31:f5:f5:00:24: aa:3f:8c:aa:30:bb:e9:0e:0e:e9:17:4b:12:65:06: db:5f:c7:dd:47:10:d9:ff:94:1a:8e:3b:17:ef:8d: 47:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:37:46:C0:44:D3:05:A3:DC:B0:08:E4:31:3B:3C:E7:A2:B1:3E:A6 X509v3 Authority Key Identifier: keyid:6F:C8:57:DF:7F:E5:35:0A:6C:05:A1:F1:13:F3:DC:2E:5F:E0:BE:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a238a62-6a96-43bc-87af-02db641f7109/0/6FC857DF7FE5350A6C05A1F113F3DC2E5FE0BE11.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6FC857DF7FE5350A6C05A1F113F3DC2E5FE0BE11.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a238a62-6a96-43bc-87af-02db641f7109/0/3130332e3135392e3139342e302f32332d3234203d3e20313431313435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.194.0/23 Signature Algorithm: sha256WithRSAEncryption 75:d8:ab:ee:ad:74:3f:7c:8d:a2:b6:c7:16:4e:96:d7:6f:46: 35:c0:8e:a4:2c:d3:89:59:d4:65:3e:d4:a4:05:bf:5e:b6:3b: 4a:6f:60:ca:a1:4a:c5:04:b9:ea:0e:4f:b2:14:bd:a8:b6:08: fc:2e:76:05:f6:80:ac:20:46:d3:06:41:5e:5f:e9:c2:78:1a: 7d:d1:00:85:c7:fa:36:a2:62:d5:e6:4d:0e:68:10:0d:6c:c3: ab:14:f9:b8:04:f0:ad:12:c7:24:b0:10:e0:38:59:cc:28:9c: 9d:d0:87:c3:6c:20:67:52:f9:e0:94:46:8b:ba:36:23:8d:a2: 54:ab:35:4d:6b:8f:85:a3:bc:ba:8f:81:c2:da:59:8b:d3:93: 6e:11:10:20:b7:f5:24:4a:9f:5b:66:0a:ba:20:5b:c4:9c:27: 35:04:2d:8b:11:cf:18:7e:1a:3c:55:21:71:85:2e:9d:f4:e8: bd:ed:94:1b:fd:c5:a4:b2:6f:3a:06:f4:b9:fd:21:5c:93:c0: 40:b4:d5:92:5f:0d:7d:a0:f3:14:75:b9:39:01:84:b3:cb:d5: 41:14:3b:a8:b3:d4:5a:b0:8b:bd:af:3d:9f:22:0c:2e:c3:5b: bc:ab:0e:15:64:a5:e3:d0:66:dc:fe:28:f2:dc:73:80:43:cd: f8:1c:3c:d7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUB1411EEb2MOCzOtswUi8gfNi4q0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZDODU3REY3RkU1MzUwQTZDMDVBMUYxMTNGM0RDMkU1 RkUwQkUxMTAeFw0yNTAyMTkxMzU1MDFaFw0yNjAyMTgxNDAwMDFaMDMxMTAvBgNV BAMTKDk5Mzc0NkMwNDREMzA1QTNEQ0IwMDhFNDMxM0IzQ0U3QTJCMTNFQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4KWAKzdvsm6bc5KaHwxSGI0Mc c/J9xAzDi8NkhaF0n04vPp6cA38JnzJASX5oevhoQ5RIMrjQjOvASu3akfd4XInA 3d+kTQTGGbcwX6DRNLkdOdyjgjJ9e4wD33ki6gFPh34ZGYgTuXK500SZEHq0tI0H QlMYx+z2QdWkjDhKqYYN9oGqW5pf8ImNhJXCJ+hiO7oCokpPEGRT2lcTrKn1cX1D C07aq/x1GMzBwAY8y8a/1g4+UFhr/Emua3w5/SiGcIxNqghNdXlJDrrL/lCkqBjX SHFDNxnVANYx9fUAJKo/jKowu+kODukXSxJlBttfx91HENn/lBqOOxfvjUcNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUmTdGwETTBaPcsAjkMTs856KxPqYwHwYDVR0j BBgwFoAUb8hX33/lNQpsBaHxE/PcLl/gvhEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YTIzOGE2Mi02YTk2LTQzYmMtODdhZi0wMmRiNjQxZjcxMDkvMC82RkM4NTdERjdG RTUzNTBBNkMwNUExRjExM0YzREMyRTVGRTBCRTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkZDODU3REY3RkU1MzUwQTZDMDVBMUYxMTNGM0RDMkU1RkUw QkUxMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRhMjM4YTYyLTZhOTYtNDNiYy04 N2FmLTAyZGI2NDFmNzEwOS8wLzMxMzAzMzJlMzEzNTM5MmUzMTM5MzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzEzMTM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnn8IwDQYJ KoZIhvcNAQELBQADggEBAHXYq+6tdD98jaK2xxZOltdvRjXAjqQs04lZ1GU+1KQF v162O0pvYMqhSsUEueoOT7IUvai2CPwudgX2gKwgRtMGQV5f6cJ4Gn3RAIXH+jai YtXmTQ5oEA1sw6sU+bgE8K0SxySwEOA4WcwonJ3Qh8NsIGdS+eCURou6NiONolSr NU1rj4WjvLqPgcLaWYvTk24RECC39SRKn1tmCrogW8ScJzUELYsRzxh+GjxVIXGF Lp306L3tlBv9xaSybzoG9Ln9IVyTwEC01ZJfDX2g8xR1uTkBhLPL1UEUO6iz1Fqw i72vPZ8iDC7DW7yrDhVkpePQZtz+KPLcc4BDzfgcPNc= -----END CERTIFICATE-----Generated at Thu Apr 17 08:15:23 2025 by rpki-client