$ rpki-client -vvf repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/3130332e36392e3130362e302f32332d3233203d3e20313437303837.roa File: 3130332e36392e3130362e302f32332d3233203d3e20313437303837.roa (raw, json) Hash identifier: vX6oIYot0ycD+h0R9asR+LMCFZ+FsK/gdUHsH6J7G3g= Subject key identifier: 2A:FA:B6:4B:DC:A9:D7:E5:FF:D2:58:5D:27:B7:08:F5:03:94:09:00 Certificate issuer: /CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Certificate serial: 2C1400E5C8EFC57530693CC9034EAFD51A227A10 Authority key identifier: 35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/3130332e36392e3130362e302f32332d3233203d3e20313437303837.roa Signing time: Fri 28 Mar 2025 11:00:00 +0000 ROA not before: Fri 28 Mar 2025 10:55:00 +0000 ROA not after: Fri 27 Mar 2026 11:00:00 +0000 asID: 147087 IP address blocks: 103.69.106.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Apr 2025 14:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:14:00:e5:c8:ef:c5:75:30:69:3c:c9:03:4e:af:d5:1a:22:7a:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Validity Not Before: Mar 28 10:55:00 2025 GMT Not After : Mar 27 11:00:00 2026 GMT Subject: CN=2AFAB64BDCA9D7E5FFD2585D27B708F503940900 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:7d:eb:6e:81:46:0b:46:3f:35:66:6f:58:50: 18:18:2d:ac:c9:c0:8e:0a:f2:8b:b3:bc:79:92:4a: 5d:90:35:49:f3:6f:c9:a9:6e:2d:a1:fd:2b:69:00: 53:a8:bd:94:72:07:91:50:f6:4f:78:32:27:4b:cb: 45:96:0a:37:e3:ca:74:05:82:37:87:71:39:ce:c9: 33:95:03:1d:b7:c9:09:57:ca:42:f4:ce:f0:0e:01: 4f:8c:3e:ba:c6:67:23:c1:2f:00:19:f6:be:18:ef: ed:c4:ab:e9:c7:eb:da:cb:d8:4c:eb:68:61:a0:37: b3:1f:81:df:22:58:2e:a5:db:b8:94:29:35:93:72: 1a:e1:39:d7:24:15:f1:48:4e:41:75:b5:0b:ad:8f: c4:15:b0:0e:22:e0:22:d4:04:ed:2f:68:57:20:00: 13:0b:5e:f7:de:6e:34:ff:7b:c0:f3:78:4f:cf:55: 16:a4:26:3f:c9:1e:c5:c9:eb:80:01:dc:f7:19:af: 92:75:78:4a:6f:b0:9b:b5:6c:31:7e:fe:a9:1d:5b: 38:76:88:50:43:42:72:55:95:10:c8:3c:1c:fb:46: 40:aa:b6:b1:3b:26:1c:c7:3c:51:86:a0:84:22:0f: d3:52:b0:fc:b6:a9:3f:1b:4b:42:d4:c6:f1:c0:35: 34:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:FA:B6:4B:DC:A9:D7:E5:FF:D2:58:5D:27:B7:08:F5:03:94:09:00 X509v3 Authority Key Identifier: keyid:35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/3130332e36392e3130362e302f32332d3233203d3e20313437303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.69.106.0/23 Signature Algorithm: sha256WithRSAEncryption 76:dc:62:b1:35:07:57:ea:04:4c:1b:3b:5b:71:d9:d2:6a:7e: 49:53:b0:ff:f4:ab:1b:3e:b7:23:fc:23:bc:d9:02:4e:d1:f9: 11:6e:fc:4b:16:a1:12:f5:74:e4:a2:a4:8e:02:19:de:ac:22: 53:95:ca:dd:e4:37:2b:3a:6a:0c:d6:4d:11:8b:fb:60:c8:a3: b7:d8:7c:a3:16:b8:c8:9d:33:fe:5a:38:a8:bd:57:dd:f9:f8: 7c:a8:88:7b:86:7f:12:ce:d1:86:71:2e:78:27:eb:10:b8:9e: 01:d5:25:db:fd:52:26:65:aa:e6:f8:30:53:66:c6:1a:ea:8c: 06:f2:f0:8e:dd:c3:f2:1b:27:5c:79:9e:68:05:55:b0:e7:5a: 8a:00:08:a2:be:1a:f2:27:bc:3c:e7:a8:2d:22:da:e1:ad:8d: 8d:f6:c1:34:24:a3:5b:ca:92:0c:8d:14:4f:b8:cd:01:70:a5: 97:56:fe:b5:f4:15:2d:52:33:50:e1:8d:b8:ec:82:6c:d2:db: d9:c5:14:9e:9d:5b:07:76:db:e5:1b:db:e6:cc:a7:f7:09:b2: 9d:3a:7f:d8:94:ec:bf:0f:9a:4f:7b:7e:5c:18:ec:f2:ee:30: 5e:a0:5d:7f:87:73:3a:52:ad:99:8b:85:72:69:e6:e0:78:39: 1a:d0:1c:bd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULBQA5cjvxXUwaTzJA06v1RoiehAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1 RkM4RTBDNzAeFw0yNTAzMjgxMDU1MDBaFw0yNjAzMjcxMTAwMDBaMDMxMTAvBgNV BAMTKDJBRkFCNjRCRENBOUQ3RTVGRkQyNTg1RDI3QjcwOEY1MDM5NDA5MDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjfetugUYLRj81Zm9YUBgYLazJ wI4K8ouzvHmSSl2QNUnzb8mpbi2h/StpAFOovZRyB5FQ9k94MidLy0WWCjfjynQF gjeHcTnOyTOVAx23yQlXykL0zvAOAU+MPrrGZyPBLwAZ9r4Y7+3Eq+nH69rL2Ezr aGGgN7Mfgd8iWC6l27iUKTWTchrhOdckFfFITkF1tQutj8QVsA4i4CLUBO0vaFcg ABMLXvfebjT/e8DzeE/PVRakJj/JHsXJ64AB3PcZr5J1eEpvsJu1bDF+/qkdWzh2 iFBDQnJVlRDIPBz7RkCqtrE7JhzHPFGGoIQiD9NSsPy2qT8bS0LUxvHANTTxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKvq2S9yp1+X/0lhdJ7cI9QOUCQAwHwYDVR0j BBgwFoAUNbWJIk1kFWLQz+IBn3M6ll/I4McwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWUyZWJkZS02MzExLTQ4OGEtODJiNy05ZDRjMDU1MzA5ODcvMC8zNUI1ODkyMjRE NjQxNTYyRDBDRkUyMDE5RjczM0E5NjVGQzhFMEM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1RkM4 RTBDNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhZTJlYmRlLTYzMTEtNDg4YS04 MmI3LTlkNGMwNTUzMDk4Ny8wLzMxMzAzMzJlMzYzOTJlMzEzMDM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDM3MzAzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ0VqMA0GCSqG SIb3DQEBCwUAA4IBAQB23GKxNQdX6gRMGztbcdnSan5JU7D/9KsbPrcj/CO82QJO 0fkRbvxLFqES9XTkoqSOAhnerCJTlcrd5DcrOmoM1k0Ri/tgyKO32HyjFrjInTP+ WjiovVfd+fh8qIh7hn8SztGGcS54J+sQuJ4B1SXb/VImZarm+DBTZsYa6owG8vCO 3cPyGydceZ5oBVWw51qKAAiivhryJ7w856gtItrhrY2N9sE0JKNbypIMjRRPuM0B cKWXVv619BUtUjNQ4Y247IJs0tvZxRSenVsHdtvlG9vmzKf3CbKdOn/YlOy/D5pP e35cGOzy7jBeoF1/h3M6Uq2Zi4VyaebgeDka0By9 -----END CERTIFICATE-----Generated at Tue Apr 22 15:34:32 2025 by rpki-client