$ rpki-client -vvf repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/3130332e3132342e3234362e302f32342d3234203d3e20313338303930.roa File: 3130332e3132342e3234362e302f32342d3234203d3e20313338303930.roa (raw, json) Hash identifier: AFR0edy2SHetpvZoQe2ubb0WOVaatbTPgTEPsgvzJTQ= Subject key identifier: A9:3D:4E:A8:1D:EE:74:3E:63:EA:DE:D2:E5:2B:EC:4C:2F:6C:76:CF Certificate issuer: /CN=9D25181C9096851A77EB95DA55649E08E3B7941B Certificate serial: 654A7417A1A339AF1C25505BECBFA0DD13940836 Authority key identifier: 9D:25:18:1C:90:96:85:1A:77:EB:95:DA:55:64:9E:08:E3:B7:94:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9D25181C9096851A77EB95DA55649E08E3B7941B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/3130332e3132342e3234362e302f32342d3234203d3e20313338303930.roa Signing time: Thu 03 Apr 2025 02:00:00 +0000 ROA not before: Thu 03 Apr 2025 01:55:00 +0000 ROA not after: Thu 02 Apr 2026 02:00:00 +0000 asID: 138090 IP address blocks: 103.124.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/9D25181C9096851A77EB95DA55649E08E3B7941B.crl rsync://repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/9D25181C9096851A77EB95DA55649E08E3B7941B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9D25181C9096851A77EB95DA55649E08E3B7941B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 10:40:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:4a:74:17:a1:a3:39:af:1c:25:50:5b:ec:bf:a0:dd:13:94:08:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D25181C9096851A77EB95DA55649E08E3B7941B Validity Not Before: Apr 3 01:55:00 2025 GMT Not After : Apr 2 02:00:00 2026 GMT Subject: CN=A93D4EA81DEE743E63EADED2E52BEC4C2F6C76CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:95:87:60:32:c7:a9:ce:71:1b:f1:66:1c:40: 88:e2:a1:d3:cd:df:59:39:60:ac:71:88:6f:58:99: f0:d4:27:99:1f:24:07:cd:51:11:79:b1:f6:dd:03: d5:ac:b2:bd:16:2d:2b:4c:ad:57:72:40:20:ce:cc: 71:47:d5:d0:f1:98:f7:b5:cb:14:ca:92:ee:73:0e: 98:91:2f:92:79:74:ca:e3:03:d2:da:0f:b8:a5:1c: 51:05:16:90:16:fc:9c:0a:44:81:67:01:fa:c1:5b: db:ee:e0:7f:47:ae:9a:33:7d:b5:f3:29:9e:c1:82: 70:cc:30:e4:17:f7:78:e0:85:66:3d:73:e5:9b:e7: 03:c3:6e:a2:8c:da:3c:0e:71:1a:69:70:d4:4c:31: b1:28:4e:1c:4c:5d:4e:49:0e:b8:fd:d1:c0:f4:3e: e2:09:89:cc:5c:19:cd:79:e5:51:d8:b9:60:03:80: f0:22:c6:f3:5b:b8:f8:31:85:f7:3f:7d:45:3a:80: f4:e4:5e:a0:92:5c:61:f0:a8:e4:f3:42:98:eb:90: 93:37:4d:85:6c:46:fd:51:8f:a0:cb:38:9f:e0:93: 8f:b8:d2:95:01:6c:21:d5:82:6f:a9:73:28:2c:a8: 20:e6:b9:c0:3f:45:a4:f0:1a:01:61:e5:44:19:65: 27:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:3D:4E:A8:1D:EE:74:3E:63:EA:DE:D2:E5:2B:EC:4C:2F:6C:76:CF X509v3 Authority Key Identifier: keyid:9D:25:18:1C:90:96:85:1A:77:EB:95:DA:55:64:9E:08:E3:B7:94:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/9D25181C9096851A77EB95DA55649E08E3B7941B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9D25181C9096851A77EB95DA55649E08E3B7941B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/3130332e3132342e3234362e302f32342d3234203d3e20313338303930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.246.0/24 Signature Algorithm: sha256WithRSAEncryption 75:4b:bc:08:15:69:30:fd:fd:ed:28:20:55:b7:4f:04:a9:10: fb:31:45:f9:40:69:66:05:80:98:05:f5:8a:e7:00:44:1b:6e: 3a:e2:7e:27:98:57:3b:8c:92:4f:c3:53:de:6a:53:0b:11:a1: 4d:bc:f6:c2:b6:a5:2e:ef:e7:0b:1f:be:4c:13:70:46:9c:4e: ba:cd:d4:ee:b7:98:2e:1c:a1:88:1e:e9:42:45:da:66:4f:26: a0:42:9e:b2:46:4e:ec:3a:fc:5f:52:3c:49:1b:92:8b:b4:12: 45:68:b7:3a:85:14:8f:f8:b2:af:f2:57:b1:28:4b:b6:3f:50: 7f:cd:0e:5b:c0:c3:14:87:9f:26:c8:ff:55:a6:20:e8:82:18: 9d:b0:14:a5:93:38:15:7f:ff:e5:fd:a7:99:db:f2:55:87:e4: 1e:05:c7:6a:04:15:aa:62:09:79:a8:1a:56:11:a0:ac:8b:c3: ff:b9:0a:16:52:93:72:5a:9b:3c:86:76:bd:73:0c:6b:7b:6c: a6:b8:5b:ae:88:22:04:ce:68:44:ad:63:ee:04:3c:a4:77:48: 5b:4d:bc:15:de:87:fa:0e:9e:e8:b3:0f:f1:fe:2b:5c:71:b7: 8c:d0:2c:f8:15:af:03:ed:95:d0:59:ae:88:01:36:07:4e:75: 7f:87:e6:5e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZUp0F6GjOa8cJVBb7L+g3ROUCDYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQyNTE4MUM5MDk2ODUxQTc3RUI5NURBNTU2NDlFMDhF M0I3OTQxQjAeFw0yNTA0MDMwMTU1MDBaFw0yNjA0MDIwMjAwMDBaMDMxMTAvBgNV BAMTKEE5M0Q0RUE4MURFRTc0M0U2M0VBREVEMkU1MkJFQzRDMkY2Qzc2Q0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDClYdgMsepznEb8WYcQIjiodPN 31k5YKxxiG9YmfDUJ5kfJAfNURF5sfbdA9Wssr0WLStMrVdyQCDOzHFH1dDxmPe1 yxTKku5zDpiRL5J5dMrjA9LaD7ilHFEFFpAW/JwKRIFnAfrBW9vu4H9HrpozfbXz KZ7BgnDMMOQX93jghWY9c+Wb5wPDbqKM2jwOcRppcNRMMbEoThxMXU5JDrj90cD0 PuIJicxcGc155VHYuWADgPAixvNbuPgxhfc/fUU6gPTkXqCSXGHwqOTzQpjrkJM3 TYVsRv1Rj6DLOJ/gk4+40pUBbCHVgm+pcygsqCDmucA/RaTwGgFh5UQZZSdpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUqT1OqB3udD5j6t7S5SvsTC9sds8wHwYDVR0j BBgwFoAUnSUYHJCWhRp365XaVWSeCOO3lBswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTJjOTI4NS1jMDlhLTQ1MDYtYTMyMC1mZGExYTA3ZmQ5ZWMvMC85RDI1MTgxQzkw OTY4NTFBNzdFQjk1REE1NTY0OUUwOEUzQjc5NDFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUQyNTE4MUM5MDk2ODUxQTc3RUI5NURBNTU2NDlFMDhFM0I3 OTQxQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlMmM5Mjg1LWMwOWEtNDUwNi1h MzIwLWZkYTFhMDdmZDllYy8wLzMxMzAzMzJlMzEzMjM0MmUzMjM0MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM5MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfPYwDQYJ KoZIhvcNAQELBQADggEBAHVLvAgVaTD9/e0oIFW3TwSpEPsxRflAaWYFgJgF9Yrn AEQbbjrifieYVzuMkk/DU95qUwsRoU289sK2pS7v5wsfvkwTcEacTrrN1O63mC4c oYge6UJF2mZPJqBCnrJGTuw6/F9SPEkbkou0EkVotzqFFI/4sq/yV7EoS7Y/UH/N DlvAwxSHnybI/1WmIOiCGJ2wFKWTOBV//+X9p5nb8lWH5B4Fx2oEFapiCXmoGlYR oKyLw/+5ChZSk3JamzyGdr1zDGt7bKa4W66IIgTOaEStY+4EPKR3SFtNvBXeh/oO nuizD/H+K1xxt4zQLPgVrwPtldBZrogBNgdOdX+H5l4= -----END CERTIFICATE-----Generated at Sun Apr 6 13:56:47 2025 by rpki-client