$ rpki-client -vvf repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0/3130332e3136382e3139302e302f32342d3234203d3e20313432333139.roa File: 3130332e3136382e3139302e302f32342d3234203d3e20313432333139.roa (raw, json) Hash identifier: /4nmgLfcCNw5dynQDZtGk4IBxc3BmveSB9gkF4R0RCk= Subject key identifier: 94:B1:AA:3A:32:EA:63:03:22:AE:78:A6:50:F1:DD:1A:DC:AF:81:41 Certificate issuer: /CN=8DAFDBD814B60F568505D65130E4661FCD7D665F Certificate serial: 0D4A261A602EABCC50A27FBACAD332B8B73675DF Authority key identifier: 8D:AF:DB:D8:14:B6:0F:56:85:05:D6:51:30:E4:66:1F:CD:7D:66:5F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DAFDBD814B60F568505D65130E4661FCD7D665F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0/3130332e3136382e3139302e302f32342d3234203d3e20313432333139.roa Signing time: Sun 18 May 2025 02:00:02 +0000 ROA not before: Sun 18 May 2025 01:55:02 +0000 ROA not after: Sun 17 May 2026 02:00:02 +0000 asID: 142319 IP address blocks: 103.168.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0/8DAFDBD814B60F568505D65130E4661FCD7D665F.crl rsync://repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0/8DAFDBD814B60F568505D65130E4661FCD7D665F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DAFDBD814B60F568505D65130E4661FCD7D665F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 15:44:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:4a:26:1a:60:2e:ab:cc:50:a2:7f:ba:ca:d3:32:b8:b7:36:75:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DAFDBD814B60F568505D65130E4661FCD7D665F Validity Not Before: May 18 01:55:02 2025 GMT Not After : May 17 02:00:02 2026 GMT Subject: CN=94B1AA3A32EA630322AE78A650F1DD1ADCAF8141 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e7:17:59:9f:19:73:e2:3c:91:b6:0a:28:cc: 43:5c:59:dd:02:06:6e:be:55:07:ab:60:e2:65:c7: 83:e5:5c:e6:53:53:45:e3:dd:e0:f8:82:80:e1:05: 8d:70:25:45:14:d1:8a:d9:b4:6c:05:bf:14:2d:28: 2f:48:40:d1:7e:c4:61:85:80:83:ae:5e:4c:44:18: a3:25:6c:76:1d:ef:89:c0:5b:50:c3:de:e0:10:41: 52:09:e5:ee:b1:f3:94:b6:bc:ce:1a:fd:e8:78:44: 27:ac:df:15:e0:3c:00:9f:24:3d:bb:db:43:30:a5: f9:11:aa:65:08:bb:a4:3f:36:68:1e:d2:18:bf:e9: dc:7c:be:aa:90:d0:e0:69:8f:3c:75:74:68:35:b5: 33:7b:51:2f:e1:96:1b:7f:70:6f:ee:49:c6:b8:f9: 62:2c:98:25:e5:ea:05:14:22:32:53:8d:ca:ce:49: 1e:67:95:ad:c6:fd:d1:14:2b:f6:e7:a0:bc:2e:98: f5:43:cb:c7:7f:79:ba:86:ac:fd:d3:ba:3e:bd:34: bd:18:59:97:0f:62:7c:08:fa:00:a8:4f:65:ad:e7: 5e:23:1b:30:e3:6b:3d:30:52:b4:b4:4b:9e:01:2e: e5:88:61:81:5e:8a:76:aa:16:a6:9f:44:3d:ac:28: 73:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:B1:AA:3A:32:EA:63:03:22:AE:78:A6:50:F1:DD:1A:DC:AF:81:41 X509v3 Authority Key Identifier: keyid:8D:AF:DB:D8:14:B6:0F:56:85:05:D6:51:30:E4:66:1F:CD:7D:66:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0/8DAFDBD814B60F568505D65130E4661FCD7D665F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DAFDBD814B60F568505D65130E4661FCD7D665F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0/3130332e3136382e3139302e302f32342d3234203d3e20313432333139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.190.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:61:9b:08:a1:e8:85:2a:5b:97:d9:d7:f1:bd:5a:f9:76:5d: b6:2b:d5:98:be:00:8a:b1:7a:82:16:29:ee:7d:4b:fc:57:8b: 56:2c:dd:3c:2f:d2:21:e2:ae:ff:49:4e:a1:eb:cd:fc:13:40: c4:73:57:ce:e2:ea:48:cb:a7:9a:69:ab:a8:b3:da:cb:1d:dc: 78:60:a9:6d:73:df:f4:0b:03:e8:65:ef:0f:7e:a3:ce:bd:ca: f5:7d:a3:4f:b6:59:70:05:de:b1:97:ca:f1:6a:02:60:c7:04: b1:22:c0:ab:2a:a8:61:d4:02:a9:f9:cf:33:25:0a:2b:64:92: 0a:6a:99:b6:76:16:bb:97:9d:1c:e0:f7:7f:18:1c:9d:e8:e6: a5:23:06:07:1f:83:f9:70:99:9c:4e:40:63:aa:57:fa:36:ad: ae:c3:79:06:f0:d8:73:c0:64:6f:c7:3f:25:ad:3e:17:70:12: 0e:08:71:1b:c4:5d:a0:33:eb:c6:ea:8c:e6:28:f2:3c:0f:57: 5b:cc:06:b5:62:f3:30:ca:d6:d6:f2:91:29:83:ae:5e:01:e8: 0f:35:d5:0a:b2:74:c3:9e:84:79:8e:04:b2:b8:ea:48:53:40: 28:68:98:dc:f3:80:a1:f4:6a:81:04:7d:b5:36:97:61:74:40: 7f:56:6f:24 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDUomGmAuq8xQon+6ytMyuLc2dd8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERBRkRCRDgxNEI2MEY1Njg1MDVENjUxMzBFNDY2MUZD RDdENjY1RjAeFw0yNTA1MTgwMTU1MDJaFw0yNjA1MTcwMjAwMDJaMDMxMTAvBgNV BAMTKDk0QjFBQTNBMzJFQTYzMDMyMkFFNzhBNjUwRjFERDFBRENBRjgxNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk5xdZnxlz4jyRtgoozENcWd0C Bm6+VQerYOJlx4PlXOZTU0Xj3eD4goDhBY1wJUUU0YrZtGwFvxQtKC9IQNF+xGGF gIOuXkxEGKMlbHYd74nAW1DD3uAQQVIJ5e6x85S2vM4a/eh4RCes3xXgPACfJD27 20MwpfkRqmUIu6Q/Nmge0hi/6dx8vqqQ0OBpjzx1dGg1tTN7US/hlht/cG/uSca4 +WIsmCXl6gUUIjJTjcrOSR5nla3G/dEUK/bnoLwumPVDy8d/ebqGrP3Tuj69NL0Y WZcPYnwI+gCoT2Wt514jGzDjaz0wUrS0S54BLuWIYYFeinaqFqafRD2sKHN3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUlLGqOjLqYwMirnimUPHdGtyvgUEwHwYDVR0j BBgwFoAUja/b2BS2D1aFBdZRMORmH819Zl8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTliMGJhZC02NmI5LTRmMjgtYTdjNS1lOWE5ZmUxMjBhZDcvMC84REFGREJEODE0 QjYwRjU2ODUwNUQ2NTEzMEU0NjYxRkNEN0Q2NjVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERBRkRCRDgxNEI2MEY1Njg1MDVENjUxMzBFNDY2MUZDRDdE NjY1Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlOWIwYmFkLTY2YjktNGYyOC1h N2M1LWU5YTlmZTEyMGFkNy8wLzMxMzAzMzJlMzEzNjM4MmUzMTM5MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzMxMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqL4wDQYJ KoZIhvcNAQELBQADggEBAJphmwih6IUqW5fZ1/G9Wvl2XbYr1Zi+AIqxeoIWKe59 S/xXi1Ys3Twv0iHirv9JTqHrzfwTQMRzV87i6kjLp5ppq6iz2ssd3HhgqW1z3/QL A+hl7w9+o869yvV9o0+2WXAF3rGXyvFqAmDHBLEiwKsqqGHUAqn5zzMlCitkkgpq mbZ2FruXnRzg938YHJ3o5qUjBgcfg/lwmZxOQGOqV/o2ra7DeQbw2HPAZG/HPyWt PhdwEg4IcRvEXaAz68bqjOYo8jwPV1vMBrVi8zDK1tbykSmDrl4B6A811QqydMOe hHmOBLK46khTQChomNzzgKH0aoEEfbU2l2F0QH9WbyQ= -----END CERTIFICATE-----Generated at Thu Jun 5 18:22:33 2025 by rpki-client