$ rpki-client -vvf repo-rpki.idnic.net/repo/82f6c516-ef11-4c15-8b33-2eb10403043b/0/3130332e3138392e3136352e302f32342d3234203d3e20313439373534.roa File: 3130332e3138392e3136352e302f32342d3234203d3e20313439373534.roa (raw, json) Hash identifier: wShX4HwUIYNF3iyYYyGTfjxRGOOJsJ+YgSdcOfkVc6Q= Subject key identifier: FA:86:77:92:FF:C5:E7:24:F8:7C:82:67:B8:57:5B:F4:65:28:9C:E7 Certificate issuer: /CN=A203777786215EACE763209954A241380D9D9512 Certificate serial: 4ECD6A088D4C3C37B66B186F0583F17B43780F20 Authority key identifier: A2:03:77:77:86:21:5E:AC:E7:63:20:99:54:A2:41:38:0D:9D:95:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A203777786215EACE763209954A241380D9D9512.cer Subject info access: rsync://repo-rpki.idnic.net/repo/82f6c516-ef11-4c15-8b33-2eb10403043b/0/3130332e3138392e3136352e302f32342d3234203d3e20313439373534.roa Signing time: Mon 24 Mar 2025 10:00:00 +0000 ROA not before: Mon 24 Mar 2025 09:55:00 +0000 ROA not after: Mon 23 Mar 2026 10:00:00 +0000 asID: 149754 IP address blocks: 103.189.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/82f6c516-ef11-4c15-8b33-2eb10403043b/0/A203777786215EACE763209954A241380D9D9512.crl rsync://repo-rpki.idnic.net/repo/82f6c516-ef11-4c15-8b33-2eb10403043b/0/A203777786215EACE763209954A241380D9D9512.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A203777786215EACE763209954A241380D9D9512.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 00:32:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:cd:6a:08:8d:4c:3c:37:b6:6b:18:6f:05:83:f1:7b:43:78:0f:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A203777786215EACE763209954A241380D9D9512 Validity Not Before: Mar 24 09:55:00 2025 GMT Not After : Mar 23 10:00:00 2026 GMT Subject: CN=FA867792FFC5E724F87C8267B8575BF465289CE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:fa:30:c3:95:8d:e2:58:67:8a:82:bc:e6:88: c5:91:8b:e4:0d:a5:55:1b:f7:91:e3:36:c7:29:91: 89:9e:85:8d:8d:c1:ba:e1:69:8f:91:6e:48:af:76: cd:71:42:d0:c0:0a:12:8c:49:9e:6f:53:01:b6:74: 14:c6:57:0e:f9:e1:db:30:01:3e:57:d3:c9:c2:db: 3f:e5:87:85:64:13:a6:7d:38:c0:70:ae:ce:dd:47: b3:86:4f:8a:04:4a:b3:52:d0:05:cb:4c:68:4b:f7: d4:c6:f6:43:63:c5:b2:a3:96:b0:ab:c8:7d:2a:4f: 77:be:78:4e:a2:1c:fd:9c:12:a5:f6:ac:f4:27:1b: 0d:22:80:01:3c:d7:6c:5f:2b:a9:57:64:41:3e:3c: d2:19:0b:53:4a:8c:78:f8:b8:b1:0c:04:ed:76:13: 0a:f7:c5:65:14:ab:90:34:28:bf:c8:77:c2:bf:04: 2e:17:22:b3:11:e5:86:8d:b9:03:9c:77:11:d2:2f: 30:fd:1a:15:75:72:a5:d7:51:2e:02:d9:0b:0c:2d: 86:ad:e2:ae:cd:52:95:96:48:18:ed:4e:ed:e1:d3: 9e:4f:91:6a:d6:6b:fc:2b:74:82:df:4c:16:fe:ff: dd:95:1d:5d:51:14:9e:79:1b:76:2d:28:0d:e9:7e: a7:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:86:77:92:FF:C5:E7:24:F8:7C:82:67:B8:57:5B:F4:65:28:9C:E7 X509v3 Authority Key Identifier: keyid:A2:03:77:77:86:21:5E:AC:E7:63:20:99:54:A2:41:38:0D:9D:95:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/82f6c516-ef11-4c15-8b33-2eb10403043b/0/A203777786215EACE763209954A241380D9D9512.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A203777786215EACE763209954A241380D9D9512.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/82f6c516-ef11-4c15-8b33-2eb10403043b/0/3130332e3138392e3136352e302f32342d3234203d3e20313439373534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.165.0/24 Signature Algorithm: sha256WithRSAEncryption d4:00:11:c3:f4:5f:31:bf:06:de:14:ec:72:74:6e:ad:8a:9b: 58:60:93:23:60:51:34:1c:41:d3:35:35:21:c4:e5:ed:3d:85: fa:33:33:b1:38:f0:17:49:2a:06:4f:de:8a:26:0b:58:0b:fb: e8:2f:0f:bb:ab:33:77:d0:43:6e:fd:ad:a7:2c:51:b9:c3:53: 7f:17:29:2f:66:1d:ec:c1:15:95:f0:9d:e6:77:f5:c4:9e:09: 70:97:a3:ef:b3:0c:7a:08:1d:3b:e0:ee:23:1c:89:13:ad:35: 94:60:ae:15:8d:cf:fc:75:ab:bc:53:67:c1:ed:44:49:17:0c: 72:7f:07:6b:5c:b1:a2:61:1d:54:62:ec:91:9b:06:60:18:8b: 78:71:1f:10:23:74:92:e7:a3:27:c1:9d:5d:c4:61:81:04:69: 7c:a9:a0:52:ad:8b:51:8c:55:d3:4c:aa:6b:c8:06:f5:23:c7: a0:a6:f2:98:f3:f2:af:d7:91:39:df:a8:be:cc:6d:62:a7:41: 84:41:31:86:5b:d1:42:ee:d2:97:a2:5d:3c:14:d7:28:3a:22: cf:c1:a8:2d:bf:77:e2:82:5f:94:b7:d6:dd:f5:6e:6b:3d:ed: 61:41:fa:26:40:23:49:a8:17:1f:5f:47:b3:3f:bd:7d:b5:7b: cd:67:df:55 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTs1qCI1MPDe2axhvBYPxe0N4DyAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTIwMzc3Nzc4NjIxNUVBQ0U3NjMyMDk5NTRBMjQxMzgw RDlEOTUxMjAeFw0yNTAzMjQwOTU1MDBaFw0yNjAzMjMxMDAwMDBaMDMxMTAvBgNV BAMTKEZBODY3NzkyRkZDNUU3MjRGODdDODI2N0I4NTc1QkY0NjUyODlDRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD8+jDDlY3iWGeKgrzmiMWRi+QN pVUb95HjNscpkYmehY2NwbrhaY+Rbkivds1xQtDAChKMSZ5vUwG2dBTGVw754dsw AT5X08nC2z/lh4VkE6Z9OMBwrs7dR7OGT4oESrNS0AXLTGhL99TG9kNjxbKjlrCr yH0qT3e+eE6iHP2cEqX2rPQnGw0igAE812xfK6lXZEE+PNIZC1NKjHj4uLEMBO12 Ewr3xWUUq5A0KL/Id8K/BC4XIrMR5YaNuQOcdxHSLzD9GhV1cqXXUS4C2QsMLYat 4q7NUpWWSBjtTu3h055PkWrWa/wrdILfTBb+/92VHV1RFJ55G3YtKA3pfqfDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU+oZ3kv/F5yT4fIJnuFdb9GUonOcwHwYDVR0j BBgwFoAUogN3d4YhXqznYyCZVKJBOA2dlRIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MmY2YzUxNi1lZjExLTRjMTUtOGIzMy0yZWIxMDQwMzA0M2IvMC9BMjAzNzc3Nzg2 MjE1RUFDRTc2MzIwOTk1NEEyNDEzODBEOUQ5NTEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTIwMzc3Nzc4NjIxNUVBQ0U3NjMyMDk5NTRBMjQxMzgwRDlE OTUxMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgyZjZjNTE2LWVmMTEtNGMxNS04 YjMzLTJlYjEwNDAzMDQzYi8wLzMxMzAzMzJlMzEzODM5MmUzMTM2MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzM1MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvaUwDQYJ KoZIhvcNAQELBQADggEBANQAEcP0XzG/Bt4U7HJ0bq2Km1hgkyNgUTQcQdM1NSHE 5e09hfozM7E48BdJKgZP3oomC1gL++gvD7urM3fQQ279racsUbnDU38XKS9mHezB FZXwneZ39cSeCXCXo++zDHoIHTvg7iMciROtNZRgrhWNz/x1q7xTZ8HtREkXDHJ/ B2tcsaJhHVRi7JGbBmAYi3hxHxAjdJLnoyfBnV3EYYEEaXypoFKti1GMVdNMqmvI BvUjx6Cm8pjz8q/XkTnfqL7MbWKnQYRBMYZb0ULu0peiXTwU1yg6Is/BqC2/d+KC X5S31t31bms97WFB+iZAI0moFx9fR7M/vX21e81n31U= -----END CERTIFICATE-----Generated at Sun Apr 6 11:10:44 2025 by rpki-client