$ rpki-client -vvf repo-rpki.idnic.net/repo/837a6dd8-a843-4698-a5f3-3eec468d14a4/0/3130332e3138362e302e302f32332d3234203d3e20313336303532.roa File: 3130332e3138362e302e302f32332d3234203d3e20313336303532.roa (raw, json) Hash identifier: YlWhhG5+SXJ+RtEZrRBNLk9BnFzp5Av7c11ptEycGe4= Subject key identifier: 4E:DE:CA:CB:FC:04:9D:78:B7:10:8F:77:2B:2D:A1:9E:36:3F:F2:30 Certificate issuer: /CN=E0967549EF32D89E9FF1638FCF18347A1ADA5D70 Certificate serial: 2F1A582012E4C0ABA86DD0F057CE860B149BE4BD Authority key identifier: E0:96:75:49:EF:32:D8:9E:9F:F1:63:8F:CF:18:34:7A:1A:DA:5D:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0967549EF32D89E9FF1638FCF18347A1ADA5D70.cer Subject info access: rsync://repo-rpki.idnic.net/repo/837a6dd8-a843-4698-a5f3-3eec468d14a4/0/3130332e3138362e302e302f32332d3234203d3e20313336303532.roa Signing time: Mon 27 Jan 2025 09:02:21 +0000 ROA not before: Mon 27 Jan 2025 08:57:21 +0000 ROA not after: Mon 26 Jan 2026 09:02:21 +0000 asID: 136052 IP address blocks: 103.186.0.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/837a6dd8-a843-4698-a5f3-3eec468d14a4/0/E0967549EF32D89E9FF1638FCF18347A1ADA5D70.crl rsync://repo-rpki.idnic.net/repo/837a6dd8-a843-4698-a5f3-3eec468d14a4/0/E0967549EF32D89E9FF1638FCF18347A1ADA5D70.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0967549EF32D89E9FF1638FCF18347A1ADA5D70.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 07:52:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:1a:58:20:12:e4:c0:ab:a8:6d:d0:f0:57:ce:86:0b:14:9b:e4:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E0967549EF32D89E9FF1638FCF18347A1ADA5D70 Validity Not Before: Jan 27 08:57:21 2025 GMT Not After : Jan 26 09:02:21 2026 GMT Subject: CN=4EDECACBFC049D78B7108F772B2DA19E363FF230 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d6:fb:94:50:d8:1e:f6:41:c8:8e:71:d9:e3: 48:67:2e:52:a1:e2:9b:1c:56:08:b1:98:33:70:ec: e8:4f:9c:e2:77:f2:a9:a0:58:a7:42:1e:b4:92:d6: d3:49:ac:f0:89:a7:8c:16:7e:17:be:21:d7:6a:ce: 15:36:24:82:f9:dd:7d:cd:5e:5e:5e:9b:fc:27:f0: a5:f8:bd:bc:38:e5:0f:63:cb:e2:5f:36:cb:f6:0d: ae:b6:2b:df:13:17:2d:12:d6:57:8a:b8:18:78:03: 64:b8:f0:96:fa:9d:f6:11:1c:a8:d2:8f:a6:80:dd: 20:05:21:b1:82:28:6b:e5:8d:88:cf:cc:c7:de:57: 7c:31:c6:50:c6:c0:08:68:48:12:b7:69:b6:db:ae: 59:dc:ba:b4:00:98:0f:24:97:e8:16:5e:6d:f2:3b: a2:d9:61:a3:fa:1b:62:5d:83:73:8c:d2:1a:6e:88: 35:a4:f5:6f:23:4c:53:d9:bf:22:1b:02:1b:1f:ef: 02:35:35:26:45:db:89:84:fa:cd:3d:c1:0a:e8:13: 29:d9:58:0c:5d:bf:24:8c:47:09:25:d2:b2:ac:50: 50:63:9d:d9:85:1a:20:3b:f2:aa:04:8e:bb:ca:13: 72:87:76:1f:5e:b4:63:0f:73:b0:76:49:b4:fd:69: 4a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:DE:CA:CB:FC:04:9D:78:B7:10:8F:77:2B:2D:A1:9E:36:3F:F2:30 X509v3 Authority Key Identifier: keyid:E0:96:75:49:EF:32:D8:9E:9F:F1:63:8F:CF:18:34:7A:1A:DA:5D:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/837a6dd8-a843-4698-a5f3-3eec468d14a4/0/E0967549EF32D89E9FF1638FCF18347A1ADA5D70.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0967549EF32D89E9FF1638FCF18347A1ADA5D70.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/837a6dd8-a843-4698-a5f3-3eec468d14a4/0/3130332e3138362e302e302f32332d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.0.0/23 Signature Algorithm: sha256WithRSAEncryption a2:66:70:01:79:cb:1a:63:26:f2:ad:10:c4:ac:7b:85:3f:81: 9d:9c:56:38:3a:f0:2a:14:22:c4:dc:94:5c:24:17:61:85:ef: 7c:0a:74:b9:12:2c:d5:f7:d3:1b:95:ac:c7:24:52:aa:b9:45: 09:f2:c9:d8:fd:8f:c0:a6:59:0c:3d:03:f7:3e:0d:0c:03:11: 17:d4:cb:4d:d1:1c:2c:75:03:30:c9:1d:7a:35:73:74:2b:a0: 31:e1:c8:84:5d:09:d8:94:ef:b6:42:74:4a:4a:5a:c7:f5:f3: 26:4c:d0:cc:7e:5a:ec:ff:4f:d8:e7:08:65:81:b0:21:56:bd: 36:df:41:0c:09:ea:07:79:5d:66:47:19:02:12:dc:8b:a3:c4: 91:b0:7e:6c:9d:8d:58:60:c4:48:05:c7:3b:0a:a0:e4:04:2a: 3a:44:0c:52:2e:b7:fd:fc:06:ae:ec:f1:23:78:c0:82:60:07: da:53:80:93:04:ca:c6:ee:8d:c7:bf:87:d3:9c:54:d6:46:b1: 8d:32:d3:19:8d:1b:c7:11:5d:f3:41:ec:57:fe:ee:ad:1e:57: ac:eb:c3:c0:6e:0d:6a:e2:2c:c0:02:bc:c0:ba:fa:4a:87:92: 54:e1:2e:d8:02:38:cb:78:74:25:7d:69:f4:cf:b9:57:bd:fc: c4:9c:3b:e4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULxpYIBLkwKuobdDwV86GCxSb5L0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTA5Njc1NDlFRjMyRDg5RTlGRjE2MzhGQ0YxODM0N0Ex QURBNUQ3MDAeFw0yNTAxMjcwODU3MjFaFw0yNjAxMjYwOTAyMjFaMDMxMTAvBgNV BAMTKDRFREVDQUNCRkMwNDlENzhCNzEwOEY3NzJCMkRBMTlFMzYzRkYyMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC91vuUUNge9kHIjnHZ40hnLlKh 4pscVgixmDNw7OhPnOJ38qmgWKdCHrSS1tNJrPCJp4wWfhe+IddqzhU2JIL53X3N Xl5em/wn8KX4vbw45Q9jy+JfNsv2Da62K98TFy0S1leKuBh4A2S48Jb6nfYRHKjS j6aA3SAFIbGCKGvljYjPzMfeV3wxxlDGwAhoSBK3abbbrlncurQAmA8kl+gWXm3y O6LZYaP6G2Jdg3OM0hpuiDWk9W8jTFPZvyIbAhsf7wI1NSZF24mE+s09wQroEynZ WAxdvySMRwkl0rKsUFBjndmFGiA78qoEjrvKE3KHdh9etGMPc7B2SbT9aUqTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUTt7Ky/wEnXi3EI93Ky2hnjY/8jAwHwYDVR0j BBgwFoAU4JZ1Se8y2J6f8WOPzxg0ehraXXAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MzdhNmRkOC1hODQzLTQ2OTgtYTVmMy0zZWVjNDY4ZDE0YTQvMC9FMDk2NzU0OUVG MzJEODlFOUZGMTYzOEZDRjE4MzQ3QTFBREE1RDcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTA5Njc1NDlFRjMyRDg5RTlGRjE2MzhGQ0YxODM0N0ExQURB NUQ3MC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzN2E2ZGQ4LWE4NDMtNDY5OC1h NWYzLTNlZWM0NjhkMTRhNC8wLzMxMzAzMzJlMzEzODM2MmUzMDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzNjMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWe6ADANBgkqhkiG 9w0BAQsFAAOCAQEAomZwAXnLGmMm8q0QxKx7hT+BnZxWODrwKhQixNyUXCQXYYXv fAp0uRIs1ffTG5WsxyRSqrlFCfLJ2P2PwKZZDD0D9z4NDAMRF9TLTdEcLHUDMMkd ejVzdCugMeHIhF0J2JTvtkJ0Skpax/XzJkzQzH5a7P9P2OcIZYGwIVa9Nt9BDAnq B3ldZkcZAhLci6PEkbB+bJ2NWGDESAXHOwqg5AQqOkQMUi63/fwGruzxI3jAgmAH 2lOAkwTKxu6Nx7+H05xU1kaxjTLTGY0bxxFd80HsV/7urR5XrOvDwG4NauIswAK8 wLr6SoeSVOEu2AI4y3h0JX1p9M+5V738xJw75A== -----END CERTIFICATE-----Generated at Sun Apr 6 23:03:06 2025 by rpki-client