$ rpki-client -vvf repo-rpki.idnic.net/repo/886df791-0079-45f6-aa93-4c3a24305d85/0/3130332e3138362e31302e302f32332d3234203d3e2034383030.roa File: 3130332e3138362e31302e302f32332d3234203d3e2034383030.roa (raw, json) Hash identifier: IbiWK5270mwHrnB6XT0JomBYqQc1q1mQYDwwzYu+Fp8= Subject key identifier: F4:3E:C1:B2:26:8F:FE:B9:2C:6D:48:C6:15:79:55:AB:F6:12:91:A0 Certificate issuer: /CN=5A6B1428A87238DC9DA9B92890E1C9BF60CC094E Certificate serial: 0AE00A4A936E0BFD2E79DE033F26FBCEB92952BD Authority key identifier: 5A:6B:14:28:A8:72:38:DC:9D:A9:B9:28:90:E1:C9:BF:60:CC:09:4E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A6B1428A87238DC9DA9B92890E1C9BF60CC094E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/886df791-0079-45f6-aa93-4c3a24305d85/0/3130332e3138362e31302e302f32332d3234203d3e2034383030.roa Signing time: Mon 13 Jan 2025 07:00:02 +0000 ROA not before: Mon 13 Jan 2025 06:55:02 +0000 ROA not after: Mon 12 Jan 2026 07:00:02 +0000 asID: 4800 IP address blocks: 103.186.10.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/886df791-0079-45f6-aa93-4c3a24305d85/0/5A6B1428A87238DC9DA9B92890E1C9BF60CC094E.crl rsync://repo-rpki.idnic.net/repo/886df791-0079-45f6-aa93-4c3a24305d85/0/5A6B1428A87238DC9DA9B92890E1C9BF60CC094E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A6B1428A87238DC9DA9B92890E1C9BF60CC094E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 10:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:e0:0a:4a:93:6e:0b:fd:2e:79:de:03:3f:26:fb:ce:b9:29:52:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A6B1428A87238DC9DA9B92890E1C9BF60CC094E Validity Not Before: Jan 13 06:55:02 2025 GMT Not After : Jan 12 07:00:02 2026 GMT Subject: CN=F43EC1B2268FFEB92C6D48C6157955ABF61291A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:8c:2f:0b:60:4f:a9:33:9f:54:2a:93:58:71: 2a:41:c7:4d:0f:f6:5a:d5:dd:23:63:12:7d:09:80: 3a:bc:10:a7:73:79:7b:c7:e0:de:9f:62:87:53:7e: 3e:0f:ee:3a:30:a0:02:03:26:c6:11:e5:39:8d:28: f8:48:7f:91:a0:63:07:29:64:90:76:43:71:bf:30: 97:24:b0:24:fa:63:c0:1d:f1:6b:ac:38:ac:99:31: f2:6c:d8:d6:b2:f8:b3:36:40:8a:d4:2c:14:ef:cd: 62:c8:2c:29:c6:2c:4f:04:74:02:e4:49:46:3e:f6: 9c:78:24:32:c5:9a:91:de:95:dc:6d:38:59:a5:74: c1:91:32:39:84:35:b3:8e:f8:a3:b8:d8:2a:21:09: 45:50:7a:a4:23:7a:f1:c8:ac:7d:73:46:1e:73:d6: d4:e9:65:e6:14:5f:35:23:4e:cb:81:b4:29:b0:9e: 64:e6:06:7a:a1:88:61:d4:79:50:5f:bb:a9:c3:f7: 0d:4e:96:9d:cd:18:e2:00:1b:ed:97:04:49:05:84: 53:db:1a:45:f7:b1:62:03:13:74:aa:f1:8d:33:08: 16:c5:6c:dc:33:e5:c5:59:75:df:4d:dc:5c:e7:f1: 2f:36:ae:23:bb:d5:ee:cc:b9:eb:54:7e:0b:f3:a2: a6:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:3E:C1:B2:26:8F:FE:B9:2C:6D:48:C6:15:79:55:AB:F6:12:91:A0 X509v3 Authority Key Identifier: keyid:5A:6B:14:28:A8:72:38:DC:9D:A9:B9:28:90:E1:C9:BF:60:CC:09:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/886df791-0079-45f6-aa93-4c3a24305d85/0/5A6B1428A87238DC9DA9B92890E1C9BF60CC094E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A6B1428A87238DC9DA9B92890E1C9BF60CC094E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/886df791-0079-45f6-aa93-4c3a24305d85/0/3130332e3138362e31302e302f32332d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.10.0/23 Signature Algorithm: sha256WithRSAEncryption a9:7d:3d:15:6d:26:cb:62:fc:11:67:a7:a9:93:69:78:f4:78: 06:05:c5:c7:c7:fa:72:6e:f5:b2:05:1d:d4:7c:b7:dd:65:8a: bb:54:5c:cf:ae:44:b5:0f:eb:06:30:38:8b:c9:96:0e:15:b7: f9:c4:40:41:14:72:6c:dc:5a:22:a8:6e:84:de:8a:59:02:0b: 74:7b:a5:04:52:a1:fa:c2:a1:2c:e2:03:e7:62:f9:9f:65:fc: 97:07:20:32:7d:17:ec:62:e9:fb:50:9b:00:1a:ac:3b:8e:f4: f8:91:7c:1c:fa:08:3e:91:d3:de:ef:24:98:d9:62:c2:c9:2d: be:b8:dd:4f:ab:0b:55:1c:de:ba:22:19:3e:3a:9a:f9:ea:06: 30:eb:8c:00:d5:9c:54:7d:3d:b0:14:8b:14:34:10:a0:47:19: 28:8b:cb:31:78:69:9b:3e:5d:94:0e:d9:fb:f6:8e:5f:60:c4: 42:f4:1b:4f:15:bc:cf:1d:7d:d1:eb:20:94:bb:dd:de:ab:67: 33:2e:71:b3:66:f0:ff:bd:89:65:3c:2c:b9:6d:b7:2e:4d:7e: 53:6a:9c:c3:b1:ac:96:57:eb:83:ca:01:e0:01:b0:aa:e5:e8: d3:c5:e3:83:3d:38:ba:d0:bd:d2:03:41:1d:0f:ad:5c:2a:25: 25:95:0f:8c -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUCuAKSpNuC/0ued4DPyb7zrkpUr0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUE2QjE0MjhBODcyMzhEQzlEQTlCOTI4OTBFMUM5QkY2 MENDMDk0RTAeFw0yNTAxMTMwNjU1MDJaFw0yNjAxMTIwNzAwMDJaMDMxMTAvBgNV BAMTKEY0M0VDMUIyMjY4RkZFQjkyQzZENDhDNjE1Nzk1NUFCRjYxMjkxQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXjC8LYE+pM59UKpNYcSpBx00P 9lrV3SNjEn0JgDq8EKdzeXvH4N6fYodTfj4P7jowoAIDJsYR5TmNKPhIf5GgYwcp ZJB2Q3G/MJcksCT6Y8Ad8WusOKyZMfJs2Nay+LM2QIrULBTvzWLILCnGLE8EdALk SUY+9px4JDLFmpHeldxtOFmldMGRMjmENbOO+KO42CohCUVQeqQjevHIrH1zRh5z 1tTpZeYUXzUjTsuBtCmwnmTmBnqhiGHUeVBfu6nD9w1Olp3NGOIAG+2XBEkFhFPb GkX3sWIDE3Sq8Y0zCBbFbNwz5cVZdd9N3Fzn8S82riO71e7MuetUfgvzoqarAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU9D7BsiaP/rksbUjGFXlVq/YSkaAwHwYDVR0j BBgwFoAUWmsUKKhyONydqbkokOHJv2DMCU4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ODZkZjc5MS0wMDc5LTQ1ZjYtYWE5My00YzNhMjQzMDVkODUvMC81QTZCMTQyOEE4 NzIzOERDOURBOUI5Mjg5MEUxQzlCRjYwQ0MwOTRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUE2QjE0MjhBODcyMzhEQzlEQTlCOTI4OTBFMUM5QkY2MEND MDk0RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg4NmRmNzkxLTAwNzktNDVmNi1h YTkzLTRjM2EyNDMwNWQ4NS8wLzMxMzAzMzJlMzEzODM2MmUzMTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzODMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnugowDQYJKoZIhvcN AQELBQADggEBAKl9PRVtJsti/BFnp6mTaXj0eAYFxcfH+nJu9bIFHdR8t91lirtU XM+uRLUP6wYwOIvJlg4Vt/nEQEEUcmzcWiKoboTeilkCC3R7pQRSofrCoSziA+di +Z9l/JcHIDJ9F+xi6ftQmwAarDuO9PiRfBz6CD6R097vJJjZYsLJLb643U+rC1Uc 3roiGT46mvnqBjDrjADVnFR9PbAUixQ0EKBHGSiLyzF4aZs+XZQO2fv2jl9gxEL0 G08VvM8dfdHrIJS73d6rZzMucbNm8P+9iWU8LLltty5NflNqnMOxrJZX64PKAeAB sKrl6NPF44M9OLrQvdIDQR0PrVwqJSWVD4w= -----END CERTIFICATE-----Generated at Sun Apr 6 16:02:14 2025 by rpki-client