$ rpki-client -vvf repo-rpki.idnic.net/repo/8b1664a7-c9c9-4442-8718-9aec9e2110a2/0/3130332e3136332e3138342e302f32342d3234203d3e20313432333636.roa File: 3130332e3136332e3138342e302f32342d3234203d3e20313432333636.roa (raw, json) Hash identifier: T0kgQ8xq7nBxfVnwpyYEmmzA0fn9DjLFvoVcfJfTj5g= Subject key identifier: 90:C8:39:B1:FC:B0:1D:58:02:22:71:38:EB:6D:23:09:0D:95:17:66 Certificate issuer: /CN=FF89F23BCBC42635E97AE15A7FB69E1E09A97DAF Certificate serial: 6DB6DDB2CA1765D8A33E4B0999A6CDB5DBCBA519 Authority key identifier: FF:89:F2:3B:CB:C4:26:35:E9:7A:E1:5A:7F:B6:9E:1E:09:A9:7D:AF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF89F23BCBC42635E97AE15A7FB69E1E09A97DAF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b1664a7-c9c9-4442-8718-9aec9e2110a2/0/3130332e3136332e3138342e302f32342d3234203d3e20313432333636.roa Signing time: Fri 14 Mar 2025 05:00:01 +0000 ROA not before: Fri 14 Mar 2025 04:55:01 +0000 ROA not after: Fri 13 Mar 2026 05:00:01 +0000 asID: 142366 IP address blocks: 103.163.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b1664a7-c9c9-4442-8718-9aec9e2110a2/0/FF89F23BCBC42635E97AE15A7FB69E1E09A97DAF.crl rsync://repo-rpki.idnic.net/repo/8b1664a7-c9c9-4442-8718-9aec9e2110a2/0/FF89F23BCBC42635E97AE15A7FB69E1E09A97DAF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF89F23BCBC42635E97AE15A7FB69E1E09A97DAF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 15:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:b6:dd:b2:ca:17:65:d8:a3:3e:4b:09:99:a6:cd:b5:db:cb:a5:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF89F23BCBC42635E97AE15A7FB69E1E09A97DAF Validity Not Before: Mar 14 04:55:01 2025 GMT Not After : Mar 13 05:00:01 2026 GMT Subject: CN=90C839B1FCB01D5802227138EB6D23090D951766 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d8:9d:5b:ed:b3:4f:19:50:b6:c2:db:db:60: a1:24:a2:82:ed:e2:1a:c0:a0:d9:ce:ba:96:29:73: 2b:0e:1e:a9:8e:ae:18:99:80:29:42:d7:df:13:0f: de:e6:e9:c8:a7:8d:f1:5a:de:b7:99:56:b8:6d:22: 3e:69:61:8a:ea:21:bc:78:a3:3a:42:b6:fc:d8:60: 02:c0:c7:37:80:65:66:d2:aa:7d:2a:ea:07:94:e2: 84:bc:a5:27:c8:b4:9e:f5:30:d4:6c:e6:83:96:a1: 41:bf:01:cb:fd:ba:5a:5f:6d:8a:f8:d8:1e:eb:37: 37:33:80:fe:c1:5b:4d:11:72:ab:f2:9d:4c:63:17: 6d:ac:62:85:e9:59:ad:92:9d:ba:0f:1b:26:7e:11: b3:de:3e:f0:e7:ac:58:bf:84:5e:f5:56:7e:bf:d7: bb:0a:01:44:99:11:c6:ba:3a:61:c8:cc:92:23:ae: 27:5c:de:75:7b:7d:c4:4f:b5:cb:a5:16:e1:3b:5d: 82:37:3a:fb:6d:47:39:de:9a:7b:a1:59:39:ef:08: 74:4a:e0:8c:8a:4f:01:9f:50:0f:e1:f6:f9:ff:9f: 14:8d:d7:93:82:5a:6d:74:2a:3a:28:0c:99:b2:45: a3:ac:ee:e8:bf:4e:d9:d6:49:22:c1:67:a3:7a:5d: 8c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:C8:39:B1:FC:B0:1D:58:02:22:71:38:EB:6D:23:09:0D:95:17:66 X509v3 Authority Key Identifier: keyid:FF:89:F2:3B:CB:C4:26:35:E9:7A:E1:5A:7F:B6:9E:1E:09:A9:7D:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b1664a7-c9c9-4442-8718-9aec9e2110a2/0/FF89F23BCBC42635E97AE15A7FB69E1E09A97DAF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF89F23BCBC42635E97AE15A7FB69E1E09A97DAF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b1664a7-c9c9-4442-8718-9aec9e2110a2/0/3130332e3136332e3138342e302f32342d3234203d3e20313432333636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.184.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:d7:b2:92:6c:2a:97:42:6c:f3:ec:26:e4:b8:c3:ff:50:58: 87:05:57:2e:1f:e0:c5:8c:5e:44:35:cd:0b:3c:80:ce:de:b3: e0:e9:50:60:86:eb:92:1e:b6:4d:78:e0:10:f1:c1:8f:65:03: 67:e0:18:2f:4b:8b:42:48:2e:18:95:56:fd:c0:d6:a6:fa:f4: 71:b8:12:0d:72:9d:12:77:ff:b7:69:46:64:b8:36:29:3c:68: 36:02:17:e7:67:94:2e:28:a0:04:ce:dd:97:ee:44:8b:55:16: bd:c4:65:05:8b:35:85:b8:60:fd:ff:78:ac:30:18:60:4e:b5: 24:8a:d7:11:5e:ce:34:c5:b3:5b:5a:e1:42:41:19:fc:28:f0: f4:3f:69:ed:25:7d:99:20:e2:b7:fc:f3:ab:b8:0f:04:ac:1e: dc:21:3e:ce:d7:68:24:81:6e:f8:43:97:43:70:14:06:81:6e: e7:1c:94:7d:f0:07:78:fa:8d:0d:f5:04:28:6b:c7:93:84:61: 42:b1:1f:dc:af:ea:9d:62:bd:c1:84:88:e5:53:22:bb:ce:1f: 0a:0e:14:20:ac:1c:58:28:35:b5:55:1d:4a:c2:b8:22:fe:77: 47:ed:06:4d:c4:74:26:61:eb:d7:55:b6:22:63:a6:83:26:82: 12:9a:b1:86 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbbbdssoXZdijPksJmabNtdvLpRkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkY4OUYyM0JDQkM0MjYzNUU5N0FFMTVBN0ZCNjlFMUUw OUE5N0RBRjAeFw0yNTAzMTQwNDU1MDFaFw0yNjAzMTMwNTAwMDFaMDMxMTAvBgNV BAMTKDkwQzgzOUIxRkNCMDFENTgwMjIyNzEzOEVCNkQyMzA5MEQ5NTE3NjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC42J1b7bNPGVC2wtvbYKEkooLt 4hrAoNnOupYpcysOHqmOrhiZgClC198TD97m6cinjfFa3reZVrhtIj5pYYrqIbx4 ozpCtvzYYALAxzeAZWbSqn0q6geU4oS8pSfItJ71MNRs5oOWoUG/Acv9ulpfbYr4 2B7rNzczgP7BW00RcqvynUxjF22sYoXpWa2SnboPGyZ+EbPePvDnrFi/hF71Vn6/ 17sKAUSZEca6OmHIzJIjridc3nV7fcRPtculFuE7XYI3OvttRznemnuhWTnvCHRK 4IyKTwGfUA/h9vn/nxSN15OCWm10KjooDJmyRaOs7ui/TtnWSSLBZ6N6XYzDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUkMg5sfywHVgCInE4620jCQ2VF2YwHwYDVR0j BBgwFoAU/4nyO8vEJjXpeuFaf7aeHgmpfa8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjE2NjRhNy1jOWM5LTQ0NDItODcxOC05YWVjOWUyMTEwYTIvMC9GRjg5RjIzQkNC QzQyNjM1RTk3QUUxNUE3RkI2OUUxRTA5QTk3REFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkY4OUYyM0JDQkM0MjYzNUU5N0FFMTVBN0ZCNjlFMUUwOUE5 N0RBRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiMTY2NGE3LWM5YzktNDQ0Mi04 NzE4LTlhZWM5ZTIxMTBhMi8wLzMxMzAzMzJlMzEzNjMzMmUzMTM4MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABno7gwDQYJ KoZIhvcNAQELBQADggEBAF7XspJsKpdCbPPsJuS4w/9QWIcFVy4f4MWMXkQ1zQs8 gM7es+DpUGCG65Ietk144BDxwY9lA2fgGC9Li0JILhiVVv3A1qb69HG4Eg1ynRJ3 /7dpRmS4Nik8aDYCF+dnlC4ooATO3ZfuRItVFr3EZQWLNYW4YP3/eKwwGGBOtSSK 1xFezjTFs1ta4UJBGfwo8PQ/ae0lfZkg4rf886u4DwSsHtwhPs7XaCSBbvhDl0Nw FAaBbucclH3wB3j6jQ31BChrx5OEYUKxH9yv6p1ivcGEiOVTIrvOHwoOFCCsHFgo NbVVHUrCuCL+d0ftBk3EdCZh69dVtiJjpoMmghKasYY= -----END CERTIFICATE-----Generated at Sun Apr 6 07:13:43 2025 by rpki-client