$ rpki-client -vvf repo-rpki.idnic.net/repo/8dcf4067-a69d-4908-bee8-b4655bdc15f8/0/3130332e3135332e3234362e302f32342d3234203d3e20313430343735.roa File: 3130332e3135332e3234362e302f32342d3234203d3e20313430343735.roa (raw, json) Hash identifier: BU1Q0ryHM0MlXG1Q7vZvhi4oAbOwc3sWBEiOeckA5Ms= Subject key identifier: 61:9C:CE:CC:3D:CA:9B:D3:46:9D:F3:7F:DE:22:EB:5B:57:FC:6B:62 Certificate issuer: /CN=B197F427572524588487CFDB163A9E512FAE4DF2 Certificate serial: 117409A189178E8ECA428EDC9B59E541F02EACA3 Authority key identifier: B1:97:F4:27:57:25:24:58:84:87:CF:DB:16:3A:9E:51:2F:AE:4D:F2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B197F427572524588487CFDB163A9E512FAE4DF2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8dcf4067-a69d-4908-bee8-b4655bdc15f8/0/3130332e3135332e3234362e302f32342d3234203d3e20313430343735.roa Signing time: Mon 27 Jan 2025 00:00:01 +0000 ROA not before: Sun 26 Jan 2025 23:55:01 +0000 ROA not after: Mon 26 Jan 2026 00:00:01 +0000 asID: 140475 IP address blocks: 103.153.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8dcf4067-a69d-4908-bee8-b4655bdc15f8/0/B197F427572524588487CFDB163A9E512FAE4DF2.crl rsync://repo-rpki.idnic.net/repo/8dcf4067-a69d-4908-bee8-b4655bdc15f8/0/B197F427572524588487CFDB163A9E512FAE4DF2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B197F427572524588487CFDB163A9E512FAE4DF2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 18:51:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:74:09:a1:89:17:8e:8e:ca:42:8e:dc:9b:59:e5:41:f0:2e:ac:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B197F427572524588487CFDB163A9E512FAE4DF2 Validity Not Before: Jan 26 23:55:01 2025 GMT Not After : Jan 26 00:00:01 2026 GMT Subject: CN=619CCECC3DCA9BD3469DF37FDE22EB5B57FC6B62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:86:95:d6:ac:fe:b9:8d:1b:9e:d8:ab:48:42: a7:5d:ba:2a:40:e2:35:6c:0d:7e:d4:11:c1:47:42: e3:fa:81:0e:a1:b8:de:35:07:53:26:00:f5:72:24: 59:23:8a:54:ee:5f:00:58:d1:5e:6b:16:8e:75:28: 5d:34:37:4f:49:37:37:43:45:e9:c9:18:21:b8:7f: 76:81:de:33:54:1b:1e:5e:15:da:94:e2:a4:f1:08: 33:ff:0f:d1:44:7c:e3:3e:1a:5a:3c:c2:12:44:6d: 69:8f:8e:35:c7:06:fd:f1:36:d4:bd:43:05:0f:58: 72:c5:8f:2d:b6:a3:bb:0a:b0:db:5b:f5:8e:f2:7f: 6e:93:11:89:53:dc:50:8a:cf:cc:d3:99:8d:95:21: ef:86:b3:aa:78:9e:8f:b3:5e:e6:86:0a:68:7a:cc: ba:a2:31:b1:c2:d3:63:b3:a8:a1:5d:c8:21:e5:3f: 56:96:71:8a:72:f7:49:3f:cd:13:25:02:b6:73:f3: 22:65:ee:81:03:45:92:0f:88:51:57:45:4a:ad:da: 49:07:61:b9:01:c7:e0:e9:59:1e:16:cf:bb:46:93: 69:ab:f0:0f:10:a2:57:1f:be:a9:60:8f:0c:ca:40: 15:0b:cf:70:12:ed:4d:f4:6a:18:0c:d6:13:73:9e: 99:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:9C:CE:CC:3D:CA:9B:D3:46:9D:F3:7F:DE:22:EB:5B:57:FC:6B:62 X509v3 Authority Key Identifier: keyid:B1:97:F4:27:57:25:24:58:84:87:CF:DB:16:3A:9E:51:2F:AE:4D:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8dcf4067-a69d-4908-bee8-b4655bdc15f8/0/B197F427572524588487CFDB163A9E512FAE4DF2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B197F427572524588487CFDB163A9E512FAE4DF2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8dcf4067-a69d-4908-bee8-b4655bdc15f8/0/3130332e3135332e3234362e302f32342d3234203d3e20313430343735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.246.0/24 Signature Algorithm: sha256WithRSAEncryption 86:ca:42:42:9b:eb:00:ae:b4:3a:e8:fa:65:49:fd:7b:d4:91: 12:ec:69:bf:f6:89:2f:02:6b:fd:62:c8:b7:12:82:a9:31:d7: b7:ff:da:0f:a7:92:78:14:09:04:fb:b8:aa:1a:3d:46:48:8c: 1b:73:94:6c:1e:c1:35:88:59:89:c5:4b:ec:ba:97:88:59:41: 34:9e:ab:5d:74:ea:e0:d5:17:9c:b9:56:9d:04:a0:0b:80:84: 9c:f4:86:ef:0d:4e:7b:6d:52:ee:61:55:4a:14:4b:77:65:9a: 95:67:93:ea:b7:9f:10:68:5e:b7:71:07:d9:22:57:7e:2a:30: a7:be:1f:59:bf:8c:54:c0:da:74:cb:93:d4:8f:03:9e:32:c5: 94:35:43:a7:a9:00:20:82:04:2b:d4:de:e6:d9:d2:c5:86:a5: d2:5d:7b:70:50:9a:26:35:37:3c:7c:77:65:a2:b4:55:d4:2b: a6:c9:9d:17:25:4d:2a:de:22:25:2d:5c:5a:f9:12:9c:0f:00: 73:66:bc:c0:97:b4:d2:fd:21:fc:55:ab:89:51:5f:39:f6:86: d4:d2:3a:87:89:f0:ec:1d:b9:b3:a9:54:ae:d9:b1:3d:82:c0: 56:58:29:ed:ab:24:b4:c1:4c:db:9d:fa:c1:29:a8:a3:9e:d9: c2:fc:54:66 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUEXQJoYkXjo7KQo7cm1nlQfAurKMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE5N0Y0Mjc1NzI1MjQ1ODg0ODdDRkRCMTYzQTlFNTEy RkFFNERGMjAeFw0yNTAxMjYyMzU1MDFaFw0yNjAxMjYwMDAwMDFaMDMxMTAvBgNV BAMTKDYxOUNDRUNDM0RDQTlCRDM0NjlERjM3RkRFMjJFQjVCNTdGQzZCNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhhpXWrP65jRue2KtIQqdduipA 4jVsDX7UEcFHQuP6gQ6huN41B1MmAPVyJFkjilTuXwBY0V5rFo51KF00N09JNzdD RenJGCG4f3aB3jNUGx5eFdqU4qTxCDP/D9FEfOM+Glo8whJEbWmPjjXHBv3xNtS9 QwUPWHLFjy22o7sKsNtb9Y7yf26TEYlT3FCKz8zTmY2VIe+Gs6p4no+zXuaGCmh6 zLqiMbHC02OzqKFdyCHlP1aWcYpy90k/zRMlArZz8yJl7oEDRZIPiFFXRUqt2kkH YbkBx+DpWR4Wz7tGk2mr8A8QolcfvqlgjwzKQBULz3AS7U30ahgM1hNznpntAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUYZzOzD3Km9NGnfN/3iLrW1f8a2IwHwYDVR0j BBgwFoAUsZf0J1clJFiEh8/bFjqeUS+uTfIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZGNmNDA2Ny1hNjlkLTQ5MDgtYmVlOC1iNDY1NWJkYzE1ZjgvMC9CMTk3RjQyNzU3 MjUyNDU4ODQ4N0NGREIxNjNBOUU1MTJGQUU0REYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjE5N0Y0Mjc1NzI1MjQ1ODg0ODdDRkRCMTYzQTlFNTEyRkFF NERGMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkY2Y0MDY3LWE2OWQtNDkwOC1i ZWU4LWI0NjU1YmRjMTVmOC8wLzMxMzAzMzJlMzEzNTMzMmUzMjM0MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM3MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnmfYwDQYJ KoZIhvcNAQELBQADggEBAIbKQkKb6wCutDro+mVJ/XvUkRLsab/2iS8Ca/1iyLcS gqkx17f/2g+nkngUCQT7uKoaPUZIjBtzlGwewTWIWYnFS+y6l4hZQTSeq1106uDV F5y5Vp0EoAuAhJz0hu8NTnttUu5hVUoUS3dlmpVnk+q3nxBoXrdxB9kiV34qMKe+ H1m/jFTA2nTLk9SPA54yxZQ1Q6epACCCBCvU3ubZ0sWGpdJde3BQmiY1Nzx8d2Wi tFXUK6bJnRclTSreIiUtXFr5EpwPAHNmvMCXtNL9IfxVq4lRXzn2htTSOoeJ8Owd ubOpVK7ZsT2CwFZYKe2rJLTBTNud+sEpqKOe2cL8VGY= -----END CERTIFICATE-----Generated at Sun Apr 6 13:43:46 2025 by rpki-client