$ rpki-client -vvf repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/3130332e36312e3233352e302f32342d3234203d3e20313530353130.roa File: 3130332e36312e3233352e302f32342d3234203d3e20313530353130.roa (raw, json) Hash identifier: OWWwKr6VgMTRSl2gHvmJwedkDbcvu1lGUMF7l6U0D14= Subject key identifier: 15:31:B3:00:FF:C7:1F:DC:B1:87:DB:CD:84:E4:41:7D:A1:20:86:F5 Certificate issuer: /CN=4F022459BA46CF30700E070671C752B44729E249 Certificate serial: 537FEBF5498D9D04C0B0CC3EF58F89A38417167A Authority key identifier: 4F:02:24:59:BA:46:CF:30:70:0E:07:06:71:C7:52:B4:47:29:E2:49 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F022459BA46CF30700E070671C752B44729E249.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/3130332e36312e3233352e302f32342d3234203d3e20313530353130.roa Signing time: Tue 01 Apr 2025 08:00:00 +0000 ROA not before: Tue 01 Apr 2025 07:55:00 +0000 ROA not after: Tue 31 Mar 2026 08:00:00 +0000 asID: 150510 IP address blocks: 103.61.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/4F022459BA46CF30700E070671C752B44729E249.crl rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/4F022459BA46CF30700E070671C752B44729E249.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F022459BA46CF30700E070671C752B44729E249.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 07:07:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:7f:eb:f5:49:8d:9d:04:c0:b0:cc:3e:f5:8f:89:a3:84:17:16:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F022459BA46CF30700E070671C752B44729E249 Validity Not Before: Apr 1 07:55:00 2025 GMT Not After : Mar 31 08:00:00 2026 GMT Subject: CN=1531B300FFC71FDCB187DBCD84E4417DA12086F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:85:1c:4f:f9:c0:49:c2:85:a0:e3:9f:16:14: fa:7d:36:a3:51:35:3b:da:da:52:ac:a1:07:8d:53: da:5b:d1:52:26:f9:eb:16:be:02:4c:98:e2:73:86: 6b:68:61:ac:92:32:0e:59:11:66:1f:f8:9c:37:00: b0:e0:56:69:e1:8b:ea:78:86:73:ca:57:85:db:5b: 5b:48:69:32:3a:b0:2b:6f:0d:b8:35:7a:d0:bc:80: fc:7d:f3:14:cb:8b:d2:ba:7e:b4:e6:61:67:ba:29: e9:5c:e5:69:04:ef:dd:e7:fb:f1:63:e6:e8:16:cc: 0c:1e:a4:b4:9f:14:87:6a:12:51:41:d9:fc:d0:e4: b3:60:d9:ee:af:d8:ea:59:27:06:44:9b:f7:29:d8: 8e:d8:f6:67:58:ea:ff:bf:59:f8:13:48:79:f6:81: af:25:39:0f:e8:b9:0d:52:75:1d:e1:0a:17:f1:ed: 8a:bc:89:0c:f4:42:43:73:de:9a:01:94:42:9a:29: 98:ae:b6:99:f0:69:4f:5f:e3:f8:77:a3:90:69:96: 62:be:6f:16:6a:e7:df:17:8e:76:13:23:63:ce:52: 52:34:4c:62:1c:e5:f2:51:6b:01:2f:5f:f7:df:ff: e4:1b:c0:90:53:84:e9:8e:72:58:2d:8a:74:24:97: 66:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:31:B3:00:FF:C7:1F:DC:B1:87:DB:CD:84:E4:41:7D:A1:20:86:F5 X509v3 Authority Key Identifier: keyid:4F:02:24:59:BA:46:CF:30:70:0E:07:06:71:C7:52:B4:47:29:E2:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/4F022459BA46CF30700E070671C752B44729E249.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F022459BA46CF30700E070671C752B44729E249.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/3130332e36312e3233352e302f32342d3234203d3e20313530353130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.61.235.0/24 Signature Algorithm: sha256WithRSAEncryption 73:89:fc:1d:00:ec:62:0c:6a:b1:3b:86:6f:1f:79:66:5c:d2: 9d:a2:27:0f:da:3e:91:0d:75:be:3f:0c:3b:25:e6:77:5c:16: dd:b8:06:8c:5f:f6:4e:f4:02:52:b2:3c:08:b1:2c:40:4a:6d: ec:69:1a:65:e5:4c:77:24:43:28:5d:d8:de:b1:ed:93:2c:ed: c7:0c:03:fa:92:7a:a7:96:9b:58:75:0c:b9:9f:ac:58:d9:1b: 29:ce:b0:4b:e8:81:dd:82:76:67:7d:32:85:92:ea:39:15:d5: 2c:7b:3a:ec:bc:e0:c7:ea:be:98:c8:0c:95:23:55:39:37:73: 07:cc:82:12:8a:11:ab:b3:de:2b:b1:88:ee:7a:9d:65:6d:70: 78:97:09:a2:51:be:22:ad:0c:82:b4:32:87:b6:59:01:65:4e: dc:32:11:eb:36:ed:ba:38:18:7b:42:a7:85:11:e0:64:01:22: 59:dd:3c:2f:b6:20:3a:5b:5a:68:73:55:34:de:0f:ce:d3:43: 62:0c:9d:84:42:03:85:d5:b0:d4:75:83:46:f9:89:6f:6c:5e: a9:14:1a:d4:0a:97:c3:04:7e:17:6d:7a:5a:0b:49:a8:b9:cc: 5e:36:ca:54:12:be:fa:d1:47:a0:55:27:3b:92:dc:7e:5f:e8: 95:fb:a1:2f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUU3/r9UmNnQTAsMw+9Y+Jo4QXFnowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEYwMjI0NTlCQTQ2Q0YzMDcwMEUwNzA2NzFDNzUyQjQ0 NzI5RTI0OTAeFw0yNTA0MDEwNzU1MDBaFw0yNjAzMzEwODAwMDBaMDMxMTAvBgNV BAMTKDE1MzFCMzAwRkZDNzFGRENCMTg3REJDRDg0RTQ0MTdEQTEyMDg2RjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLhRxP+cBJwoWg458WFPp9NqNR NTva2lKsoQeNU9pb0VIm+esWvgJMmOJzhmtoYaySMg5ZEWYf+Jw3ALDgVmnhi+p4 hnPKV4XbW1tIaTI6sCtvDbg1etC8gPx98xTLi9K6frTmYWe6Kelc5WkE793n+/Fj 5ugWzAwepLSfFIdqElFB2fzQ5LNg2e6v2OpZJwZEm/cp2I7Y9mdY6v+/WfgTSHn2 ga8lOQ/ouQ1SdR3hChfx7Yq8iQz0QkNz3poBlEKaKZiutpnwaU9f4/h3o5BplmK+ bxZq598XjnYTI2POUlI0TGIc5fJRawEvX/ff/+QbwJBThOmOclgtinQkl2YrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFTGzAP/HH9yxh9vNhORBfaEghvUwHwYDVR0j BBgwFoAUTwIkWbpGzzBwDgcGccdStEcp4kkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YTJiZmU5YS0zODIzLTQ0ZTktOTdjMC0yMTkxYTU2YmFmZDMvMC80RjAyMjQ1OUJB NDZDRjMwNzAwRTA3MDY3MUM3NTJCNDQ3MjlFMjQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEYwMjI0NTlCQTQ2Q0YzMDcwMEUwNzA2NzFDNzUyQjQ0NzI5 RTI0OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhMmJmZTlhLTM4MjMtNDRlOS05 N2MwLTIxOTFhNTZiYWZkMy8wLzMxMzAzMzJlMzYzMTJlMzIzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzUzMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZz3rMA0GCSqG SIb3DQEBCwUAA4IBAQBzifwdAOxiDGqxO4ZvH3lmXNKdoicP2j6RDXW+Pww7JeZ3 XBbduAaMX/ZO9AJSsjwIsSxASm3saRpl5Ux3JEMoXdjese2TLO3HDAP6knqnlptY dQy5n6xY2RspzrBL6IHdgnZnfTKFkuo5FdUsezrsvODH6r6YyAyVI1U5N3MHzIIS ihGrs94rsYjuep1lbXB4lwmiUb4irQyCtDKHtlkBZU7cMhHrNu26OBh7QqeFEeBk ASJZ3TwvtiA6W1poc1U03g/O00NiDJ2EQgOF1bDUdYNG+YlvbF6pFBrUCpfDBH4X bXpaC0moucxeNspUEr760UegVSc7ktx+X+iV+6Ev -----END CERTIFICATE-----Generated at Sun Apr 6 13:36:43 2025 by rpki-client