$ rpki-client -vvf repo-rpki.idnic.net/repo/b1f87f5a-f6f9-468d-895e-314487f5e25e/0/3130332e3138352e3139372e302f32342d3234203d3e20313333333535.roa File: 3130332e3138352e3139372e302f32342d3234203d3e20313333333535.roa (raw, json) Hash identifier: PjJ5xaEmVECnvYiFxtFmdeDestY/+54rJNs+3F7mqcY= Subject key identifier: 22:C4:D6:C3:2A:DF:1C:52:34:6B:6A:5A:1B:E4:69:61:82:36:E1:78 Certificate issuer: /CN=B9BEB60CD6224D41F333A07E1820F0AF3A81FFF7 Certificate serial: 5CB630E67C79CEEC1A95C5B31017A55F8D16F36E Authority key identifier: B9:BE:B6:0C:D6:22:4D:41:F3:33:A0:7E:18:20:F0:AF:3A:81:FF:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B9BEB60CD6224D41F333A07E1820F0AF3A81FFF7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b1f87f5a-f6f9-468d-895e-314487f5e25e/0/3130332e3138352e3139372e302f32342d3234203d3e20313333333535.roa Signing time: Mon 27 Jan 2025 10:01:58 +0000 ROA not before: Mon 27 Jan 2025 09:56:58 +0000 ROA not after: Mon 26 Jan 2026 10:01:58 +0000 asID: 133355 IP address blocks: 103.185.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b1f87f5a-f6f9-468d-895e-314487f5e25e/0/B9BEB60CD6224D41F333A07E1820F0AF3A81FFF7.crl rsync://repo-rpki.idnic.net/repo/b1f87f5a-f6f9-468d-895e-314487f5e25e/0/B9BEB60CD6224D41F333A07E1820F0AF3A81FFF7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B9BEB60CD6224D41F333A07E1820F0AF3A81FFF7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 01:59:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:b6:30:e6:7c:79:ce:ec:1a:95:c5:b3:10:17:a5:5f:8d:16:f3:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9BEB60CD6224D41F333A07E1820F0AF3A81FFF7 Validity Not Before: Jan 27 09:56:58 2025 GMT Not After : Jan 26 10:01:58 2026 GMT Subject: CN=22C4D6C32ADF1C52346B6A5A1BE469618236E178 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:11:97:66:1e:39:0e:d6:82:81:5a:00:83:c9: cf:1b:1d:3d:49:6d:b3:bd:f4:25:c8:10:63:c9:37: b2:51:92:da:20:98:31:5c:08:26:1b:48:82:b8:e4: 5d:53:d7:31:dc:d6:c6:5a:23:45:3f:19:4d:6c:40: 3b:f2:7f:24:2b:7f:f0:7e:4d:5d:38:8e:5a:67:65: 52:9e:06:a7:d3:b9:50:dd:08:80:7e:b1:73:a0:ae: e8:a6:a5:4f:4d:8b:2d:be:63:89:ab:da:53:a7:0c: 03:9a:61:94:b6:94:6b:13:eb:a4:de:2a:61:3a:95: 6c:b6:e6:e2:f4:28:4a:a5:a6:2a:33:d9:0a:66:2d: 56:e0:ff:fa:6e:d9:7b:18:16:b7:5b:2b:a0:86:cc: 7f:1f:13:41:2b:25:f1:1e:62:93:ba:51:03:49:37: 55:73:1a:8f:6c:f9:3f:f2:d3:b3:66:ac:68:2c:b0: e8:09:f4:a6:20:e1:c6:04:5b:52:c6:8c:de:85:bb: fc:ff:5c:01:6f:89:58:b1:24:5c:97:15:6a:91:e8: 3f:8d:e8:92:97:93:be:bb:e2:00:a1:35:09:6c:05: a4:24:2a:18:e4:e3:d4:9a:87:30:3c:9e:10:8a:4d: 43:9a:95:8b:49:66:d5:c3:f9:4f:b5:25:9b:de:03: dd:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:C4:D6:C3:2A:DF:1C:52:34:6B:6A:5A:1B:E4:69:61:82:36:E1:78 X509v3 Authority Key Identifier: keyid:B9:BE:B6:0C:D6:22:4D:41:F3:33:A0:7E:18:20:F0:AF:3A:81:FF:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b1f87f5a-f6f9-468d-895e-314487f5e25e/0/B9BEB60CD6224D41F333A07E1820F0AF3A81FFF7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B9BEB60CD6224D41F333A07E1820F0AF3A81FFF7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b1f87f5a-f6f9-468d-895e-314487f5e25e/0/3130332e3138352e3139372e302f32342d3234203d3e20313333333535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.185.197.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:a4:a1:f9:25:9a:9f:9d:1b:61:76:26:09:53:de:e7:1e:9a: 64:84:11:1c:1c:e9:58:ba:4d:d4:f0:07:7a:7c:14:fc:ed:d2: 0f:ad:55:19:97:a4:11:d2:47:6d:ae:b4:63:81:ec:0a:67:b4: 59:77:59:70:b9:f3:70:a5:ed:92:1d:d9:ac:fd:78:a7:6d:d8: ee:d6:71:84:f2:6a:4c:09:88:fd:29:80:40:28:46:f2:94:07: 83:44:c4:47:d0:a4:20:c6:47:83:7d:c0:4c:b8:87:a2:d0:40: df:b8:0c:34:dc:69:3e:a3:bc:06:0e:29:70:fe:71:ef:77:cb: 9a:27:da:30:e7:81:09:d1:21:b5:23:34:9b:d6:a4:7d:8c:48: e8:67:db:05:6e:ad:22:05:b1:e3:58:1e:56:29:c2:1f:cf:92: 47:fc:0e:fb:a9:ca:93:94:b0:dc:9a:47:5c:3a:c0:36:30:b0: e1:1a:0e:56:cc:5a:0c:20:97:3a:fd:2d:91:39:27:90:03:12: 27:c6:a1:1d:14:dd:2d:f9:f2:5f:36:bd:60:92:65:05:37:22: 52:e1:79:66:a1:0a:f5:8f:a1:c6:ec:01:3b:59:7b:a9:62:ee: f5:fe:c3:2d:23:db:4e:da:80:49:9c:cf:b7:ff:35:70:14:1f: 03:6e:1b:e7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXLYw5nx5zuwalcWzEBelX40W824wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjlCRUI2MENENjIyNEQ0MUYzMzNBMDdFMTgyMEYwQUYz QTgxRkZGNzAeFw0yNTAxMjcwOTU2NThaFw0yNjAxMjYxMDAxNThaMDMxMTAvBgNV BAMTKDIyQzRENkMzMkFERjFDNTIzNDZCNkE1QTFCRTQ2OTYxODIzNkUxNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9EZdmHjkO1oKBWgCDyc8bHT1J bbO99CXIEGPJN7JRktogmDFcCCYbSIK45F1T1zHc1sZaI0U/GU1sQDvyfyQrf/B+ TV04jlpnZVKeBqfTuVDdCIB+sXOgruimpU9Niy2+Y4mr2lOnDAOaYZS2lGsT66Te KmE6lWy25uL0KEqlpioz2QpmLVbg//pu2XsYFrdbK6CGzH8fE0ErJfEeYpO6UQNJ N1VzGo9s+T/y07NmrGgssOgJ9KYg4cYEW1LGjN6Fu/z/XAFviVixJFyXFWqR6D+N 6JKXk7674gChNQlsBaQkKhjk49SahzA8nhCKTUOalYtJZtXD+U+1JZveA90zAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUIsTWwyrfHFI0a2paG+RpYYI24XgwHwYDVR0j BBgwFoAUub62DNYiTUHzM6B+GCDwrzqB//cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MWY4N2Y1YS1mNmY5LTQ2OGQtODk1ZS0zMTQ0ODdmNWUyNWUvMC9COUJFQjYwQ0Q2 MjI0RDQxRjMzM0EwN0UxODIwRjBBRjNBODFGRkY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjlCRUI2MENENjIyNEQ0MUYzMzNBMDdFMTgyMEYwQUYzQTgx RkZGNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxZjg3ZjVhLWY2ZjktNDY4ZC04 OTVlLTMxNDQ4N2Y1ZTI1ZS8wLzMxMzAzMzJlMzEzODM1MmUzMTM5MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzMzM1MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnucUwDQYJ KoZIhvcNAQELBQADggEBAFykofklmp+dG2F2JglT3ucemmSEERwc6Vi6TdTwB3p8 FPzt0g+tVRmXpBHSR22utGOB7ApntFl3WXC583Cl7ZId2az9eKdt2O7WcYTyakwJ iP0pgEAoRvKUB4NExEfQpCDGR4N9wEy4h6LQQN+4DDTcaT6jvAYOKXD+ce93y5on 2jDngQnRIbUjNJvWpH2MSOhn2wVurSIFseNYHlYpwh/Pkkf8DvupypOUsNyaR1w6 wDYwsOEaDlbMWgwglzr9LZE5J5ADEifGoR0U3S358l82vWCSZQU3IlLheWahCvWP ocbsATtZe6li7vX+wy0j207agEmcz7f/NXAUHwNuG+c= -----END CERTIFICATE-----Generated at Sun Apr 6 11:15:55 2025 by rpki-client