$ rpki-client -vvf repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/3130332e3138372e3136322e302f32332d3233203d3e20313439373434.roa File: 3130332e3138372e3136322e302f32332d3233203d3e20313439373434.roa (raw, json) Hash identifier: NBMvMFdbSgV8YLztOs5et7qKnLsGThNMzle3TvV2a2Y= Subject key identifier: 6B:50:22:F6:05:C6:7E:21:22:41:15:91:92:D9:9E:49:0E:8C:FF:6C Certificate issuer: /CN=CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1 Certificate serial: 64F9BC8D9D9E17954836AB4609DC0605295235C3 Authority key identifier: CF:E5:9D:4C:7A:61:3A:B4:3F:C8:F6:8E:89:74:AB:C8:27:7B:99:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/3130332e3138372e3136322e302f32332d3233203d3e20313439373434.roa Signing time: Thu 13 Mar 2025 11:00:00 +0000 ROA not before: Thu 13 Mar 2025 10:55:00 +0000 ROA not after: Thu 12 Mar 2026 11:00:00 +0000 asID: 149744 IP address blocks: 103.187.162.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.crl rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 07:20:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:f9:bc:8d:9d:9e:17:95:48:36:ab:46:09:dc:06:05:29:52:35:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1 Validity Not Before: Mar 13 10:55:00 2025 GMT Not After : Mar 12 11:00:00 2026 GMT Subject: CN=6B5022F605C67E212241159192D99E490E8CFF6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:af:92:30:7c:52:41:46:8b:84:f2:b1:4b:10: 1a:bf:0e:3d:98:27:27:99:46:13:b4:ec:61:d1:aa: fc:e8:9c:68:a6:2f:83:8c:49:c8:f1:c6:41:a9:cd: 4c:37:fd:ec:76:7c:ca:37:7b:64:19:6b:c2:1b:c5: ef:5c:d4:d2:71:e5:05:19:e7:b0:00:46:9c:d1:a7: fb:b9:da:95:4d:e7:7f:14:82:09:07:e2:37:15:be: bb:b7:fd:4e:3e:39:e0:2d:86:b5:56:6a:6e:69:d6: 02:d4:18:a7:29:5b:a8:d1:6a:7d:6b:3f:de:8e:a2: e7:bf:cc:4c:fd:a8:e9:8f:5a:4b:7a:28:0d:e2:82: 69:87:2b:14:5b:29:6e:a9:d2:be:76:3a:9b:3b:e4: d5:b1:d4:6a:ae:78:d6:fe:09:08:82:85:1e:3b:21: 97:20:bc:de:e8:69:14:08:33:21:03:66:a7:04:82: f3:11:77:6b:11:ce:53:3f:9a:65:48:5d:b6:67:b3: 84:cc:8a:e7:4e:27:f4:b5:17:cd:87:93:46:86:fe: fc:cb:23:b7:fb:81:2b:bd:55:fc:d4:29:33:2c:60: 69:10:32:28:ed:88:27:a7:82:97:44:81:5d:44:ac: 80:46:42:fa:ad:e1:9e:a5:09:43:2e:c5:db:a3:5a: 22:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:50:22:F6:05:C6:7E:21:22:41:15:91:92:D9:9E:49:0E:8C:FF:6C X509v3 Authority Key Identifier: keyid:CF:E5:9D:4C:7A:61:3A:B4:3F:C8:F6:8E:89:74:AB:C8:27:7B:99:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/3130332e3138372e3136322e302f32332d3233203d3e20313439373434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.187.162.0/23 Signature Algorithm: sha256WithRSAEncryption d3:2e:1c:62:50:9f:32:c3:97:10:1e:93:02:a3:1c:fd:68:54: 6f:2c:8b:ef:a1:76:40:09:d9:27:a7:58:d8:0b:87:81:67:df: 44:4e:cb:b1:e1:d5:54:b7:5e:8c:28:37:96:79:02:dd:d9:45: b5:15:31:b1:ad:44:b6:eb:be:e2:95:94:82:a5:c8:14:da:4b: 7b:7a:d8:cc:cf:be:f5:5d:12:43:52:f7:92:db:0c:f0:34:f5: ee:1a:f5:69:90:78:bb:88:aa:81:70:43:43:b4:ac:a5:67:4c: e1:80:a1:3b:cb:bb:7d:66:1c:7b:b5:35:6c:3f:63:a5:bc:e2: 5c:b6:90:0f:30:bc:e4:b0:ca:56:a2:d5:39:96:36:99:2b:19: ba:a9:f4:ab:1f:d6:38:dd:4e:58:3b:cf:41:c7:8a:b3:5b:07: 67:e4:a9:b3:b5:94:e9:2e:a3:4a:86:17:96:51:15:eb:ba:51: ac:c1:fb:4a:69:3d:d7:66:ea:54:88:93:63:b6:32:80:82:42: e3:6e:f5:7e:d2:e9:72:f0:47:4f:0d:6f:e7:b1:6e:81:6f:64: cd:89:7f:6c:5e:b3:eb:31:0c:d3:d8:3a:71:69:8a:75:bf:95: 72:8c:fe:f5:1f:df:bc:68:8e:81:00:3d:6a:b5:81:d8:2f:ec: 2b:e8:15:ec -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZPm8jZ2eF5VINqtGCdwGBSlSNcMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0ZFNTlENEM3QTYxM0FCNDNGQzhGNjhFODk3NEFCQzgy NzdCOTlEMTAeFw0yNTAzMTMxMDU1MDBaFw0yNjAzMTIxMTAwMDBaMDMxMTAvBgNV BAMTKDZCNTAyMkY2MDVDNjdFMjEyMjQxMTU5MTkyRDk5RTQ5MEU4Q0ZGNkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnr5IwfFJBRouE8rFLEBq/Dj2Y JyeZRhO07GHRqvzonGimL4OMScjxxkGpzUw3/ex2fMo3e2QZa8Ibxe9c1NJx5QUZ 57AARpzRp/u52pVN538UggkH4jcVvru3/U4+OeAthrVWam5p1gLUGKcpW6jRan1r P96Ooue/zEz9qOmPWkt6KA3igmmHKxRbKW6p0r52Ops75NWx1GqueNb+CQiChR47 IZcgvN7oaRQIMyEDZqcEgvMRd2sRzlM/mmVIXbZns4TMiudOJ/S1F82Hk0aG/vzL I7f7gSu9VfzUKTMsYGkQMijtiCengpdEgV1ErIBGQvqt4Z6lCUMuxdujWiIHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUa1Ai9gXGfiEiQRWRktmeSQ6M/2wwHwYDVR0j BBgwFoAUz+WdTHphOrQ/yPaOiXSryCd7mdEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjVjN2UxZC04MmU4LTQxMDAtYjQzNS05OTU0MjcyZmI3YTgvMC9DRkU1OUQ0QzdB NjEzQUI0M0ZDOEY2OEU4OTc0QUJDODI3N0I5OUQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0ZFNTlENEM3QTYxM0FCNDNGQzhGNjhFODk3NEFCQzgyNzdC OTlEMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyNWM3ZTFkLTgyZTgtNDEwMC1i NDM1LTk5NTQyNzJmYjdhOC8wLzMxMzAzMzJlMzEzODM3MmUzMTM2MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzkzNzM0MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnu6IwDQYJ KoZIhvcNAQELBQADggEBANMuHGJQnzLDlxAekwKjHP1oVG8si++hdkAJ2SenWNgL h4Fn30ROy7Hh1VS3XowoN5Z5At3ZRbUVMbGtRLbrvuKVlIKlyBTaS3t62MzPvvVd EkNS95LbDPA09e4a9WmQeLuIqoFwQ0O0rKVnTOGAoTvLu31mHHu1NWw/Y6W84ly2 kA8wvOSwylai1TmWNpkrGbqp9Ksf1jjdTlg7z0HHirNbB2fkqbO1lOkuo0qGF5ZR Feu6UazB+0ppPddm6lSIk2O2MoCCQuNu9X7S6XLwR08Nb+exboFvZM2Jf2xes+sx DNPYOnFpinW/lXKM/vUf37xojoEAPWq1gdgv7CvoFew= -----END CERTIFICATE-----Generated at Sun Apr 6 08:28:11 2025 by rpki-client