$ rpki-client -vvf repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/3130332e3135352e3139322e302f32332d3233203d3e20313431303639.roa File: 3130332e3135352e3139322e302f32332d3233203d3e20313431303639.roa (raw, json) Hash identifier: 5L7KwFUgvVnXbTdBI9pybBL9RZN1DFSQWqr7TkH60p0= Subject key identifier: 8C:2A:3B:AB:03:FE:C0:ED:74:DB:89:F9:DF:A0:BA:5E:FF:F5:B0:60 Certificate issuer: /CN=98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA Certificate serial: 6E62223F8CF4D1C3DEB4AE14242E6D387161CAA6 Authority key identifier: 98:FF:48:FF:AD:3C:C9:E9:87:8D:3F:A7:4E:0E:EA:79:CA:13:F0:FA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/3130332e3135352e3139322e302f32332d3233203d3e20313431303639.roa Signing time: Mon 14 Apr 2025 17:00:00 +0000 ROA not before: Mon 14 Apr 2025 16:55:00 +0000 ROA not after: Mon 13 Apr 2026 17:00:00 +0000 asID: 141069 IP address blocks: 103.155.192.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.crl rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Apr 2025 06:09:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:62:22:3f:8c:f4:d1:c3:de:b4:ae:14:24:2e:6d:38:71:61:ca:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA Validity Not Before: Apr 14 16:55:00 2025 GMT Not After : Apr 13 17:00:00 2026 GMT Subject: CN=8C2A3BAB03FEC0ED74DB89F9DFA0BA5EFFF5B060 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f2:63:5d:37:61:82:78:f2:b5:fc:b0:f5:43: 0b:6f:36:a2:18:db:68:af:69:49:7e:de:6b:a1:60: 49:1e:18:b8:e9:bc:a2:5d:3c:0c:a7:b1:1b:7c:40: 03:90:e9:3a:87:70:87:66:08:d1:14:5c:00:c5:ea: b0:c1:ee:37:d4:da:f4:ab:c2:ab:43:2b:81:35:d5: 38:e7:e4:15:77:f5:7f:c9:e2:9f:63:c0:26:6f:98: 0d:56:6c:f9:48:68:42:e7:bd:20:23:23:00:b7:d5: 57:fa:df:00:c0:0f:ae:74:5c:91:28:ff:c1:94:ac: ff:6f:a4:67:93:e7:f1:24:e4:b8:2b:62:65:13:3a: 8b:28:81:9a:86:3c:f0:d0:72:d2:80:f4:5b:38:af: 3a:5c:5f:b5:7a:70:eb:ec:50:e0:a1:d7:45:79:af: 08:5f:11:6e:28:c3:fc:46:f8:55:fa:28:c4:02:9f: 45:a1:ba:93:8a:32:5b:dc:4f:90:e3:b0:c7:6d:33: dd:33:56:e1:3c:4b:d6:2b:23:09:52:12:8d:15:b7: 16:3b:32:f5:bb:00:f1:7b:92:a3:76:a8:db:56:f2: 53:ec:1e:1e:9f:23:b3:cb:c9:c3:2b:26:7c:11:9c: b7:7f:34:23:32:5f:ac:f1:1f:d0:59:64:24:c0:ea: 58:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:2A:3B:AB:03:FE:C0:ED:74:DB:89:F9:DF:A0:BA:5E:FF:F5:B0:60 X509v3 Authority Key Identifier: keyid:98:FF:48:FF:AD:3C:C9:E9:87:8D:3F:A7:4E:0E:EA:79:CA:13:F0:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/3130332e3135352e3139322e302f32332d3233203d3e20313431303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.192.0/23 Signature Algorithm: sha256WithRSAEncryption 23:19:ed:0c:10:21:2d:4c:ae:a3:af:aa:78:f4:3a:58:82:c4: 68:b8:41:a8:9d:33:7b:0e:cb:f8:41:46:4b:2f:9b:04:6c:4e: 2b:47:ad:96:60:93:db:c1:59:48:9e:c7:ef:a5:8e:23:88:d8: b4:e5:64:7a:cd:11:0a:e5:ce:fe:59:f4:ac:d6:d3:48:f0:df: 8d:ac:9a:cf:94:32:f7:79:7a:78:55:81:9f:f5:57:fb:88:7a: 02:37:49:b3:d2:5b:ee:bb:7e:54:fb:73:61:7a:35:13:f2:e1: 4f:e2:36:5f:f8:bf:d8:0f:f0:23:c5:2b:5b:1c:a5:83:fe:c9: a0:29:1f:00:4e:de:04:0f:e7:e3:31:79:d2:f7:77:26:46:0f: bb:90:1e:25:a0:9a:1e:8f:1f:eb:75:d9:8c:93:5b:73:9f:c4: 3e:f9:59:73:06:79:8f:27:68:73:c6:6d:6a:86:50:5d:1f:cd: cc:0f:88:df:b9:23:c0:d4:e8:df:5a:8b:a5:19:61:77:51:60: 2f:e0:d4:01:b2:99:97:27:5c:25:a2:0a:0e:f4:34:e8:1b:85: 70:7d:3b:f7:6e:90:ef:23:33:a7:4d:68:15:13:92:ca:b3:3a: 89:ec:16:d4:6f:d0:e1:57:76:ac:f2:61:81:6e:c9:dc:82:32: 63:a4:40:d8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbmIiP4z00cPetK4UJC5tOHFhyqYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOThGRjQ4RkZBRDNDQzlFOTg3OEQzRkE3NEUwRUVBNzlD QTEzRjBGQTAeFw0yNTA0MTQxNjU1MDBaFw0yNjA0MTMxNzAwMDBaMDMxMTAvBgNV BAMTKDhDMkEzQkFCMDNGRUMwRUQ3NERCODlGOURGQTBCQTVFRkZGNUIwNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz8mNdN2GCePK1/LD1QwtvNqIY 22ivaUl+3muhYEkeGLjpvKJdPAynsRt8QAOQ6TqHcIdmCNEUXADF6rDB7jfU2vSr wqtDK4E11Tjn5BV39X/J4p9jwCZvmA1WbPlIaELnvSAjIwC31Vf63wDAD650XJEo /8GUrP9vpGeT5/Ek5LgrYmUTOosogZqGPPDQctKA9Fs4rzpcX7V6cOvsUOCh10V5 rwhfEW4ow/xG+FX6KMQCn0WhupOKMlvcT5DjsMdtM90zVuE8S9YrIwlSEo0VtxY7 MvW7APF7kqN2qNtW8lPsHh6fI7PLycMrJnwRnLd/NCMyX6zxH9BZZCTA6lj/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjCo7qwP+wO1024n536C6Xv/1sGAwHwYDVR0j BBgwFoAUmP9I/608yemHjT+nTg7qecoT8PowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NDUwZDk1Ni05YjAwLTQ2YzEtYTYzMS0zNTY0ZTE4NmEwNzkvMC85OEZGNDhGRkFE M0NDOUU5ODc4RDNGQTc0RTBFRUE3OUNBMTNGMEZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOThGRjQ4RkZBRDNDQzlFOTg3OEQzRkE3NEUwRUVBNzlDQTEz RjBGQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I0NTBkOTU2LTliMDAtNDZjMS1h NjMxLTM1NjRlMTg2YTA3OS8wLzMxMzAzMzJlMzEzNTM1MmUzMTM5MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzMDM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnm8AwDQYJ KoZIhvcNAQELBQADggEBACMZ7QwQIS1MrqOvqnj0OliCxGi4QaidM3sOy/hBRksv mwRsTitHrZZgk9vBWUiex++ljiOI2LTlZHrNEQrlzv5Z9KzW00jw342sms+UMvd5 enhVgZ/1V/uIegI3SbPSW+67flT7c2F6NRPy4U/iNl/4v9gP8CPFK1scpYP+yaAp HwBO3gQP5+MxedL3dyZGD7uQHiWgmh6PH+t12YyTW3OfxD75WXMGeY8naHPGbWqG UF0fzcwPiN+5I8DU6N9ai6UZYXdRYC/g1AGymZcnXCWiCg70NOgbhXB9O/dukO8j M6dNaBUTksqzOonsFtRv0OFXdqzyYYFuydyCMmOkQNg= -----END CERTIFICATE-----Generated at Tue Apr 22 20:54:03 2025 by rpki-client