$ rpki-client -vvf repo-rpki.idnic.net/repo/b6d88496-b2ba-4d13-9825-ae38aff1da15/0/3130332e3138342e36342e302f32332d3234203d3e20313439363832.roa File: 3130332e3138342e36342e302f32332d3234203d3e20313439363832.roa (raw, json) Hash identifier: eaULz+kMsRSSqy6h3V303twAaR4RcVJjEt3EXFQ5l2A= Subject key identifier: F6:EA:8B:80:93:83:05:0A:D8:E7:9D:D5:79:78:07:5D:CE:99:2A:DA Certificate issuer: /CN=3D93688202931D72322A7EE0053964A2DD8EB457 Certificate serial: 60820D81CA04702B8430D6DF46259808EECED856 Authority key identifier: 3D:93:68:82:02:93:1D:72:32:2A:7E:E0:05:39:64:A2:DD:8E:B4:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D93688202931D72322A7EE0053964A2DD8EB457.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b6d88496-b2ba-4d13-9825-ae38aff1da15/0/3130332e3138342e36342e302f32332d3234203d3e20313439363832.roa Signing time: Fri 10 Jan 2025 05:00:01 +0000 ROA not before: Fri 10 Jan 2025 04:55:01 +0000 ROA not after: Fri 09 Jan 2026 05:00:01 +0000 asID: 149682 IP address blocks: 103.184.64.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b6d88496-b2ba-4d13-9825-ae38aff1da15/0/3D93688202931D72322A7EE0053964A2DD8EB457.crl rsync://repo-rpki.idnic.net/repo/b6d88496-b2ba-4d13-9825-ae38aff1da15/0/3D93688202931D72322A7EE0053964A2DD8EB457.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D93688202931D72322A7EE0053964A2DD8EB457.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 22:07:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:82:0d:81:ca:04:70:2b:84:30:d6:df:46:25:98:08:ee:ce:d8:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D93688202931D72322A7EE0053964A2DD8EB457 Validity Not Before: Jan 10 04:55:01 2025 GMT Not After : Jan 9 05:00:01 2026 GMT Subject: CN=F6EA8B809383050AD8E79DD57978075DCE992ADA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a6:30:2d:f3:6e:21:a6:ec:18:a3:bb:1b:83: 3e:af:0d:a5:2f:56:4e:9b:d1:70:f1:d6:fb:76:89: ed:20:de:46:60:16:df:4d:de:6f:61:e4:76:94:88: ad:99:c5:6c:01:c2:f7:be:84:ae:a7:d0:d5:dd:a9: d8:87:64:ad:a9:39:ed:e0:66:94:03:bd:5f:30:e5: e6:81:c8:d1:93:86:14:39:45:5a:c7:4f:5d:8f:fb: 05:24:01:db:c9:22:d4:f2:68:9d:75:31:9c:68:4c: d5:13:a1:e1:7b:0d:92:8c:3c:20:17:99:ea:04:46: cc:c9:01:71:47:3b:47:ac:dd:8d:e0:ed:6e:e0:7f: 6e:1e:2d:f5:8c:f5:6a:0b:7b:84:6f:73:ee:0d:50: 96:92:82:01:a3:d2:bc:73:59:e4:91:f3:01:2c:b9: 3e:7c:05:4f:49:27:71:57:1a:a4:56:2d:64:a1:af: c5:a8:47:c4:fe:49:e3:c1:38:d7:20:f7:34:6c:eb: 23:e4:a0:1b:f5:b4:3d:ff:f8:52:d4:10:a5:d1:8d: 01:3d:f0:e5:54:73:20:8a:1b:a9:10:0f:64:da:bc: 0d:6d:4c:0d:af:8f:78:50:07:c8:d5:53:ea:42:95: b8:bd:60:7d:1c:de:ba:a8:5b:84:80:38:6e:c4:51: c4:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:EA:8B:80:93:83:05:0A:D8:E7:9D:D5:79:78:07:5D:CE:99:2A:DA X509v3 Authority Key Identifier: keyid:3D:93:68:82:02:93:1D:72:32:2A:7E:E0:05:39:64:A2:DD:8E:B4:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b6d88496-b2ba-4d13-9825-ae38aff1da15/0/3D93688202931D72322A7EE0053964A2DD8EB457.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D93688202931D72322A7EE0053964A2DD8EB457.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b6d88496-b2ba-4d13-9825-ae38aff1da15/0/3130332e3138342e36342e302f32332d3234203d3e20313439363832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.64.0/23 Signature Algorithm: sha256WithRSAEncryption 31:b8:18:5b:69:e0:dc:0f:8a:d9:64:87:c6:0c:f8:1c:9f:b3: eb:d5:a1:d4:dc:bf:e1:8d:0c:e2:82:14:bb:90:84:58:ca:43: c9:14:fb:86:97:ca:5c:92:6e:08:d6:da:1b:c5:7d:dd:da:79: 90:87:15:46:88:ef:ec:26:9f:6d:eb:13:0b:11:79:db:22:ff: 06:85:bc:63:90:6f:15:62:79:53:39:bb:53:c0:c0:36:d9:13: 2e:3f:ca:bb:81:f4:3c:f5:21:c3:90:fb:54:c6:dd:4c:e3:37: a1:b1:d9:db:ea:53:4f:3a:f8:53:92:f8:35:d6:4d:d7:9b:92: 20:18:bb:c7:06:07:1a:e3:af:e9:bd:2d:3d:eb:02:cc:2c:d0: 0e:c1:09:99:77:6b:6f:99:cd:8b:e4:99:2d:e6:40:a5:47:cb: dc:d1:6f:bf:c3:d2:a3:15:a9:64:0f:84:b4:d5:48:60:bd:2a: 16:5f:4d:fc:b1:8e:8b:4d:8d:a0:7b:90:d2:6f:ae:c6:8e:ae: e6:1b:bf:71:e9:67:46:c2:a9:fa:bd:bc:2a:c2:b3:b7:b1:2f: 87:e3:a3:47:23:02:82:a8:b8:3d:21:09:c0:ed:4e:2d:cf:f5: 75:4e:54:16:b7:8c:3f:c3:1d:28:67:57:51:aa:3c:b7:80:d1: da:d6:db:42 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYIINgcoEcCuEMNbfRiWYCO7O2FYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q5MzY4ODIwMjkzMUQ3MjMyMkE3RUUwMDUzOTY0QTJE RDhFQjQ1NzAeFw0yNTAxMTAwNDU1MDFaFw0yNjAxMDkwNTAwMDFaMDMxMTAvBgNV BAMTKEY2RUE4QjgwOTM4MzA1MEFEOEU3OURENTc5NzgwNzVEQ0U5OTJBREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCupjAt824hpuwYo7sbgz6vDaUv Vk6b0XDx1vt2ie0g3kZgFt9N3m9h5HaUiK2ZxWwBwve+hK6n0NXdqdiHZK2pOe3g ZpQDvV8w5eaByNGThhQ5RVrHT12P+wUkAdvJItTyaJ11MZxoTNUToeF7DZKMPCAX meoERszJAXFHO0es3Y3g7W7gf24eLfWM9WoLe4Rvc+4NUJaSggGj0rxzWeSR8wEs uT58BU9JJ3FXGqRWLWShr8WoR8T+SePBONcg9zRs6yPkoBv1tD3/+FLUEKXRjQE9 8OVUcyCKG6kQD2TavA1tTA2vj3hQB8jVU+pClbi9YH0c3rqoW4SAOG7EUcR9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9uqLgJODBQrY553VeXgHXc6ZKtowHwYDVR0j BBgwFoAUPZNoggKTHXIyKn7gBTlkot2OtFcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NmQ4ODQ5Ni1iMmJhLTRkMTMtOTgyNS1hZTM4YWZmMWRhMTUvMC8zRDkzNjg4MjAy OTMxRDcyMzIyQTdFRTAwNTM5NjRBMkREOEVCNDU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q5MzY4ODIwMjkzMUQ3MjMyMkE3RUUwMDUzOTY0QTJERDhF QjQ1Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I2ZDg4NDk2LWIyYmEtNGQxMy05 ODI1LWFlMzhhZmYxZGExNS8wLzMxMzAzMzJlMzEzODM0MmUzNjM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM5MzYzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7hAMA0GCSqG SIb3DQEBCwUAA4IBAQAxuBhbaeDcD4rZZIfGDPgcn7Pr1aHU3L/hjQzighS7kIRY ykPJFPuGl8pckm4I1tobxX3d2nmQhxVGiO/sJp9t6xMLEXnbIv8GhbxjkG8VYnlT ObtTwMA22RMuP8q7gfQ89SHDkPtUxt1M4zehsdnb6lNPOvhTkvg11k3Xm5IgGLvH Bgca46/pvS096wLMLNAOwQmZd2tvmc2L5Jkt5kClR8vc0W+/w9KjFalkD4S01Uhg vSoWX038sY6LTY2ge5DSb67Gjq7mG79x6WdGwqn6vbwqwrO3sS+H46NHIwKCqLg9 IQnA7U4tz/V1TlQWt4w/wx0oZ1dRqjy3gNHa1ttC -----END CERTIFICATE-----Generated at Sun Apr 6 13:41:28 2025 by rpki-client