$ rpki-client -vvf repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/3130332e3139332e3136362e302f32332d3233203d3e20313530313835.roa File: 3130332e3139332e3136362e302f32332d3233203d3e20313530313835.roa (raw, json) Hash identifier: 6gMRYCDTA91uCrSpOJHQwzXcDUzZZQ/fPopmQLU54uQ= Subject key identifier: 2D:5E:89:3C:D6:B0:1D:07:15:3A:E7:65:0A:9C:13:5F:FE:80:23:DA Certificate issuer: /CN=210BE7BD512F122FD63FE9057A7F1522DC9B81A7 Certificate serial: 5E1305CBB656BAEBC18D03100B0494ACD0B61BDD Authority key identifier: 21:0B:E7:BD:51:2F:12:2F:D6:3F:E9:05:7A:7F:15:22:DC:9B:81:A7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/3130332e3139332e3136362e302f32332d3233203d3e20313530313835.roa Signing time: Fri 10 Jan 2025 11:00:01 +0000 ROA not before: Fri 10 Jan 2025 10:55:01 +0000 ROA not after: Fri 09 Jan 2026 11:00:01 +0000 asID: 150185 IP address blocks: 103.193.166.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.crl rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 15:18:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:13:05:cb:b6:56:ba:eb:c1:8d:03:10:0b:04:94:ac:d0:b6:1b:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=210BE7BD512F122FD63FE9057A7F1522DC9B81A7 Validity Not Before: Jan 10 10:55:01 2025 GMT Not After : Jan 9 11:00:01 2026 GMT Subject: CN=2D5E893CD6B01D07153AE7650A9C135FFE8023DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:46:fe:cc:d1:49:36:45:12:3a:dd:e4:d1:86: b6:89:10:20:14:49:98:7d:c3:02:46:ad:c7:39:73: c9:ce:cf:6c:ec:b3:87:10:cb:38:ac:c5:4e:0a:ee: 29:f6:18:2b:33:d7:3f:83:8b:77:9d:fa:80:39:dc: 0b:79:36:52:43:1a:9c:ae:0b:57:e7:48:ed:e0:dc: 36:9c:87:7c:8c:2a:6f:c8:64:72:9e:2f:02:95:93: a6:a2:b3:a5:c6:78:ad:b3:d2:d7:11:f8:f1:85:72: ee:d3:e7:b4:8b:ba:06:82:3d:b9:eb:c5:84:53:46: 19:be:92:94:9c:02:7f:92:a2:ed:ed:d4:cb:08:f8: 59:91:73:12:9f:8e:22:dc:72:bb:2f:3a:34:07:56: 35:37:60:10:47:6f:44:cc:28:ff:3b:fa:3c:0b:f9: 0a:38:0f:49:57:ab:54:65:73:6d:45:28:5f:89:fc: 4d:2e:c0:40:75:de:3f:22:43:15:d7:23:78:84:1e: 43:11:6b:27:50:60:a8:60:e5:28:86:12:ca:12:d4: 0b:df:5c:1c:ce:53:f7:f9:f4:42:b1:13:6a:97:bb: 20:75:5f:16:4e:9d:b6:ba:14:59:6e:e5:53:86:53: f1:19:12:3b:d5:ea:2b:83:7f:25:dd:2b:c4:9b:ba: 43:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:5E:89:3C:D6:B0:1D:07:15:3A:E7:65:0A:9C:13:5F:FE:80:23:DA X509v3 Authority Key Identifier: keyid:21:0B:E7:BD:51:2F:12:2F:D6:3F:E9:05:7A:7F:15:22:DC:9B:81:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/3130332e3139332e3136362e302f32332d3233203d3e20313530313835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.193.166.0/23 Signature Algorithm: sha256WithRSAEncryption ac:84:e3:f9:66:0b:c6:16:6d:06:c1:7a:be:54:40:44:7b:8f: 88:66:7a:f5:88:b2:8c:41:08:2f:55:15:98:36:6f:26:d5:99: 62:0e:ec:37:eb:56:2a:6e:dd:a3:45:d1:70:5c:bd:2e:4d:de: 42:fa:7e:22:bf:ad:f3:5a:67:ab:29:76:62:c4:e2:e9:9a:bb: 04:de:20:34:d8:20:69:35:df:c8:0f:64:0b:63:d3:5f:75:89: 58:9b:26:af:48:69:5c:99:83:1d:3d:41:7e:fe:a3:68:f8:2e: 73:b9:55:b2:49:1d:2a:d3:38:c1:d9:52:3d:76:62:32:45:a4: 77:4f:42:df:4b:bc:fc:94:b3:46:9c:e3:11:05:16:d3:3e:eb: ab:16:d2:e4:f7:e7:93:4d:5a:65:0d:0b:ed:14:65:96:9b:6d: cb:79:b3:79:cf:5f:67:2d:40:c6:49:bc:a8:d7:71:43:9e:7f: fc:18:b8:9b:77:08:85:ac:3c:fe:5d:b2:75:65:54:02:5f:ad: af:7f:74:02:c6:7b:53:c4:0d:22:66:cb:d4:7c:b8:27:78:90: db:2f:2b:32:ba:6e:5a:26:60:bb:ff:7c:17:33:34:63:74:27: e5:54:0d:81:c9:92:f5:90:03:28:f2:e2:17:a5:87:63:a2:38: 47:b4:09:88 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXhMFy7ZWuuvBjQMQCwSUrNC2G90wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjEwQkU3QkQ1MTJGMTIyRkQ2M0ZFOTA1N0E3RjE1MjJE QzlCODFBNzAeFw0yNTAxMTAxMDU1MDFaFw0yNjAxMDkxMTAwMDFaMDMxMTAvBgNV BAMTKDJENUU4OTNDRDZCMDFEMDcxNTNBRTc2NTBBOUMxMzVGRkU4MDIzREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfRv7M0Uk2RRI63eTRhraJECAU SZh9wwJGrcc5c8nOz2zss4cQyzisxU4K7in2GCsz1z+Di3ed+oA53At5NlJDGpyu C1fnSO3g3Dach3yMKm/IZHKeLwKVk6ais6XGeK2z0tcR+PGFcu7T57SLugaCPbnr xYRTRhm+kpScAn+Sou3t1MsI+FmRcxKfjiLccrsvOjQHVjU3YBBHb0TMKP87+jwL +Qo4D0lXq1Rlc21FKF+J/E0uwEB13j8iQxXXI3iEHkMRaydQYKhg5SiGEsoS1Avf XBzOU/f59EKxE2qXuyB1XxZOnba6FFlu5VOGU/EZEjvV6iuDfyXdK8SbukMvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQULV6JPNawHQcVOudlCpwTX/6AI9owHwYDVR0j BBgwFoAUIQvnvVEvEi/WP+kFen8VItybgacwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NzAzNjk3NC04MTMxLTQ1YWYtOTRjZS1mNDliNDgxMWMxNzMvMC8yMTBCRTdCRDUx MkYxMjJGRDYzRkU5MDU3QTdGMTUyMkRDOUI4MUE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjEwQkU3QkQ1MTJGMTIyRkQ2M0ZFOTA1N0E3RjE1MjJEQzlC ODFBNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3MDM2OTc0LTgxMzEtNDVhZi05 NGNlLWY0OWI0ODExYzE3My8wLzMxMzAzMzJlMzEzOTMzMmUzMTM2MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM1MzAzMTM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnwaYwDQYJ KoZIhvcNAQELBQADggEBAKyE4/lmC8YWbQbBer5UQER7j4hmevWIsoxBCC9VFZg2 bybVmWIO7DfrVipu3aNF0XBcvS5N3kL6fiK/rfNaZ6spdmLE4umauwTeIDTYIGk1 38gPZAtj0191iVibJq9IaVyZgx09QX7+o2j4LnO5VbJJHSrTOMHZUj12YjJFpHdP Qt9LvPyUs0ac4xEFFtM+66sW0uT355NNWmUNC+0UZZabbct5s3nPX2ctQMZJvKjX cUOef/wYuJt3CIWsPP5dsnVlVAJfra9/dALGe1PEDSJmy9R8uCd4kNsvKzK6blom YLv/fBczNGN0J+VUDYHJkvWQAyjy4helh2OiOEe0CYg= -----END CERTIFICATE-----Generated at Mon Apr 7 15:48:45 2025 by rpki-client