$ rpki-client -vvf repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/3130332e3139332e3136362e302f32342d3234203d3e20313530313835.roa File: 3130332e3139332e3136362e302f32342d3234203d3e20313530313835.roa (raw, json) Hash identifier: jkr10nu1KheD3rFITjZKu8+8qzjxbIrM8OjPSducB+Q= Subject key identifier: 80:52:5A:86:87:94:89:04:7F:1E:3B:85:AF:F9:68:58:B3:B3:58:21 Certificate issuer: /CN=210BE7BD512F122FD63FE9057A7F1522DC9B81A7 Certificate serial: 1E0E6D23E0C9F991876B3124C3907B3ED409ED9E Authority key identifier: 21:0B:E7:BD:51:2F:12:2F:D6:3F:E9:05:7A:7F:15:22:DC:9B:81:A7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/3130332e3139332e3136362e302f32342d3234203d3e20313530313835.roa Signing time: Fri 10 Jan 2025 11:00:01 +0000 ROA not before: Fri 10 Jan 2025 10:55:01 +0000 ROA not after: Fri 09 Jan 2026 11:00:01 +0000 asID: 150185 IP address blocks: 103.193.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.crl rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 15:18:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:0e:6d:23:e0:c9:f9:91:87:6b:31:24:c3:90:7b:3e:d4:09:ed:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=210BE7BD512F122FD63FE9057A7F1522DC9B81A7 Validity Not Before: Jan 10 10:55:01 2025 GMT Not After : Jan 9 11:00:01 2026 GMT Subject: CN=80525A86879489047F1E3B85AFF96858B3B35821 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:2a:9d:42:e1:0b:98:9d:65:56:bf:7c:b2:12: 44:57:7e:7b:4b:54:65:c1:f9:60:4a:20:02:4a:71: 64:23:71:04:b3:bb:0a:89:73:1c:61:1b:e0:31:04: 94:39:17:99:91:11:44:ea:67:27:36:98:07:24:04: ab:bd:78:62:d7:0f:a2:5e:0d:92:eb:5a:0f:68:18: f8:ab:25:50:52:80:c4:62:1c:89:4c:67:b3:95:6b: ed:23:20:3c:b6:04:f8:50:c4:2d:6d:7e:40:9b:da: c8:76:20:e7:c9:d1:86:fb:e9:86:a8:d0:d7:5b:f0: fa:b9:73:60:f1:55:06:67:31:03:67:fd:e3:f4:6f: 57:5e:78:cb:ac:a2:c4:67:2c:1d:94:77:41:ce:56: 1b:6c:2a:fc:94:6b:fd:67:d6:f2:14:73:d4:10:12: 9c:e6:1b:2c:0e:3c:46:34:64:ed:2b:cc:6e:59:4e: a8:63:1f:9a:38:67:77:75:dc:96:c4:dc:70:af:ca: 93:29:f4:8c:00:9a:83:81:c6:b4:6c:57:85:f9:3a: 2c:60:4f:91:60:62:11:bf:fe:f8:70:3d:71:2a:dd: c3:ac:3a:21:f0:02:84:3f:6b:d0:c0:54:94:93:73: 37:fc:3f:1a:47:ec:43:bd:c2:47:3b:72:e5:ce:3c: 33:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:52:5A:86:87:94:89:04:7F:1E:3B:85:AF:F9:68:58:B3:B3:58:21 X509v3 Authority Key Identifier: keyid:21:0B:E7:BD:51:2F:12:2F:D6:3F:E9:05:7A:7F:15:22:DC:9B:81:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/3130332e3139332e3136362e302f32342d3234203d3e20313530313835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.193.166.0/24 Signature Algorithm: sha256WithRSAEncryption 32:ab:40:4e:98:7e:13:13:07:1d:4a:a4:58:ab:50:21:c0:27: 6e:46:df:02:1a:5b:39:22:dc:e2:ab:ec:4f:7c:f2:5a:89:fa: 68:17:9b:ae:10:8c:da:41:62:c0:82:0a:17:e4:9e:f0:82:39: 9f:35:67:a5:88:d0:bc:e7:b7:73:02:b9:bd:c7:3c:99:dd:66: 20:db:6c:5e:34:cb:59:47:42:18:2c:11:28:28:1c:1b:4f:8b: 00:2c:72:65:11:c7:4c:39:da:39:a2:4a:d1:40:53:36:eb:92: bb:6d:9b:8f:f3:1e:c3:56:d7:9a:08:89:d5:92:b8:6f:a2:71: 79:de:5c:69:d2:ff:8a:55:83:22:2e:ac:39:36:fe:34:4a:73: 5f:e0:00:52:29:f8:bb:f1:14:cb:df:81:e0:9f:15:8d:b2:a1: 55:c2:38:21:18:4f:19:0b:19:d0:d8:0f:be:df:a4:98:f5:e2: 34:62:fd:70:bb:b6:36:0c:cd:dc:3a:2c:06:7e:71:c0:a6:4e: f4:c0:3d:fa:76:12:32:bf:93:5d:9a:2a:9d:10:eb:77:52:6c: 40:b8:38:a3:b5:a0:c2:41:7c:e4:59:06:26:4e:1c:71:3b:c8: 70:6c:29:31:e6:6b:1f:14:8b:f8:16:4a:9e:04:1c:da:5f:f2: a9:4c:b3:a7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHg5tI+DJ+ZGHazEkw5B7PtQJ7Z4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjEwQkU3QkQ1MTJGMTIyRkQ2M0ZFOTA1N0E3RjE1MjJE QzlCODFBNzAeFw0yNTAxMTAxMDU1MDFaFw0yNjAxMDkxMTAwMDFaMDMxMTAvBgNV BAMTKDgwNTI1QTg2ODc5NDg5MDQ3RjFFM0I4NUFGRjk2ODU4QjNCMzU4MjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpKp1C4QuYnWVWv3yyEkRXfntL VGXB+WBKIAJKcWQjcQSzuwqJcxxhG+AxBJQ5F5mREUTqZyc2mAckBKu9eGLXD6Je DZLrWg9oGPirJVBSgMRiHIlMZ7OVa+0jIDy2BPhQxC1tfkCb2sh2IOfJ0Yb76Yao 0Ndb8Pq5c2DxVQZnMQNn/eP0b1deeMusosRnLB2Ud0HOVhtsKvyUa/1n1vIUc9QQ EpzmGywOPEY0ZO0rzG5ZTqhjH5o4Z3d13JbE3HCvypMp9IwAmoOBxrRsV4X5Oixg T5FgYhG//vhwPXEq3cOsOiHwAoQ/a9DAVJSTczf8PxpH7EO9wkc7cuXOPDPnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUgFJahoeUiQR/HjuFr/loWLOzWCEwHwYDVR0j BBgwFoAUIQvnvVEvEi/WP+kFen8VItybgacwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NzAzNjk3NC04MTMxLTQ1YWYtOTRjZS1mNDliNDgxMWMxNzMvMC8yMTBCRTdCRDUx MkYxMjJGRDYzRkU5MDU3QTdGMTUyMkRDOUI4MUE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjEwQkU3QkQ1MTJGMTIyRkQ2M0ZFOTA1N0E3RjE1MjJEQzlC ODFBNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3MDM2OTc0LTgxMzEtNDVhZi05 NGNlLWY0OWI0ODExYzE3My8wLzMxMzAzMzJlMzEzOTMzMmUzMTM2MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzMTM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnwaYwDQYJ KoZIhvcNAQELBQADggEBADKrQE6YfhMTBx1KpFirUCHAJ25G3wIaWzki3OKr7E98 8lqJ+mgXm64QjNpBYsCCChfknvCCOZ81Z6WI0Lznt3MCub3HPJndZiDbbF40y1lH QhgsESgoHBtPiwAscmURx0w52jmiStFAUzbrkrttm4/zHsNW15oIidWSuG+icXne XGnS/4pVgyIurDk2/jRKc1/gAFIp+LvxFMvfgeCfFY2yoVXCOCEYTxkLGdDYD77f pJj14jRi/XC7tjYMzdw6LAZ+ccCmTvTAPfp2EjK/k12aKp0Q63dSbEC4OKO1oMJB fORZBiZOHHE7yHBsKTHmax8Ui/gWSp4EHNpf8qlMs6c= -----END CERTIFICATE-----Generated at Mon Apr 7 16:01:45 2025 by rpki-client