$ rpki-client -vvf repo-rpki.idnic.net/repo/c61e9de2-a4ec-47a2-9bb8-10821dda67f3/0/3130332e3138362e39362e302f32342d3234203d3e20313439363933.roa File: 3130332e3138362e39362e302f32342d3234203d3e20313439363933.roa (raw, json) Hash identifier: eoTBfzq8y4bEDLADbH3GXH2pd0CIGqJzNCdlfnqwOuA= Subject key identifier: D8:E4:32:D2:67:0B:68:B9:6F:9C:53:64:5A:87:3B:00:1F:1A:E0:0C Certificate issuer: /CN=F61D0A85B56D8F824658A8287BE8D4F659680324 Certificate serial: 3A89491EBE24058DB753A972B1378A6037B3268E Authority key identifier: F6:1D:0A:85:B5:6D:8F:82:46:58:A8:28:7B:E8:D4:F6:59:68:03:24 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F61D0A85B56D8F824658A8287BE8D4F659680324.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c61e9de2-a4ec-47a2-9bb8-10821dda67f3/0/3130332e3138362e39362e302f32342d3234203d3e20313439363933.roa Signing time: Wed 05 Mar 2025 02:00:01 +0000 ROA not before: Wed 05 Mar 2025 01:55:01 +0000 ROA not after: Wed 04 Mar 2026 02:00:01 +0000 asID: 149693 IP address blocks: 103.186.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c61e9de2-a4ec-47a2-9bb8-10821dda67f3/0/F61D0A85B56D8F824658A8287BE8D4F659680324.crl rsync://repo-rpki.idnic.net/repo/c61e9de2-a4ec-47a2-9bb8-10821dda67f3/0/F61D0A85B56D8F824658A8287BE8D4F659680324.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F61D0A85B56D8F824658A8287BE8D4F659680324.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 09:33:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:89:49:1e:be:24:05:8d:b7:53:a9:72:b1:37:8a:60:37:b3:26:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F61D0A85B56D8F824658A8287BE8D4F659680324 Validity Not Before: Mar 5 01:55:01 2025 GMT Not After : Mar 4 02:00:01 2026 GMT Subject: CN=D8E432D2670B68B96F9C53645A873B001F1AE00C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:18:d7:df:ef:d9:c8:fd:c8:10:39:f5:0d:c7: 27:5f:be:9d:bd:d6:bb:19:0e:0b:49:d8:68:e4:13: 7d:52:ee:8c:3c:48:b4:13:41:52:37:bd:a9:83:77: dc:dc:4c:e7:0b:76:c4:e0:01:cc:bc:16:02:a6:12: 89:9f:53:8d:c7:58:47:79:ff:58:ee:5d:14:18:c4: 89:4d:87:42:9b:d0:a4:b8:8e:50:3e:13:46:08:44: d6:c0:6b:8c:03:4c:cc:25:4b:8f:8d:de:3f:2a:03: 5c:6f:2e:5e:37:3b:6c:90:bd:c7:31:c1:00:7c:65: 79:d7:55:50:c9:7c:6c:90:d6:4a:10:1b:38:c5:fe: b0:e5:77:ea:39:8c:63:a8:05:af:4f:ef:05:95:e3: a3:35:e7:cc:bb:73:3a:25:59:e0:25:0e:74:b0:c3: e8:a6:7f:8d:13:85:c7:d0:01:a2:8b:30:96:57:f1: b0:d3:b1:61:e6:65:f4:82:43:e8:ec:0f:e9:83:ac: 52:15:4c:0f:33:2d:2b:83:86:85:a7:a7:2a:eb:09: ae:63:f1:f0:0c:4e:17:fc:4c:80:3e:ac:4f:ee:f2: 67:1e:5c:9b:b5:e6:08:5f:33:bb:40:6e:99:33:8f: 94:d9:ca:33:97:ea:22:51:48:f4:60:51:db:3b:72: 36:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:E4:32:D2:67:0B:68:B9:6F:9C:53:64:5A:87:3B:00:1F:1A:E0:0C X509v3 Authority Key Identifier: keyid:F6:1D:0A:85:B5:6D:8F:82:46:58:A8:28:7B:E8:D4:F6:59:68:03:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c61e9de2-a4ec-47a2-9bb8-10821dda67f3/0/F61D0A85B56D8F824658A8287BE8D4F659680324.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F61D0A85B56D8F824658A8287BE8D4F659680324.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c61e9de2-a4ec-47a2-9bb8-10821dda67f3/0/3130332e3138362e39362e302f32342d3234203d3e20313439363933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.96.0/24 Signature Algorithm: sha256WithRSAEncryption 65:8f:0c:07:3a:92:0e:e7:98:0b:40:f3:88:35:35:ab:2e:e1: 8a:80:a7:73:3a:f1:44:e1:ac:1a:49:46:e6:5b:58:db:76:e5: a6:c6:64:0e:ed:66:1c:75:97:7a:f9:a3:40:0f:8d:3c:81:ab: d6:3c:b5:7c:01:45:3b:41:9a:da:32:21:e6:3d:b0:06:7a:7a: a7:5b:cb:4d:32:1d:d8:76:65:99:9e:f1:37:f6:87:c7:a6:6b: c4:c1:9c:f8:c2:13:46:36:ac:5d:17:8b:44:be:c1:17:ff:fe: a5:7f:5a:d3:27:ef:64:b8:fe:80:8d:98:43:4f:36:8b:14:fe: 9a:43:c1:8d:1b:7d:12:b1:9e:5b:f0:56:46:7e:e4:49:1b:8d: eb:40:34:a4:70:5e:01:03:92:91:d9:f4:61:dc:66:74:fe:25: 8e:c2:8d:66:35:43:8a:42:a8:92:d9:de:0c:c0:0a:c4:1d:1f: 70:cf:4b:a7:1b:1b:44:fe:1e:9d:1c:08:aa:12:a1:08:83:18: 8b:83:49:17:87:6e:ff:5e:ec:82:1e:27:1a:7e:da:ea:2d:85: 77:87:ef:2d:56:8b:d1:e8:a6:3d:fc:71:39:c7:c3:b8:62:62: 7b:a0:bb:6b:72:80:ea:09:2e:3b:e4:52:53:4e:4d:23:f5:ce: 17:28:a0:90 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOolJHr4kBY23U6lysTeKYDezJo4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjYxRDBBODVCNTZEOEY4MjQ2NThBODI4N0JFOEQ0RjY1 OTY4MDMyNDAeFw0yNTAzMDUwMTU1MDFaFw0yNjAzMDQwMjAwMDFaMDMxMTAvBgNV BAMTKEQ4RTQzMkQyNjcwQjY4Qjk2RjlDNTM2NDVBODczQjAwMUYxQUUwMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvGNff79nI/cgQOfUNxydfvp29 1rsZDgtJ2GjkE31S7ow8SLQTQVI3vamDd9zcTOcLdsTgAcy8FgKmEomfU43HWEd5 /1juXRQYxIlNh0Kb0KS4jlA+E0YIRNbAa4wDTMwlS4+N3j8qA1xvLl43O2yQvccx wQB8ZXnXVVDJfGyQ1koQGzjF/rDld+o5jGOoBa9P7wWV46M158y7czolWeAlDnSw w+imf40ThcfQAaKLMJZX8bDTsWHmZfSCQ+jsD+mDrFIVTA8zLSuDhoWnpyrrCa5j 8fAMThf8TIA+rE/u8mceXJu15ghfM7tAbpkzj5TZyjOX6iJRSPRgUds7cjZHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2OQy0mcLaLlvnFNkWoc7AB8a4AwwHwYDVR0j BBgwFoAU9h0KhbVtj4JGWKgoe+jU9lloAyQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NjFlOWRlMi1hNGVjLTQ3YTItOWJiOC0xMDgyMWRkYTY3ZjMvMC9GNjFEMEE4NUI1 NkQ4RjgyNDY1OEE4Mjg3QkU4RDRGNjU5NjgwMzI0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjYxRDBBODVCNTZEOEY4MjQ2NThBODI4N0JFOEQ0RjY1OTY4 MDMyNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2MWU5ZGUyLWE0ZWMtNDdhMi05 YmI4LTEwODIxZGRhNjdmMy8wLzMxMzAzMzJlMzEzODM2MmUzOTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzYzOTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7pgMA0GCSqG SIb3DQEBCwUAA4IBAQBljwwHOpIO55gLQPOINTWrLuGKgKdzOvFE4awaSUbmW1jb duWmxmQO7WYcdZd6+aNAD408gavWPLV8AUU7QZraMiHmPbAGenqnW8tNMh3YdmWZ nvE39ofHpmvEwZz4whNGNqxdF4tEvsEX//6lf1rTJ+9kuP6AjZhDTzaLFP6aQ8GN G30SsZ5b8FZGfuRJG43rQDSkcF4BA5KR2fRh3GZ0/iWOwo1mNUOKQqiS2d4MwArE HR9wz0unGxtE/h6dHAiqEqEIgxiLg0kXh27/XuyCHicaftrqLYV3h+8tVovR6KY9 /HE5x8O4YmJ7oLtrcoDqCS475FJTTk0j9c4XKKCQ -----END CERTIFICATE-----Generated at Sun Apr 6 09:42:44 2025 by rpki-client