$ rpki-client -vvf repo-rpki.idnic.net/repo/c81e9238-4267-48ef-b02e-1d7d04400941/0/3130332e3136372e3130362e302f32332d3233203d3e203538333639.roa File: 3130332e3136372e3130362e302f32332d3233203d3e203538333639.roa (raw, json) Hash identifier: raVa/aPOEsczd+Tkb9xbGBhDO0WYbX1nl1AOZt1Q+7s= Subject key identifier: 21:3B:50:FC:FD:A1:79:97:00:BB:B6:2A:F0:6F:F6:58:04:C1:00:C8 Certificate issuer: /CN=C8AC2212A272ECEAE88D5232072578922C0E2E05 Certificate serial: 6EA5B0A46737DB912E2D4CB472BBC25BE6F3CB00 Authority key identifier: C8:AC:22:12:A2:72:EC:EA:E8:8D:52:32:07:25:78:92:2C:0E:2E:05 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8AC2212A272ECEAE88D5232072578922C0E2E05.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c81e9238-4267-48ef-b02e-1d7d04400941/0/3130332e3136372e3130362e302f32332d3233203d3e203538333639.roa Signing time: Thu 27 Feb 2025 14:00:02 +0000 ROA not before: Thu 27 Feb 2025 13:55:02 +0000 ROA not after: Thu 26 Feb 2026 14:00:02 +0000 asID: 58369 IP address blocks: 103.167.106.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c81e9238-4267-48ef-b02e-1d7d04400941/0/C8AC2212A272ECEAE88D5232072578922C0E2E05.crl rsync://repo-rpki.idnic.net/repo/c81e9238-4267-48ef-b02e-1d7d04400941/0/C8AC2212A272ECEAE88D5232072578922C0E2E05.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8AC2212A272ECEAE88D5232072578922C0E2E05.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 19:30:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:a5:b0:a4:67:37:db:91:2e:2d:4c:b4:72:bb:c2:5b:e6:f3:cb:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8AC2212A272ECEAE88D5232072578922C0E2E05 Validity Not Before: Feb 27 13:55:02 2025 GMT Not After : Feb 26 14:00:02 2026 GMT Subject: CN=213B50FCFDA1799700BBB62AF06FF65804C100C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:16:bc:9b:67:63:a6:df:70:62:34:53:09:64: a1:00:af:6b:2a:0d:35:48:84:0c:81:f3:be:b4:60: 84:6d:2e:e2:33:54:c2:e9:7f:25:a5:23:51:0a:37: 8a:0f:2c:8c:aa:cd:ba:65:11:ca:f7:f8:08:f8:c3: 6f:f8:e5:9c:c0:90:42:d3:46:7a:28:94:1b:4a:68: 6a:76:bf:3b:0f:6f:fe:13:69:9c:f5:c5:7c:72:e6: 42:55:5c:f6:af:8e:c5:a3:e1:90:2c:c6:b9:16:3c: 28:1f:b3:49:fd:07:49:0c:93:53:2e:d1:cd:0a:b5: 86:b7:7e:bc:4f:4d:1b:54:79:a0:4f:ac:f7:4d:04: 53:6c:04:8b:65:08:70:1d:5a:17:fe:03:95:39:94: 7b:4b:5a:d7:24:86:0a:02:ba:ed:da:61:e1:aa:0a: d0:e2:8d:64:f9:a8:19:5b:aa:cc:31:e0:7b:d2:1f: e4:30:b5:02:f5:67:ed:6b:4d:a5:79:c8:42:a5:8b: 4f:25:11:37:80:87:c1:e9:b8:85:41:e4:40:91:40: 4b:a1:53:30:31:8b:4a:70:20:cb:69:0c:ef:f3:19: 79:0b:d4:d9:64:de:0e:0f:27:bf:cc:6a:7a:9c:77: 2b:45:e1:ad:39:d6:6e:9e:c0:bb:0b:30:66:78:56: 16:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:3B:50:FC:FD:A1:79:97:00:BB:B6:2A:F0:6F:F6:58:04:C1:00:C8 X509v3 Authority Key Identifier: keyid:C8:AC:22:12:A2:72:EC:EA:E8:8D:52:32:07:25:78:92:2C:0E:2E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c81e9238-4267-48ef-b02e-1d7d04400941/0/C8AC2212A272ECEAE88D5232072578922C0E2E05.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8AC2212A272ECEAE88D5232072578922C0E2E05.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c81e9238-4267-48ef-b02e-1d7d04400941/0/3130332e3136372e3130362e302f32332d3233203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.106.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:01:e7:aa:2b:b1:74:2a:a3:b7:91:ac:8d:e7:98:d1:c7:9f: cd:1b:57:ed:9c:41:a5:48:d1:67:fa:6d:91:89:e3:7c:df:38: 4c:05:57:63:e4:c7:ef:f3:fb:f8:a5:d7:d5:41:65:3c:30:73: 39:6f:e0:bd:6f:2a:eb:1e:6a:a6:d1:f2:36:bb:ca:2f:aa:6b: 02:37:25:be:fb:24:9f:16:cb:b7:9f:25:a8:cc:31:be:c4:54: 65:62:0e:45:50:05:61:12:ce:e4:be:49:31:c4:47:53:f3:17: f7:d9:7f:ef:7a:ab:3d:49:c0:7c:eb:a1:68:64:74:0c:6b:48: 94:ab:b3:df:64:63:28:9d:27:f6:07:88:ba:f7:3d:37:dc:95: 67:fa:d5:2f:d2:d5:88:29:d4:58:d5:e8:a8:ce:19:88:9a:f7: 89:c9:14:0c:2b:85:3c:57:e1:8a:ab:6e:02:58:38:5c:c3:fd: 91:da:2e:50:9a:e0:03:6a:b4:25:72:22:5b:28:e6:dd:37:2a: 02:2c:94:68:0d:55:6f:f6:3a:c0:f9:42:be:5f:bf:0a:c4:e5: fb:cc:63:e4:7d:00:05:cf:a5:83:52:1e:45:78:5c:a4:09:40: 83:21:ad:2b:d9:69:b8:de:58:d1:2c:17:b0:85:0e:9f:cb:1d: 05:da:b4:1e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbqWwpGc325EuLUy0crvCW+bzywAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhBQzIyMTJBMjcyRUNFQUU4OEQ1MjMyMDcyNTc4OTIy QzBFMkUwNTAeFw0yNTAyMjcxMzU1MDJaFw0yNjAyMjYxNDAwMDJaMDMxMTAvBgNV BAMTKDIxM0I1MEZDRkRBMTc5OTcwMEJCQjYyQUYwNkZGNjU4MDRDMTAwQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiFrybZ2Om33BiNFMJZKEAr2sq DTVIhAyB8760YIRtLuIzVMLpfyWlI1EKN4oPLIyqzbplEcr3+Aj4w2/45ZzAkELT RnoolBtKaGp2vzsPb/4TaZz1xXxy5kJVXPavjsWj4ZAsxrkWPCgfs0n9B0kMk1Mu 0c0KtYa3frxPTRtUeaBPrPdNBFNsBItlCHAdWhf+A5U5lHtLWtckhgoCuu3aYeGq CtDijWT5qBlbqswx4HvSH+QwtQL1Z+1rTaV5yEKli08lETeAh8HpuIVB5ECRQEuh UzAxi0pwIMtpDO/zGXkL1Nlk3g4PJ7/ManqcdytF4a051m6ewLsLMGZ4VhZHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUITtQ/P2heZcAu7Yq8G/2WATBAMgwHwYDVR0j BBgwFoAUyKwiEqJy7OrojVIyByV4kiwOLgUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ODFlOTIzOC00MjY3LTQ4ZWYtYjAyZS0xZDdkMDQ0MDA5NDEvMC9DOEFDMjIxMkEy NzJFQ0VBRTg4RDUyMzIwNzI1Nzg5MjJDMEUyRTA1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhBQzIyMTJBMjcyRUNFQUU4OEQ1MjMyMDcyNTc4OTIyQzBF MkUwNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4MWU5MjM4LTQyNjctNDhlZi1i MDJlLTFkN2QwNDQwMDk0MS8wLzMxMzAzMzJlMzEzNjM3MmUzMTMwMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6dqMA0GCSqG SIb3DQEBCwUAA4IBAQB/AeeqK7F0KqO3kayN55jRx5/NG1ftnEGlSNFn+m2RieN8 3zhMBVdj5Mfv8/v4pdfVQWU8MHM5b+C9byrrHmqm0fI2u8ovqmsCNyW++ySfFsu3 nyWozDG+xFRlYg5FUAVhEs7kvkkxxEdT8xf32X/veqs9ScB866FoZHQMa0iUq7Pf ZGMonSf2B4i69z033JVn+tUv0tWIKdRY1eiozhmImveJyRQMK4U8V+GKq24CWDhc w/2R2i5QmuADarQlciJbKObdNyoCLJRoDVVv9jrA+UK+X78KxOX7zGPkfQAFz6WD Uh5FeFykCUCDIa0r2Wm43ljRLBewhQ6fyx0F2rQe -----END CERTIFICATE-----Generated at Sun Apr 6 09:38:21 2025 by rpki-client