$ rpki-client -vvf repo-rpki.idnic.net/repo/c9577c3c-66cd-40a4-afc5-6c6f8b664a51/0/3130332e3138362e3230312e302f32342d3234203d3e20313439373231.roa File: 3130332e3138362e3230312e302f32342d3234203d3e20313439373231.roa (raw, json) Hash identifier: TKog579nkq6In8X8nUtBJoNqZgMyK5lrdHp2YkNF7qI= Subject key identifier: 92:08:6A:51:38:02:BC:DE:ED:CB:EB:9A:A3:C4:CB:FA:80:F9:FB:08 Certificate issuer: /CN=B21EB18A21CA5136A04F43EC18E1AA867B348052 Certificate serial: 3E94B807B71038C39E21F5E569D0FCC97472EEB0 Authority key identifier: B2:1E:B1:8A:21:CA:51:36:A0:4F:43:EC:18:E1:AA:86:7B:34:80:52 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B21EB18A21CA5136A04F43EC18E1AA867B348052.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c9577c3c-66cd-40a4-afc5-6c6f8b664a51/0/3130332e3138362e3230312e302f32342d3234203d3e20313439373231.roa Signing time: Tue 11 Feb 2025 09:00:01 +0000 ROA not before: Tue 11 Feb 2025 08:55:01 +0000 ROA not after: Tue 10 Feb 2026 09:00:01 +0000 asID: 149721 IP address blocks: 103.186.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c9577c3c-66cd-40a4-afc5-6c6f8b664a51/0/B21EB18A21CA5136A04F43EC18E1AA867B348052.crl rsync://repo-rpki.idnic.net/repo/c9577c3c-66cd-40a4-afc5-6c6f8b664a51/0/B21EB18A21CA5136A04F43EC18E1AA867B348052.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B21EB18A21CA5136A04F43EC18E1AA867B348052.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 14:28:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:94:b8:07:b7:10:38:c3:9e:21:f5:e5:69:d0:fc:c9:74:72:ee:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B21EB18A21CA5136A04F43EC18E1AA867B348052 Validity Not Before: Feb 11 08:55:01 2025 GMT Not After : Feb 10 09:00:01 2026 GMT Subject: CN=92086A513802BCDEEDCBEB9AA3C4CBFA80F9FB08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:13:0f:e8:84:d1:6e:35:34:45:87:d5:6a:d8: 19:d5:09:16:cf:e5:bc:f4:69:14:1a:cc:3c:55:b2: 53:69:49:78:af:c8:40:1e:19:28:81:d5:da:96:13: 5f:01:63:b5:0a:50:fb:39:ab:1a:57:ca:61:32:5b: 36:3b:ee:97:5c:c5:47:cd:ef:b6:5b:23:db:db:ab: de:b1:b2:9d:af:29:3c:cc:4d:a0:3b:4c:63:29:d8: 4b:2f:24:e2:5b:1b:e6:32:d2:af:78:32:d9:dc:e1: e5:c9:6c:7d:32:7a:1c:5a:b8:10:62:68:21:88:7b: df:bc:fd:53:3b:6a:ef:6f:c8:21:b9:01:f3:6d:6a: eb:b6:71:6a:05:6f:a1:70:9f:79:29:65:39:56:ff: 3e:71:47:dc:e9:fd:6c:f2:b3:b1:a9:da:ef:97:6d: b0:05:4f:4a:74:75:f2:ff:45:cb:af:68:75:40:0e: 49:09:5a:8b:a8:5f:43:a6:be:60:70:7c:d9:ba:a7: 82:99:e7:7b:fc:93:30:47:76:0b:96:43:6d:17:b8: 3a:3a:a5:a2:57:be:66:96:7b:69:42:74:fb:34:11: be:cb:48:43:38:b8:d0:45:9a:48:7b:df:80:f7:0a: e3:11:3a:5e:c5:75:b6:3a:67:03:2b:a7:31:74:95: ed:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:08:6A:51:38:02:BC:DE:ED:CB:EB:9A:A3:C4:CB:FA:80:F9:FB:08 X509v3 Authority Key Identifier: keyid:B2:1E:B1:8A:21:CA:51:36:A0:4F:43:EC:18:E1:AA:86:7B:34:80:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c9577c3c-66cd-40a4-afc5-6c6f8b664a51/0/B21EB18A21CA5136A04F43EC18E1AA867B348052.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B21EB18A21CA5136A04F43EC18E1AA867B348052.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c9577c3c-66cd-40a4-afc5-6c6f8b664a51/0/3130332e3138362e3230312e302f32342d3234203d3e20313439373231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.201.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:09:e7:19:51:34:a1:b4:20:4e:1a:82:1b:d9:df:65:54:2f: f3:b3:ab:92:37:1a:77:25:37:64:dc:15:c1:32:9a:2d:35:86: 7d:49:5b:cc:3b:07:c2:2c:4f:54:b0:fd:bd:34:b8:26:3b:d8: 24:07:00:d4:c7:de:49:3e:f8:c6:eb:f5:fa:77:d8:14:ef:03: 4d:d5:1c:02:cc:a7:62:c7:6e:84:85:c1:12:f0:a0:e9:0f:1d: 8a:b8:00:e4:4e:77:5b:ca:43:75:3b:2c:26:97:7d:5f:97:79: e2:a5:a2:db:16:54:35:b8:5d:4c:52:23:8c:ab:39:20:72:bf: 60:56:f9:10:aa:17:9f:3a:0e:d6:a2:7c:df:30:10:02:12:cf: 0c:59:6c:aa:a1:22:c1:b6:cf:c7:4e:f1:b3:78:7f:7e:29:32: 13:65:ac:1f:c6:20:78:ae:1e:34:98:a6:d6:2a:88:03:a0:84: e6:7c:fa:1f:c9:2b:2f:d3:c2:a4:ec:64:9d:4d:3f:8f:83:89: f8:9a:56:ed:48:b1:70:d9:45:44:24:ae:06:15:cb:4d:8d:2a: ab:18:32:58:d8:da:ee:6f:9b:67:b8:68:ca:53:cf:12:7c:b7: 31:c4:2b:77:20:51:c7:39:77:4b:51:84:75:89:8d:ae:63:f3: 80:d2:13:d7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPpS4B7cQOMOeIfXladD8yXRy7rAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjIxRUIxOEEyMUNBNTEzNkEwNEY0M0VDMThFMUFBODY3 QjM0ODA1MjAeFw0yNTAyMTEwODU1MDFaFw0yNjAyMTAwOTAwMDFaMDMxMTAvBgNV BAMTKDkyMDg2QTUxMzgwMkJDREVFRENCRUI5QUEzQzRDQkZBODBGOUZCMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXEw/ohNFuNTRFh9Vq2BnVCRbP 5bz0aRQazDxVslNpSXivyEAeGSiB1dqWE18BY7UKUPs5qxpXymEyWzY77pdcxUfN 77ZbI9vbq96xsp2vKTzMTaA7TGMp2EsvJOJbG+Yy0q94Mtnc4eXJbH0yehxauBBi aCGIe9+8/VM7au9vyCG5AfNtauu2cWoFb6Fwn3kpZTlW/z5xR9zp/Wzys7Gp2u+X bbAFT0p0dfL/RcuvaHVADkkJWouoX0OmvmBwfNm6p4KZ53v8kzBHdguWQ20XuDo6 paJXvmaWe2lCdPs0Eb7LSEM4uNBFmkh734D3CuMROl7FdbY6ZwMrpzF0le1HAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUkghqUTgCvN7ty+uao8TL+oD5+wgwHwYDVR0j BBgwFoAUsh6xiiHKUTagT0PsGOGqhns0gFIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OTU3N2MzYy02NmNkLTQwYTQtYWZjNS02YzZmOGI2NjRhNTEvMC9CMjFFQjE4QTIx Q0E1MTM2QTA0RjQzRUMxOEUxQUE4NjdCMzQ4MDUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjIxRUIxOEEyMUNBNTEzNkEwNEY0M0VDMThFMUFBODY3QjM0 ODA1Mi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5NTc3YzNjLTY2Y2QtNDBhNC1h ZmM1LTZjNmY4YjY2NGE1MS8wLzMxMzAzMzJlMzEzODM2MmUzMjMwMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzMyMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnuskwDQYJ KoZIhvcNAQELBQADggEBAFwJ5xlRNKG0IE4aghvZ32VUL/Ozq5I3GnclN2TcFcEy mi01hn1JW8w7B8IsT1Sw/b00uCY72CQHANTH3kk++Mbr9fp32BTvA03VHALMp2LH boSFwRLwoOkPHYq4AOROd1vKQ3U7LCaXfV+XeeKlotsWVDW4XUxSI4yrOSByv2BW +RCqF586DtaifN8wEAISzwxZbKqhIsG2z8dO8bN4f34pMhNlrB/GIHiuHjSYptYq iAOghOZ8+h/JKy/TwqTsZJ1NP4+DifiaVu1IsXDZRUQkrgYVy02NKqsYMljY2u5v m2e4aMpTzxJ8tzHEK3cgUcc5d0tRhHWJja5j84DSE9c= -----END CERTIFICATE-----Generated at Mon Apr 7 03:38:50 2025 by rpki-client