$ rpki-client -vvf repo-rpki.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/3130332e3133382e3231382e302f32332d3234203d3e20313338383534.roa File: 3130332e3133382e3231382e302f32332d3234203d3e20313338383534.roa (raw, json) Hash identifier: OGejiG7ww/4ANM9WMGVqk5ky5j5O+TRQ9Z18Ia9TOUM= Subject key identifier: B4:67:78:34:4F:4B:98:C7:C3:1E:74:3B:EE:23:AF:D0:29:A7:50:77 Certificate issuer: /CN=96C41CFE277F686E3476A533FDAE5A0F411173D9 Certificate serial: 6D9ABBE65AAC12EE2D1B178697370363A42B0C07 Authority key identifier: 96:C4:1C:FE:27:7F:68:6E:34:76:A5:33:FD:AE:5A:0F:41:11:73:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/96C41CFE277F686E3476A533FDAE5A0F411173D9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/3130332e3133382e3231382e302f32332d3234203d3e20313338383534.roa Signing time: Wed 12 Mar 2025 08:02:48 +0000 ROA not before: Wed 12 Mar 2025 07:57:48 +0000 ROA not after: Wed 11 Mar 2026 08:02:48 +0000 asID: 138854 IP address blocks: 103.138.218.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/96C41CFE277F686E3476A533FDAE5A0F411173D9.crl rsync://repo-rpki.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/96C41CFE277F686E3476A533FDAE5A0F411173D9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/96C41CFE277F686E3476A533FDAE5A0F411173D9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 15:16:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:9a:bb:e6:5a:ac:12:ee:2d:1b:17:86:97:37:03:63:a4:2b:0c:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96C41CFE277F686E3476A533FDAE5A0F411173D9 Validity Not Before: Mar 12 07:57:48 2025 GMT Not After : Mar 11 08:02:48 2026 GMT Subject: CN=B46778344F4B98C7C31E743BEE23AFD029A75077 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:07:7f:75:67:0a:11:23:06:6a:7a:c8:bb:f4: f6:dd:6f:2e:00:c6:fc:32:66:c0:ac:08:cd:e5:ea: b5:c8:f2:1a:72:04:fd:95:aa:4a:64:1b:67:2a:0e: 67:c1:91:47:99:2a:ae:d7:7e:34:c0:33:c0:4d:96: 9b:23:bb:51:c1:e1:ef:a1:d0:4d:e1:2e:c9:49:64: a7:c0:c4:5c:c3:4f:3e:59:c4:c3:9f:1e:0b:4c:c7: da:54:ac:b3:30:c1:3f:7c:5e:9f:6a:f0:86:da:88: f8:4f:d0:cc:16:32:71:d6:95:37:bd:45:d7:7a:ee: f6:09:d5:eb:7b:73:c0:0b:f8:56:0b:4f:51:dd:c4: 11:8f:c1:41:c1:ef:23:6d:d9:39:45:ad:62:45:14: 09:e9:82:c3:00:a4:8a:5a:3c:4d:52:be:ac:4a:4c: b8:9b:c2:e6:dd:eb:16:22:72:8b:c9:4b:4b:22:de: 34:33:71:32:7e:5a:3c:05:0d:cc:e7:b0:34:08:ba: 3d:ca:ae:c0:25:8d:e3:50:68:ff:f4:18:65:fd:10: a3:76:bc:c7:d9:b0:98:51:2f:2f:54:be:87:45:66: d6:88:a0:e3:75:72:22:ce:7e:e6:ba:be:d2:0d:8e: 50:9f:d5:c7:04:d0:12:40:21:c9:03:b7:3a:47:7a: 07:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:67:78:34:4F:4B:98:C7:C3:1E:74:3B:EE:23:AF:D0:29:A7:50:77 X509v3 Authority Key Identifier: keyid:96:C4:1C:FE:27:7F:68:6E:34:76:A5:33:FD:AE:5A:0F:41:11:73:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/96C41CFE277F686E3476A533FDAE5A0F411173D9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/96C41CFE277F686E3476A533FDAE5A0F411173D9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/3130332e3133382e3231382e302f32332d3234203d3e20313338383534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.138.218.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:33:81:58:14:88:a8:1a:cd:71:86:cf:3e:45:b1:0a:3b:1f: 44:5d:a7:2e:2f:65:58:a3:38:25:ae:25:47:37:7b:02:02:2e: ac:22:23:26:0a:59:af:b2:ea:a4:ff:f6:8c:f3:e6:30:23:ad: 86:42:79:9c:2d:54:6a:a6:da:7f:ef:7e:68:51:7a:59:94:d1: fa:98:df:59:13:cf:06:99:06:ab:9d:cb:1e:ef:52:9d:81:a0: fa:9c:40:15:56:d1:37:23:91:b9:0c:71:10:a2:d5:bf:00:e2: 62:32:9a:cc:a0:1a:f4:04:2e:e6:43:57:3f:ad:43:2c:f4:9a: fe:61:6f:9d:ba:a5:90:6e:53:b5:99:31:f6:9f:51:a3:dc:1e: 59:64:3f:eb:c1:a5:eb:59:f8:62:4e:d0:35:3c:57:df:36:63: ca:3f:b0:56:b9:54:1a:07:85:95:c9:2a:0d:06:bd:5a:8e:38: 61:ca:48:ab:fd:57:00:93:00:d9:f3:c8:36:d9:a1:d7:8a:55: c6:44:af:9e:95:2b:d3:cd:c9:17:21:97:a8:74:d6:46:5f:0f: 1b:5e:53:57:4d:73:5b:ff:3d:ff:57:d7:5e:a1:bf:9f:ac:e1: 03:76:96:46:10:c3:05:bb:ba:ce:48:22:9e:28:2a:d2:6c:e5: ef:ae:94:03 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbZq75lqsEu4tGxeGlzcDY6QrDAcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTZDNDFDRkUyNzdGNjg2RTM0NzZBNTMzRkRBRTVBMEY0 MTExNzNEOTAeFw0yNTAzMTIwNzU3NDhaFw0yNjAzMTEwODAyNDhaMDMxMTAvBgNV BAMTKEI0Njc3ODM0NEY0Qjk4QzdDMzFFNzQzQkVFMjNBRkQwMjlBNzUwNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8B391ZwoRIwZqesi79Pbdby4A xvwyZsCsCM3l6rXI8hpyBP2VqkpkG2cqDmfBkUeZKq7XfjTAM8BNlpsju1HB4e+h 0E3hLslJZKfAxFzDTz5ZxMOfHgtMx9pUrLMwwT98Xp9q8IbaiPhP0MwWMnHWlTe9 Rdd67vYJ1et7c8AL+FYLT1HdxBGPwUHB7yNt2TlFrWJFFAnpgsMApIpaPE1SvqxK TLibwubd6xYicovJS0si3jQzcTJ+WjwFDcznsDQIuj3KrsAljeNQaP/0GGX9EKN2 vMfZsJhRLy9UvodFZtaIoON1ciLOfua6vtINjlCf1ccE0BJAIckDtzpHegeHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUtGd4NE9LmMfDHnQ77iOv0CmnUHcwHwYDVR0j BBgwFoAUlsQc/id/aG40dqUz/a5aD0ERc9kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MjUwMjIwNS01YzU0LTQ3ZGItYWU2Zi05ZDQ4ZTE4MzI0MWMvMC85NkM0MUNGRTI3 N0Y2ODZFMzQ3NkE1MzNGREFFNUEwRjQxMTE3M0Q5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTZDNDFDRkUyNzdGNjg2RTM0NzZBNTMzRkRBRTVBMEY0MTEx NzNEOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyNTAyMjA1LTVjNTQtNDdkYi1h ZTZmLTlkNDhlMTgzMjQxYy8wLzMxMzAzMzJlMzEzMzM4MmUzMjMxMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzODM1MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnitowDQYJ KoZIhvcNAQELBQADggEBACszgVgUiKgazXGGzz5FsQo7H0Rdpy4vZVijOCWuJUc3 ewICLqwiIyYKWa+y6qT/9ozz5jAjrYZCeZwtVGqm2n/vfmhRelmU0fqY31kTzwaZ Bqudyx7vUp2BoPqcQBVW0TcjkbkMcRCi1b8A4mIymsygGvQELuZDVz+tQyz0mv5h b526pZBuU7WZMfafUaPcHllkP+vBpetZ+GJO0DU8V982Y8o/sFa5VBoHhZXJKg0G vVqOOGHKSKv9VwCTANnzyDbZodeKVcZEr56VK9PNyRchl6h01kZfDxteU1dNc1v/ Pf9X116hv5+s4QN2lkYQwwW7us5IIp4oKtJs5e+ulAM= -----END CERTIFICATE-----Generated at Sun Apr 6 10:55:13 2025 by rpki-client