$ rpki-client -vvf repo-rpki.idnic.net/repo/d6e2a2e1-1b2d-48cc-9db3-67a81af67062/0/3130332e3136392e3138382e302f32332d3234203d3e20313432333437.roa File: 3130332e3136392e3138382e302f32332d3234203d3e20313432333437.roa (raw, json) Hash identifier: D3IFwC+agUDfefnTI4Rr2XGP2SiD66JV5F/CoQ1sgto= Subject key identifier: BF:57:04:83:E4:98:FE:AE:47:E8:69:7D:2F:0C:07:21:9A:63:E9:2B Certificate issuer: /CN=A385F006CB4A332AED2E94013E7482A62617F17F Certificate serial: 43BDDC42D79A090B4769B404CF562A09DDFA7A0F Authority key identifier: A3:85:F0:06:CB:4A:33:2A:ED:2E:94:01:3E:74:82:A6:26:17:F1:7F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A385F006CB4A332AED2E94013E7482A62617F17F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d6e2a2e1-1b2d-48cc-9db3-67a81af67062/0/3130332e3136392e3138382e302f32332d3234203d3e20313432333437.roa Signing time: Tue 01 Apr 2025 08:02:23 +0000 ROA not before: Tue 01 Apr 2025 07:57:23 +0000 ROA not after: Tue 31 Mar 2026 08:02:23 +0000 asID: 142347 IP address blocks: 103.169.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d6e2a2e1-1b2d-48cc-9db3-67a81af67062/0/A385F006CB4A332AED2E94013E7482A62617F17F.crl rsync://repo-rpki.idnic.net/repo/d6e2a2e1-1b2d-48cc-9db3-67a81af67062/0/A385F006CB4A332AED2E94013E7482A62617F17F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A385F006CB4A332AED2E94013E7482A62617F17F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 15:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:bd:dc:42:d7:9a:09:0b:47:69:b4:04:cf:56:2a:09:dd:fa:7a:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A385F006CB4A332AED2E94013E7482A62617F17F Validity Not Before: Apr 1 07:57:23 2025 GMT Not After : Mar 31 08:02:23 2026 GMT Subject: CN=BF570483E498FEAE47E8697D2F0C07219A63E92B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:0b:0e:c8:a2:b2:2b:ff:98:c0:ec:22:0b:57: 53:08:53:4b:79:3c:82:20:51:54:4b:80:19:28:57: 95:93:ee:10:20:69:bc:36:ae:1f:2e:ab:5a:3b:44: 3c:4a:7d:a9:fe:9f:c5:40:1e:d4:34:a0:15:61:fd: 96:a5:a9:cc:1c:af:1c:e0:48:6a:3e:17:e1:75:2c: b3:13:1c:e7:2a:ef:3a:bf:7f:f2:b5:b6:6c:39:ac: 0f:ec:8e:20:bf:18:04:94:6f:1e:57:d4:35:77:9f: fc:2b:b1:40:4f:c1:7b:8e:07:44:0a:d4:88:13:30: 9b:e8:ab:51:77:41:d6:17:b1:ef:12:1b:b2:f9:88: 79:b8:2f:77:f7:a3:09:ef:93:cc:ed:a5:fd:8a:35: 4b:3f:9d:cc:72:7b:f0:fd:65:fc:3e:64:47:bf:88: 3d:2d:2d:5d:c5:30:96:c8:72:89:a7:02:95:ab:db: 38:9f:1f:94:1b:72:80:c2:12:e6:cd:ee:fc:7c:ef: b7:26:34:3d:04:70:b0:59:ec:46:3f:cb:18:d6:69: 21:bb:ec:6c:af:58:59:a0:cd:42:4d:c6:3b:db:3e: 11:f3:14:91:7b:00:ed:78:b4:c0:aa:a4:fc:40:6f: 0b:63:ac:8c:f3:50:52:a3:c4:26:02:75:31:d9:06: 03:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:57:04:83:E4:98:FE:AE:47:E8:69:7D:2F:0C:07:21:9A:63:E9:2B X509v3 Authority Key Identifier: keyid:A3:85:F0:06:CB:4A:33:2A:ED:2E:94:01:3E:74:82:A6:26:17:F1:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d6e2a2e1-1b2d-48cc-9db3-67a81af67062/0/A385F006CB4A332AED2E94013E7482A62617F17F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A385F006CB4A332AED2E94013E7482A62617F17F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d6e2a2e1-1b2d-48cc-9db3-67a81af67062/0/3130332e3136392e3138382e302f32332d3234203d3e20313432333437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.188.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:8d:48:c8:34:16:f4:88:5f:40:9b:90:ed:15:98:8e:5b:8d: 12:2d:64:23:8f:f6:d0:bd:24:b8:2b:24:ae:d5:75:e5:2c:19: 5c:f3:f7:03:f5:06:3c:cb:22:79:7d:d8:65:3d:84:6f:a0:a1: b2:fb:37:0d:f2:16:5b:4d:76:d6:9c:f7:43:b8:c1:9c:5f:fa: c1:6a:80:88:b2:cc:30:3e:bc:d6:53:16:64:00:35:61:cd:30: ea:93:53:c7:b2:d2:ba:04:ec:49:d6:b9:dd:72:b4:5d:9d:95: 8e:6d:62:dd:66:2f:7c:be:d9:ad:4c:8e:2d:a1:52:72:d7:c6: 73:a6:07:06:13:31:2b:2c:6a:97:ef:c9:50:66:64:bb:c3:6b: 82:4f:31:1b:ed:9b:35:41:1c:2f:cd:18:23:f0:56:e0:b0:e1: 03:70:82:79:14:80:cc:b9:9c:4a:70:69:96:2d:62:28:25:53: dd:83:99:69:61:39:39:99:ac:29:62:bb:42:a6:66:ba:be:07: bb:d0:a0:da:df:03:a3:db:36:ef:f6:6f:9b:78:71:db:64:f4: 5e:63:e4:ac:4a:84:c7:b4:e4:00:9b:94:8e:c1:09:a1:1a:96: 12:7c:e0:56:3b:56:60:34:fd:59:a5:3e:8c:38:92:5b:a5:7f: d2:83:5d:b9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQ73cQteaCQtHabQEz1YqCd36eg8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTM4NUYwMDZDQjRBMzMyQUVEMkU5NDAxM0U3NDgyQTYy NjE3RjE3RjAeFw0yNTA0MDEwNzU3MjNaFw0yNjAzMzEwODAyMjNaMDMxMTAvBgNV BAMTKEJGNTcwNDgzRTQ5OEZFQUU0N0U4Njk3RDJGMEMwNzIxOUE2M0U5MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmCw7IorIr/5jA7CILV1MIU0t5 PIIgUVRLgBkoV5WT7hAgabw2rh8uq1o7RDxKfan+n8VAHtQ0oBVh/Zalqcwcrxzg SGo+F+F1LLMTHOcq7zq/f/K1tmw5rA/sjiC/GASUbx5X1DV3n/wrsUBPwXuOB0QK 1IgTMJvoq1F3QdYXse8SG7L5iHm4L3f3ownvk8ztpf2KNUs/ncxye/D9Zfw+ZEe/ iD0tLV3FMJbIcomnApWr2zifH5QbcoDCEubN7vx877cmND0EcLBZ7EY/yxjWaSG7 7GyvWFmgzUJNxjvbPhHzFJF7AO14tMCqpPxAbwtjrIzzUFKjxCYCdTHZBgNRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUv1cEg+SY/q5H6Gl9LwwHIZpj6SswHwYDVR0j BBgwFoAUo4XwBstKMyrtLpQBPnSCpiYX8X8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NmUyYTJlMS0xYjJkLTQ4Y2MtOWRiMy02N2E4MWFmNjcwNjIvMC9BMzg1RjAwNkNC NEEzMzJBRUQyRTk0MDEzRTc0ODJBNjI2MTdGMTdGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTM4NUYwMDZDQjRBMzMyQUVEMkU5NDAxM0U3NDgyQTYyNjE3 RjE3Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q2ZTJhMmUxLTFiMmQtNDhjYy05 ZGIzLTY3YTgxYWY2NzA2Mi8wLzMxMzAzMzJlMzEzNjM5MmUzMTM4MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM0Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqbwwDQYJ KoZIhvcNAQELBQADggEBAFuNSMg0FvSIX0CbkO0VmI5bjRItZCOP9tC9JLgrJK7V deUsGVzz9wP1BjzLInl92GU9hG+gobL7Nw3yFltNdtac90O4wZxf+sFqgIiyzDA+ vNZTFmQANWHNMOqTU8ey0roE7EnWud1ytF2dlY5tYt1mL3y+2a1Mji2hUnLXxnOm BwYTMSssapfvyVBmZLvDa4JPMRvtmzVBHC/NGCPwVuCw4QNwgnkUgMy5nEpwaZYt YiglU92DmWlhOTmZrCliu0KmZrq+B7vQoNrfA6PbNu/2b5t4cdtk9F5j5KxKhMe0 5ACblI7BCaEalhJ84FY7VmA0/VmlPow4klulf9KDXbk= -----END CERTIFICATE-----Generated at Sun Apr 6 14:49:15 2025 by rpki-client