$ rpki-client -vvf repo-rpki.idnic.net/repo/d9106827-866e-4ac3-8f79-a6e320b20de7/0/3130332e3138362e3230332e302f32342d3234203d3e20313439373036.roa File: 3130332e3138362e3230332e302f32342d3234203d3e20313439373036.roa (raw, json) Hash identifier: JgDdJ0VL4u8D8+wDznKBSlTRQ0p6opMwZGoPzapaaX4= Subject key identifier: FD:44:43:4B:2B:DA:C7:9E:95:2C:BA:4C:F4:6C:38:47:6D:65:F3:C6 Certificate issuer: /CN=B347BBA6BD11BFC5E55F7FF334C165E9FD21FA5C Certificate serial: 7D12BA5CACC7E67BC3CF2CB104C3C1289EB03511 Authority key identifier: B3:47:BB:A6:BD:11:BF:C5:E5:5F:7F:F3:34:C1:65:E9:FD:21:FA:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B347BBA6BD11BFC5E55F7FF334C165E9FD21FA5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d9106827-866e-4ac3-8f79-a6e320b20de7/0/3130332e3138362e3230332e302f32342d3234203d3e20313439373036.roa Signing time: Thu 13 Mar 2025 11:02:21 +0000 ROA not before: Thu 13 Mar 2025 10:57:21 +0000 ROA not after: Thu 12 Mar 2026 11:02:21 +0000 asID: 149706 IP address blocks: 103.186.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d9106827-866e-4ac3-8f79-a6e320b20de7/0/B347BBA6BD11BFC5E55F7FF334C165E9FD21FA5C.crl rsync://repo-rpki.idnic.net/repo/d9106827-866e-4ac3-8f79-a6e320b20de7/0/B347BBA6BD11BFC5E55F7FF334C165E9FD21FA5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B347BBA6BD11BFC5E55F7FF334C165E9FD21FA5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 18:50:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:12:ba:5c:ac:c7:e6:7b:c3:cf:2c:b1:04:c3:c1:28:9e:b0:35:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B347BBA6BD11BFC5E55F7FF334C165E9FD21FA5C Validity Not Before: Mar 13 10:57:21 2025 GMT Not After : Mar 12 11:02:21 2026 GMT Subject: CN=FD44434B2BDAC79E952CBA4CF46C38476D65F3C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:3f:5f:85:be:1f:1d:77:8c:86:9c:02:1b:a0: 39:24:92:84:1b:4e:5b:66:42:b3:25:59:33:19:25: 8c:50:e2:17:09:7f:96:1f:bf:df:1b:a7:48:7c:69: 5f:f9:ff:6a:c7:64:58:9e:c9:c5:f3:d0:b7:22:ba: 49:aa:96:04:3a:bb:e0:2e:0c:f1:48:c2:23:21:41: 52:6e:18:e2:97:ee:34:8b:9c:c8:ec:8f:89:5f:7c: b5:f2:4f:06:5e:20:a4:57:e8:09:47:12:e5:a6:b9: c1:8f:40:89:25:4b:c0:ff:89:f1:eb:c5:8b:e8:11: 20:c5:34:b7:60:95:95:4e:54:f0:29:0a:c1:2b:fe: b0:48:e3:2f:01:54:6e:cf:6d:9e:bf:2c:4b:c7:93: 7e:a9:dc:e0:4c:fe:83:00:0a:d9:b1:9e:ea:59:97: 19:d2:4a:fc:34:de:d4:6d:f8:3a:ff:1c:a4:96:e7: 2a:df:dd:59:8c:90:09:4c:1e:41:d7:ff:b2:9f:82: 7a:c0:03:c0:4d:1c:55:1c:15:5e:34:24:02:50:b3: 32:ff:9f:f2:17:00:dc:1f:c1:61:6c:83:81:f6:40: ba:e0:a0:91:0d:84:44:0b:a2:b0:93:4b:9a:44:d2: 35:02:4a:cc:df:76:06:25:db:60:fd:26:81:b0:00: a7:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:44:43:4B:2B:DA:C7:9E:95:2C:BA:4C:F4:6C:38:47:6D:65:F3:C6 X509v3 Authority Key Identifier: keyid:B3:47:BB:A6:BD:11:BF:C5:E5:5F:7F:F3:34:C1:65:E9:FD:21:FA:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d9106827-866e-4ac3-8f79-a6e320b20de7/0/B347BBA6BD11BFC5E55F7FF334C165E9FD21FA5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B347BBA6BD11BFC5E55F7FF334C165E9FD21FA5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d9106827-866e-4ac3-8f79-a6e320b20de7/0/3130332e3138362e3230332e302f32342d3234203d3e20313439373036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.203.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:30:33:83:03:73:ed:33:a4:7c:fa:50:8d:d9:ef:e1:f4:b4: 12:c2:1a:79:27:90:55:7f:d6:3c:1c:dc:52:43:66:c3:c7:44: 99:4f:5c:97:b1:fd:e1:54:42:74:5f:6d:c7:90:d8:be:aa:6e: 7f:65:c8:c9:29:cb:80:b5:3f:1d:71:4f:a5:6e:03:60:f5:23: 6f:27:43:3c:a6:12:f0:28:2b:27:83:7e:ce:9f:55:6c:1d:c5: b1:f6:77:c3:93:3f:b1:a6:03:59:a9:ec:b4:41:b4:30:b2:4c: 83:68:0e:57:54:ad:28:97:a6:ae:74:3f:91:51:be:ec:95:12: fa:fb:b3:fa:39:97:8f:11:ac:3e:5e:8d:e4:b2:9c:12:2b:67: b8:1d:68:d2:12:de:90:66:82:35:87:28:ae:47:76:24:e8:af: 14:f6:85:79:60:48:40:ba:f9:0a:c7:3f:4c:a7:f4:1a:21:1c: 38:c7:58:c5:7f:ee:76:1c:ae:78:73:0f:da:83:73:0b:2a:dc: a1:00:41:09:be:c9:6d:08:a4:7f:d6:d4:32:72:4b:3e:70:02: 65:23:ca:01:b1:52:e2:41:cb:a2:d2:5f:74:24:73:0c:8d:6f: d8:60:ea:9e:15:f4:97:59:14:86:ed:65:19:68:05:0c:54:ae: b2:b9:01:aa -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfRK6XKzH5nvDzyyxBMPBKJ6wNREwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjM0N0JCQTZCRDExQkZDNUU1NUY3RkYzMzRDMTY1RTlG RDIxRkE1QzAeFw0yNTAzMTMxMDU3MjFaFw0yNjAzMTIxMTAyMjFaMDMxMTAvBgNV BAMTKEZENDQ0MzRCMkJEQUM3OUU5NTJDQkE0Q0Y0NkMzODQ3NkQ2NUYzQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTP1+Fvh8dd4yGnAIboDkkkoQb TltmQrMlWTMZJYxQ4hcJf5Yfv98bp0h8aV/5/2rHZFieycXz0LciukmqlgQ6u+Au DPFIwiMhQVJuGOKX7jSLnMjsj4lffLXyTwZeIKRX6AlHEuWmucGPQIklS8D/ifHr xYvoESDFNLdglZVOVPApCsEr/rBI4y8BVG7PbZ6/LEvHk36p3OBM/oMACtmxnupZ lxnSSvw03tRt+Dr/HKSW5yrf3VmMkAlMHkHX/7KfgnrAA8BNHFUcFV40JAJQszL/ n/IXANwfwWFsg4H2QLrgoJENhEQLorCTS5pE0jUCSszfdgYl22D9JoGwAKcBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU/URDSyvax56VLLpM9Gw4R21l88YwHwYDVR0j BBgwFoAUs0e7pr0Rv8XlX3/zNMFl6f0h+lwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OTEwNjgyNy04NjZlLTRhYzMtOGY3OS1hNmUzMjBiMjBkZTcvMC9CMzQ3QkJBNkJE MTFCRkM1RTU1RjdGRjMzNEMxNjVFOUZEMjFGQTVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjM0N0JCQTZCRDExQkZDNUU1NUY3RkYzMzRDMTY1RTlGRDIx RkE1Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q5MTA2ODI3LTg2NmUtNGFjMy04 Zjc5LWE2ZTMyMGIyMGRlNy8wLzMxMzAzMzJlMzEzODM2MmUzMjMwMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzMwMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnusswDQYJ KoZIhvcNAQELBQADggEBAF8wM4MDc+0zpHz6UI3Z7+H0tBLCGnknkFV/1jwc3FJD ZsPHRJlPXJex/eFUQnRfbceQ2L6qbn9lyMkpy4C1Px1xT6VuA2D1I28nQzymEvAo KyeDfs6fVWwdxbH2d8OTP7GmA1mp7LRBtDCyTINoDldUrSiXpq50P5FRvuyVEvr7 s/o5l48RrD5ejeSynBIrZ7gdaNIS3pBmgjWHKK5HdiTorxT2hXlgSEC6+QrHP0yn 9BohHDjHWMV/7nYcrnhzD9qDcwsq3KEAQQm+yW0IpH/W1DJySz5wAmUjygGxUuJB y6LSX3QkcwyNb9hg6p4V9JdZFIbtZRloBQxUrrK5Aao= -----END CERTIFICATE-----Generated at Sun Apr 6 05:58:32 2025 by rpki-client