$ rpki-client -vvf repo-rpki.idnic.net/repo/d9ae9828-0e82-4434-b8f2-2d8ad59cea88/0/3130332e3136392e3232372e302f32342d3234203d3e20313432333633.roa File: 3130332e3136392e3232372e302f32342d3234203d3e20313432333633.roa (raw, json) Hash identifier: e6iQYYr+b0+k42f/Dnky3Z0YydCENT/ESZfkhJr3jDE= Subject key identifier: 01:DB:CA:96:63:30:EC:09:80:64:F9:27:31:2A:43:F8:04:5A:C0:71 Certificate issuer: /CN=9FAAE73AF68F08D5793CC32C5C4EA8C5F5D2437A Certificate serial: 40D6D0A5830B4C3D57215EEF7D4C709379946589 Authority key identifier: 9F:AA:E7:3A:F6:8F:08:D5:79:3C:C3:2C:5C:4E:A8:C5:F5:D2:43:7A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FAAE73AF68F08D5793CC32C5C4EA8C5F5D2437A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d9ae9828-0e82-4434-b8f2-2d8ad59cea88/0/3130332e3136392e3232372e302f32342d3234203d3e20313432333633.roa Signing time: Fri 14 Mar 2025 11:00:01 +0000 ROA not before: Fri 14 Mar 2025 10:55:01 +0000 ROA not after: Fri 13 Mar 2026 11:00:01 +0000 asID: 142363 IP address blocks: 103.169.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d9ae9828-0e82-4434-b8f2-2d8ad59cea88/0/9FAAE73AF68F08D5793CC32C5C4EA8C5F5D2437A.crl rsync://repo-rpki.idnic.net/repo/d9ae9828-0e82-4434-b8f2-2d8ad59cea88/0/9FAAE73AF68F08D5793CC32C5C4EA8C5F5D2437A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FAAE73AF68F08D5793CC32C5C4EA8C5F5D2437A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 06:38:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:d6:d0:a5:83:0b:4c:3d:57:21:5e:ef:7d:4c:70:93:79:94:65:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FAAE73AF68F08D5793CC32C5C4EA8C5F5D2437A Validity Not Before: Mar 14 10:55:01 2025 GMT Not After : Mar 13 11:00:01 2026 GMT Subject: CN=01DBCA966330EC098064F927312A43F8045AC071 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ff:c8:9e:ae:77:d2:cb:41:b7:0c:ba:32:84: 0d:90:c9:2f:93:53:58:d4:d3:53:dc:79:1f:f3:4a: 5f:51:b0:dd:2e:d0:de:16:4a:44:cc:97:af:2e:ba: e9:8a:28:62:83:ff:d0:85:9a:a7:97:7f:e3:be:cc: b3:7c:1a:4a:67:f9:a2:b8:6d:51:27:db:30:f9:4e: 3e:96:10:13:c9:cc:b6:a5:3d:04:35:9a:9c:51:b3: 77:6e:be:c9:12:d6:26:49:89:83:96:60:81:0a:b8: 43:5a:64:d5:39:2e:a8:28:0f:93:3f:0e:77:00:73: 90:04:ae:24:eb:22:ba:2b:c9:1d:7c:ae:d7:e4:4c: 93:3d:e1:0d:4c:41:17:33:cc:cc:4a:a3:ac:f8:cd: 8a:a4:4a:67:71:82:bd:bc:f7:c3:3c:dd:c9:86:b0: 3c:fd:a9:51:4a:98:25:73:30:04:21:94:4a:6e:63: b9:a4:23:2b:ea:f9:ad:89:90:f9:a0:f9:87:96:88: e8:d4:72:b6:67:23:06:3a:fb:8c:c3:68:f1:41:c9: 71:0f:bb:16:61:ff:83:e3:87:32:a0:29:9f:78:a2: 16:1f:42:36:47:cc:88:9b:e5:f2:86:4b:87:b5:fe: e6:02:f4:00:fc:c7:11:b1:4a:aa:09:1e:cd:e6:ca: a6:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:DB:CA:96:63:30:EC:09:80:64:F9:27:31:2A:43:F8:04:5A:C0:71 X509v3 Authority Key Identifier: keyid:9F:AA:E7:3A:F6:8F:08:D5:79:3C:C3:2C:5C:4E:A8:C5:F5:D2:43:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d9ae9828-0e82-4434-b8f2-2d8ad59cea88/0/9FAAE73AF68F08D5793CC32C5C4EA8C5F5D2437A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FAAE73AF68F08D5793CC32C5C4EA8C5F5D2437A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d9ae9828-0e82-4434-b8f2-2d8ad59cea88/0/3130332e3136392e3232372e302f32342d3234203d3e20313432333633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.227.0/24 Signature Algorithm: sha256WithRSAEncryption 45:d8:07:6a:90:dc:4e:ee:0f:2c:ef:ca:0c:d8:7b:52:c4:d4: 0a:33:92:80:68:2a:9f:c8:15:7c:ef:99:2a:d9:88:06:c7:38: 81:e6:b6:95:22:64:ea:65:fe:0a:3d:65:68:78:c3:13:e6:56: 76:4b:83:52:01:c8:1c:f9:ec:d0:0b:9f:e9:88:29:42:56:28: 85:88:59:4a:dd:47:3d:59:98:50:11:e9:56:7c:7c:e9:43:46: 25:ab:db:cd:68:e5:47:8e:6b:77:7c:e6:f9:62:e2:6c:0d:38: 1a:ae:e8:e3:44:70:dd:a0:20:31:9f:97:69:17:f9:7c:02:c9: 49:f4:bc:c1:f9:71:d6:ac:d3:ee:8f:e7:f5:cb:b8:29:35:49: fe:40:2f:7f:4e:db:95:a5:b1:fd:3b:d3:31:f1:ef:d7:9f:04: fb:88:65:00:4f:fe:ae:09:a3:b8:74:1c:2f:c4:e7:e5:73:a7: e9:b2:a9:e4:f4:55:32:23:86:40:33:4b:c7:40:eb:f9:b0:75: 85:15:3f:22:89:4f:e7:d4:21:25:96:2a:50:b3:e7:3a:78:ef: e8:20:f2:69:16:a6:17:ff:b3:e7:17:db:87:81:ec:1d:bf:d6: 0f:bc:9a:13:c3:68:88:55:c9:1c:23:7a:79:7a:88:6a:07:f4: 91:de:b0:75 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQNbQpYMLTD1XIV7vfUxwk3mUZYkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZBQUU3M0FGNjhGMDhENTc5M0NDMzJDNUM0RUE4QzVG NUQyNDM3QTAeFw0yNTAzMTQxMDU1MDFaFw0yNjAzMTMxMTAwMDFaMDMxMTAvBgNV BAMTKDAxREJDQTk2NjMzMEVDMDk4MDY0RjkyNzMxMkE0M0Y4MDQ1QUMwNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ/8iernfSy0G3DLoyhA2QyS+T U1jU01PceR/zSl9RsN0u0N4WSkTMl68uuumKKGKD/9CFmqeXf+O+zLN8Gkpn+aK4 bVEn2zD5Tj6WEBPJzLalPQQ1mpxRs3duvskS1iZJiYOWYIEKuENaZNU5LqgoD5M/ DncAc5AEriTrIroryR18rtfkTJM94Q1MQRczzMxKo6z4zYqkSmdxgr2898M83cmG sDz9qVFKmCVzMAQhlEpuY7mkIyvq+a2JkPmg+YeWiOjUcrZnIwY6+4zDaPFByXEP uxZh/4PjhzKgKZ94ohYfQjZHzIib5fKGS4e1/uYC9AD8xxGxSqoJHs3myqbtAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUAdvKlmMw7AmAZPknMSpD+ARawHEwHwYDVR0j BBgwFoAUn6rnOvaPCNV5PMMsXE6oxfXSQ3owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OWFlOTgyOC0wZTgyLTQ0MzQtYjhmMi0yZDhhZDU5Y2VhODgvMC85RkFBRTczQUY2 OEYwOEQ1NzkzQ0MzMkM1QzRFQThDNUY1RDI0MzdBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUZBQUU3M0FGNjhGMDhENTc5M0NDMzJDNUM0RUE4QzVGNUQy NDM3QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q5YWU5ODI4LTBlODItNDQzNC1i OGYyLTJkOGFkNTljZWE4OC8wLzMxMzAzMzJlMzEzNjM5MmUzMjMyMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM2MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqeMwDQYJ KoZIhvcNAQELBQADggEBAEXYB2qQ3E7uDyzvygzYe1LE1AozkoBoKp/IFXzvmSrZ iAbHOIHmtpUiZOpl/go9ZWh4wxPmVnZLg1IByBz57NALn+mIKUJWKIWIWUrdRz1Z mFAR6VZ8fOlDRiWr281o5UeOa3d85vli4mwNOBqu6ONEcN2gIDGfl2kX+XwCyUn0 vMH5cdas0+6P5/XLuCk1Sf5AL39O25Wlsf070zHx79efBPuIZQBP/q4Jo7h0HC/E 5+Vzp+myqeT0VTIjhkAzS8dA6/mwdYUVPyKJT+fUISWWKlCz5zp47+gg8mkWphf/ s+cX24eB7B2/1g+8mhPDaIhVyRwjenl6iGoH9JHesHU= -----END CERTIFICATE-----Generated at Sun Apr 6 05:58:34 2025 by rpki-client