$ rpki-client -vvf repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/3130332e3130392e3230362e302f32342d3234203d3e20313530393335.roa File: 3130332e3130392e3230362e302f32342d3234203d3e20313530393335.roa (raw, json) Hash identifier: Rcu96XphgA8WvPbRK/1ptZ3CZTir4MCBj7MHKlWlNMw= Subject key identifier: 1E:73:36:F1:D3:D4:4F:30:8A:F4:55:B3:E6:4D:4B:9A:0B:45:DE:90 Certificate issuer: /CN=4A243A1EC4991C40D3A6148515E3C51981B425F7 Certificate serial: 0CE13827947BC070B9321F94A49543C537FF4ACC Authority key identifier: 4A:24:3A:1E:C4:99:1C:40:D3:A6:14:85:15:E3:C5:19:81:B4:25:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A243A1EC4991C40D3A6148515E3C51981B425F7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/3130332e3130392e3230362e302f32342d3234203d3e20313530393335.roa Signing time: Tue 11 Mar 2025 10:00:01 +0000 ROA not before: Tue 11 Mar 2025 09:55:01 +0000 ROA not after: Tue 10 Mar 2026 10:00:01 +0000 asID: 150935 IP address blocks: 103.109.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/4A243A1EC4991C40D3A6148515E3C51981B425F7.crl rsync://repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/4A243A1EC4991C40D3A6148515E3C51981B425F7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A243A1EC4991C40D3A6148515E3C51981B425F7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 15:18:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:e1:38:27:94:7b:c0:70:b9:32:1f:94:a4:95:43:c5:37:ff:4a:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A243A1EC4991C40D3A6148515E3C51981B425F7 Validity Not Before: Mar 11 09:55:01 2025 GMT Not After : Mar 10 10:00:01 2026 GMT Subject: CN=1E7336F1D3D44F308AF455B3E64D4B9A0B45DE90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a8:e9:17:02:fe:b9:2d:7f:50:2b:db:37:cc: d0:02:0f:fd:3f:b9:58:39:8e:42:5d:de:8a:62:09: 07:66:fe:bf:39:80:19:f4:39:a6:61:57:a5:5e:48: 54:1e:7c:1b:03:26:e3:1c:88:2d:bb:59:47:ee:58: d5:d5:6f:6f:bd:8e:2f:1b:83:c1:a7:a5:32:d6:18: 9e:18:15:4d:38:b2:b3:3a:8d:9b:f2:85:27:3a:64: f7:d5:f7:e9:97:d7:3c:ee:b6:6b:c6:bb:d2:ed:f1: 6c:c7:62:62:9b:20:c5:97:49:48:30:14:32:96:78: ff:92:46:03:08:d9:d4:a8:c1:af:23:22:0b:5d:0c: 96:bf:25:55:ab:6f:41:53:da:5d:e9:70:8d:8a:9f: b8:6d:8b:1c:c3:e3:43:22:04:62:f2:31:8f:4d:f9: a3:0e:81:4d:ab:c3:6c:34:5b:a0:a0:26:05:9a:a7: 4f:b7:d5:24:78:53:4c:c1:0e:4f:bf:d1:56:2e:97: 7c:13:0b:d3:8b:23:32:d1:18:16:7f:14:2a:5e:64: fa:b4:63:99:d1:11:02:4e:51:af:57:df:e5:35:b8: 70:52:60:1e:74:ac:c8:d5:d8:af:f4:94:62:54:b3: 44:e7:76:3d:ec:bd:4a:db:e0:5c:06:de:c8:aa:ad: 3a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:73:36:F1:D3:D4:4F:30:8A:F4:55:B3:E6:4D:4B:9A:0B:45:DE:90 X509v3 Authority Key Identifier: keyid:4A:24:3A:1E:C4:99:1C:40:D3:A6:14:85:15:E3:C5:19:81:B4:25:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/4A243A1EC4991C40D3A6148515E3C51981B425F7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A243A1EC4991C40D3A6148515E3C51981B425F7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/3130332e3130392e3230362e302f32342d3234203d3e20313530393335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.109.206.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:61:83:f0:e2:3b:05:53:2c:74:9e:a2:28:cf:d7:9a:73:65: c2:56:12:fe:bb:f0:99:7b:05:38:ef:6e:6b:69:62:52:ae:fa: c4:ac:8f:80:fd:1a:26:73:f7:d2:d3:8f:8f:a1:a6:5a:76:86: fc:97:3f:57:27:cd:c5:18:d0:de:72:c9:aa:15:77:f9:ce:2c: 5b:1a:3e:b2:44:0b:99:7b:6e:35:99:4b:36:4f:ef:f7:0d:ee: 15:54:81:c6:32:bf:8a:cf:6c:c7:6a:09:99:58:40:dd:b9:21: a3:f7:9c:c8:9a:78:48:26:18:dd:e1:a4:ce:77:b2:7a:56:68: c7:4b:62:30:3f:f1:fd:5f:f7:f1:37:7c:88:7e:0f:ae:12:ed: 46:1e:36:7d:ac:26:59:13:b8:ee:c8:82:4f:ec:7a:c2:0f:bd: d5:57:28:96:c7:f3:62:7d:bf:d2:93:7c:37:5e:b7:3a:e6:40: 8a:40:13:8c:ba:c6:49:f7:df:53:cf:f2:27:8d:0a:81:68:16: 20:3f:b2:64:28:06:08:42:a2:69:5d:0d:02:d7:af:66:c5:31: b0:46:7e:ae:f9:0e:3f:d1:53:3f:37:dc:7a:5a:ad:72:6c:83: c6:b2:06:b6:5e:d7:61:d0:c5:f3:85:fd:ee:b7:7c:ff:89:58: 20:93:e4:96 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDOE4J5R7wHC5Mh+UpJVDxTf/SswwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEEyNDNBMUVDNDk5MUM0MEQzQTYxNDg1MTVFM0M1MTk4 MUI0MjVGNzAeFw0yNTAzMTEwOTU1MDFaFw0yNjAzMTAxMDAwMDFaMDMxMTAvBgNV BAMTKDFFNzMzNkYxRDNENDRGMzA4QUY0NTVCM0U2NEQ0QjlBMEI0NURFOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClqOkXAv65LX9QK9s3zNACD/0/ uVg5jkJd3opiCQdm/r85gBn0OaZhV6VeSFQefBsDJuMciC27WUfuWNXVb2+9ji8b g8GnpTLWGJ4YFU04srM6jZvyhSc6ZPfV9+mX1zzutmvGu9Lt8WzHYmKbIMWXSUgw FDKWeP+SRgMI2dSowa8jIgtdDJa/JVWrb0FT2l3pcI2Kn7htixzD40MiBGLyMY9N +aMOgU2rw2w0W6CgJgWap0+31SR4U0zBDk+/0VYul3wTC9OLIzLRGBZ/FCpeZPq0 Y5nREQJOUa9X3+U1uHBSYB50rMjV2K/0lGJUs0Tndj3svUrb4FwG3siqrTr9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUHnM28dPUTzCK9FWz5k1LmgtF3pAwHwYDVR0j BBgwFoAUSiQ6HsSZHEDTphSFFePFGYG0JfcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l Yzg4OTJlYi1kZGMwLTRjYjYtOTU3Yy1iNjUzZjI4YmJmMzkvMC80QTI0M0ExRUM0 OTkxQzQwRDNBNjE0ODUxNUUzQzUxOTgxQjQyNUY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEEyNDNBMUVDNDk5MUM0MEQzQTYxNDg1MTVFM0M1MTk4MUI0 MjVGNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VjODg5MmViLWRkYzAtNGNiNi05 NTdjLWI2NTNmMjhiYmYzOS8wLzMxMzAzMzJlMzEzMDM5MmUzMjMwMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzOTMzMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnbc4wDQYJ KoZIhvcNAQELBQADggEBACthg/DiOwVTLHSeoijP15pzZcJWEv678Jl7BTjvbmtp YlKu+sSsj4D9GiZz99LTj4+hplp2hvyXP1cnzcUY0N5yyaoVd/nOLFsaPrJEC5l7 bjWZSzZP7/cN7hVUgcYyv4rPbMdqCZlYQN25IaP3nMiaeEgmGN3hpM53snpWaMdL YjA/8f1f9/E3fIh+D64S7UYeNn2sJlkTuO7Igk/sesIPvdVXKJbH82J9v9KTfDde tzrmQIpAE4y6xkn331PP8ieNCoFoFiA/smQoBghComldDQLXr2bFMbBGfq75Dj/R Uz833HparXJsg8ayBrZe12HQxfOF/e63fP+JWCCT5JY= -----END CERTIFICATE-----Generated at Mon Apr 7 16:49:37 2025 by rpki-client