$ rpki-client -vvf repo-rpki.idnic.net/repo/ef3d4da9-182f-4a73-a110-4c8bff894fbc/0/3130332e3138362e382e302f32332d3234203d3e20313339393737.roa File: 3130332e3138362e382e302f32332d3234203d3e20313339393737.roa (raw, json) Hash identifier: 0fU+cgX2w2Seah8SyqIL5rp6DTz7LSKW3s4WYXiC+fA= Subject key identifier: 59:D7:10:9B:6F:34:37:60:54:4D:CD:BC:90:40:53:61:3B:E9:16:C8 Certificate issuer: /CN=625D3D358DEFDD65359387A6A36775411462B4D4 Certificate serial: 0E6BDF73A0E6A752AD271FAF00F6B1AC6748526E Authority key identifier: 62:5D:3D:35:8D:EF:DD:65:35:93:87:A6:A3:67:75:41:14:62:B4:D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/625D3D358DEFDD65359387A6A36775411462B4D4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ef3d4da9-182f-4a73-a110-4c8bff894fbc/0/3130332e3138362e382e302f32332d3234203d3e20313339393737.roa Signing time: Mon 13 Jan 2025 10:00:13 +0000 ROA not before: Mon 13 Jan 2025 09:55:13 +0000 ROA not after: Mon 12 Jan 2026 10:00:13 +0000 asID: 139977 IP address blocks: 103.186.8.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ef3d4da9-182f-4a73-a110-4c8bff894fbc/0/625D3D358DEFDD65359387A6A36775411462B4D4.crl rsync://repo-rpki.idnic.net/repo/ef3d4da9-182f-4a73-a110-4c8bff894fbc/0/625D3D358DEFDD65359387A6A36775411462B4D4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/625D3D358DEFDD65359387A6A36775411462B4D4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 15:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:6b:df:73:a0:e6:a7:52:ad:27:1f:af:00:f6:b1:ac:67:48:52:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=625D3D358DEFDD65359387A6A36775411462B4D4 Validity Not Before: Jan 13 09:55:13 2025 GMT Not After : Jan 12 10:00:13 2026 GMT Subject: CN=59D7109B6F343760544DCDBC904053613BE916C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:95:44:5a:cd:5b:42:c8:a4:12:5a:02:4b:06: ef:fd:76:f0:82:a4:a3:e8:9c:9a:70:76:61:a2:45: b1:97:3b:2a:4b:22:7c:ab:bd:2c:ec:30:2b:4a:bd: 67:da:c3:48:39:6a:54:aa:9e:65:d4:d3:e4:ce:3e: 29:e9:2b:fa:ad:d4:98:d0:64:fd:86:db:13:bd:fe: ac:eb:6b:da:d6:f2:cf:62:84:6e:84:d3:88:02:86: ef:79:05:0e:27:fc:3b:cb:84:25:58:c8:42:ce:b0: 3d:7e:d1:9d:4a:ef:a1:19:d9:11:11:5d:56:13:b5: ad:76:61:d2:70:37:d9:97:d1:a4:66:39:3d:03:7d: 91:c6:79:ca:ec:f0:2a:e4:72:bf:fb:7c:6e:a0:11: 49:e9:7f:75:f1:4d:38:25:72:20:08:c4:87:44:f8: eb:60:5f:ff:95:68:93:6e:00:c2:21:43:15:3d:2a: 3e:11:0d:bc:bb:ce:04:48:34:6b:5c:de:ff:db:58: 43:d4:b0:3e:3d:65:6c:f5:7b:f5:3f:22:a5:9e:7f: 22:37:1d:ae:8e:91:d4:8b:fb:5f:06:f0:a0:c2:be: a5:07:ab:b0:ed:86:7a:bb:dd:1a:c2:d3:18:82:c2: 6a:c8:16:a8:80:11:18:59:70:81:3e:00:40:1e:3d: f2:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:D7:10:9B:6F:34:37:60:54:4D:CD:BC:90:40:53:61:3B:E9:16:C8 X509v3 Authority Key Identifier: keyid:62:5D:3D:35:8D:EF:DD:65:35:93:87:A6:A3:67:75:41:14:62:B4:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ef3d4da9-182f-4a73-a110-4c8bff894fbc/0/625D3D358DEFDD65359387A6A36775411462B4D4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/625D3D358DEFDD65359387A6A36775411462B4D4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ef3d4da9-182f-4a73-a110-4c8bff894fbc/0/3130332e3138362e382e302f32332d3234203d3e20313339393737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.8.0/23 Signature Algorithm: sha256WithRSAEncryption 80:7d:82:5d:03:af:75:29:3c:5d:60:bb:47:91:6d:f8:53:86: 42:65:e8:a3:cd:b2:a4:e7:5e:36:bc:c5:bd:1b:9e:28:f3:39: 24:0b:e7:07:26:d8:ea:2b:90:56:03:72:c4:fe:3b:49:9a:90: b5:95:4f:6d:a9:83:db:0f:a5:2a:d2:2e:8b:45:72:eb:32:72: 4c:59:55:15:9e:cb:01:cb:85:85:2d:54:fa:2f:d2:d2:5e:0d: 0c:08:08:ec:da:86:2c:da:b5:db:5d:8a:a7:44:6a:46:05:54: 38:c5:df:f1:4f:21:8e:bf:40:de:a1:fe:71:2c:6f:32:54:c1: f9:97:7d:05:ff:98:13:6b:0a:3a:bd:e3:7f:61:09:56:7f:e3: b8:e8:05:94:c4:a5:e2:8a:0c:28:52:7d:d2:36:51:48:07:90: b1:7c:7e:c6:c4:6c:53:18:6a:f3:de:37:d2:86:25:2c:d4:b5: 34:82:25:10:a2:d1:db:e6:fa:ad:40:9e:82:72:97:27:f0:41: 65:f2:67:71:62:a3:11:ed:50:39:ad:4f:68:c6:df:4c:15:ee: cd:aa:31:c0:a1:b5:80:99:3d:c7:a4:e6:de:84:9a:f1:f7:42: 42:d3:86:68:15:e3:c1:6c:db:9d:4c:9b:0c:84:c0:55:87:b6: ce:0d:99:1e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDmvfc6Dmp1KtJx+vAPaxrGdIUm4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjI1RDNEMzU4REVGREQ2NTM1OTM4N0E2QTM2Nzc1NDEx NDYyQjRENDAeFw0yNTAxMTMwOTU1MTNaFw0yNjAxMTIxMDAwMTNaMDMxMTAvBgNV BAMTKDU5RDcxMDlCNkYzNDM3NjA1NDREQ0RCQzkwNDA1MzYxM0JFOTE2QzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUlURazVtCyKQSWgJLBu/9dvCC pKPonJpwdmGiRbGXOypLInyrvSzsMCtKvWfaw0g5alSqnmXU0+TOPinpK/qt1JjQ ZP2G2xO9/qzra9rW8s9ihG6E04gChu95BQ4n/DvLhCVYyELOsD1+0Z1K76EZ2RER XVYTta12YdJwN9mX0aRmOT0DfZHGecrs8Crkcr/7fG6gEUnpf3XxTTglciAIxIdE +OtgX/+VaJNuAMIhQxU9Kj4RDby7zgRINGtc3v/bWEPUsD49ZWz1e/U/IqWefyI3 Ha6OkdSL+18G8KDCvqUHq7Dthnq73RrC0xiCwmrIFqiAERhZcIE+AEAePfKrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWdcQm280N2BUTc28kEBTYTvpFsgwHwYDVR0j BBgwFoAUYl09NY3v3WU1k4emo2d1QRRitNQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZjNkNGRhOS0xODJmLTRhNzMtYTExMC00YzhiZmY4OTRmYmMvMC82MjVEM0QzNThE RUZERDY1MzU5Mzg3QTZBMzY3NzU0MTE0NjJCNEQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjI1RDNEMzU4REVGREQ2NTM1OTM4N0E2QTM2Nzc1NDExNDYy QjRENC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VmM2Q0ZGE5LTE4MmYtNGE3My1h MTEwLTRjOGJmZjg5NGZiYy8wLzMxMzAzMzJlMzEzODM2MmUzODJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzOTM5MzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWe6CDANBgkqhkiG 9w0BAQsFAAOCAQEAgH2CXQOvdSk8XWC7R5Ft+FOGQmXoo82ypOdeNrzFvRueKPM5 JAvnBybY6iuQVgNyxP47SZqQtZVPbamD2w+lKtIui0Vy6zJyTFlVFZ7LAcuFhS1U +i/S0l4NDAgI7NqGLNq1212Kp0RqRgVUOMXf8U8hjr9A3qH+cSxvMlTB+Zd9Bf+Y E2sKOr3jf2EJVn/juOgFlMSl4ooMKFJ90jZRSAeQsXx+xsRsUxhq89430oYlLNS1 NIIlEKLR2+b6rUCegnKXJ/BBZfJncWKjEe1QOa1PaMbfTBXuzaoxwKG1gJk9x6Tm 3oSa8fdCQtOGaBXjwWzbnUybDITAVYe2zg2ZHg== -----END CERTIFICATE-----Generated at Mon Apr 7 02:22:10 2025 by rpki-client