$ rpki-client -vvf repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/3130332e3134322e3139352e302f32342d3234203d3e20313339333737.roa File: 3130332e3134322e3139352e302f32342d3234203d3e20313339333737.roa (raw, json) Hash identifier: xXmPg+qv24jKz/eXwVHYUpUxLnyd59IGPLP0enb+4aQ= Subject key identifier: D0:C4:11:6C:0E:1D:34:54:47:8D:0F:A5:80:C0:7A:F4:F5:C8:E7:37 Certificate issuer: /CN=C43D9C91D389ADDD2039882757F731CAFAAC740F Certificate serial: 6FF73CAD4A2B7A52195000BD5D93979F79850B7C Authority key identifier: C4:3D:9C:91:D3:89:AD:DD:20:39:88:27:57:F7:31:CA:FA:AC:74:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C43D9C91D389ADDD2039882757F731CAFAAC740F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/3130332e3134322e3139352e302f32342d3234203d3e20313339333737.roa Signing time: Sun 18 May 2025 10:00:00 +0000 ROA not before: Sun 18 May 2025 09:55:00 +0000 ROA not after: Sun 17 May 2026 10:00:00 +0000 asID: 139377 IP address blocks: 103.142.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/C43D9C91D389ADDD2039882757F731CAFAAC740F.crl rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/C43D9C91D389ADDD2039882757F731CAFAAC740F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C43D9C91D389ADDD2039882757F731CAFAAC740F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 01:31:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:f7:3c:ad:4a:2b:7a:52:19:50:00:bd:5d:93:97:9f:79:85:0b:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C43D9C91D389ADDD2039882757F731CAFAAC740F Validity Not Before: May 18 09:55:00 2025 GMT Not After : May 17 10:00:00 2026 GMT Subject: CN=D0C4116C0E1D3454478D0FA580C07AF4F5C8E737 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e2:44:2e:9d:b6:7d:1a:b3:54:eb:fd:e2:ab: c2:0e:01:5f:06:d6:5e:99:d1:ad:3c:1e:3a:d9:d8: 7f:5d:34:24:5d:6c:d9:c3:cf:14:9c:0c:06:99:c1: 8d:60:d6:90:06:1e:94:a3:30:62:d8:06:4b:b8:28: a3:0b:db:2e:a5:3d:24:b2:5f:a6:df:cc:fe:97:10: 6e:a9:25:17:ab:2a:9a:79:4c:a5:28:40:37:64:24: 23:7a:63:b9:72:3c:7a:af:e3:44:e4:1d:89:56:4f: 5c:28:8f:ca:28:ee:88:eb:36:05:a1:6a:14:6f:9f: 7b:06:02:36:6c:fb:62:f0:a9:18:b4:bf:44:73:eb: 67:ff:ae:71:40:b0:48:af:a9:69:13:3c:a5:a1:63: 60:2d:1e:61:74:99:ee:35:0b:47:87:66:6d:de:1e: af:03:a5:2e:fe:52:16:99:d8:3b:1d:29:b2:df:69: 31:ec:a7:e4:e5:e5:4f:47:90:30:6d:0c:b5:30:a2: c5:c2:72:6b:f5:08:6a:5d:f1:71:23:4d:a0:33:e1: 7b:1e:99:0c:05:0a:99:3d:14:12:46:bd:79:54:45: 5a:37:45:71:d9:6d:41:3c:ba:c2:ee:2f:f6:54:9a: 11:07:a2:51:15:8a:cd:bc:4f:c8:ae:3d:4c:52:82: de:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:C4:11:6C:0E:1D:34:54:47:8D:0F:A5:80:C0:7A:F4:F5:C8:E7:37 X509v3 Authority Key Identifier: keyid:C4:3D:9C:91:D3:89:AD:DD:20:39:88:27:57:F7:31:CA:FA:AC:74:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/C43D9C91D389ADDD2039882757F731CAFAAC740F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C43D9C91D389ADDD2039882757F731CAFAAC740F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/3130332e3134322e3139352e302f32342d3234203d3e20313339333737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.195.0/24 Signature Algorithm: sha256WithRSAEncryption 36:95:0f:74:a9:e7:71:0c:ae:b4:02:15:ad:25:a5:ff:4b:da: 44:64:7f:73:fd:61:0f:00:2b:6f:ff:7a:8c:b2:88:9e:8d:f7: 1e:98:f6:35:c6:0d:36:b7:99:79:29:f4:4e:45:da:ee:5c:b0: cd:e0:52:51:e8:90:2e:92:83:61:ee:49:26:81:74:0f:a7:6e: b4:ee:de:0e:b9:b3:55:aa:f5:4b:bd:d1:7e:28:42:76:30:07: cc:52:15:1f:06:70:da:1b:dc:28:8b:e8:2b:33:03:bd:c1:57: 3e:99:13:6c:1b:3f:0c:30:49:68:da:7d:25:5e:2e:56:b6:d2: fe:7d:e2:cb:47:7e:de:0a:57:21:b0:e0:65:fe:79:79:60:97: 56:dc:17:c6:a7:5e:10:4d:e1:01:d3:de:06:92:3f:62:b8:37: ab:42:90:4a:c5:2c:ad:9a:3b:f4:17:6c:be:65:cf:63:71:79: d2:1a:9e:fc:07:52:82:6d:ce:6a:90:03:f0:77:0b:b5:ed:0a: ad:85:d3:26:0a:ef:13:5c:36:f5:cc:50:1c:f0:6c:40:a2:38: 4a:bc:65:bd:7e:47:15:df:07:31:d1:66:d5:a0:ba:55:a6:5f: 81:07:7b:25:a5:a7:c2:ce:38:38:af:7b:78:24:d2:4a:e2:e5: b8:61:5d:d7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUb/c8rUorelIZUAC9XZOXn3mFC3wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQzRDlDOTFEMzg5QURERDIwMzk4ODI3NTdGNzMxQ0FG QUFDNzQwRjAeFw0yNTA1MTgwOTU1MDBaFw0yNjA1MTcxMDAwMDBaMDMxMTAvBgNV BAMTKEQwQzQxMTZDMEUxRDM0NTQ0NzhEMEZBNTgwQzA3QUY0RjVDOEU3MzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC44kQunbZ9GrNU6/3iq8IOAV8G 1l6Z0a08HjrZ2H9dNCRdbNnDzxScDAaZwY1g1pAGHpSjMGLYBku4KKML2y6lPSSy X6bfzP6XEG6pJRerKpp5TKUoQDdkJCN6Y7lyPHqv40TkHYlWT1woj8oo7ojrNgWh ahRvn3sGAjZs+2LwqRi0v0Rz62f/rnFAsEivqWkTPKWhY2AtHmF0me41C0eHZm3e Hq8DpS7+UhaZ2DsdKbLfaTHsp+Tl5U9HkDBtDLUwosXCcmv1CGpd8XEjTaAz4Xse mQwFCpk9FBJGvXlURVo3RXHZbUE8usLuL/ZUmhEHolEVis28T8iuPUxSgt6ZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU0MQRbA4dNFRHjQ+lgMB69PXI5zcwHwYDVR0j BBgwFoAUxD2ckdOJrd0gOYgnV/cxyvqsdA8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MmFhMmQxMC0zZmFhLTQyNzItYmUxZi04MTAyOTU3YjY1ZTYvMC9DNDNEOUM5MUQz ODlBREREMjAzOTg4Mjc1N0Y3MzFDQUZBQUM3NDBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQzRDlDOTFEMzg5QURERDIwMzk4ODI3NTdGNzMxQ0FGQUFD NzQwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YyYWEyZDEwLTNmYWEtNDI3Mi1i ZTFmLTgxMDI5NTdiNjVlNi8wLzMxMzAzMzJlMzEzNDMyMmUzMTM5MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzMzM3Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnjsMwDQYJ KoZIhvcNAQELBQADggEBADaVD3Sp53EMrrQCFa0lpf9L2kRkf3P9YQ8AK2//eoyy iJ6N9x6Y9jXGDTa3mXkp9E5F2u5csM3gUlHokC6Sg2HuSSaBdA+nbrTu3g65s1Wq 9Uu90X4oQnYwB8xSFR8GcNob3CiL6CszA73BVz6ZE2wbPwwwSWjafSVeLla20v59 4stHft4KVyGw4GX+eXlgl1bcF8anXhBN4QHT3gaSP2K4N6tCkErFLK2aO/QXbL5l z2NxedIanvwHUoJtzmqQA/B3C7XtCq2F0yYK7xNcNvXMUBzwbECiOEq8Zb1+RxXf BzHRZtWgulWmX4EHeyWlp8LOODive3gk0kri5bhhXdc= -----END CERTIFICATE-----Generated at Fri Jun 6 16:55:50 2025 by rpki-client