$ rpki-client -vvf repo-rpki.idnic.net/repo/f54ddc65-61c1-49e1-a895-3c03f587a27b/0/3130332e3138332e35362e302f32342d3234203d3e20333938373730.roa File: 3130332e3138332e35362e302f32342d3234203d3e20333938373730.roa (raw, json) Hash identifier: j0zU5zNBxerw0e+KyvMXC5SwkVyUagvGQiIa+aM4WMg= Subject key identifier: 9C:E3:CC:FE:F5:21:CD:0A:7E:4A:F7:7E:5A:58:B7:0C:A8:B0:E2:8A Certificate issuer: /CN=2863C0F50E0EE50DA8CDFB2EF12D4B5811B1666C Certificate serial: 6221751A3F74D500562A866AD28BF6658E656D3A Authority key identifier: 28:63:C0:F5:0E:0E:E5:0D:A8:CD:FB:2E:F1:2D:4B:58:11:B1:66:6C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2863C0F50E0EE50DA8CDFB2EF12D4B5811B1666C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f54ddc65-61c1-49e1-a895-3c03f587a27b/0/3130332e3138332e35362e302f32342d3234203d3e20333938373730.roa Signing time: Fri 14 Mar 2025 12:56:37 +0000 ROA not before: Fri 14 Mar 2025 12:51:37 +0000 ROA not after: Fri 13 Mar 2026 12:56:37 +0000 asID: 398770 IP address blocks: 103.183.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f54ddc65-61c1-49e1-a895-3c03f587a27b/0/2863C0F50E0EE50DA8CDFB2EF12D4B5811B1666C.crl rsync://repo-rpki.idnic.net/repo/f54ddc65-61c1-49e1-a895-3c03f587a27b/0/2863C0F50E0EE50DA8CDFB2EF12D4B5811B1666C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2863C0F50E0EE50DA8CDFB2EF12D4B5811B1666C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 10:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:21:75:1a:3f:74:d5:00:56:2a:86:6a:d2:8b:f6:65:8e:65:6d:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2863C0F50E0EE50DA8CDFB2EF12D4B5811B1666C Validity Not Before: Mar 14 12:51:37 2025 GMT Not After : Mar 13 12:56:37 2026 GMT Subject: CN=9CE3CCFEF521CD0A7E4AF77E5A58B70CA8B0E28A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1c:20:94:ab:5b:8b:92:fd:e7:f0:b6:82:52: e6:d6:93:01:4b:15:59:e1:f3:eb:ef:94:f7:9b:10: d9:d2:fe:de:64:4f:cd:ae:1e:a1:c4:da:4b:59:03: d7:d2:ed:79:79:d0:c7:23:95:83:9c:2e:16:cf:0d: 93:e9:46:51:2c:14:c2:35:7b:3c:5d:74:07:9f:f4: ff:fe:0f:5b:85:5b:e1:65:1c:44:4e:95:85:ab:ba: c5:bf:fe:47:f5:01:2a:b4:d4:4e:c1:26:59:e0:89: 3d:2a:df:5d:31:e3:c6:6a:41:d8:f2:7d:c1:b8:3f: 19:b2:5f:ec:02:76:a1:83:64:87:f6:32:ef:55:b4: 6c:7e:b8:13:53:6f:a5:cf:04:a0:d0:76:46:a0:ac: 10:aa:c0:d0:6b:5f:9a:55:43:94:1e:ad:09:f6:88: 4c:a7:15:c8:2a:d5:34:b3:14:31:a0:29:7f:ca:f0: 68:07:5b:bc:4d:61:f4:18:a0:1d:c4:7e:61:b9:bb: 09:b9:4c:bd:c7:b1:fe:dd:83:10:b0:1e:c1:db:d5: ad:5c:fb:dc:3a:f4:2b:25:14:8c:13:07:e7:90:ba: 4c:b1:65:d4:88:7c:0e:cb:90:63:da:d4:c7:5b:96: 46:fe:f6:1b:e4:d1:00:12:71:62:15:7f:98:a5:70: d8:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:E3:CC:FE:F5:21:CD:0A:7E:4A:F7:7E:5A:58:B7:0C:A8:B0:E2:8A X509v3 Authority Key Identifier: keyid:28:63:C0:F5:0E:0E:E5:0D:A8:CD:FB:2E:F1:2D:4B:58:11:B1:66:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f54ddc65-61c1-49e1-a895-3c03f587a27b/0/2863C0F50E0EE50DA8CDFB2EF12D4B5811B1666C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2863C0F50E0EE50DA8CDFB2EF12D4B5811B1666C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f54ddc65-61c1-49e1-a895-3c03f587a27b/0/3130332e3138332e35362e302f32342d3234203d3e20333938373730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.183.56.0/24 Signature Algorithm: sha256WithRSAEncryption 97:71:5c:9e:c4:c4:76:25:e6:aa:84:5e:1d:9a:1e:53:ac:c6: 4b:9f:c7:54:fb:c0:82:6f:aa:a5:5c:ec:ba:3d:3b:08:7d:6a: 39:58:eb:b5:df:fa:00:ae:53:7e:8f:b9:ed:a9:3f:fd:c6:0d: c0:ae:f8:7d:d2:da:32:0f:0a:da:c0:9c:97:85:49:9a:fb:36: cd:06:1a:c7:50:a8:e8:76:b5:c3:28:42:b0:a6:93:95:44:2c: 4b:50:24:3b:b1:2a:ff:75:4a:28:e2:d1:79:c2:90:1f:3b:c7: 2a:91:62:ad:c6:91:84:ac:a0:af:01:1e:1f:e9:7e:ef:6f:90: 94:24:c7:1a:7b:cc:c7:72:d2:3d:65:b3:65:74:56:7b:d9:83: 16:5f:ae:59:3e:23:9b:05:7d:e9:36:1b:85:86:79:e5:d5:eb: d4:d0:e7:e9:52:8c:04:af:6e:91:34:0c:19:92:6e:ce:29:b0: d3:a0:f4:43:c7:dc:c7:15:20:05:88:ae:28:05:ce:ff:22:93: 7a:aa:42:49:b6:f2:78:99:96:ba:c1:2c:06:a5:46:a1:6a:0f: 4e:b2:0c:a7:b0:a9:8f:c9:af:a0:ac:a3:a7:8a:10:0d:35:2f: f8:07:17:67:42:6e:e6:56:c2:45:2a:d2:4e:64:0f:2f:b0:2f: a9:2d:c5:8c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYiF1Gj901QBWKoZq0ov2ZY5lbTowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg2M0MwRjUwRTBFRTUwREE4Q0RGQjJFRjEyRDRCNTgx MUIxNjY2QzAeFw0yNTAzMTQxMjUxMzdaFw0yNjAzMTMxMjU2MzdaMDMxMTAvBgNV BAMTKDlDRTNDQ0ZFRjUyMUNEMEE3RTRBRjc3RTVBNThCNzBDQThCMEUyOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkHCCUq1uLkv3n8LaCUubWkwFL FVnh8+vvlPebENnS/t5kT82uHqHE2ktZA9fS7Xl50McjlYOcLhbPDZPpRlEsFMI1 ezxddAef9P/+D1uFW+FlHEROlYWrusW//kf1ASq01E7BJlngiT0q310x48ZqQdjy fcG4PxmyX+wCdqGDZIf2Mu9VtGx+uBNTb6XPBKDQdkagrBCqwNBrX5pVQ5QerQn2 iEynFcgq1TSzFDGgKX/K8GgHW7xNYfQYoB3EfmG5uwm5TL3Hsf7dgxCwHsHb1a1c +9w69CslFIwTB+eQukyxZdSIfA7LkGPa1Mdblkb+9hvk0QAScWIVf5ilcNivAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnOPM/vUhzQp+Svd+Wli3DKiw4oowHwYDVR0j BBgwFoAUKGPA9Q4O5Q2ozfsu8S1LWBGxZmwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NTRkZGM2NS02MWMxLTQ5ZTEtYTg5NS0zYzAzZjU4N2EyN2IvMC8yODYzQzBGNTBF MEVFNTBEQThDREZCMkVGMTJENEI1ODExQjE2NjZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg2M0MwRjUwRTBFRTUwREE4Q0RGQjJFRjEyRDRCNTgxMUIx NjY2Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y1NGRkYzY1LTYxYzEtNDllMS1h ODk1LTNjMDNmNTg3YTI3Yi8wLzMxMzAzMzJlMzEzODMzMmUzNTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzOTM4MzczNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7c4MA0GCSqG SIb3DQEBCwUAA4IBAQCXcVyexMR2JeaqhF4dmh5TrMZLn8dU+8CCb6qlXOy6PTsI fWo5WOu13/oArlN+j7ntqT/9xg3Arvh90toyDwrawJyXhUma+zbNBhrHUKjodrXD KEKwppOVRCxLUCQ7sSr/dUoo4tF5wpAfO8cqkWKtxpGErKCvAR4f6X7vb5CUJMca e8zHctI9ZbNldFZ72YMWX65ZPiObBX3pNhuFhnnl1evU0OfpUowEr26RNAwZkm7O KbDToPRDx9zHFSAFiK4oBc7/IpN6qkJJtvJ4mZa6wSwGpUahag9OsgynsKmPya+g rKOnihANNS/4BxdnQm7mVsJFKtJOZA8vsC+pLcWM -----END CERTIFICATE-----Generated at Sun Apr 6 13:36:46 2025 by rpki-client