$ rpki-client -vvf repo-rpki.idnic.net/repo/0a46bdad-f130-48a9-8534-54ba3e8ed61f/0/3130332e3135382e3139352e302f32342d3234203d3e20313331313131.roa File: 3130332e3135382e3139352e302f32342d3234203d3e20313331313131.roa (raw, json) Hash identifier: lkrHej4FZPJ4f2E40DosArf8hhkwpkjiPyYFXEzD3uU= Subject key identifier: EA:4E:D8:CC:63:88:B6:FF:C1:A8:E7:1D:A0:3A:62:E4:A9:40:20:61 Certificate issuer: /CN=6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7 Certificate serial: 6CA995362C9644C69F713ED240DCE0B3801E3DAA Authority key identifier: 6A:02:DC:10:F4:1F:CE:0E:B4:97:98:DD:BC:F3:1F:C9:C0:F2:E3:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0a46bdad-f130-48a9-8534-54ba3e8ed61f/0/3130332e3135382e3139352e302f32342d3234203d3e20313331313131.roa Signing time: Thu 24 Apr 2025 04:00:00 +0000 ROA not before: Thu 24 Apr 2025 03:55:00 +0000 ROA not after: Thu 23 Apr 2026 04:00:00 +0000 asID: 131111 IP address blocks: 103.158.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0a46bdad-f130-48a9-8534-54ba3e8ed61f/0/6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7.crl rsync://repo-rpki.idnic.net/repo/0a46bdad-f130-48a9-8534-54ba3e8ed61f/0/6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 20:11:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:a9:95:36:2c:96:44:c6:9f:71:3e:d2:40:dc:e0:b3:80:1e:3d:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7 Validity Not Before: Apr 24 03:55:00 2025 GMT Not After : Apr 23 04:00:00 2026 GMT Subject: CN=EA4ED8CC6388B6FFC1A8E71DA03A62E4A9402061 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c5:2a:26:4b:10:de:f0:43:3a:4e:cb:9a:19: 6d:7d:06:7d:fc:7b:8b:e4:3a:13:0e:5b:c4:94:8c: 7d:56:8e:fc:3e:53:75:02:df:ec:1f:1b:1c:c5:41: 08:26:0d:6b:80:78:22:a2:cf:ad:6d:be:c3:4c:36: c1:d3:fc:50:dc:36:69:2b:9f:53:c3:b1:d4:b5:a4: cc:19:d4:d9:39:79:b6:17:5d:5d:91:e8:b0:1c:ba: ee:ee:56:88:5b:9c:0d:6d:8c:67:44:9c:07:d0:64: 7c:f3:c1:2c:1d:50:2b:d4:f2:0f:15:48:7b:44:74: 28:16:b4:29:17:bd:84:0a:b0:61:9d:e1:a1:72:60: 25:f3:aa:03:b6:cf:a8:b6:c4:51:9b:65:88:2b:cb: 4f:1b:84:02:b5:f0:69:dc:cc:b7:7d:14:5c:54:89: 10:aa:e8:fc:32:bb:0b:42:ee:56:5a:93:e3:aa:eb: ba:5e:be:41:2a:ed:05:22:ac:9d:58:ac:1c:8d:a9: ae:a9:ba:36:06:e8:8a:13:10:9d:bb:6f:00:f5:88: 2b:85:71:62:cd:82:81:17:5c:5f:f2:24:6c:46:1b: b7:7e:24:e9:2f:d7:96:99:d8:e4:fe:d6:ac:97:75: d3:52:0f:a8:4d:73:96:d8:65:40:d0:8e:a9:12:08: ea:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:4E:D8:CC:63:88:B6:FF:C1:A8:E7:1D:A0:3A:62:E4:A9:40:20:61 X509v3 Authority Key Identifier: keyid:6A:02:DC:10:F4:1F:CE:0E:B4:97:98:DD:BC:F3:1F:C9:C0:F2:E3:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0a46bdad-f130-48a9-8534-54ba3e8ed61f/0/6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A02DC10F41FCE0EB49798DDBCF31FC9C0F2E3F7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0a46bdad-f130-48a9-8534-54ba3e8ed61f/0/3130332e3135382e3139352e302f32342d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.195.0/24 Signature Algorithm: sha256WithRSAEncryption b7:d3:8a:3e:aa:7e:ff:aa:1e:01:0e:34:fc:60:59:92:f8:31: 55:98:ea:e2:d0:5f:fc:38:71:03:93:91:a9:66:f3:4f:b1:62: 95:8b:e8:06:fc:2b:15:96:db:26:99:a8:0f:4f:2e:53:5a:06: c6:53:47:61:cf:34:8a:42:8c:51:e5:ed:0b:b6:f7:98:7f:58: 65:c0:90:be:d5:ad:62:4d:08:c9:f9:1e:9f:7c:46:83:a2:da: 88:58:01:d0:dc:5c:1a:e5:c2:e9:62:f6:82:3b:7c:0e:98:24: c2:90:bf:7f:0d:66:b7:82:91:85:8a:9f:54:0b:97:b6:8e:05: a2:49:69:fa:65:14:dd:82:07:e1:f6:14:4d:a0:f7:c7:c4:1e: e6:d7:1e:1a:bd:c1:f2:9c:99:ef:d0:04:37:92:57:f8:a3:7e: 51:23:12:0e:51:ae:51:88:6b:48:d1:7b:db:c8:a9:d5:e6:75: c9:95:cc:90:71:17:3d:91:5f:20:10:5a:78:29:6e:7b:8b:33: 07:32:43:65:02:af:97:76:57:75:2e:fc:2e:02:84:c4:a2:58: f4:46:5d:de:e6:ab:e9:5f:cf:6a:7b:57:f2:7d:4c:cb:2e:39: 0b:cf:75:1a:00:37:bc:9e:03:67:da:d6:33:6c:0e:35:78:1d: d8:f7:f8:d4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbKmVNiyWRMafcT7SQNzgs4AePaowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkEwMkRDMTBGNDFGQ0UwRUI0OTc5OEREQkNGMzFGQzlD MEYyRTNGNzAeFw0yNTA0MjQwMzU1MDBaFw0yNjA0MjMwNDAwMDBaMDMxMTAvBgNV BAMTKEVBNEVEOENDNjM4OEI2RkZDMUE4RTcxREEwM0E2MkU0QTk0MDIwNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3xSomSxDe8EM6TsuaGW19Bn38 e4vkOhMOW8SUjH1Wjvw+U3UC3+wfGxzFQQgmDWuAeCKiz61tvsNMNsHT/FDcNmkr n1PDsdS1pMwZ1Nk5ebYXXV2R6LAcuu7uVohbnA1tjGdEnAfQZHzzwSwdUCvU8g8V SHtEdCgWtCkXvYQKsGGd4aFyYCXzqgO2z6i2xFGbZYgry08bhAK18GnczLd9FFxU iRCq6PwyuwtC7lZak+Oq67pevkEq7QUirJ1YrByNqa6pujYG6IoTEJ27bwD1iCuF cWLNgoEXXF/yJGxGG7d+JOkv15aZ2OT+1qyXddNSD6hNc5bYZUDQjqkSCOpPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU6k7YzGOItv/BqOcdoDpi5KlAIGEwHwYDVR0j BBgwFoAUagLcEPQfzg60l5jdvPMfycDy4/cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YTQ2YmRhZC1mMTMwLTQ4YTktODUzNC01NGJhM2U4ZWQ2MWYvMC82QTAyREMxMEY0 MUZDRTBFQjQ5Nzk4RERCQ0YzMUZDOUMwRjJFM0Y3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkEwMkRDMTBGNDFGQ0UwRUI0OTc5OEREQkNGMzFGQzlDMEYy RTNGNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhNDZiZGFkLWYxMzAtNDhhOS04 NTM0LTU0YmEzZThlZDYxZi8wLzMxMzAzMzJlMzEzNTM4MmUzMTM5MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzMTMxMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnsMwDQYJ KoZIhvcNAQELBQADggEBALfTij6qfv+qHgEONPxgWZL4MVWY6uLQX/w4cQOTkalm 80+xYpWL6Ab8KxWW2yaZqA9PLlNaBsZTR2HPNIpCjFHl7Qu295h/WGXAkL7VrWJN CMn5Hp98RoOi2ohYAdDcXBrlwuli9oI7fA6YJMKQv38NZreCkYWKn1QLl7aOBaJJ afplFN2CB+H2FE2g98fEHubXHhq9wfKcme/QBDeSV/ijflEjEg5RrlGIa0jRe9vI qdXmdcmVzJBxFz2RXyAQWngpbnuLMwcyQ2UCr5d2V3Uu/C4ChMSiWPRGXd7mq+lf z2p7V/J9TMsuOQvPdRoAN7yeA2fa1jNsDjV4Hdj3+NQ= -----END CERTIFICATE-----Generated at Sat Apr 26 19:25:30 2025 by rpki-client