$ rpki-client -vvf repo-rpki.idnic.net/repo/0f659904-3702-4797-bd1b-447ab8c94e0c/0/3130332e3138392e3136382e302f32332d3233203d3e2039333431.roa File: 3130332e3138392e3136382e302f32332d3233203d3e2039333431.roa (raw, json) Hash identifier: R1C6O4ul1Ppozfaiesg+Uhn8MwDAOfzdAmq+sSEet2w= Subject key identifier: 63:02:F8:01:60:51:5F:5E:7D:9A:B7:8D:B4:59:A9:69:7D:F7:AA:0A Certificate issuer: /CN=6FC0C93340FF73593434C8EFFCED8EB31DB08FDA Certificate serial: 07BFC8087552D32F86BCBA23E9ABA92212CDBA2C Authority key identifier: 6F:C0:C9:33:40:FF:73:59:34:34:C8:EF:FC:ED:8E:B3:1D:B0:8F:DA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6FC0C93340FF73593434C8EFFCED8EB31DB08FDA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0f659904-3702-4797-bd1b-447ab8c94e0c/0/3130332e3138392e3136382e302f32332d3233203d3e2039333431.roa Signing time: Wed 16 Apr 2025 09:02:25 +0000 ROA not before: Wed 16 Apr 2025 08:57:25 +0000 ROA not after: Wed 15 Apr 2026 09:02:25 +0000 asID: 9341 IP address blocks: 103.189.168.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0f659904-3702-4797-bd1b-447ab8c94e0c/0/6FC0C93340FF73593434C8EFFCED8EB31DB08FDA.crl rsync://repo-rpki.idnic.net/repo/0f659904-3702-4797-bd1b-447ab8c94e0c/0/6FC0C93340FF73593434C8EFFCED8EB31DB08FDA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6FC0C93340FF73593434C8EFFCED8EB31DB08FDA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 12:29:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:bf:c8:08:75:52:d3:2f:86:bc:ba:23:e9:ab:a9:22:12:cd:ba:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FC0C93340FF73593434C8EFFCED8EB31DB08FDA Validity Not Before: Apr 16 08:57:25 2025 GMT Not After : Apr 15 09:02:25 2026 GMT Subject: CN=6302F80160515F5E7D9AB78DB459A9697DF7AA0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3c:5c:d8:f6:3d:94:e4:c5:92:88:87:27:bf: b3:6a:96:43:9e:2d:0a:b2:75:d4:8b:2c:f6:92:8b: e5:42:61:e0:5c:b5:12:40:45:db:f7:35:2a:03:64: f0:ae:06:02:53:13:ed:f7:75:1d:17:a3:bc:24:a3: 09:6c:2f:25:15:5e:c2:11:42:96:41:77:2c:64:fd: 62:5b:19:a6:33:26:86:b1:00:b1:d9:81:a6:4d:c7: 76:9f:fa:f6:e4:96:a1:a8:7a:53:7d:6f:64:9c:79: 5a:db:80:54:2c:af:2c:fe:bd:68:5e:9a:49:4d:1b: 33:13:b5:f0:69:4b:4d:42:f2:9b:1d:05:dc:96:98: 01:99:6e:0f:69:40:1c:91:7f:09:ed:4d:98:95:15: 0a:13:6b:c2:05:18:4c:c6:34:d7:76:9e:62:e3:5d: 5f:16:b4:d3:03:d1:d9:a8:70:e5:f8:e3:60:84:5c: 58:0c:0b:b9:ba:19:4e:73:c3:8d:54:00:45:b9:ce: 60:29:b2:5e:9f:14:74:81:88:a0:2e:b0:69:10:9d: 06:f9:be:cc:f0:0c:bb:8b:56:84:fd:35:8c:06:0a: 65:98:49:f7:d9:30:1f:75:12:0a:c4:f5:7f:d8:a7: 9e:89:47:48:76:1c:fa:3f:b2:1d:1b:88:ad:06:14: e8:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:02:F8:01:60:51:5F:5E:7D:9A:B7:8D:B4:59:A9:69:7D:F7:AA:0A X509v3 Authority Key Identifier: keyid:6F:C0:C9:33:40:FF:73:59:34:34:C8:EF:FC:ED:8E:B3:1D:B0:8F:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0f659904-3702-4797-bd1b-447ab8c94e0c/0/6FC0C93340FF73593434C8EFFCED8EB31DB08FDA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6FC0C93340FF73593434C8EFFCED8EB31DB08FDA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0f659904-3702-4797-bd1b-447ab8c94e0c/0/3130332e3138392e3136382e302f32332d3233203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.168.0/23 Signature Algorithm: sha256WithRSAEncryption 55:7b:72:74:48:ab:b9:f1:c3:3b:7b:fb:66:4d:7e:7c:e9:41: ac:45:5a:cc:85:dc:f8:14:13:47:eb:b8:1d:92:62:b1:59:78: 95:56:a4:cf:aa:75:1c:fd:ed:de:68:6a:dd:10:08:94:29:07: 08:6a:fb:18:76:58:70:f9:51:a5:1a:31:4b:cf:6b:f2:26:1f: 05:62:b1:c2:d7:0a:4d:86:20:cc:8a:f8:86:9f:2a:f7:29:4c: 1d:ab:0e:d9:98:23:cd:0b:5e:34:00:d8:44:76:dc:74:d2:91: b4:f6:fd:af:a5:13:db:15:c0:45:1c:62:d0:17:8d:1e:64:68: d4:f8:05:d5:08:af:a4:cd:1f:1d:ea:6c:6d:32:72:c9:38:3f: 38:5d:d9:35:cb:89:ed:9d:34:77:fe:b3:aa:c5:21:19:6f:a9: ee:4e:f5:33:ba:bb:06:5c:18:53:19:27:77:f6:9d:43:f4:43: 57:5a:99:05:30:63:99:4c:d1:d1:80:1f:d4:79:86:50:ab:05: 84:43:d6:46:03:07:ee:52:1c:0f:91:a2:98:1d:a8:53:62:a4: 45:6a:bb:3f:9d:81:5f:20:90:45:b0:28:e5:4e:39:cf:02:dd: a6:b1:59:11:b2:00:79:ee:75:3b:1a:ca:d1:cf:7b:fc:b7:cc: 7f:45:13:27 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUB7/ICHVS0y+GvLoj6aupIhLNuiwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZDMEM5MzM0MEZGNzM1OTM0MzRDOEVGRkNFRDhFQjMx REIwOEZEQTAeFw0yNTA0MTYwODU3MjVaFw0yNjA0MTUwOTAyMjVaMDMxMTAvBgNV BAMTKDYzMDJGODAxNjA1MTVGNUU3RDlBQjc4REI0NTlBOTY5N0RGN0FBMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0PFzY9j2U5MWSiIcnv7NqlkOe LQqyddSLLPaSi+VCYeBctRJARdv3NSoDZPCuBgJTE+33dR0Xo7wkowlsLyUVXsIR QpZBdyxk/WJbGaYzJoaxALHZgaZNx3af+vbklqGoelN9b2SceVrbgFQsryz+vWhe mklNGzMTtfBpS01C8psdBdyWmAGZbg9pQByRfwntTZiVFQoTa8IFGEzGNNd2nmLj XV8WtNMD0dmocOX442CEXFgMC7m6GU5zw41UAEW5zmApsl6fFHSBiKAusGkQnQb5 vszwDLuLVoT9NYwGCmWYSffZMB91EgrE9X/Yp56JR0h2HPo/sh0biK0GFOipAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYwL4AWBRX159mreNtFmpaX33qgowHwYDVR0j BBgwFoAUb8DJM0D/c1k0NMjv/O2Osx2wj9owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZjY1OTkwNC0zNzAyLTQ3OTctYmQxYi00NDdhYjhjOTRlMGMvMC82RkMwQzkzMzQw RkY3MzU5MzQzNEM4RUZGQ0VEOEVCMzFEQjA4RkRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkZDMEM5MzM0MEZGNzM1OTM0MzRDOEVGRkNFRDhFQjMxREIw OEZEQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBmNjU5OTA0LTM3MDItNDc5Ny1i ZDFiLTQ0N2FiOGM5NGUwYy8wLzMxMzAzMzJlMzEzODM5MmUzMTM2MzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWe9qDANBgkqhkiG 9w0BAQsFAAOCAQEAVXtydEirufHDO3v7Zk1+fOlBrEVazIXc+BQTR+u4HZJisVl4 lVakz6p1HP3t3mhq3RAIlCkHCGr7GHZYcPlRpRoxS89r8iYfBWKxwtcKTYYgzIr4 hp8q9ylMHasO2ZgjzQteNADYRHbcdNKRtPb9r6UT2xXARRxi0BeNHmRo1PgF1Qiv pM0fHepsbTJyyTg/OF3ZNcuJ7Z00d/6zqsUhGW+p7k71M7q7BlwYUxknd/adQ/RD V1qZBTBjmUzR0YAf1HmGUKsFhEPWRgMH7lIcD5GimB2oU2KkRWq7P52BXyCQRbAo 5U45zwLdprFZEbIAee51OxrK0c97/LfMf0UTJw== -----END CERTIFICATE-----Generated at Sat Apr 26 12:51:16 2025 by rpki-client