$ rpki-client -vvf repo-rpki.idnic.net/repo/0f659904-3702-4797-bd1b-447ab8c94e0c/0/3130332e3138392e3136382e302f32342d3234203d3e2039333431.roa File: 3130332e3138392e3136382e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: jcYNuwq5tBbtUM+5LFf+gih2lHYu/silWmdWErgVy5M= Subject key identifier: EE:60:0E:B9:8F:22:A8:03:09:19:1E:A9:3C:B9:DE:55:DC:2E:44:AF Certificate issuer: /CN=6FC0C93340FF73593434C8EFFCED8EB31DB08FDA Certificate serial: 08B11FED746ECF018037D9059D5A2155E0E11E4F Authority key identifier: 6F:C0:C9:33:40:FF:73:59:34:34:C8:EF:FC:ED:8E:B3:1D:B0:8F:DA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6FC0C93340FF73593434C8EFFCED8EB31DB08FDA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0f659904-3702-4797-bd1b-447ab8c94e0c/0/3130332e3138392e3136382e302f32342d3234203d3e2039333431.roa Signing time: Wed 16 Apr 2025 08:00:01 +0000 ROA not before: Wed 16 Apr 2025 07:55:01 +0000 ROA not after: Wed 15 Apr 2026 08:00:01 +0000 asID: 9341 IP address blocks: 103.189.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0f659904-3702-4797-bd1b-447ab8c94e0c/0/6FC0C93340FF73593434C8EFFCED8EB31DB08FDA.crl rsync://repo-rpki.idnic.net/repo/0f659904-3702-4797-bd1b-447ab8c94e0c/0/6FC0C93340FF73593434C8EFFCED8EB31DB08FDA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6FC0C93340FF73593434C8EFFCED8EB31DB08FDA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 12:29:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:b1:1f:ed:74:6e:cf:01:80:37:d9:05:9d:5a:21:55:e0:e1:1e:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FC0C93340FF73593434C8EFFCED8EB31DB08FDA Validity Not Before: Apr 16 07:55:01 2025 GMT Not After : Apr 15 08:00:01 2026 GMT Subject: CN=EE600EB98F22A80309191EA93CB9DE55DC2E44AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:39:27:44:d1:37:b1:4b:3f:4e:6d:c3:e0:e7: 40:22:41:36:ad:65:2a:46:2e:36:1d:77:c1:c1:33: 87:a1:06:c3:a6:85:2e:52:5d:47:00:ea:6b:23:13: 7c:e8:7a:b3:38:67:6d:e2:44:db:2c:2c:45:97:0a: b7:88:28:f7:f5:02:ce:5a:7e:64:4e:a9:fb:94:b2: fb:90:d1:24:05:32:64:91:64:31:ec:15:17:ea:29: c0:ba:20:7e:9d:ac:0b:7b:b3:1c:7c:c6:e0:aa:1f: a5:c7:5e:19:61:40:44:6d:16:33:a9:d0:54:d8:87: 6f:01:19:6a:dc:63:df:73:4d:fc:9c:6d:10:16:66: c5:ef:03:49:74:60:45:a2:0d:b3:bb:a9:fb:db:99: e6:17:ab:2f:fa:20:cf:7c:8d:5b:26:6d:93:57:7e: a3:d1:49:c4:25:ed:fd:d2:b0:80:e7:6f:2d:8e:16: 0f:6c:35:5a:b2:21:12:59:93:35:8a:31:41:3e:49: bf:6d:58:53:31:b7:0d:4b:a0:1e:8f:2f:99:69:ef: 4e:e3:e7:11:47:8e:4d:c5:e8:fa:f0:8e:d6:64:67: 6f:70:f1:b3:dc:3d:aa:58:31:62:b8:8a:67:c5:b8: 8e:8a:01:50:42:98:dd:23:9a:46:26:73:90:34:d4: f6:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:60:0E:B9:8F:22:A8:03:09:19:1E:A9:3C:B9:DE:55:DC:2E:44:AF X509v3 Authority Key Identifier: keyid:6F:C0:C9:33:40:FF:73:59:34:34:C8:EF:FC:ED:8E:B3:1D:B0:8F:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0f659904-3702-4797-bd1b-447ab8c94e0c/0/6FC0C93340FF73593434C8EFFCED8EB31DB08FDA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6FC0C93340FF73593434C8EFFCED8EB31DB08FDA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0f659904-3702-4797-bd1b-447ab8c94e0c/0/3130332e3138392e3136382e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.168.0/24 Signature Algorithm: sha256WithRSAEncryption 09:1e:6e:3b:0c:0a:91:0a:77:f5:df:ce:90:fe:b4:0c:3a:39: 45:2c:cb:fc:39:dd:d3:35:f0:9a:43:e9:a0:c8:60:fb:18:a5: 86:af:7a:0f:f3:20:d4:e4:ea:08:5f:23:ad:0d:96:3d:fc:e9: 30:13:18:b5:18:d6:7f:f9:8f:07:83:f9:3c:d6:a1:39:0e:51: 1f:e9:75:e3:60:d2:44:82:da:85:6c:4b:19:2c:df:c7:63:02: b0:bb:77:e9:d3:fe:dc:64:e4:e5:e8:90:f4:aa:fa:1b:1f:32: 76:45:a0:25:8c:40:bd:0f:aa:ec:48:06:8a:d5:6f:3c:aa:2c: 9e:88:f9:aa:95:bb:f8:1c:bb:e4:42:f8:29:26:32:1b:df:65: 8b:a4:d7:8f:d3:5b:f3:c6:00:ef:79:99:42:da:bc:2a:6c:ae: db:01:57:0a:0d:3d:15:40:a6:b2:99:34:80:77:8a:7e:54:76: 5b:8d:aa:71:05:28:99:33:e4:c4:7a:8b:79:fe:0f:21:df:d4: 8e:8f:23:f5:c7:7c:d0:91:f7:60:8e:0b:26:9c:9d:1c:ae:69: e7:f4:bf:1f:5a:b3:f5:af:86:b0:82:56:b1:09:8c:fa:3d:77: 83:6f:c7:91:44:62:c6:2a:b2:2f:74:60:39:51:6b:ad:dd:1c: b6:85:b2:ac -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCLEf7XRuzwGAN9kFnVohVeDhHk8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZDMEM5MzM0MEZGNzM1OTM0MzRDOEVGRkNFRDhFQjMx REIwOEZEQTAeFw0yNTA0MTYwNzU1MDFaFw0yNjA0MTUwODAwMDFaMDMxMTAvBgNV BAMTKEVFNjAwRUI5OEYyMkE4MDMwOTE5MUVBOTNDQjlERTU1REMyRTQ0QUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtOSdE0TexSz9ObcPg50AiQTat ZSpGLjYdd8HBM4ehBsOmhS5SXUcA6msjE3zoerM4Z23iRNssLEWXCreIKPf1As5a fmROqfuUsvuQ0SQFMmSRZDHsFRfqKcC6IH6drAt7sxx8xuCqH6XHXhlhQERtFjOp 0FTYh28BGWrcY99zTfycbRAWZsXvA0l0YEWiDbO7qfvbmeYXqy/6IM98jVsmbZNX fqPRScQl7f3SsIDnby2OFg9sNVqyIRJZkzWKMUE+Sb9tWFMxtw1LoB6PL5lp707j 5xFHjk3F6PrwjtZkZ29w8bPcPapYMWK4imfFuI6KAVBCmN0jmkYmc5A01Pb3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU7mAOuY8iqAMJGR6pPLneVdwuRK8wHwYDVR0j BBgwFoAUb8DJM0D/c1k0NMjv/O2Osx2wj9owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZjY1OTkwNC0zNzAyLTQ3OTctYmQxYi00NDdhYjhjOTRlMGMvMC82RkMwQzkzMzQw RkY3MzU5MzQzNEM4RUZGQ0VEOEVCMzFEQjA4RkRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkZDMEM5MzM0MEZGNzM1OTM0MzRDOEVGRkNFRDhFQjMxREIw OEZEQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBmNjU5OTA0LTM3MDItNDc5Ny1i ZDFiLTQ0N2FiOGM5NGUwYy8wLzMxMzAzMzJlMzEzODM5MmUzMTM2MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGe9qDANBgkqhkiG 9w0BAQsFAAOCAQEACR5uOwwKkQp39d/OkP60DDo5RSzL/Dnd0zXwmkPpoMhg+xil hq96D/Mg1OTqCF8jrQ2WPfzpMBMYtRjWf/mPB4P5PNahOQ5RH+l142DSRILahWxL GSzfx2MCsLt36dP+3GTk5eiQ9Kr6Gx8ydkWgJYxAvQ+q7EgGitVvPKosnoj5qpW7 +By75EL4KSYyG99li6TXj9Nb88YA73mZQtq8Kmyu2wFXCg09FUCmspk0gHeKflR2 W42qcQUomTPkxHqLef4PId/Ujo8j9cd80JH3YI4LJpydHK5p5/S/H1qz9a+GsIJW sQmM+j13g2/HkURixiqyL3RgOVFrrd0ctoWyrA== -----END CERTIFICATE-----Generated at Sat Apr 26 12:51:54 2025 by rpki-client