$ rpki-client -vvf repo-rpki.idnic.net/repo/19b93e1c-5f2a-43a9-99f1-fdd0402f946e/0/3130332e3137312e32322e302f32332d3234203d3e20313338383535.roa File: 3130332e3137312e32322e302f32332d3234203d3e20313338383535.roa (raw, json) Hash identifier: P8qheu64b1l5b4rB30UV/NbiZ7Eie1YYkFGoi6rHg2Y= Subject key identifier: E6:E7:95:5C:23:04:6B:B1:F9:D8:41:C5:B4:AD:3C:09:6A:18:4A:4C Certificate issuer: /CN=1887AEA5A2D9DB479E618167B2FE47250ACFE79B Certificate serial: 6AAC7F8C246DAEAA718EAFBAD882BBF379F8C35F Authority key identifier: 18:87:AE:A5:A2:D9:DB:47:9E:61:81:67:B2:FE:47:25:0A:CF:E7:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1887AEA5A2D9DB479E618167B2FE47250ACFE79B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19b93e1c-5f2a-43a9-99f1-fdd0402f946e/0/3130332e3137312e32322e302f32332d3234203d3e20313338383535.roa Signing time: Mon 28 Apr 2025 08:00:00 +0000 ROA not before: Mon 28 Apr 2025 07:55:00 +0000 ROA not after: Mon 27 Apr 2026 08:00:00 +0000 asID: 138855 IP address blocks: 103.171.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19b93e1c-5f2a-43a9-99f1-fdd0402f946e/0/1887AEA5A2D9DB479E618167B2FE47250ACFE79B.crl rsync://repo-rpki.idnic.net/repo/19b93e1c-5f2a-43a9-99f1-fdd0402f946e/0/1887AEA5A2D9DB479E618167B2FE47250ACFE79B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1887AEA5A2D9DB479E618167B2FE47250ACFE79B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:42:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:ac:7f:8c:24:6d:ae:aa:71:8e:af:ba:d8:82:bb:f3:79:f8:c3:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1887AEA5A2D9DB479E618167B2FE47250ACFE79B Validity Not Before: Apr 28 07:55:00 2025 GMT Not After : Apr 27 08:00:00 2026 GMT Subject: CN=E6E7955C23046BB1F9D841C5B4AD3C096A184A4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b3:85:f8:14:56:d6:9e:3a:2b:65:2d:bf:8c: 64:d9:06:28:32:dd:89:59:dc:d4:16:36:43:ba:6b: 09:be:ba:de:6e:da:6a:75:e7:b4:e2:b9:b5:f1:ea: 14:b1:a7:c6:95:7c:2e:84:3c:c0:02:dd:0b:f8:19: 52:dc:45:a2:f0:e6:8e:c5:10:f7:bb:8f:b7:1a:7b: e7:2d:af:fd:01:b4:18:01:d4:df:31:11:74:2d:20: 00:d9:05:18:6e:da:ad:2a:cc:87:97:7c:61:c6:21: 05:26:ca:44:cf:07:03:76:63:1d:fb:40:07:3f:8c: 91:7f:2c:3f:cf:3c:c0:1a:7f:60:4f:57:c6:81:1f: e0:42:da:3e:c9:78:30:2f:0f:de:1b:da:ee:19:6f: 3a:f4:c0:6c:0e:8b:d4:05:1c:95:b6:e6:71:f8:87: a4:78:44:c1:25:2e:af:cd:7b:ef:52:22:01:a7:1e: 29:da:a5:89:22:ce:ac:cf:6e:96:89:7d:dc:d9:4a: f0:a1:20:79:42:8a:09:6b:86:e4:c4:89:95:2e:2d: 06:a5:86:71:8b:1c:f1:92:89:00:12:42:9e:5f:ea: 06:f8:13:28:ca:d9:33:04:c6:e3:b5:a7:b5:fb:1f: c1:6e:16:45:73:7f:50:87:09:6d:80:5d:ea:92:a1: f7:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:E7:95:5C:23:04:6B:B1:F9:D8:41:C5:B4:AD:3C:09:6A:18:4A:4C X509v3 Authority Key Identifier: keyid:18:87:AE:A5:A2:D9:DB:47:9E:61:81:67:B2:FE:47:25:0A:CF:E7:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19b93e1c-5f2a-43a9-99f1-fdd0402f946e/0/1887AEA5A2D9DB479E618167B2FE47250ACFE79B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1887AEA5A2D9DB479E618167B2FE47250ACFE79B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19b93e1c-5f2a-43a9-99f1-fdd0402f946e/0/3130332e3137312e32322e302f32332d3234203d3e20313338383535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.22.0/23 Signature Algorithm: sha256WithRSAEncryption 05:81:fc:20:fd:79:31:14:f6:5f:c4:d0:50:69:39:be:fb:8c: 0e:b5:99:f3:9b:cc:a1:c2:13:78:ec:8b:76:52:45:ce:f0:3b: 23:67:a6:a7:49:65:89:07:d6:b3:8e:6e:36:a3:3b:b6:56:75: d4:24:9e:13:e9:11:27:0e:52:86:3a:4e:10:da:6b:25:6a:00: 3d:01:7e:7e:cb:07:65:16:31:07:b6:6b:8f:7d:7b:89:6a:16: 26:d7:ad:e9:16:0e:4a:26:41:93:c9:10:be:fc:c7:54:69:7e: 76:d5:de:f0:67:8b:04:fa:9b:19:35:9d:d7:08:3a:91:68:df: 4f:75:b6:61:2d:25:b9:43:8c:82:f9:65:c0:74:98:3c:49:61: b1:8f:aa:33:06:91:5a:ef:7b:89:b6:72:19:d2:11:88:60:6f: 68:07:ba:63:6e:ce:37:63:75:3a:cc:22:c3:27:09:92:95:d8: 6b:f1:1a:e6:88:0f:f7:43:e3:65:5b:21:45:ec:e5:d7:3e:8a: 12:c7:5b:11:63:d9:55:1a:40:2a:d9:2a:89:b0:e6:d3:9f:28: 6d:ef:34:9a:c5:cb:c3:df:1f:77:50:5e:f7:af:b8:a4:c3:6a: 36:05:4d:da:3a:0a:6f:f9:10:c9:45:c3:ed:ab:61:f9:5f:30: a3:98:84:c6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaqx/jCRtrqpxjq+62IK783n4w18wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTg4N0FFQTVBMkQ5REI0NzlFNjE4MTY3QjJGRTQ3MjUw QUNGRTc5QjAeFw0yNTA0MjgwNzU1MDBaFw0yNjA0MjcwODAwMDBaMDMxMTAvBgNV BAMTKEU2RTc5NTVDMjMwNDZCQjFGOUQ4NDFDNUI0QUQzQzA5NkExODRBNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCps4X4FFbWnjorZS2/jGTZBigy 3YlZ3NQWNkO6awm+ut5u2mp157TiubXx6hSxp8aVfC6EPMAC3Qv4GVLcRaLw5o7F EPe7j7cae+ctr/0BtBgB1N8xEXQtIADZBRhu2q0qzIeXfGHGIQUmykTPBwN2Yx37 QAc/jJF/LD/PPMAaf2BPV8aBH+BC2j7JeDAvD94b2u4Zbzr0wGwOi9QFHJW25nH4 h6R4RMElLq/Ne+9SIgGnHinapYkizqzPbpaJfdzZSvChIHlCiglrhuTEiZUuLQal hnGLHPGSiQASQp5f6gb4EyjK2TMExuO1p7X7H8FuFkVzf1CHCW2AXeqSoffpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5ueVXCMEa7H52EHFtK08CWoYSkwwHwYDVR0j BBgwFoAUGIeupaLZ20eeYYFnsv5HJQrP55swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWI5M2UxYy01ZjJhLTQzYTktOTlmMS1mZGQwNDAyZjk0NmUvMC8xODg3QUVBNUEy RDlEQjQ3OUU2MTgxNjdCMkZFNDcyNTBBQ0ZFNzlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTg4N0FFQTVBMkQ5REI0NzlFNjE4MTY3QjJGRTQ3MjUwQUNG RTc5Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YjkzZTFjLTVmMmEtNDNhOS05 OWYxLWZkZDA0MDJmOTQ2ZS8wLzMxMzAzMzJlMzEzNzMxMmUzMjMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6sWMA0GCSqG SIb3DQEBCwUAA4IBAQAFgfwg/XkxFPZfxNBQaTm++4wOtZnzm8yhwhN47It2UkXO 8DsjZ6anSWWJB9azjm42ozu2VnXUJJ4T6REnDlKGOk4Q2mslagA9AX5+ywdlFjEH tmuPfXuJahYm163pFg5KJkGTyRC+/MdUaX521d7wZ4sE+psZNZ3XCDqRaN9PdbZh LSW5Q4yC+WXAdJg8SWGxj6ozBpFa73uJtnIZ0hGIYG9oB7pjbs43Y3U6zCLDJwmS ldhr8RrmiA/3Q+NlWyFF7OXXPooSx1sRY9lVGkAq2SqJsObTnyht7zSaxcvD3x93 UF73r7ikw2o2BU3aOgpv+RDJRcPtq2H5XzCjmITG -----END CERTIFICATE-----Generated at Wed Apr 30 05:40:18 2025 by rpki-client