$ rpki-client -vvf repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0/3130332e3139312e3137362e302f32332d3234203d3e2034383030.roa File: 3130332e3139312e3137362e302f32332d3234203d3e2034383030.roa (raw, json) Hash identifier: skxD93mSZPzFcHG9WbDQcpHQq3Kcwean+DkfNBxkL7o= Subject key identifier: C2:DA:67:12:8E:2D:46:0B:B0:0A:BB:9A:D3:FF:92:A6:4D:2E:4B:77 Certificate issuer: /CN=29CF00DB5C2109C4B5090935368C9AC57C5BD2A4 Certificate serial: 6A95B18C4B251E030CE179D2B1CFD3CBCA648A96 Authority key identifier: 29:CF:00:DB:5C:21:09:C4:B5:09:09:35:36:8C:9A:C5:7C:5B:D2:A4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0/3130332e3139312e3137362e302f32332d3234203d3e2034383030.roa Signing time: Tue 29 Apr 2025 07:00:00 +0000 ROA not before: Tue 29 Apr 2025 06:55:00 +0000 ROA not after: Tue 28 Apr 2026 07:00:00 +0000 asID: 4800 IP address blocks: 103.191.176.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.crl rsync://repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 10:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:95:b1:8c:4b:25:1e:03:0c:e1:79:d2:b1:cf:d3:cb:ca:64:8a:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29CF00DB5C2109C4B5090935368C9AC57C5BD2A4 Validity Not Before: Apr 29 06:55:00 2025 GMT Not After : Apr 28 07:00:00 2026 GMT Subject: CN=C2DA67128E2D460BB00ABB9AD3FF92A64D2E4B77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:62:85:31:8a:0a:9a:68:c6:f1:d1:70:ed:e3: b3:ca:98:5e:41:39:67:c9:1b:66:a0:8e:17:cb:ba: ef:14:33:3e:7f:b5:78:50:26:42:53:f8:b4:88:a5: 27:28:0a:25:7e:ab:a8:70:3c:cb:a8:50:37:1a:17: d8:66:a6:a6:f8:53:12:2d:b0:7b:b4:de:f4:e3:1b: 85:1c:4f:35:e3:36:8e:98:2b:d9:ba:93:4c:04:ef: 38:c2:4a:40:f8:63:a3:75:3b:b0:b5:36:1c:91:6e: 36:5f:1b:b2:6b:ec:56:d4:1b:ad:ea:27:0d:fb:a0: da:e3:56:f0:21:de:e1:65:10:9d:d5:23:34:4b:c3: a9:d4:74:eb:af:3f:3d:73:00:8f:3e:d2:a5:cf:d7: b8:d9:90:78:6f:d2:a0:c2:14:e4:c0:95:2c:76:e1: 62:4a:cf:6b:f7:96:1f:67:8c:6e:f5:d6:fe:13:ec: d4:9b:1c:3e:da:f0:50:24:eb:5f:66:20:a2:ee:70: d3:dc:ac:d4:49:37:c7:eb:f8:6c:0a:0e:6a:d1:a6: 90:fb:b8:03:68:30:54:b2:36:26:6b:2f:9d:1f:b2: b0:5f:ad:ad:d6:e2:4c:9b:95:15:3d:fd:f4:b7:a3: f3:f6:a1:11:37:f1:9d:bb:84:cd:36:95:a2:df:66: 45:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:DA:67:12:8E:2D:46:0B:B0:0A:BB:9A:D3:FF:92:A6:4D:2E:4B:77 X509v3 Authority Key Identifier: keyid:29:CF:00:DB:5C:21:09:C4:B5:09:09:35:36:8C:9A:C5:7C:5B:D2:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0/3130332e3139312e3137362e302f32332d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.176.0/23 Signature Algorithm: sha256WithRSAEncryption 15:98:42:7d:ae:a1:41:bc:c3:76:1e:6b:cd:31:42:05:69:f4: 9c:99:72:aa:27:89:27:c7:31:f9:24:cc:8e:d1:f7:a9:4c:39: 86:3b:8b:44:66:a8:b2:29:94:6b:b5:11:ca:75:25:5b:cd:a9: 08:1f:f8:30:35:9c:02:75:15:2b:93:a0:59:ed:27:1b:33:1f: f6:a3:7f:99:7a:bf:6e:58:42:dc:29:6e:85:8b:99:35:fa:3f: 47:56:19:40:05:6a:e5:73:bd:dc:c8:0b:67:17:5f:00:c3:20: 34:07:2b:d1:14:b1:98:56:0c:8b:8a:37:3f:21:12:dc:ae:ae: a0:fe:90:31:49:7f:4f:cb:c6:6d:ae:25:58:ce:a4:51:ae:d9: 7c:17:e4:ba:b5:18:e2:00:fb:27:8e:b6:8f:43:85:12:7b:1c: 7e:e5:6a:0b:80:35:62:3a:7d:33:80:9c:92:2a:eb:dc:c8:87: 4b:a5:2e:70:7d:a4:c6:0a:6a:d5:be:16:07:03:79:02:43:99: 24:b2:d2:5e:8f:8c:f5:f7:4e:3e:61:4f:10:73:e0:72:0f:d2: 8d:29:5c:b5:7a:86:8d:fa:c6:df:de:17:55:11:fd:3b:09:05: fc:a3:fc:86:f6:51:ad:2a:e0:f1:bc:e7:cf:04:9b:2f:b2:89: 27:15:d6:5c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUapWxjEslHgMM4XnSsc/Ty8pkipYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlDRjAwREI1QzIxMDlDNEI1MDkwOTM1MzY4QzlBQzU3 QzVCRDJBNDAeFw0yNTA0MjkwNjU1MDBaFw0yNjA0MjgwNzAwMDBaMDMxMTAvBgNV BAMTKEMyREE2NzEyOEUyRDQ2MEJCMDBBQkI5QUQzRkY5MkE2NEQyRTRCNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeYoUxigqaaMbx0XDt47PKmF5B OWfJG2agjhfLuu8UMz5/tXhQJkJT+LSIpScoCiV+q6hwPMuoUDcaF9hmpqb4UxIt sHu03vTjG4UcTzXjNo6YK9m6k0wE7zjCSkD4Y6N1O7C1NhyRbjZfG7Jr7FbUG63q Jw37oNrjVvAh3uFlEJ3VIzRLw6nUdOuvPz1zAI8+0qXP17jZkHhv0qDCFOTAlSx2 4WJKz2v3lh9njG711v4T7NSbHD7a8FAk619mIKLucNPcrNRJN8fr+GwKDmrRppD7 uANoMFSyNiZrL50fsrBfra3W4kyblRU9/fS3o/P2oRE38Z27hM02laLfZkX9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUwtpnEo4tRguwCrua0/+Spk0uS3cwHwYDVR0j BBgwFoAUKc8A21whCcS1CQk1NoyaxXxb0qQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTIyYjRlMi0yNmY2LTQxZTgtODkxMC0yMDZiZWE3ODNkYjkvMC8yOUNGMDBEQjVD MjEwOUM0QjUwOTA5MzUzNjhDOUFDNTdDNUJEMkE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlDRjAwREI1QzIxMDlDNEI1MDkwOTM1MzY4QzlBQzU3QzVC RDJBNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhMjJiNGUyLTI2ZjYtNDFlOC04 OTEwLTIwNmJlYTc4M2RiOS8wLzMxMzAzMzJlMzEzOTMxMmUzMTM3MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNDM4MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWe/sDANBgkqhkiG 9w0BAQsFAAOCAQEAFZhCfa6hQbzDdh5rzTFCBWn0nJlyqieJJ8cx+STMjtH3qUw5 hjuLRGaosimUa7URynUlW82pCB/4MDWcAnUVK5OgWe0nGzMf9qN/mXq/blhC3Clu hYuZNfo/R1YZQAVq5XO93MgLZxdfAMMgNAcr0RSxmFYMi4o3PyES3K6uoP6QMUl/ T8vGba4lWM6kUa7ZfBfkurUY4gD7J462j0OFEnscfuVqC4A1Yjp9M4Cckirr3MiH S6UucH2kxgpq1b4WBwN5AkOZJLLSXo+M9fdOPmFPEHPgcg/SjSlctXqGjfrG394X VRH9OwkF/KP8hvZRrSrg8bznzwSbL7KJJxXWXA== -----END CERTIFICATE-----Generated at Tue Apr 29 18:37:36 2025 by rpki-client