$ rpki-client -vvf repo-rpki.idnic.net/repo/7e8cbdc8-d195-4c7d-b3e8-0a8fbae8c284/0/3130332e3136362e39302e302f32332d3234203d3e20313431393431.roa File: 3130332e3136362e39302e302f32332d3234203d3e20313431393431.roa (raw, json) Hash identifier: u/DfRKi6okqGd/2PRwDyTkJXR+LfAGJBXiMbBVUigkU= Subject key identifier: 6C:D7:67:85:D1:C9:8E:F1:C9:CF:79:44:87:75:59:31:21:3A:99:8E Certificate issuer: /CN=8790EFE9518BF8664B34E1227585F3516FDC5367 Certificate serial: 0F38112C5ADBC98E24C7C01D6026DA3A1094A5C9 Authority key identifier: 87:90:EF:E9:51:8B:F8:66:4B:34:E1:22:75:85:F3:51:6F:DC:53:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8790EFE9518BF8664B34E1227585F3516FDC5367.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e8cbdc8-d195-4c7d-b3e8-0a8fbae8c284/0/3130332e3136362e39302e302f32332d3234203d3e20313431393431.roa Signing time: Mon 14 Apr 2025 10:00:00 +0000 ROA not before: Mon 14 Apr 2025 09:55:00 +0000 ROA not after: Mon 13 Apr 2026 10:00:00 +0000 asID: 141941 IP address blocks: 103.166.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e8cbdc8-d195-4c7d-b3e8-0a8fbae8c284/0/8790EFE9518BF8664B34E1227585F3516FDC5367.crl rsync://repo-rpki.idnic.net/repo/7e8cbdc8-d195-4c7d-b3e8-0a8fbae8c284/0/8790EFE9518BF8664B34E1227585F3516FDC5367.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8790EFE9518BF8664B34E1227585F3516FDC5367.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 12:08:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:38:11:2c:5a:db:c9:8e:24:c7:c0:1d:60:26:da:3a:10:94:a5:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8790EFE9518BF8664B34E1227585F3516FDC5367 Validity Not Before: Apr 14 09:55:00 2025 GMT Not After : Apr 13 10:00:00 2026 GMT Subject: CN=6CD76785D1C98EF1C9CF794487755931213A998E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:be:1f:fd:0d:31:be:a1:9f:80:19:07:ef:17: d2:e5:36:0d:70:26:f6:86:4b:0e:ac:82:62:fa:80: 7b:54:2b:f8:e2:57:7a:6b:c4:a0:97:8a:ae:42:08: fe:3b:97:b8:73:e7:f1:b8:d5:21:f4:92:ca:0b:96: e1:43:5d:2d:66:c7:12:75:ed:40:cc:a6:ab:a0:97: 46:8c:29:3d:81:0a:bc:5f:0c:4d:a5:af:a5:3d:d2: c6:b9:a6:22:37:38:5a:f2:20:f9:14:77:20:c2:9f: a5:af:4e:7d:6c:61:da:a9:89:fe:e0:cb:ea:6e:9e: d5:01:6d:6e:68:ff:cf:8a:83:b5:94:4c:2f:7c:7d: 35:56:54:89:25:35:e9:04:6a:42:82:2b:71:af:d9: 2c:c3:74:15:67:70:b1:18:11:19:83:9d:52:a1:b6: 71:a2:1b:18:54:e1:ac:da:ce:1e:a0:8b:b3:dd:6c: 8d:77:c4:a2:f9:20:29:6a:63:c6:b6:08:de:ce:f7: 3e:e5:8c:cb:80:1e:08:4a:81:49:3a:ef:f8:df:cd: f4:c3:6a:42:00:ad:10:68:8b:4b:da:f0:6b:5f:f7: 1e:f9:b7:8f:dd:72:ea:53:6b:3b:66:95:8c:fd:25: dc:0e:83:aa:6e:29:1d:3b:79:18:74:6f:80:e0:4f: 89:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:D7:67:85:D1:C9:8E:F1:C9:CF:79:44:87:75:59:31:21:3A:99:8E X509v3 Authority Key Identifier: keyid:87:90:EF:E9:51:8B:F8:66:4B:34:E1:22:75:85:F3:51:6F:DC:53:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e8cbdc8-d195-4c7d-b3e8-0a8fbae8c284/0/8790EFE9518BF8664B34E1227585F3516FDC5367.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8790EFE9518BF8664B34E1227585F3516FDC5367.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e8cbdc8-d195-4c7d-b3e8-0a8fbae8c284/0/3130332e3136362e39302e302f32332d3234203d3e20313431393431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.90.0/23 Signature Algorithm: sha256WithRSAEncryption 2d:09:88:78:53:cd:ac:75:e7:df:c3:97:71:c5:20:92:94:d5: ca:e3:93:1d:a1:36:7f:a0:20:d6:d8:ed:b9:9d:49:86:6e:04: a3:45:b9:d2:41:4c:83:0b:e8:6a:59:8a:90:12:57:8e:19:80: 1e:32:d2:a1:10:03:f8:4a:6d:ed:00:aa:e8:be:d6:24:4f:ef: 39:db:2f:69:36:87:2e:1c:1a:8f:41:33:cf:cf:9a:e0:ff:eb: d3:1c:cf:1a:e3:c3:4f:06:97:95:34:3e:d3:91:58:42:2b:5b: bd:4e:d2:d9:d9:9e:ea:b8:61:8b:73:11:cb:2d:55:35:7a:61: cf:81:aa:55:63:ef:d1:38:9a:a3:1e:38:4c:6b:98:a3:3a:ab: 4a:89:64:b0:eb:ee:24:3a:32:54:a6:3d:25:39:05:38:59:f7: 68:e3:47:ae:32:a6:02:6b:d7:d7:5c:0c:bb:e5:f9:40:12:77: ee:30:54:7a:a0:a1:76:ea:38:47:c8:64:b4:9c:55:03:2d:da: 5b:18:bd:d9:59:73:de:bc:e3:bb:fc:f3:47:51:9a:8a:8e:74: 21:33:f9:95:88:b9:5a:71:e3:57:33:74:a9:30:a9:c1:80:11: 0d:3d:61:80:04:82:2a:d6:81:98:2e:76:08:83:39:1b:58:ed: 62:98:b6:c3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDzgRLFrbyY4kx8AdYCbaOhCUpckwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODc5MEVGRTk1MThCRjg2NjRCMzRFMTIyNzU4NUYzNTE2 RkRDNTM2NzAeFw0yNTA0MTQwOTU1MDBaFw0yNjA0MTMxMDAwMDBaMDMxMTAvBgNV BAMTKDZDRDc2Nzg1RDFDOThFRjFDOUNGNzk0NDg3NzU1OTMxMjEzQTk5OEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKvh/9DTG+oZ+AGQfvF9LlNg1w JvaGSw6sgmL6gHtUK/jiV3prxKCXiq5CCP47l7hz5/G41SH0ksoLluFDXS1mxxJ1 7UDMpqugl0aMKT2BCrxfDE2lr6U90sa5piI3OFryIPkUdyDCn6WvTn1sYdqpif7g y+puntUBbW5o/8+Kg7WUTC98fTVWVIklNekEakKCK3Gv2SzDdBVncLEYERmDnVKh tnGiGxhU4azazh6gi7PdbI13xKL5IClqY8a2CN7O9z7ljMuAHghKgUk67/jfzfTD akIArRBoi0va8Gtf9x75t4/dcupTaztmlYz9JdwOg6puKR07eRh0b4DgT4kbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUbNdnhdHJjvHJz3lEh3VZMSE6mY4wHwYDVR0j BBgwFoAUh5Dv6VGL+GZLNOEidYXzUW/cU2cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZThjYmRjOC1kMTk1LTRjN2QtYjNlOC0wYThmYmFlOGMyODQvMC84NzkwRUZFOTUx OEJGODY2NEIzNEUxMjI3NTg1RjM1MTZGREM1MzY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODc5MEVGRTk1MThCRjg2NjRCMzRFMTIyNzU4NUYzNTE2RkRD NTM2Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlOGNiZGM4LWQxOTUtNGM3ZC1i M2U4LTBhOGZiYWU4YzI4NC8wLzMxMzAzMzJlMzEzNjM2MmUzOTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMxMzkzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6ZaMA0GCSqG SIb3DQEBCwUAA4IBAQAtCYh4U82sdeffw5dxxSCSlNXK45MdoTZ/oCDW2O25nUmG bgSjRbnSQUyDC+hqWYqQEleOGYAeMtKhEAP4Sm3tAKrovtYkT+852y9pNocuHBqP QTPPz5rg/+vTHM8a48NPBpeVND7TkVhCK1u9TtLZ2Z7quGGLcxHLLVU1emHPgapV Y+/ROJqjHjhMa5ijOqtKiWSw6+4kOjJUpj0lOQU4Wfdo40euMqYCa9fXXAy75flA EnfuMFR6oKF26jhHyGS0nFUDLdpbGL3ZWXPevOO7/PNHUZqKjnQhM/mViLlaceNX M3SpMKnBgBENPWGABIIq1oGYLnYIgzkbWO1imLbD -----END CERTIFICATE-----Generated at Tue Apr 29 08:34:20 2025 by rpki-client