$ rpki-client -vvf repo-rpki.idnic.net/repo/85ee40dc-51ba-4769-8619-2289cce9629e/0/3130332e3136382e32382e302f32342d3234203d3e20313432333132.roa File: 3130332e3136382e32382e302f32342d3234203d3e20313432333132.roa (raw, json) Hash identifier: sx5VJymAvvNUkEeCxfKSGsfVfFxKwy7RBlSVqnNBRV4= Subject key identifier: BA:BF:EA:EF:A4:64:53:0A:F4:E3:7B:CF:CD:DF:D5:5F:3E:65:E4:29 Certificate issuer: /CN=688610C731A4E7A1D35B3E264DF9A05873F1E6C1 Certificate serial: 2BEA2B70B7EB0750EBAF5A7024070225BE632AF4 Authority key identifier: 68:86:10:C7:31:A4:E7:A1:D3:5B:3E:26:4D:F9:A0:58:73:F1:E6:C1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/688610C731A4E7A1D35B3E264DF9A05873F1E6C1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85ee40dc-51ba-4769-8619-2289cce9629e/0/3130332e3136382e32382e302f32342d3234203d3e20313432333132.roa Signing time: Tue 15 Apr 2025 09:00:00 +0000 ROA not before: Tue 15 Apr 2025 08:55:00 +0000 ROA not after: Tue 14 Apr 2026 09:00:00 +0000 asID: 142312 IP address blocks: 103.168.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85ee40dc-51ba-4769-8619-2289cce9629e/0/688610C731A4E7A1D35B3E264DF9A05873F1E6C1.crl rsync://repo-rpki.idnic.net/repo/85ee40dc-51ba-4769-8619-2289cce9629e/0/688610C731A4E7A1D35B3E264DF9A05873F1E6C1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/688610C731A4E7A1D35B3E264DF9A05873F1E6C1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:24:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:ea:2b:70:b7:eb:07:50:eb:af:5a:70:24:07:02:25:be:63:2a:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=688610C731A4E7A1D35B3E264DF9A05873F1E6C1 Validity Not Before: Apr 15 08:55:00 2025 GMT Not After : Apr 14 09:00:00 2026 GMT Subject: CN=BABFEAEFA464530AF4E37BCFCDDFD55F3E65E429 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:1c:42:ed:af:b5:ee:a2:37:97:3f:ef:41:9e: 0a:17:32:f3:ca:e4:e9:42:4b:ec:3c:a9:a3:d5:ce: b3:5e:25:71:ff:96:1b:1f:51:0e:c7:4f:ac:71:3a: 54:be:93:24:c2:b8:c9:f2:c4:1c:2e:79:4e:75:14: e7:30:c3:3d:60:98:fd:53:ea:17:49:9c:62:48:8f: 25:d1:c3:94:b3:c9:98:3e:b3:ac:2d:f7:0a:d1:5b: 94:3d:58:d4:e1:ff:60:ca:b8:7c:62:cb:ff:89:fb: a9:ec:f8:1f:1d:03:7b:bd:2d:cc:54:4a:66:2c:f0: 6e:77:52:5b:58:94:66:02:42:70:16:51:ea:39:12: 81:eb:0e:2f:3b:80:5e:3c:db:44:d2:9f:84:f7:24: 86:92:be:af:fb:03:26:69:db:5d:d9:af:4b:90:66: ec:06:6a:1b:68:86:b7:06:fa:44:10:53:92:03:db: 1c:93:52:c4:3f:39:5f:94:00:1c:b2:fd:fa:c3:a4: 6f:94:ae:1d:79:0b:45:65:58:fd:e1:e9:1a:33:6c: 4a:47:c6:6c:ce:21:bf:42:d9:4a:82:e3:20:de:16: ce:f7:a5:bc:bf:b8:51:1a:8f:d7:e1:f4:fa:f2:b7: 19:ac:1d:b2:9f:0b:27:b9:a9:59:9e:01:f4:e6:51: ea:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:BF:EA:EF:A4:64:53:0A:F4:E3:7B:CF:CD:DF:D5:5F:3E:65:E4:29 X509v3 Authority Key Identifier: keyid:68:86:10:C7:31:A4:E7:A1:D3:5B:3E:26:4D:F9:A0:58:73:F1:E6:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85ee40dc-51ba-4769-8619-2289cce9629e/0/688610C731A4E7A1D35B3E264DF9A05873F1E6C1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/688610C731A4E7A1D35B3E264DF9A05873F1E6C1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85ee40dc-51ba-4769-8619-2289cce9629e/0/3130332e3136382e32382e302f32342d3234203d3e20313432333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.28.0/24 Signature Algorithm: sha256WithRSAEncryption a6:d1:dc:4e:63:06:ca:b5:3e:f7:3c:fa:cd:be:e1:40:28:d1: b1:67:b4:5f:a0:c8:b6:4e:39:19:5b:1d:9a:7e:ab:89:4d:53: f6:dc:48:b2:7b:56:cf:31:ec:35:f0:8c:5d:4c:df:70:ae:71: e7:e0:95:4f:4c:54:1d:fb:bc:0e:0d:92:35:30:23:3f:51:98: e4:a8:f7:22:c2:56:98:2f:a2:46:fb:70:2c:fa:c4:f7:3b:e7: 25:94:0d:21:5c:dd:0f:22:b2:b1:dd:b4:7f:20:5d:86:1b:c0: 0e:4c:6e:7f:5c:50:5f:af:a8:ac:b8:72:ee:d1:c1:56:4d:2c: 43:fe:0c:7f:05:80:17:20:25:9d:1f:ec:b7:22:94:5d:11:89: 18:3a:23:a3:70:e9:e1:a6:1e:f8:a7:b5:8b:79:6f:5e:f8:01: 9d:c3:15:30:71:1e:ef:14:84:21:b5:17:cb:ef:4f:50:47:b1: f2:d5:d4:4e:5f:9f:9c:d2:85:1a:62:b2:e6:8d:22:1d:95:19: 2c:0a:13:9b:a4:23:5b:7a:d9:75:4b:d8:eb:72:0d:de:51:38: 8a:2c:9e:59:59:ee:7c:55:2a:33:13:c2:f7:64:bf:5e:46:03: ec:09:36:26:7f:fa:7f:2e:75:26:20:e1:89:63:72:e2:ae:0d: f7:28:84:8e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUK+orcLfrB1Drr1pwJAcCJb5jKvQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjg4NjEwQzczMUE0RTdBMUQzNUIzRTI2NERGOUEwNTg3 M0YxRTZDMTAeFw0yNTA0MTUwODU1MDBaFw0yNjA0MTQwOTAwMDBaMDMxMTAvBgNV BAMTKEJBQkZFQUVGQTQ2NDUzMEFGNEUzN0JDRkNEREZENTVGM0U2NUU0MjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiHELtr7XuojeXP+9BngoXMvPK 5OlCS+w8qaPVzrNeJXH/lhsfUQ7HT6xxOlS+kyTCuMnyxBwueU51FOcwwz1gmP1T 6hdJnGJIjyXRw5SzyZg+s6wt9wrRW5Q9WNTh/2DKuHxiy/+J+6ns+B8dA3u9LcxU SmYs8G53UltYlGYCQnAWUeo5EoHrDi87gF4820TSn4T3JIaSvq/7AyZp213Zr0uQ ZuwGahtohrcG+kQQU5ID2xyTUsQ/OV+UAByy/frDpG+Urh15C0VlWP3h6RozbEpH xmzOIb9C2UqC4yDeFs73pby/uFEaj9fh9PrytxmsHbKfCye5qVmeAfTmUerxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUur/q76RkUwr043vPzd/VXz5l5CkwHwYDVR0j BBgwFoAUaIYQxzGk56HTWz4mTfmgWHPx5sEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWVlNDBkYy01MWJhLTQ3NjktODYxOS0yMjg5Y2NlOTYyOWUvMC82ODg2MTBDNzMx QTRFN0ExRDM1QjNFMjY0REY5QTA1ODczRjFFNkMxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjg4NjEwQzczMUE0RTdBMUQzNUIzRTI2NERGOUEwNTg3M0Yx RTZDMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZWU0MGRjLTUxYmEtNDc2OS04 NjE5LTIyODljY2U5NjI5ZS8wLzMxMzAzMzJlMzEzNjM4MmUzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzMTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6gcMA0GCSqG SIb3DQEBCwUAA4IBAQCm0dxOYwbKtT73PPrNvuFAKNGxZ7RfoMi2TjkZWx2afquJ TVP23Eiye1bPMew18IxdTN9wrnHn4JVPTFQd+7wODZI1MCM/UZjkqPciwlaYL6JG +3As+sT3O+cllA0hXN0PIrKx3bR/IF2GG8AOTG5/XFBfr6isuHLu0cFWTSxD/gx/ BYAXICWdH+y3IpRdEYkYOiOjcOnhph74p7WLeW9e+AGdwxUwcR7vFIQhtRfL709Q R7Hy1dROX5+c0oUaYrLmjSIdlRksChObpCNbetl1S9jrcg3eUTiKLJ5ZWe58VSoz E8L3ZL9eRgPsCTYmf/p/LnUmIOGJY3Lirg33KISO -----END CERTIFICATE-----Generated at Tue Apr 29 09:43:43 2025 by rpki-client