$ rpki-client -vvf repo-rpki.idnic.net/repo/dd906fc0-4363-4f46-9b14-5c1ab825a335/0/3130332e3139312e3134382e302f32332d3234203d3e2034383030.roa File: 3130332e3139312e3134382e302f32332d3234203d3e2034383030.roa (raw, json) Hash identifier: LB25lzl1k2b8wSXRCoswASZkgaqBVFdROFOv1MVYW7s= Subject key identifier: D0:70:76:8F:02:25:73:1B:FD:13:5E:2C:B7:EA:A9:F8:6B:32:72:65 Certificate issuer: /CN=6CF6DF7E6516A6ABF539F0396CB6C0D4DB50F4D8 Certificate serial: 1B78794A4D6E7619DDD873A842601552719DB695 Authority key identifier: 6C:F6:DF:7E:65:16:A6:AB:F5:39:F0:39:6C:B6:C0:D4:DB:50:F4:D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6CF6DF7E6516A6ABF539F0396CB6C0D4DB50F4D8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dd906fc0-4363-4f46-9b14-5c1ab825a335/0/3130332e3139312e3134382e302f32332d3234203d3e2034383030.roa Signing time: Mon 28 Apr 2025 13:00:01 +0000 ROA not before: Mon 28 Apr 2025 12:55:01 +0000 ROA not after: Mon 27 Apr 2026 13:00:01 +0000 asID: 4800 IP address blocks: 103.191.148.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dd906fc0-4363-4f46-9b14-5c1ab825a335/0/6CF6DF7E6516A6ABF539F0396CB6C0D4DB50F4D8.crl rsync://repo-rpki.idnic.net/repo/dd906fc0-4363-4f46-9b14-5c1ab825a335/0/6CF6DF7E6516A6ABF539F0396CB6C0D4DB50F4D8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6CF6DF7E6516A6ABF539F0396CB6C0D4DB50F4D8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:38:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:78:79:4a:4d:6e:76:19:dd:d8:73:a8:42:60:15:52:71:9d:b6:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6CF6DF7E6516A6ABF539F0396CB6C0D4DB50F4D8 Validity Not Before: Apr 28 12:55:01 2025 GMT Not After : Apr 27 13:00:01 2026 GMT Subject: CN=D070768F0225731BFD135E2CB7EAA9F86B327265 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ba:ba:ae:40:90:26:f1:6d:a6:69:c4:05:a4: a5:86:36:02:4f:b8:18:df:06:63:f0:47:99:f2:35: 57:7a:a6:ca:d7:19:da:e8:2b:60:54:2c:84:8b:7d: ad:8d:15:f1:cd:72:4e:e1:87:29:e5:59:19:6e:b9: 34:7d:77:20:33:ed:68:3b:a9:72:71:55:46:8d:d8: 0a:30:da:aa:f0:a4:ce:9e:3b:31:54:f1:55:40:8e: 2d:96:ff:53:b3:f0:ce:63:8e:12:e2:1f:c5:18:a4: f8:2c:dc:64:49:5b:bd:52:26:97:7b:a7:ed:cc:c6: a0:5a:d9:ca:ef:55:4a:90:ed:93:b5:ee:f7:59:bb: 5f:e9:ff:75:0d:b2:fe:6b:b0:a2:1a:cc:18:76:c3: fb:2d:dd:68:49:2d:4f:7e:66:38:2b:e6:de:1e:89: 62:ae:d2:15:fd:0c:be:66:22:15:ac:2e:b3:35:91: e1:0e:d3:6f:f9:03:78:84:37:b3:50:20:0b:c2:f9: 0b:83:40:ed:fc:e2:a5:f6:d5:9f:21:75:01:af:47: 15:8a:9b:5a:71:0f:fd:b5:eb:27:0e:e9:8d:b4:e4: df:f1:87:d0:56:c7:39:50:a4:de:d9:79:3f:2a:2e: 6c:d5:00:d7:c6:a0:ab:07:ed:71:b7:02:26:57:ce: 87:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:70:76:8F:02:25:73:1B:FD:13:5E:2C:B7:EA:A9:F8:6B:32:72:65 X509v3 Authority Key Identifier: keyid:6C:F6:DF:7E:65:16:A6:AB:F5:39:F0:39:6C:B6:C0:D4:DB:50:F4:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dd906fc0-4363-4f46-9b14-5c1ab825a335/0/6CF6DF7E6516A6ABF539F0396CB6C0D4DB50F4D8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6CF6DF7E6516A6ABF539F0396CB6C0D4DB50F4D8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dd906fc0-4363-4f46-9b14-5c1ab825a335/0/3130332e3139312e3134382e302f32332d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.148.0/23 Signature Algorithm: sha256WithRSAEncryption 94:04:8b:51:b0:88:9d:14:ad:90:55:57:44:87:f2:3d:f7:7a: 3b:94:6a:ee:0f:d0:1b:94:b5:51:25:8d:1c:97:2f:98:20:01: ff:fe:43:fc:27:7f:fe:66:c2:70:32:0a:08:b2:63:bf:55:f2: 35:da:00:ab:98:f7:d3:67:1b:9b:b1:6f:7c:eb:67:8d:5e:6c: 86:cc:cb:67:1f:e6:9c:d7:1e:2c:f1:c2:57:08:e9:79:ec:33: cf:55:52:b0:46:5e:68:ba:47:aa:49:57:9c:a9:ad:1e:7e:21: 11:eb:c9:57:bd:93:cb:5c:3b:4a:dd:90:f1:6b:ab:4b:5d:05: 8d:7a:8b:50:a6:2a:b0:36:fc:2f:f2:88:1f:81:ae:f7:98:ea: 2d:05:e0:e3:ae:1c:da:f4:aa:02:9d:e2:8c:79:bd:85:0d:7d: 17:e2:48:73:4b:50:f9:eb:9e:dc:4d:78:29:cc:35:35:b4:77: fd:64:1c:34:01:49:9c:22:e3:98:f4:fc:f2:4e:76:38:78:d5: 45:d9:40:a8:fe:48:90:25:56:95:44:9e:53:dc:d2:ea:1a:e3: 38:14:ec:8c:d9:08:93:5b:34:08:9b:f0:25:ca:f1:53:40:0a: 70:1b:4e:81:33:3d:8f:da:84:53:62:0c:68:dd:8a:26:3b:bb: 76:40:3a:d9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUG3h5Sk1udhnd2HOoQmAVUnGdtpUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkNGNkRGN0U2NTE2QTZBQkY1MzlGMDM5NkNCNkMwRDRE QjUwRjREODAeFw0yNTA0MjgxMjU1MDFaFw0yNjA0MjcxMzAwMDFaMDMxMTAvBgNV BAMTKEQwNzA3NjhGMDIyNTczMUJGRDEzNUUyQ0I3RUFBOUY4NkIzMjcyNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEurquQJAm8W2macQFpKWGNgJP uBjfBmPwR5nyNVd6psrXGdroK2BULISLfa2NFfHNck7hhynlWRluuTR9dyAz7Wg7 qXJxVUaN2Aow2qrwpM6eOzFU8VVAji2W/1Oz8M5jjhLiH8UYpPgs3GRJW71SJpd7 p+3MxqBa2crvVUqQ7ZO17vdZu1/p/3UNsv5rsKIazBh2w/st3WhJLU9+Zjgr5t4e iWKu0hX9DL5mIhWsLrM1keEO02/5A3iEN7NQIAvC+QuDQO384qX21Z8hdQGvRxWK m1pxD/216ycO6Y205N/xh9BWxzlQpN7ZeT8qLmzVANfGoKsH7XG3AiZXzoeNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0HB2jwIlcxv9E14st+qp+GsycmUwHwYDVR0j BBgwFoAUbPbffmUWpqv1OfA5bLbA1NtQ9NgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZDkwNmZjMC00MzYzLTRmNDYtOWIxNC01YzFhYjgyNWEzMzUvMC82Q0Y2REY3RTY1 MTZBNkFCRjUzOUYwMzk2Q0I2QzBENERCNTBGNEQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkNGNkRGN0U2NTE2QTZBQkY1MzlGMDM5NkNCNkMwRDREQjUw RjREOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RkOTA2ZmMwLTQzNjMtNGY0Ni05 YjE0LTVjMWFiODI1YTMzNS8wLzMxMzAzMzJlMzEzOTMxMmUzMTM0MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNDM4MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWe/lDANBgkqhkiG 9w0BAQsFAAOCAQEAlASLUbCInRStkFVXRIfyPfd6O5Rq7g/QG5S1USWNHJcvmCAB //5D/Cd//mbCcDIKCLJjv1XyNdoAq5j302cbm7FvfOtnjV5shszLZx/mnNceLPHC Vwjpeewzz1VSsEZeaLpHqklXnKmtHn4hEevJV72Ty1w7St2Q8WurS10FjXqLUKYq sDb8L/KIH4Gu95jqLQXg464c2vSqAp3ijHm9hQ19F+JIc0tQ+eue3E14Kcw1NbR3 /WQcNAFJnCLjmPT88k52OHjVRdlAqP5IkCVWlUSeU9zS6hrjOBTsjNkIk1s0CJvw JcrxU0AKcBtOgTM9j9qEU2IMaN2KJju7dkA62Q== -----END CERTIFICATE-----Generated at Tue Apr 29 15:10:08 2025 by rpki-client