$ rpki-client -vvf repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/3130332e3136372e3137302e302f32342d3234203d3e20313431393833.roa File: 3130332e3136372e3137302e302f32342d3234203d3e20313431393833.roa (raw, json) Hash identifier: 2X5KoMU/cWrAj0o88iqREF+W66XbV79s9jtdMfDvn84= Subject key identifier: CE:19:7A:25:DF:76:C7:50:29:BF:13:78:DA:BF:5C:60:2F:75:8C:29 Certificate issuer: /CN=D85F6D41E807D8825356A681A7518FA27664A965 Certificate serial: 73AF894DE346ACED9C49699681B11411009A902D Authority key identifier: D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/3130332e3136372e3137302e302f32342d3234203d3e20313431393833.roa Signing time: Sat 26 Apr 2025 21:00:00 +0000 ROA not before: Sat 26 Apr 2025 20:55:00 +0000 ROA not after: Sat 25 Apr 2026 21:00:00 +0000 asID: 141983 IP address blocks: 103.167.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 14:57:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:af:89:4d:e3:46:ac:ed:9c:49:69:96:81:b1:14:11:00:9a:90:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D85F6D41E807D8825356A681A7518FA27664A965 Validity Not Before: Apr 26 20:55:00 2025 GMT Not After : Apr 25 21:00:00 2026 GMT Subject: CN=CE197A25DF76C75029BF1378DABF5C602F758C29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:02:da:93:a3:58:98:68:60:02:81:e0:49:68: 6b:9a:59:94:df:0a:4b:59:9e:e4:b5:f0:53:65:77: a8:da:43:e1:8a:0b:6f:7e:4b:1f:68:3a:3b:29:dd: 30:57:ef:b8:58:01:2b:e5:03:b6:bf:dd:ff:ee:99: 46:53:bb:5d:fc:10:f8:56:c5:15:02:b6:da:9a:8f: 9c:28:3d:c0:26:08:3d:16:ef:c1:e2:32:56:27:75: af:de:d9:f9:ff:b2:d3:b3:eb:44:d7:a8:84:1f:b3: 5b:90:36:57:97:84:87:5a:5a:f0:2f:e6:c1:a4:00: 9c:7b:f8:2f:fe:e4:62:76:7f:cb:40:40:74:4c:56: c8:3b:92:b0:ec:45:3a:49:57:10:ee:54:fe:38:7f: 3a:9d:58:54:13:15:08:17:cb:bd:58:72:c9:1d:c7: 08:19:e1:2c:75:90:51:af:f9:ef:26:bf:76:b9:1b: 82:04:d4:6a:ba:e1:7c:fa:a8:48:1b:cc:45:a2:2e: 87:ce:35:ac:0a:4a:4e:09:3c:6e:3c:7a:d1:aa:be: 04:26:d4:03:80:7f:24:d3:49:e1:fc:f6:8d:5e:46: 9d:51:5f:62:47:1f:a4:3b:fc:68:0c:57:34:bf:b2: b2:d5:a2:75:d1:4f:85:50:9d:4c:cf:01:45:7d:4f: 16:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:19:7A:25:DF:76:C7:50:29:BF:13:78:DA:BF:5C:60:2F:75:8C:29 X509v3 Authority Key Identifier: keyid:D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/3130332e3136372e3137302e302f32342d3234203d3e20313431393833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.170.0/24 Signature Algorithm: sha256WithRSAEncryption 99:ec:4c:c3:7e:11:ba:26:da:b5:af:50:c6:ba:9e:63:eb:97: e7:de:d7:71:bc:5f:b8:5e:a3:99:c8:6b:62:72:c6:c2:a6:58: d8:0f:91:8a:33:59:b5:93:75:2b:f8:10:e9:97:04:64:8b:e7: a8:4b:be:b4:e3:61:55:05:50:88:61:f6:83:31:cb:0a:af:cb: 7f:19:be:d8:9a:4e:6e:c9:fe:2d:b4:44:9b:f6:71:8c:44:b3: 1c:17:a3:f0:ad:e9:dd:8a:03:19:f7:d0:2c:e8:2b:4c:5a:c3: e2:cd:3e:73:a1:80:f5:84:95:c1:ed:49:eb:58:a5:e0:ae:91: 72:ad:f3:79:b9:e7:9f:d0:12:fd:d9:be:53:ba:ca:85:01:04: e5:2e:08:2b:ac:c7:ac:6e:29:54:f3:5f:26:97:0a:db:90:eb: 9b:b1:62:2b:4c:3f:0f:cb:1e:db:9c:80:67:69:a7:b3:39:43: 9e:03:b6:8a:eb:e5:05:ee:92:9a:a9:1f:79:c6:05:dc:41:f6: 65:fc:57:a9:1d:7f:4e:a0:44:0b:3c:e0:79:e4:7b:7b:2b:fc: 68:9d:d8:43:95:ca:92:65:d9:8f:48:01:e5:77:b8:49:94:3e: ca:90:25:3d:98:6c:8f:f7:0d:cf:1e:ab:0e:9a:9b:b9:fe:eb: 7e:27:fb:c8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUc6+JTeNGrO2cSWmWgbEUEQCakC0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3 NjY0QTk2NTAeFw0yNTA0MjYyMDU1MDBaFw0yNjA0MjUyMTAwMDBaMDMxMTAvBgNV BAMTKENFMTk3QTI1REY3NkM3NTAyOUJGMTM3OERBQkY1QzYwMkY3NThDMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9AtqTo1iYaGACgeBJaGuaWZTf CktZnuS18FNld6jaQ+GKC29+Sx9oOjsp3TBX77hYASvlA7a/3f/umUZTu138EPhW xRUCttqaj5woPcAmCD0W78HiMlYnda/e2fn/stOz60TXqIQfs1uQNleXhIdaWvAv 5sGkAJx7+C/+5GJ2f8tAQHRMVsg7krDsRTpJVxDuVP44fzqdWFQTFQgXy71Ycskd xwgZ4Sx1kFGv+e8mv3a5G4IE1Gq64Xz6qEgbzEWiLofONawKSk4JPG48etGqvgQm 1AOAfyTTSeH89o1eRp1RX2JHH6Q7/GgMVzS/srLVonXRT4VQnUzPAUV9TxZ3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUzhl6Jd92x1ApvxN42r9cYC91jCkwHwYDVR0j BBgwFoAU2F9tQegH2IJTVqaBp1GPonZkqWUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmJlZGYzYS1kN2QxLTQ5YTYtOTNlZC1iMjc3ZjFmN2E2ZWIvMC9EODVGNkQ0MUU4 MDdEODgyNTM1NkE2ODFBNzUxOEZBMjc2NjRBOTY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3NjY0 QTk2NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2YmVkZjNhLWQ3ZDEtNDlhNi05 M2VkLWIyNzdmMWY3YTZlYi8wLzMxMzAzMzJlMzEzNjM3MmUzMTM3MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM4MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnp6owDQYJ KoZIhvcNAQELBQADggEBAJnsTMN+Ebom2rWvUMa6nmPrl+fe13G8X7heo5nIa2Jy xsKmWNgPkYozWbWTdSv4EOmXBGSL56hLvrTjYVUFUIhh9oMxywqvy38ZvtiaTm7J /i20RJv2cYxEsxwXo/Ct6d2KAxn30CzoK0xaw+LNPnOhgPWElcHtSetYpeCukXKt 83m555/QEv3ZvlO6yoUBBOUuCCusx6xuKVTzXyaXCtuQ65uxYitMPw/LHtucgGdp p7M5Q54Dtorr5QXukpqpH3nGBdxB9mX8V6kdf06gRAs84Hnke3sr/Gid2EOVypJl 2Y9IAeV3uEmUPsqQJT2YbI/3Dc8eqw6am7n+634n+8g= -----END CERTIFICATE-----Generated at Tue May 13 13:18:21 2025 by rpki-client