$ rpki-client -vvf repo-rpki.idnic.net/repo/141a02e6-2171-47c9-86c9-d5d80f458836/0/3130332e3136392e37322e302f32332d3234203d3e203338333230.roa File: 3130332e3136392e37322e302f32332d3234203d3e203338333230.roa (raw, json) Hash identifier: cdGAeUhe3kIPmDecWgpPKnokA1KeiEEUi4vBzlg/GUY= Subject key identifier: BB:EF:91:FF:6D:D5:FA:1A:0C:4A:03:80:6B:0C:0B:E5:1F:F7:D6:00 Certificate issuer: /CN=993D6DBC0B37BB59CEA86CE024A349353C57D366 Certificate serial: 69747487D97F77A355F06F020CE61BD5B0450758 Authority key identifier: 99:3D:6D:BC:0B:37:BB:59:CE:A8:6C:E0:24:A3:49:35:3C:57:D3:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/993D6DBC0B37BB59CEA86CE024A349353C57D366.cer Subject info access: rsync://repo-rpki.idnic.net/repo/141a02e6-2171-47c9-86c9-d5d80f458836/0/3130332e3136392e37322e302f32332d3234203d3e203338333230.roa Signing time: Mon 28 Apr 2025 10:02:24 +0000 ROA not before: Mon 28 Apr 2025 09:57:24 +0000 ROA not after: Mon 27 Apr 2026 10:02:24 +0000 asID: 38320 IP address blocks: 103.169.72.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/141a02e6-2171-47c9-86c9-d5d80f458836/0/993D6DBC0B37BB59CEA86CE024A349353C57D366.crl rsync://repo-rpki.idnic.net/repo/141a02e6-2171-47c9-86c9-d5d80f458836/0/993D6DBC0B37BB59CEA86CE024A349353C57D366.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/993D6DBC0B37BB59CEA86CE024A349353C57D366.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 17:19:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:74:74:87:d9:7f:77:a3:55:f0:6f:02:0c:e6:1b:d5:b0:45:07:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=993D6DBC0B37BB59CEA86CE024A349353C57D366 Validity Not Before: Apr 28 09:57:24 2025 GMT Not After : Apr 27 10:02:24 2026 GMT Subject: CN=BBEF91FF6DD5FA1A0C4A03806B0C0BE51FF7D600 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0a:40:cc:38:05:d8:03:fc:cf:4d:b5:cc:39: f9:ea:0c:92:61:5f:bf:da:d6:15:88:8a:6a:34:82: 54:a4:51:00:1d:71:d7:b6:20:bd:6f:55:07:d6:80: 0f:f1:3e:ed:b4:e9:31:75:ee:5f:6b:2f:bb:79:a7: dd:9a:44:98:11:25:6d:d4:e7:13:33:ad:4e:14:e9: c4:76:c0:d9:9a:46:af:25:3b:89:0b:f4:ce:63:55: fc:ee:eb:65:ee:dd:ed:9b:3a:18:f1:45:4b:c6:09: c7:3c:5a:f2:a4:b2:f1:e8:88:6c:fd:25:b8:b2:ee: 28:5d:58:d5:ff:11:73:11:f9:37:8d:9b:c0:72:86: 6d:14:ad:af:ee:79:95:1b:9b:fa:4e:62:ba:fb:5f: b0:91:4a:e3:ca:c1:58:dd:37:04:55:be:76:3b:6a: 88:a5:aa:29:08:f2:24:f9:62:e7:b2:3d:62:5d:ae: 73:9f:6a:3e:1c:a1:31:5b:80:d9:ed:12:23:c5:d9: f7:e8:de:63:83:ae:e4:c6:62:37:ad:3d:7e:6e:c2: 9d:a7:e0:29:97:08:8e:0a:e7:a6:62:73:e9:0f:56: 44:28:f1:6d:3f:d1:fb:6a:56:d2:95:e0:31:e8:80: f7:c5:4c:28:bf:f6:ad:66:cc:11:25:1c:79:db:c5: 19:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:EF:91:FF:6D:D5:FA:1A:0C:4A:03:80:6B:0C:0B:E5:1F:F7:D6:00 X509v3 Authority Key Identifier: keyid:99:3D:6D:BC:0B:37:BB:59:CE:A8:6C:E0:24:A3:49:35:3C:57:D3:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/141a02e6-2171-47c9-86c9-d5d80f458836/0/993D6DBC0B37BB59CEA86CE024A349353C57D366.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/993D6DBC0B37BB59CEA86CE024A349353C57D366.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/141a02e6-2171-47c9-86c9-d5d80f458836/0/3130332e3136392e37322e302f32332d3234203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.72.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:c1:e6:d8:29:f6:9e:7f:4b:30:16:4e:89:59:20:3e:73:7c: ab:b6:79:18:7c:34:f2:3c:0a:8d:e9:60:b6:5f:96:3e:ef:58: 45:8e:47:62:fc:a8:86:44:0b:ee:5a:9a:dd:3c:78:0c:74:bb: af:ae:08:6a:92:00:6c:d1:a2:57:1b:34:bf:bf:45:f9:9f:79: 72:61:98:59:fa:c1:b6:ef:9c:30:b7:13:4c:0c:1e:a8:6c:1d: fb:e6:66:d3:d2:ce:74:a9:d0:90:90:1a:a7:43:30:b5:00:4b: 2a:e9:5e:3b:bb:6d:c2:ce:52:8a:93:c0:d2:ce:70:f5:fb:fa: 77:03:25:15:5d:26:e1:4b:41:93:9d:37:08:97:6a:dc:34:0b: d1:1f:8a:f0:66:61:0f:a0:d3:30:c7:e1:54:62:d8:37:09:b6: 43:4b:41:8a:fc:4f:68:5b:1d:6c:9d:6c:f3:4b:9c:57:1d:ee: 2a:46:5a:87:b2:0d:21:ec:61:32:d8:c0:26:4b:bd:e1:15:c0: 00:18:7c:07:42:d4:8c:5a:b6:ca:db:de:67:ea:dd:b4:5a:37: d7:e1:5a:83:b7:94:34:f2:2d:82:99:32:46:7d:43:c8:2f:56: 38:a5:99:51:42:ff:ea:47:d4:f3:31:70:31:8a:f1:0d:93:a1: 79:ee:a9:b1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaXR0h9l/d6NV8G8CDOYb1bBFB1gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTkzRDZEQkMwQjM3QkI1OUNFQTg2Q0UwMjRBMzQ5MzUz QzU3RDM2NjAeFw0yNTA0MjgwOTU3MjRaFw0yNjA0MjcxMDAyMjRaMDMxMTAvBgNV BAMTKEJCRUY5MUZGNkRENUZBMUEwQzRBMDM4MDZCMEMwQkU1MUZGN0Q2MDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNCkDMOAXYA/zPTbXMOfnqDJJh X7/a1hWIimo0glSkUQAdcde2IL1vVQfWgA/xPu206TF17l9rL7t5p92aRJgRJW3U 5xMzrU4U6cR2wNmaRq8lO4kL9M5jVfzu62Xu3e2bOhjxRUvGCcc8WvKksvHoiGz9 Jbiy7ihdWNX/EXMR+TeNm8Byhm0Ura/ueZUbm/pOYrr7X7CRSuPKwVjdNwRVvnY7 aoilqikI8iT5YueyPWJdrnOfaj4coTFbgNntEiPF2ffo3mODruTGYjetPX5uwp2n 4CmXCI4K56Zic+kPVkQo8W0/0ftqVtKV4DHogPfFTCi/9q1mzBElHHnbxRmfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUu++R/23V+hoMSgOAawwL5R/31gAwHwYDVR0j BBgwFoAUmT1tvAs3u1nOqGzgJKNJNTxX02YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDFhMDJlNi0yMTcxLTQ3YzktODZjOS1kNWQ4MGY0NTg4MzYvMC85OTNENkRCQzBC MzdCQjU5Q0VBODZDRTAyNEEzNDkzNTNDNTdEMzY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTkzRDZEQkMwQjM3QkI1OUNFQTg2Q0UwMjRBMzQ5MzUzQzU3 RDM2Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0MWEwMmU2LTIxNzEtNDdjOS04 NmM5LWQ1ZDgwZjQ1ODgzNi8wLzMxMzAzMzJlMzEzNjM5MmUzNzMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzMzODMzMzIzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWepSDANBgkqhkiG 9w0BAQsFAAOCAQEADsHm2Cn2nn9LMBZOiVkgPnN8q7Z5GHw08jwKjelgtl+WPu9Y RY5HYvyohkQL7lqa3Tx4DHS7r64IapIAbNGiVxs0v79F+Z95cmGYWfrBtu+cMLcT TAweqGwd++Zm09LOdKnQkJAap0MwtQBLKuleO7ttws5SipPA0s5w9fv6dwMlFV0m 4UtBk503CJdq3DQL0R+K8GZhD6DTMMfhVGLYNwm2Q0tBivxPaFsdbJ1s80ucVx3u KkZah7INIexhMtjAJku94RXAABh8B0LUjFq2ytveZ+rdtFo31+Fag7eUNPItgpky Rn1DyC9WOKWZUUL/6kfU8zFwMYrxDZOhee6psQ== -----END CERTIFICATE-----Generated at Sat May 10 07:16:15 2025 by rpki-client