$ rpki-client -vvf repo-rpki.idnic.net/repo/31cd4a67-bc8b-4ad7-81a1-c024c5a62d30/0/3130332e3138362e38312e302f32342d3234203d3e20313336313235.roa File: 3130332e3138362e38312e302f32342d3234203d3e20313336313235.roa (raw, json) Hash identifier: e4g62pWwoA6jmsCl2EWNbqG1RW6FRJlq4B+h5MuMaQY= Subject key identifier: 53:22:34:4D:D0:49:0C:18:96:D6:A8:20:04:73:6D:68:2C:2A:6F:B7 Certificate issuer: /CN=DE578F4E4104BC0B17EF2C75FB0E3AD278D2738F Certificate serial: 6E892F254543AF9D1BE1CBA3A54EAA47B13587F5 Authority key identifier: DE:57:8F:4E:41:04:BC:0B:17:EF:2C:75:FB:0E:3A:D2:78:D2:73:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE578F4E4104BC0B17EF2C75FB0E3AD278D2738F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/31cd4a67-bc8b-4ad7-81a1-c024c5a62d30/0/3130332e3138362e38312e302f32342d3234203d3e20313336313235.roa Signing time: Tue 15 Apr 2025 08:00:00 +0000 ROA not before: Tue 15 Apr 2025 07:55:00 +0000 ROA not after: Tue 14 Apr 2026 08:00:00 +0000 asID: 136125 IP address blocks: 103.186.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/31cd4a67-bc8b-4ad7-81a1-c024c5a62d30/0/DE578F4E4104BC0B17EF2C75FB0E3AD278D2738F.crl rsync://repo-rpki.idnic.net/repo/31cd4a67-bc8b-4ad7-81a1-c024c5a62d30/0/DE578F4E4104BC0B17EF2C75FB0E3AD278D2738F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE578F4E4104BC0B17EF2C75FB0E3AD278D2738F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 15:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:89:2f:25:45:43:af:9d:1b:e1:cb:a3:a5:4e:aa:47:b1:35:87:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE578F4E4104BC0B17EF2C75FB0E3AD278D2738F Validity Not Before: Apr 15 07:55:00 2025 GMT Not After : Apr 14 08:00:00 2026 GMT Subject: CN=5322344DD0490C1896D6A82004736D682C2A6FB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c1:28:cf:33:68:cf:b1:99:f7:67:01:08:6a: 8d:a3:41:52:ca:20:92:b7:5b:c7:d9:4f:f1:eb:f8: b1:08:c3:da:c6:2f:17:5a:61:54:7c:98:a2:3a:7d: 66:70:77:93:7a:5e:6f:59:47:69:14:ee:4c:53:88: 86:da:50:4e:f3:4d:fa:85:9d:77:99:6e:0f:17:3f: 3c:ed:11:c6:4c:1f:47:d5:ac:87:d8:b1:fc:3b:22: cc:b0:7f:6c:d3:3b:e8:c8:6f:28:12:32:b6:56:37: 1c:28:0c:94:f1:43:20:a8:bc:00:50:95:8b:a8:26: 20:44:45:9f:01:d9:21:e1:ac:3b:71:01:ec:9c:58: 8b:fe:0b:c9:fa:f7:63:fc:d3:ca:5a:03:1e:08:18: 60:ab:ef:1e:f5:c9:a2:ee:ea:e6:87:78:e6:b3:f2: 1d:36:1e:ee:f4:c4:b4:64:30:7c:6b:80:4e:86:8f: 6b:f7:d7:13:7f:5d:62:c9:6b:d4:da:38:44:9c:1a: 3f:8f:13:ea:f7:84:1e:96:6e:9a:16:01:6b:50:e6: 87:d5:eb:12:60:58:c6:fe:ed:ed:94:d0:6b:51:00: e3:62:7f:5a:2f:82:c9:42:dc:4f:c7:4a:23:31:17: 50:7d:73:2d:bf:47:e6:91:18:25:a1:b7:5a:d6:fc: bd:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:22:34:4D:D0:49:0C:18:96:D6:A8:20:04:73:6D:68:2C:2A:6F:B7 X509v3 Authority Key Identifier: keyid:DE:57:8F:4E:41:04:BC:0B:17:EF:2C:75:FB:0E:3A:D2:78:D2:73:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/31cd4a67-bc8b-4ad7-81a1-c024c5a62d30/0/DE578F4E4104BC0B17EF2C75FB0E3AD278D2738F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE578F4E4104BC0B17EF2C75FB0E3AD278D2738F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/31cd4a67-bc8b-4ad7-81a1-c024c5a62d30/0/3130332e3138362e38312e302f32342d3234203d3e20313336313235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.81.0/24 Signature Algorithm: sha256WithRSAEncryption b7:8e:f2:6d:1f:7a:4d:b1:ec:ce:85:c7:b3:2a:f0:65:31:0c: 5a:09:19:83:7e:1e:2e:a0:a4:6e:2b:94:ae:29:22:10:c8:0a: be:23:fa:18:e3:57:3f:eb:44:f2:3e:95:48:8a:75:9a:97:13: 15:7a:90:cf:67:20:02:ff:3f:10:18:fb:75:59:83:2c:2c:44: 44:10:70:a0:ef:f1:2c:6b:13:27:57:24:f8:88:01:2e:b7:1d: e6:3d:9a:0f:0b:ef:05:b1:49:9c:c4:7d:19:c1:80:d8:3e:4e: 4f:0d:78:05:45:4a:21:f1:fb:e2:14:d0:15:39:61:c7:09:bf: 63:94:22:29:5f:19:3c:b6:2c:cc:cd:45:4c:1c:c9:dd:9f:de: df:d1:f2:56:72:01:87:15:16:6a:fb:75:6d:4e:18:ff:2d:46: 6e:84:1c:8f:da:70:57:9f:c5:14:e1:cd:c0:3e:23:bb:aa:67: 30:a3:99:b9:e0:5a:7c:6a:52:f6:7c:e7:8d:4b:7a:fd:45:8d: 92:74:29:0e:66:93:97:aa:d3:44:07:7e:55:1b:ef:7e:26:82: 50:f5:6b:84:fb:20:0f:eb:cb:5c:98:0d:f5:39:47:b1:45:5d: 65:f2:8c:fc:22:4c:bc:a3:fe:11:4d:04:0b:c8:c8:25:33:f3: 6e:f2:69:27 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbokvJUVDr50b4cujpU6qR7E1h/UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREU1NzhGNEU0MTA0QkMwQjE3RUYyQzc1RkIwRTNBRDI3 OEQyNzM4RjAeFw0yNTA0MTUwNzU1MDBaFw0yNjA0MTQwODAwMDBaMDMxMTAvBgNV BAMTKDUzMjIzNDRERDA0OTBDMTg5NkQ2QTgyMDA0NzM2RDY4MkMyQTZGQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCwSjPM2jPsZn3ZwEIao2jQVLK IJK3W8fZT/Hr+LEIw9rGLxdaYVR8mKI6fWZwd5N6Xm9ZR2kU7kxTiIbaUE7zTfqF nXeZbg8XPzztEcZMH0fVrIfYsfw7Isywf2zTO+jIbygSMrZWNxwoDJTxQyCovABQ lYuoJiBERZ8B2SHhrDtxAeycWIv+C8n692P808paAx4IGGCr7x71yaLu6uaHeOaz 8h02Hu70xLRkMHxrgE6Gj2v31xN/XWLJa9TaOEScGj+PE+r3hB6WbpoWAWtQ5ofV 6xJgWMb+7e2U0GtRAONif1ovgslC3E/HSiMxF1B9cy2/R+aRGCWht1rW/L0VAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUyI0TdBJDBiW1qggBHNtaCwqb7cwHwYDVR0j BBgwFoAU3lePTkEEvAsX7yx1+w460njSc48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MWNkNGE2Ny1iYzhiLTRhZDctODFhMS1jMDI0YzVhNjJkMzAvMC9ERTU3OEY0RTQx MDRCQzBCMTdFRjJDNzVGQjBFM0FEMjc4RDI3MzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREU1NzhGNEU0MTA0QkMwQjE3RUYyQzc1RkIwRTNBRDI3OEQy NzM4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxY2Q0YTY3LWJjOGItNGFkNy04 MWExLWMwMjRjNWE2MmQzMC8wLzMxMzAzMzJlMzEzODM2MmUzODMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzEzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7pRMA0GCSqG SIb3DQEBCwUAA4IBAQC3jvJtH3pNsezOhcezKvBlMQxaCRmDfh4uoKRuK5SuKSIQ yAq+I/oY41c/60TyPpVIinWalxMVepDPZyAC/z8QGPt1WYMsLEREEHCg7/EsaxMn VyT4iAEutx3mPZoPC+8FsUmcxH0ZwYDYPk5PDXgFRUoh8fviFNAVOWHHCb9jlCIp Xxk8tizMzUVMHMndn97f0fJWcgGHFRZq+3VtThj/LUZuhByP2nBXn8UU4c3APiO7 qmcwo5m54Fp8alL2fOeNS3r9RY2SdCkOZpOXqtNEB35VG+9+JoJQ9WuE+yAP68tc mA31OUexRV1l8oz8Iky8o/4RTQQLyMglM/Nu8mkn -----END CERTIFICATE-----Generated at Thu May 8 10:35:56 2025 by rpki-client