$ rpki-client -vvf repo-rpki.idnic.net/repo/349dc5eb-3260-428a-a6c0-dc0f636b3307/0/3130332e3136362e34342e302f32332d3233203d3e20313431393335.roa File: 3130332e3136362e34342e302f32332d3233203d3e20313431393335.roa (raw, json) Hash identifier: W++QyUnZGXcmnX3ztvQWtHhQHoQNTCnCPKCpApkxJ6c= Subject key identifier: 1E:FC:83:FD:91:4C:CE:42:3C:DB:41:96:21:42:49:74:F8:51:2E:F2 Certificate issuer: /CN=BD9D1FA2782F66A5D2247CCF76F98733944DDB1E Certificate serial: 612DA5A4EAD9893B33E34C0B10B7C63C2754946D Authority key identifier: BD:9D:1F:A2:78:2F:66:A5:D2:24:7C:CF:76:F9:87:33:94:4D:DB:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD9D1FA2782F66A5D2247CCF76F98733944DDB1E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/349dc5eb-3260-428a-a6c0-dc0f636b3307/0/3130332e3136362e34342e302f32332d3233203d3e20313431393335.roa Signing time: Tue 29 Apr 2025 02:02:26 +0000 ROA not before: Tue 29 Apr 2025 01:57:26 +0000 ROA not after: Tue 28 Apr 2026 02:02:26 +0000 asID: 141935 IP address blocks: 103.166.44.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/349dc5eb-3260-428a-a6c0-dc0f636b3307/0/BD9D1FA2782F66A5D2247CCF76F98733944DDB1E.crl rsync://repo-rpki.idnic.net/repo/349dc5eb-3260-428a-a6c0-dc0f636b3307/0/BD9D1FA2782F66A5D2247CCF76F98733944DDB1E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD9D1FA2782F66A5D2247CCF76F98733944DDB1E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 18:52:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:2d:a5:a4:ea:d9:89:3b:33:e3:4c:0b:10:b7:c6:3c:27:54:94:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD9D1FA2782F66A5D2247CCF76F98733944DDB1E Validity Not Before: Apr 29 01:57:26 2025 GMT Not After : Apr 28 02:02:26 2026 GMT Subject: CN=1EFC83FD914CCE423CDB419621424974F8512EF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d2:53:9c:73:10:1f:d1:88:86:07:75:b6:b3: 6a:27:a2:ec:1c:7d:c1:60:90:a3:50:03:4d:ee:11: f2:a4:76:b8:62:25:84:4b:14:e8:66:40:2b:08:89: 7a:41:30:8c:61:a4:2d:10:a9:84:d9:a6:87:03:76: f7:33:63:a1:f2:ed:ed:58:25:f1:ba:0a:81:2a:fa: df:02:5c:16:66:12:5c:a2:00:b2:ab:d4:b4:43:a9: d3:58:a9:f0:de:08:28:88:be:be:c8:3c:f0:d7:42: 71:49:0f:68:3d:81:5a:1f:3d:21:06:d3:8a:10:a0: 97:23:4e:9c:5d:97:39:d5:b2:6c:da:dd:9b:01:2f: 54:5d:e4:c4:9b:7f:76:d8:1d:74:50:83:93:9b:11: 8b:77:7e:9b:09:49:40:56:e9:8e:9d:81:06:4b:d6: 13:33:bc:52:43:17:98:85:ea:59:e1:5b:b8:80:33: ac:0d:2d:a7:fd:f7:0e:82:9f:2a:b9:c3:85:ba:e7: 24:09:cf:ea:39:b0:37:82:94:34:d7:26:86:2a:4c: 9b:d0:31:d4:40:5a:88:90:6e:20:69:4b:ef:df:a0: e4:5b:95:3e:cc:ad:f1:af:a7:85:4f:56:70:1b:27: 74:6e:2b:e7:72:4e:9b:7a:38:ee:d3:3d:1f:53:57: cf:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:FC:83:FD:91:4C:CE:42:3C:DB:41:96:21:42:49:74:F8:51:2E:F2 X509v3 Authority Key Identifier: keyid:BD:9D:1F:A2:78:2F:66:A5:D2:24:7C:CF:76:F9:87:33:94:4D:DB:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/349dc5eb-3260-428a-a6c0-dc0f636b3307/0/BD9D1FA2782F66A5D2247CCF76F98733944DDB1E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD9D1FA2782F66A5D2247CCF76F98733944DDB1E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/349dc5eb-3260-428a-a6c0-dc0f636b3307/0/3130332e3136362e34342e302f32332d3233203d3e20313431393335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.44.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:d3:54:64:28:ac:ef:35:cd:9c:3e:7a:ce:a0:9c:ea:4c:bf: db:5e:6e:2f:ae:cd:dd:1d:c1:fa:70:eb:6c:65:9b:d8:15:57: 53:52:79:ae:41:e6:c1:b5:32:3f:ec:a5:84:e0:4d:d6:63:96: d3:ca:33:b1:7a:27:fa:bb:75:0a:77:83:33:12:7f:28:aa:bf: 5e:fd:27:48:5a:05:f8:1e:07:84:36:39:d2:7d:06:ae:f3:91: eb:49:76:fe:a2:64:f5:9a:ee:43:85:a5:3d:6e:d9:e2:94:8e: 72:e2:e7:16:af:c9:93:ec:29:86:99:10:12:9c:e6:6a:75:81: 27:b9:ef:4a:d9:a7:05:2e:70:21:93:2d:f1:62:7d:1f:0c:ba: 3b:51:2a:56:4b:42:9a:95:58:47:fb:c9:53:19:4d:01:43:0a: ae:c5:56:7e:ce:45:d3:05:b7:86:ce:7e:a6:fa:3e:66:f2:7c: 82:1a:7a:16:dc:dd:00:2a:80:59:33:5a:55:d0:b5:9c:0a:9a: 72:55:58:a6:63:cb:4b:86:be:89:19:49:9e:69:88:7a:de:51: 25:9d:95:7b:13:d6:26:fc:c2:39:2f:35:69:b1:96:39:22:7d: 29:82:83:a3:0d:73:a3:ec:91:cf:09:ca:1d:85:dd:2f:99:aa: e3:58:07:10 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYS2lpOrZiTsz40wLELfGPCdUlG0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ5RDFGQTI3ODJGNjZBNUQyMjQ3Q0NGNzZGOTg3MzM5 NDREREIxRTAeFw0yNTA0MjkwMTU3MjZaFw0yNjA0MjgwMjAyMjZaMDMxMTAvBgNV BAMTKDFFRkM4M0ZEOTE0Q0NFNDIzQ0RCNDE5NjIxNDI0OTc0Rjg1MTJFRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC60lOccxAf0YiGB3W2s2onouwc fcFgkKNQA03uEfKkdrhiJYRLFOhmQCsIiXpBMIxhpC0QqYTZpocDdvczY6Hy7e1Y JfG6CoEq+t8CXBZmElyiALKr1LRDqdNYqfDeCCiIvr7IPPDXQnFJD2g9gVofPSEG 04oQoJcjTpxdlznVsmza3ZsBL1Rd5MSbf3bYHXRQg5ObEYt3fpsJSUBW6Y6dgQZL 1hMzvFJDF5iF6lnhW7iAM6wNLaf99w6Cnyq5w4W65yQJz+o5sDeClDTXJoYqTJvQ MdRAWoiQbiBpS+/foORblT7MrfGvp4VPVnAbJ3RuK+dyTpt6OO7TPR9TV88JAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHvyD/ZFMzkI820GWIUJJdPhRLvIwHwYDVR0j BBgwFoAUvZ0fongvZqXSJHzPdvmHM5RN2x4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NDlkYzVlYi0zMjYwLTQyOGEtYTZjMC1kYzBmNjM2YjMzMDcvMC9CRDlEMUZBMjc4 MkY2NkE1RDIyNDdDQ0Y3NkY5ODczMzk0NEREQjFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ5RDFGQTI3ODJGNjZBNUQyMjQ3Q0NGNzZGOTg3MzM5NDRE REIxRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM0OWRjNWViLTMyNjAtNDI4YS1h NmMwLWRjMGY2MzZiMzMwNy8wLzMxMzAzMzJlMzEzNjM2MmUzNDM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMxMzkzMzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6YsMA0GCSqG SIb3DQEBCwUAA4IBAQAb01RkKKzvNc2cPnrOoJzqTL/bXm4vrs3dHcH6cOtsZZvY FVdTUnmuQebBtTI/7KWE4E3WY5bTyjOxeif6u3UKd4MzEn8oqr9e/SdIWgX4HgeE NjnSfQau85HrSXb+omT1mu5DhaU9btnilI5y4ucWr8mT7CmGmRASnOZqdYEnue9K 2acFLnAhky3xYn0fDLo7USpWS0KalVhH+8lTGU0BQwquxVZ+zkXTBbeGzn6m+j5m 8nyCGnoW3N0AKoBZM1pV0LWcCppyVVimY8tLhr6JGUmeaYh63lElnZV7E9Ym/MI5 LzVpsZY5In0pgoOjDXOj7JHPCcodhd0vmarjWAcQ -----END CERTIFICATE-----Generated at Sun May 11 02:56:49 2025 by rpki-client