$ rpki-client -vvf repo-rpki.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/3130332e3138362e3139342e302f32332d3233203d3e20313439373132.roa File: 3130332e3138362e3139342e302f32332d3233203d3e20313439373132.roa (raw, json) Hash identifier: swBTOVyl/nQxFd9eqJx6PzMQ7ExSAWTFjV6g64/KqU0= Subject key identifier: F2:53:B5:70:63:19:04:72:3D:FB:A6:05:33:EA:3C:02:24:77:E0:DC Certificate issuer: /CN=8CFB227DA1EF51DB23364BBA034D0F68A09A5F59 Certificate serial: 3BF731A19F7100461FE090356B571BD664445C5F Authority key identifier: 8C:FB:22:7D:A1:EF:51:DB:23:36:4B:BA:03:4D:0F:68:A0:9A:5F:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFB227DA1EF51DB23364BBA034D0F68A09A5F59.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/3130332e3138362e3139342e302f32332d3233203d3e20313439373132.roa Signing time: Thu 08 May 2025 04:00:00 +0000 ROA not before: Thu 08 May 2025 03:55:00 +0000 ROA not after: Thu 07 May 2026 04:00:00 +0000 asID: 149712 IP address blocks: 103.186.194.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8CFB227DA1EF51DB23364BBA034D0F68A09A5F59.crl rsync://repo-rpki.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8CFB227DA1EF51DB23364BBA034D0F68A09A5F59.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFB227DA1EF51DB23364BBA034D0F68A09A5F59.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 07:11:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:f7:31:a1:9f:71:00:46:1f:e0:90:35:6b:57:1b:d6:64:44:5c:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8CFB227DA1EF51DB23364BBA034D0F68A09A5F59 Validity Not Before: May 8 03:55:00 2025 GMT Not After : May 7 04:00:00 2026 GMT Subject: CN=F253B570631904723DFBA60533EA3C022477E0DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:87:f7:ce:a3:8c:64:ea:38:dd:47:94:59:e6: 8a:78:df:40:49:5a:65:23:b7:30:60:74:b7:89:9d: 0d:1e:46:fc:80:d7:7a:ec:39:7f:64:b2:75:12:e3: 8d:f3:ae:00:4b:f8:f6:94:d3:69:7a:9b:24:8e:40: d6:ab:2b:5e:3c:b6:d9:3f:4a:79:f1:27:f1:a0:e8: dd:d3:d2:1b:60:f6:44:db:dd:9b:63:ff:fa:63:84: 28:35:2d:0c:46:d2:46:31:f1:2a:84:3a:67:51:99: 7d:19:21:65:39:36:2a:54:e4:74:d7:4c:5d:b8:d8: e4:16:4b:af:7d:1c:93:5b:48:7d:ea:45:57:fb:7d: 65:2b:39:01:e6:db:ac:e3:0e:c2:d9:a8:5f:8c:66: 6b:9d:7d:7a:89:a6:05:90:70:9e:b1:af:ab:03:d3: 96:39:fe:ef:80:4e:c5:ac:5e:02:1d:76:4a:86:d2: 20:1b:5d:1f:06:da:13:65:f2:36:39:8c:14:62:22: 90:d1:7a:72:c6:b6:ff:2e:6f:9c:39:49:5b:f9:bb: f4:08:a7:71:18:b2:4b:0b:5e:54:20:59:ed:77:85: 67:05:6f:82:2d:a3:6a:ae:17:8f:45:39:9e:61:b5: 07:7a:ac:85:6d:fa:b0:6b:bf:bb:92:28:00:a4:2a: db:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:53:B5:70:63:19:04:72:3D:FB:A6:05:33:EA:3C:02:24:77:E0:DC X509v3 Authority Key Identifier: keyid:8C:FB:22:7D:A1:EF:51:DB:23:36:4B:BA:03:4D:0F:68:A0:9A:5F:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8CFB227DA1EF51DB23364BBA034D0F68A09A5F59.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFB227DA1EF51DB23364BBA034D0F68A09A5F59.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/3130332e3138362e3139342e302f32332d3233203d3e20313439373132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.194.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:28:f0:34:9a:6c:34:68:5b:1e:b0:02:bb:77:b3:82:f7:33: a8:e0:11:46:bd:41:29:c3:24:38:79:51:5b:45:83:3e:4b:5b: 62:9d:52:ef:2a:6f:88:2d:51:d5:22:0d:87:26:7b:f2:79:1a: 93:7c:90:56:b2:a0:70:a4:4a:ce:84:ce:76:85:c5:0a:c1:a7: 08:c1:ef:15:fe:75:0c:a0:c0:50:af:47:cc:fd:df:da:bb:1d: 3a:2d:2d:d0:af:72:77:2b:c3:10:c7:a2:c5:1c:2b:09:f1:44: 1e:2f:a0:fe:54:7a:11:9f:d1:78:6f:41:5c:87:62:20:1e:65: f0:5e:3b:bd:0b:38:6a:97:a2:9f:71:5c:fd:bb:f2:ff:bf:1a: b2:b9:88:0c:b9:ad:8f:01:98:68:2b:4b:9a:5b:bb:e8:92:11: 99:30:36:52:bf:c0:e6:6e:a0:3c:b8:19:18:2c:15:0c:a1:47: 70:2f:a4:c4:2c:2e:c1:2e:0f:bc:ce:e4:a1:74:cc:1c:3b:57: 5b:7a:bf:d8:3e:3b:d7:c4:c9:a7:07:63:f6:8b:9f:6b:d4:77: c1:da:f8:9e:7d:a6:d9:89:34:0e:6f:53:08:a6:3b:e8:e5:29: 18:a4:69:24:f6:a6:95:0c:03:f8:2b:25:87:b6:11:ce:5d:5a: 03:f5:5c:2b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUO/cxoZ9xAEYf4JA1a1cb1mREXF8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOENGQjIyN0RBMUVGNTFEQjIzMzY0QkJBMDM0RDBGNjhB MDlBNUY1OTAeFw0yNTA1MDgwMzU1MDBaFw0yNjA1MDcwNDAwMDBaMDMxMTAvBgNV BAMTKEYyNTNCNTcwNjMxOTA0NzIzREZCQTYwNTMzRUEzQzAyMjQ3N0UwREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6h/fOo4xk6jjdR5RZ5op430BJ WmUjtzBgdLeJnQ0eRvyA13rsOX9ksnUS443zrgBL+PaU02l6mySOQNarK148ttk/ SnnxJ/Gg6N3T0htg9kTb3Ztj//pjhCg1LQxG0kYx8SqEOmdRmX0ZIWU5NipU5HTX TF242OQWS699HJNbSH3qRVf7fWUrOQHm26zjDsLZqF+MZmudfXqJpgWQcJ6xr6sD 05Y5/u+ATsWsXgIddkqG0iAbXR8G2hNl8jY5jBRiIpDRenLGtv8ub5w5SVv5u/QI p3EYsksLXlQgWe13hWcFb4Ito2quF49FOZ5htQd6rIVt+rBrv7uSKACkKtsLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU8lO1cGMZBHI9+6YFM+o8AiR34NwwHwYDVR0j BBgwFoAUjPsifaHvUdsjNku6A00PaKCaX1kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjUyZWFkMy1kYzhmLTRkODYtYWZjZi1hMTQwZTViODc1MzIvMC84Q0ZCMjI3REEx RUY1MURCMjMzNjRCQkEwMzREMEY2OEEwOUE1RjU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOENGQjIyN0RBMUVGNTFEQjIzMzY0QkJBMDM0RDBGNjhBMDlB NUY1OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyNTJlYWQzLWRjOGYtNGQ4Ni1h ZmNmLWExNDBlNWI4NzUzMi8wLzMxMzAzMzJlMzEzODM2MmUzMTM5MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzkzNzMxMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnusIwDQYJ KoZIhvcNAQELBQADggEBAHso8DSabDRoWx6wArt3s4L3M6jgEUa9QSnDJDh5UVtF gz5LW2KdUu8qb4gtUdUiDYcme/J5GpN8kFayoHCkSs6EznaFxQrBpwjB7xX+dQyg wFCvR8z939q7HTotLdCvcncrwxDHosUcKwnxRB4voP5UehGf0XhvQVyHYiAeZfBe O70LOGqXop9xXP278v+/GrK5iAy5rY8BmGgrS5pbu+iSEZkwNlK/wOZuoDy4GRgs FQyhR3AvpMQsLsEuD7zO5KF0zBw7V1t6v9g+O9fEyacHY/aLn2vUd8Ha+J59ptmJ NA5vUwimO+jlKRikaST2ppUMA/grJYe2Ec5dWgP1XCs= -----END CERTIFICATE-----Generated at Fri May 9 20:34:35 2025 by rpki-client