$ rpki-client -vvf repo-rpki.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/3130332e3139332e3134372e302f32342d3234203d3e20313530393836.roa File: 3130332e3139332e3134372e302f32342d3234203d3e20313530393836.roa (raw, json) Hash identifier: tIbwoMZK41wfJ142ETUMWiif6nOoigy0JRS2kkbypRw= Subject key identifier: 26:DE:DD:C3:07:F0:BC:7D:88:C7:F1:15:6D:65:48:A8:26:9C:EF:10 Certificate issuer: /CN=67749A065BBCF1E57768F4207E1B2FE788604D47 Certificate serial: 08E4E794724913D9B194CBB3492D7D43A8565E07 Authority key identifier: 67:74:9A:06:5B:BC:F1:E5:77:68:F4:20:7E:1B:2F:E7:88:60:4D:47 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67749A065BBCF1E57768F4207E1B2FE788604D47.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/3130332e3139332e3134372e302f32342d3234203d3e20313530393836.roa Signing time: Thu 01 May 2025 02:00:00 +0000 ROA not before: Thu 01 May 2025 01:55:00 +0000 ROA not after: Thu 30 Apr 2026 02:00:00 +0000 asID: 150986 IP address blocks: 103.193.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/67749A065BBCF1E57768F4207E1B2FE788604D47.crl rsync://repo-rpki.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/67749A065BBCF1E57768F4207E1B2FE788604D47.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67749A065BBCF1E57768F4207E1B2FE788604D47.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 08:52:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:e4:e7:94:72:49:13:d9:b1:94:cb:b3:49:2d:7d:43:a8:56:5e:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67749A065BBCF1E57768F4207E1B2FE788604D47 Validity Not Before: May 1 01:55:00 2025 GMT Not After : Apr 30 02:00:00 2026 GMT Subject: CN=26DEDDC307F0BC7D88C7F1156D6548A8269CEF10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:16:23:60:5c:3c:b3:35:8c:d5:95:67:00:e6: 61:d2:8f:85:4c:1f:89:00:19:e5:2d:ca:76:61:81: 87:07:12:12:ed:31:2c:f0:29:5a:39:f1:e4:aa:0e: c7:99:f9:1a:67:30:3f:5a:0a:3f:fb:9b:5c:99:c9: d8:cc:8a:22:81:b6:b5:37:39:e5:9b:d9:2e:bb:0d: bc:cb:7d:96:2d:d3:fa:23:11:a0:82:fa:41:80:a3: 0a:e5:9c:1b:fd:88:ef:69:2c:9d:e5:ec:10:27:61: 64:ff:0a:36:ea:b9:69:18:ba:f8:06:84:0a:a3:7a: 0e:99:5f:d1:6a:76:ca:95:23:9c:24:5f:79:72:9b: 8b:fa:15:7c:8b:6c:5a:fc:a2:aa:b1:d6:9a:bf:20: b0:b6:5d:e3:8a:d6:23:25:df:53:fc:39:67:83:ac: 35:f0:3a:50:00:88:30:55:e7:8c:40:8f:f5:2f:17: fb:9e:61:5f:a8:9e:09:09:dd:72:01:95:0e:55:43: d9:2a:ba:dc:62:28:55:cd:2b:a2:05:83:db:c3:91: 4e:b7:3f:9d:dd:5f:04:7a:eb:c3:93:dc:83:2e:08: bd:e6:b8:1b:9d:71:f9:57:67:2d:55:2a:77:66:c1: bd:94:3d:60:40:6e:84:34:0f:ae:e1:4b:73:ca:30: 45:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:DE:DD:C3:07:F0:BC:7D:88:C7:F1:15:6D:65:48:A8:26:9C:EF:10 X509v3 Authority Key Identifier: keyid:67:74:9A:06:5B:BC:F1:E5:77:68:F4:20:7E:1B:2F:E7:88:60:4D:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/67749A065BBCF1E57768F4207E1B2FE788604D47.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67749A065BBCF1E57768F4207E1B2FE788604D47.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59157ced-e82c-4334-903a-cccbbe9cfe89/0/3130332e3139332e3134372e302f32342d3234203d3e20313530393836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.193.147.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:e6:e4:9a:18:9e:c1:b5:3b:fb:dc:a9:9e:2f:6e:12:28:ee: 24:f8:76:95:16:4a:6e:b7:77:85:84:cd:53:53:69:36:57:55: 91:8a:78:27:07:df:9c:03:af:64:ae:12:08:e2:ec:8a:09:5e: 57:8d:b4:39:2c:c4:e2:d3:a8:e0:45:75:c6:20:36:5c:f3:d2: 34:42:2b:6d:c0:4d:32:24:a4:e6:04:c4:ae:d0:8f:6d:49:c2: 86:84:0a:4e:d1:7c:e8:97:da:3f:2c:16:a3:d3:db:18:b1:1a: b6:7b:e7:2a:a3:64:25:2a:0f:a2:50:20:97:9c:72:ee:0f:76: ae:0f:dd:6c:8c:18:41:e6:24:25:e7:14:10:fb:b4:62:f3:62: 1f:c6:22:51:cc:58:eb:93:f5:0a:00:70:33:80:72:58:dc:5e: b7:95:ec:65:ef:d7:27:bc:5f:e0:85:55:e1:8a:1d:73:06:0f: bd:aa:41:bf:f0:57:d0:32:c9:c0:48:04:1f:22:17:93:13:eb: 6c:ef:bd:ee:64:c1:85:67:df:0e:1b:2e:28:b1:32:36:78:c7: 02:40:58:1f:5c:1e:16:07:b1:9b:0d:5f:73:4b:d0:56:43:1e: a9:9d:c6:94:be:7a:b6:9a:d7:48:fc:bb:1c:c9:95:14:14:a8: 4c:d6:40:f8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUCOTnlHJJE9mxlMuzSS19Q6hWXgcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjc3NDlBMDY1QkJDRjFFNTc3NjhGNDIwN0UxQjJGRTc4 ODYwNEQ0NzAeFw0yNTA1MDEwMTU1MDBaFw0yNjA0MzAwMjAwMDBaMDMxMTAvBgNV BAMTKDI2REVEREMzMDdGMEJDN0Q4OEM3RjExNTZENjU0OEE4MjY5Q0VGMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFFiNgXDyzNYzVlWcA5mHSj4VM H4kAGeUtynZhgYcHEhLtMSzwKVo58eSqDseZ+RpnMD9aCj/7m1yZydjMiiKBtrU3 OeWb2S67DbzLfZYt0/ojEaCC+kGAowrlnBv9iO9pLJ3l7BAnYWT/CjbquWkYuvgG hAqjeg6ZX9FqdsqVI5wkX3lym4v6FXyLbFr8oqqx1pq/ILC2XeOK1iMl31P8OWeD rDXwOlAAiDBV54xAj/UvF/ueYV+ongkJ3XIBlQ5VQ9kqutxiKFXNK6IFg9vDkU63 P53dXwR668OT3IMuCL3muBudcflXZy1VKndmwb2UPWBAboQ0D67hS3PKMEWnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUJt7dwwfwvH2Ix/EVbWVIqCac7xAwHwYDVR0j BBgwFoAUZ3SaBlu88eV3aPQgfhsv54hgTUcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OTE1N2NlZC1lODJjLTQzMzQtOTAzYS1jY2NiYmU5Y2ZlODkvMC82Nzc0OUEwNjVC QkNGMUU1Nzc2OEY0MjA3RTFCMkZFNzg4NjA0RDQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjc3NDlBMDY1QkJDRjFFNTc3NjhGNDIwN0UxQjJGRTc4ODYw NEQ0Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5MTU3Y2VkLWU4MmMtNDMzNC05 MDNhLWNjY2JiZTljZmU4OS8wLzMxMzAzMzJlMzEzOTMzMmUzMTM0MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzOTM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnwZMwDQYJ KoZIhvcNAQELBQADggEBAJvm5JoYnsG1O/vcqZ4vbhIo7iT4dpUWSm63d4WEzVNT aTZXVZGKeCcH35wDr2SuEgji7IoJXleNtDksxOLTqOBFdcYgNlzz0jRCK23ATTIk pOYExK7Qj21JwoaECk7RfOiX2j8sFqPT2xixGrZ75yqjZCUqD6JQIJeccu4Pdq4P 3WyMGEHmJCXnFBD7tGLzYh/GIlHMWOuT9QoAcDOAcljcXreV7GXv1ye8X+CFVeGK HXMGD72qQb/wV9AyycBIBB8iF5MT62zvve5kwYVn3w4bLiixMjZ4xwJAWB9cHhYH sZsNX3NL0FZDHqmdxpS+eraa10j8uxzJlRQUqEzWQPg= -----END CERTIFICATE-----Generated at Sat May 10 19:36:33 2025 by rpki-client