$ rpki-client -vvf repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/3130332e3230392e3138342e302f32322d3234203d3e20313334363535.roa File: 3130332e3230392e3138342e302f32322d3234203d3e20313334363535.roa (raw, json) Hash identifier: AOicjomaXVowUxKVLUAzngaobesRemFsc6Mjiuwj2Bg= Subject key identifier: 5A:C8:E7:9E:4C:C5:87:F3:E0:7E:3D:BE:09:C9:4A:4B:A3:88:BB:86 Certificate issuer: /CN=2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79 Certificate serial: 78869B3035B98FDF93A25CCFAA26DD9087D6852A Authority key identifier: 21:46:CD:CD:7A:3C:7A:19:15:B7:8C:5B:2C:9F:CF:BA:8A:3B:6E:79 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/3130332e3230392e3138342e302f32322d3234203d3e20313334363535.roa Signing time: Thu 01 May 2025 15:00:01 +0000 ROA not before: Thu 01 May 2025 14:55:01 +0000 ROA not after: Thu 30 Apr 2026 15:00:01 +0000 asID: 134655 IP address blocks: 103.209.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.crl rsync://repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 03:36:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:86:9b:30:35:b9:8f:df:93:a2:5c:cf:aa:26:dd:90:87:d6:85:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79 Validity Not Before: May 1 14:55:01 2025 GMT Not After : Apr 30 15:00:01 2026 GMT Subject: CN=5AC8E79E4CC587F3E07E3DBE09C94A4BA388BB86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:46:8a:59:8e:8f:a4:bd:7d:48:b5:48:88:36: 4f:1b:b2:84:d7:c5:62:17:c5:21:96:52:40:b5:b9: 20:15:09:73:dc:6f:eb:20:50:7e:0f:63:c2:dc:44: e5:97:8d:8c:85:fc:72:00:87:10:d1:2d:fe:fc:c7: 71:62:8d:8b:45:94:b0:de:69:7b:32:48:09:15:8b: c6:79:96:cd:4c:2e:7c:39:f2:1a:03:8d:d1:fb:48: ff:5e:1b:af:6e:d6:e8:c6:5f:0e:97:79:d9:e5:3e: ad:fd:3c:a7:27:23:0e:9f:ba:e2:ab:10:89:30:a6: 99:b2:19:96:16:be:fb:fe:0c:f1:66:3d:f3:4e:03: 41:b4:71:cc:3a:42:07:51:18:62:f6:e9:c1:97:6f: 23:b3:4c:01:1d:92:e4:20:17:18:b9:5a:07:56:b1: 60:bd:78:1f:9d:88:65:0f:fb:11:94:e9:fc:ce:07: f1:82:6e:f4:5d:9a:c4:4b:81:84:82:6c:34:9a:e3: 5a:2a:27:ca:46:de:78:1e:d2:0c:9b:46:12:d7:b0: b4:59:06:80:75:c3:ef:8e:13:ce:81:13:cd:d5:4a: 33:1f:3a:19:c6:44:b5:93:15:cd:6a:42:0b:e7:54: 61:db:8c:66:eb:e3:14:dc:8c:1e:04:15:9f:36:bd: ba:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:C8:E7:9E:4C:C5:87:F3:E0:7E:3D:BE:09:C9:4A:4B:A3:88:BB:86 X509v3 Authority Key Identifier: keyid:21:46:CD:CD:7A:3C:7A:19:15:B7:8C:5B:2C:9F:CF:BA:8A:3B:6E:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/3130332e3230392e3138342e302f32322d3234203d3e20313334363535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.209.184.0/22 Signature Algorithm: sha256WithRSAEncryption 74:b2:ce:e1:48:2a:49:aa:d5:cf:1e:40:7f:6f:0a:53:15:c9: e3:95:6b:d2:cd:8c:b4:5e:43:a3:a4:c9:89:95:af:3b:cb:e0: 48:c9:d6:d7:bb:13:b5:2f:46:e9:11:c5:83:5f:e5:09:34:bc: 38:25:6d:7b:bc:41:7c:03:ea:f8:56:41:b1:a5:37:f0:9c:40: a9:28:b5:93:a1:d8:3a:f2:d9:0f:05:c8:a4:72:1f:07:03:21: e2:d0:6e:37:09:67:d8:6c:51:2a:80:ec:5f:2e:11:6a:67:bc: 66:6e:32:d6:62:7f:41:2f:c6:bd:25:99:9e:4d:dd:88:c9:e3: 06:87:a3:5f:c9:ca:b8:28:bc:92:8f:93:bb:54:f1:0a:a1:04: cd:fc:15:66:8a:cb:5b:28:70:24:28:af:9b:6b:21:1c:8e:c9: fb:31:69:6b:a8:8c:36:b7:89:8e:18:9f:55:52:45:8b:1a:51: aa:a3:db:35:b5:fe:ab:e3:76:76:d1:fc:95:17:2d:12:82:12: e5:dc:ba:23:bf:89:f1:7c:52:09:f7:e5:35:81:2c:ba:7c:cf: 55:e5:62:f5:06:65:a9:c4:06:71:0c:f6:69:0f:55:59:a9:05: 43:5c:0e:d5:67:60:ab:83:dc:ec:41:13:a4:36:36:eb:f3:7b: 65:b9:e0:ee -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeIabMDW5j9+TolzPqibdkIfWhSowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE0NkNEQ0Q3QTNDN0ExOTE1Qjc4QzVCMkM5RkNGQkE4 QTNCNkU3OTAeFw0yNTA1MDExNDU1MDFaFw0yNjA0MzAxNTAwMDFaMDMxMTAvBgNV BAMTKDVBQzhFNzlFNENDNTg3RjNFMDdFM0RCRTA5Qzk0QTRCQTM4OEJCODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpRopZjo+kvX1ItUiINk8bsoTX xWIXxSGWUkC1uSAVCXPcb+sgUH4PY8LcROWXjYyF/HIAhxDRLf78x3FijYtFlLDe aXsySAkVi8Z5ls1MLnw58hoDjdH7SP9eG69u1ujGXw6XednlPq39PKcnIw6fuuKr EIkwppmyGZYWvvv+DPFmPfNOA0G0ccw6QgdRGGL26cGXbyOzTAEdkuQgFxi5WgdW sWC9eB+diGUP+xGU6fzOB/GCbvRdmsRLgYSCbDSa41oqJ8pG3nge0gybRhLXsLRZ BoB1w++OE86BE83VSjMfOhnGRLWTFc1qQgvnVGHbjGbr4xTcjB4EFZ82vbrHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWsjnnkzFh/Pgfj2+CclKS6OIu4YwHwYDVR0j BBgwFoAUIUbNzXo8ehkVt4xbLJ/Puoo7bnkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OTM5ZGJmMS0zMDc1LTQ1MTktYmE5MC1jZWU4ZDM5NzlmY2QvMC8yMTQ2Q0RDRDdB M0M3QTE5MTVCNzhDNUIyQzlGQ0ZCQThBM0I2RTc5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjE0NkNEQ0Q3QTNDN0ExOTE1Qjc4QzVCMkM5RkNGQkE4QTNC NkU3OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5MzlkYmYxLTMwNzUtNDUxOS1i YTkwLWNlZThkMzk3OWZjZC8wLzMxMzAzMzJlMzIzMDM5MmUzMTM4MzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM1MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn0bgwDQYJ KoZIhvcNAQELBQADggEBAHSyzuFIKkmq1c8eQH9vClMVyeOVa9LNjLReQ6OkyYmV rzvL4EjJ1te7E7UvRukRxYNf5Qk0vDglbXu8QXwD6vhWQbGlN/CcQKkotZOh2Dry 2Q8FyKRyHwcDIeLQbjcJZ9hsUSqA7F8uEWpnvGZuMtZif0Evxr0lmZ5N3YjJ4waH o1/JyrgovJKPk7tU8QqhBM38FWaKy1socCQor5trIRyOyfsxaWuojDa3iY4Yn1VS RYsaUaqj2zW1/qvjdnbR/JUXLRKCEuXcuiO/ifF8Ugn35TWBLLp8z1XlYvUGZanE BnEM9mkPVVmpBUNcDtVnYKuD3OxBE6Q2Nuvze2W54O4= -----END CERTIFICATE-----Generated at Wed May 14 19:40:04 2025 by rpki-client