$ rpki-client -vvf repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/3130332e3234372e3231312e302f32342d3234203d3e20313334363535.roa File: 3130332e3234372e3231312e302f32342d3234203d3e20313334363535.roa (raw, json) Hash identifier: +RIUAVxGB33d0KDSRHLJ9X8+j7gj5NlzbX8RpGUfLIQ= Subject key identifier: 92:51:11:CD:6F:5C:59:FA:76:AE:8C:06:3A:61:9D:C4:A1:00:17:1A Certificate issuer: /CN=2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79 Certificate serial: 68DB144B975247919B5B6D581CAEE8F8B5C3DC72 Authority key identifier: 21:46:CD:CD:7A:3C:7A:19:15:B7:8C:5B:2C:9F:CF:BA:8A:3B:6E:79 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/3130332e3234372e3231312e302f32342d3234203d3e20313334363535.roa Signing time: Thu 01 May 2025 16:00:01 +0000 ROA not before: Thu 01 May 2025 15:55:01 +0000 ROA not after: Thu 30 Apr 2026 16:00:01 +0000 asID: 134655 IP address blocks: 103.247.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.crl rsync://repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 03:36:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:db:14:4b:97:52:47:91:9b:5b:6d:58:1c:ae:e8:f8:b5:c3:dc:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79 Validity Not Before: May 1 15:55:01 2025 GMT Not After : Apr 30 16:00:01 2026 GMT Subject: CN=925111CD6F5C59FA76AE8C063A619DC4A100171A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:35:0f:4a:f7:5a:8c:bc:c5:08:31:07:7d:03: 84:9a:d0:c0:8e:ee:56:50:a2:08:25:99:cc:bf:24: 07:cb:27:56:14:56:00:f8:16:ff:0d:65:c9:81:05: 4d:fd:82:39:0b:55:fb:c7:bf:58:1b:98:3f:02:32: 23:df:21:94:ed:f0:e5:02:e1:b2:63:bb:0e:ec:a5: f9:bc:29:d0:3c:a8:c6:14:18:46:32:47:f9:e4:ff: 8a:e5:ec:6f:c0:04:4b:6f:93:8e:e2:d4:c8:4a:97: 8d:af:cb:c4:1c:61:e1:1d:43:ec:84:39:12:86:03: 11:a6:b2:b5:13:b0:6a:03:11:a9:de:2e:92:1f:f7: 82:d4:ed:0e:a9:18:39:d9:b0:26:03:55:1d:43:37: 35:29:d9:c0:02:bb:cf:a1:d9:1f:26:ab:1b:eb:fe: 35:5a:d0:c9:c0:70:ae:6d:3e:ae:2d:82:d1:73:7d: 48:c1:7c:5e:d5:6a:5f:7f:7c:cd:42:80:17:ca:c9: b2:69:ae:d9:ad:c1:de:81:63:dc:12:1e:5c:84:8f: 00:d5:9d:40:e0:5f:42:1a:86:96:d7:88:01:70:83: 7e:9f:cf:cd:5a:18:61:6f:59:29:2f:3e:1b:1a:57: d7:52:b8:27:01:0c:c6:9d:ef:c7:36:96:07:b9:81: 13:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:51:11:CD:6F:5C:59:FA:76:AE:8C:06:3A:61:9D:C4:A1:00:17:1A X509v3 Authority Key Identifier: keyid:21:46:CD:CD:7A:3C:7A:19:15:B7:8C:5B:2C:9F:CF:BA:8A:3B:6E:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2146CDCD7A3C7A1915B78C5B2C9FCFBA8A3B6E79.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6939dbf1-3075-4519-ba90-cee8d3979fcd/0/3130332e3234372e3231312e302f32342d3234203d3e20313334363535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.211.0/24 Signature Algorithm: sha256WithRSAEncryption 47:16:32:7a:64:a8:e3:cf:79:72:21:84:56:a2:4f:7a:a8:87: 3a:1a:62:d9:39:64:f9:dc:79:d2:49:4e:64:1f:c9:1e:8e:ed: 05:92:10:d5:07:d1:69:e6:ff:34:10:bf:16:8a:0f:93:80:8b: e2:ff:ac:59:8e:81:07:0d:f4:57:a9:f6:ee:08:d7:49:e0:19: 93:3f:2e:40:8a:69:f4:6a:22:4d:5b:9d:38:e9:66:63:8a:4e: fe:b2:91:af:33:15:aa:dd:e8:8b:64:f0:1d:72:26:8e:71:16: bc:36:da:ec:39:9f:7c:73:1a:92:20:2d:e6:08:e2:61:c5:88: fc:a7:2e:06:6e:4d:a0:15:e1:d4:22:d7:5a:bc:a9:32:5b:9a: 21:03:70:3c:45:63:d1:d2:d8:bc:e1:5e:3c:32:88:4f:c1:cd: 73:4c:85:e7:52:64:a5:a3:66:c6:60:70:21:46:c1:52:42:f1: 92:e7:5b:9f:74:91:92:af:96:60:4b:bf:44:73:5d:ea:d7:12: 0b:03:fc:e1:68:82:7a:cf:a8:de:d3:04:9b:70:98:85:1c:5f: ab:0c:13:9b:a7:b2:e7:b6:e0:47:52:5d:f0:18:e2:47:24:79: cb:cd:0d:91:ba:73:f1:97:55:89:19:9d:d3:a9:bd:3a:23:4e: df:4b:ed:1e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUaNsUS5dSR5GbW21YHK7o+LXD3HIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE0NkNEQ0Q3QTNDN0ExOTE1Qjc4QzVCMkM5RkNGQkE4 QTNCNkU3OTAeFw0yNTA1MDExNTU1MDFaFw0yNjA0MzAxNjAwMDFaMDMxMTAvBgNV BAMTKDkyNTExMUNENkY1QzU5RkE3NkFFOEMwNjNBNjE5REM0QTEwMDE3MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuNQ9K91qMvMUIMQd9A4Sa0MCO 7lZQogglmcy/JAfLJ1YUVgD4Fv8NZcmBBU39gjkLVfvHv1gbmD8CMiPfIZTt8OUC 4bJjuw7spfm8KdA8qMYUGEYyR/nk/4rl7G/ABEtvk47i1MhKl42vy8QcYeEdQ+yE ORKGAxGmsrUTsGoDEaneLpIf94LU7Q6pGDnZsCYDVR1DNzUp2cACu8+h2R8mqxvr /jVa0MnAcK5tPq4tgtFzfUjBfF7Val9/fM1CgBfKybJprtmtwd6BY9wSHlyEjwDV nUDgX0IahpbXiAFwg36fz81aGGFvWSkvPhsaV9dSuCcBDMad78c2lge5gRNbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUklERzW9cWfp2rowGOmGdxKEAFxowHwYDVR0j BBgwFoAUIUbNzXo8ehkVt4xbLJ/Puoo7bnkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OTM5ZGJmMS0zMDc1LTQ1MTktYmE5MC1jZWU4ZDM5NzlmY2QvMC8yMTQ2Q0RDRDdB M0M3QTE5MTVCNzhDNUIyQzlGQ0ZCQThBM0I2RTc5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjE0NkNEQ0Q3QTNDN0ExOTE1Qjc4QzVCMkM5RkNGQkE4QTNC NkU3OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5MzlkYmYxLTMwNzUtNDUxOS1i YTkwLWNlZThkMzk3OWZjZC8wLzMxMzAzMzJlMzIzNDM3MmUzMjMxMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM1MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn99MwDQYJ KoZIhvcNAQELBQADggEBAEcWMnpkqOPPeXIhhFaiT3qohzoaYtk5ZPncedJJTmQf yR6O7QWSENUH0Wnm/zQQvxaKD5OAi+L/rFmOgQcN9Fep9u4I10ngGZM/LkCKafRq Ik1bnTjpZmOKTv6yka8zFard6Itk8B1yJo5xFrw22uw5n3xzGpIgLeYI4mHFiPyn LgZuTaAV4dQi11q8qTJbmiEDcDxFY9HS2LzhXjwyiE/BzXNMhedSZKWjZsZgcCFG wVJC8ZLnW590kZKvlmBLv0RzXerXEgsD/OFognrPqN7TBJtwmIUcX6sME5unsue2 4EdSXfAY4kckecvNDZG6c/GXVYkZndOpvTojTt9L7R4= -----END CERTIFICATE-----Generated at Wed May 14 14:58:29 2025 by rpki-client