$ rpki-client -vvf repo-rpki.idnic.net/repo/8af0031e-2a9e-47ca-9283-40e927e35993/0/3130332e3136382e3138362e302f32332d3234203d3e20313432333232.roa File: 3130332e3136382e3138362e302f32332d3234203d3e20313432333232.roa (raw, json) Hash identifier: sTGZYy3CTMFJomz4zEUnzYGiqSK7Zjj2cxfNkca5o6A= Subject key identifier: DD:A8:CB:8D:27:54:18:74:55:B5:FA:2A:64:CB:AD:1F:2E:D0:4D:76 Certificate issuer: /CN=CEE21891B6F5736FAA7D9BED383243F3DF381781 Certificate serial: 597C673E07C7ECD8389468299B647BA02D547036 Authority key identifier: CE:E2:18:91:B6:F5:73:6F:AA:7D:9B:ED:38:32:43:F3:DF:38:17:81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEE21891B6F5736FAA7D9BED383243F3DF381781.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8af0031e-2a9e-47ca-9283-40e927e35993/0/3130332e3136382e3138362e302f32332d3234203d3e20313432333232.roa Signing time: Sun 04 May 2025 04:00:44 +0000 ROA not before: Sun 04 May 2025 03:55:44 +0000 ROA not after: Sun 03 May 2026 04:00:44 +0000 asID: 142322 IP address blocks: 103.168.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8af0031e-2a9e-47ca-9283-40e927e35993/0/CEE21891B6F5736FAA7D9BED383243F3DF381781.crl rsync://repo-rpki.idnic.net/repo/8af0031e-2a9e-47ca-9283-40e927e35993/0/CEE21891B6F5736FAA7D9BED383243F3DF381781.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEE21891B6F5736FAA7D9BED383243F3DF381781.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 02:50:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:7c:67:3e:07:c7:ec:d8:38:94:68:29:9b:64:7b:a0:2d:54:70:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEE21891B6F5736FAA7D9BED383243F3DF381781 Validity Not Before: May 4 03:55:44 2025 GMT Not After : May 3 04:00:44 2026 GMT Subject: CN=DDA8CB8D2754187455B5FA2A64CBAD1F2ED04D76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e8:4f:44:f0:cd:7e:c1:56:cc:f2:04:7d:c0: 96:cf:d1:00:9f:1c:9c:64:e3:a9:5a:1e:6b:2b:7a: c5:18:5e:e9:d8:6c:88:67:cf:2a:9b:66:24:fc:2a: 39:dd:0c:7f:27:4e:50:34:7a:df:e4:04:6c:b5:59: ba:7f:a6:45:01:98:3e:56:fd:55:b3:b5:b3:86:ef: 78:44:9e:3a:0e:6c:48:a4:23:0f:b7:cb:c8:ff:5e: 9e:47:5f:81:3d:67:88:1c:38:c2:a2:ef:f9:10:95: 05:f6:ba:69:ff:fa:a8:a6:c7:f9:08:ed:75:3a:76: d6:92:dd:76:11:fa:0d:86:32:34:29:a9:55:5b:7f: 5e:d9:e7:48:f3:48:7c:f6:5d:fd:80:bc:2b:90:0e: 23:c3:b0:b2:c3:25:ed:dc:56:18:4a:d8:fb:9d:a9: 5e:73:0a:08:43:ce:e2:13:b5:58:60:a9:c7:21:ee: 0c:da:06:d1:16:13:87:74:b3:42:8e:e9:ea:db:14: 23:d1:8b:07:27:a8:ad:ba:44:c0:c9:7e:7c:25:e1: aa:ed:2e:76:2e:d5:2f:d0:ea:7c:ee:1f:bb:aa:8d: f7:75:82:7d:5e:64:7e:0f:8c:ff:7d:50:e5:d0:5a: a2:fd:da:2a:97:f0:2c:3c:30:93:f6:14:c1:dd:e1: 33:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:A8:CB:8D:27:54:18:74:55:B5:FA:2A:64:CB:AD:1F:2E:D0:4D:76 X509v3 Authority Key Identifier: keyid:CE:E2:18:91:B6:F5:73:6F:AA:7D:9B:ED:38:32:43:F3:DF:38:17:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8af0031e-2a9e-47ca-9283-40e927e35993/0/CEE21891B6F5736FAA7D9BED383243F3DF381781.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEE21891B6F5736FAA7D9BED383243F3DF381781.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8af0031e-2a9e-47ca-9283-40e927e35993/0/3130332e3136382e3138362e302f32332d3234203d3e20313432333232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.186.0/23 Signature Algorithm: sha256WithRSAEncryption 91:15:c1:01:09:82:ca:8f:9f:65:65:77:40:fd:a1:d5:23:60: 36:6b:45:b7:c5:1a:01:ee:11:d9:53:08:0e:10:58:a2:c8:c8: 51:6b:07:a9:27:10:91:65:b4:c2:d6:31:fd:f9:1c:de:b8:91: 87:46:b5:3a:c3:1d:82:29:e2:77:b1:96:78:1f:66:04:23:53: 65:ed:a4:27:f8:26:6c:f7:08:8f:98:af:90:3e:b9:af:0f:9e: ab:b1:01:d2:00:60:00:aa:95:ec:1c:f2:c9:11:97:eb:aa:f9: f8:4d:ad:3d:0b:94:ec:e9:ca:0d:5c:c1:80:ac:8c:3c:e7:0b: 3f:eb:64:3a:15:3a:ae:ce:42:02:53:8f:99:14:26:3e:64:36: ed:98:d1:c2:cb:95:e1:71:1f:70:ff:33:18:30:3b:68:dc:43: 75:73:f8:d5:dc:20:d1:56:06:85:12:9b:d5:86:73:6c:02:f4: 0d:da:4b:9a:cc:bc:50:44:89:77:1e:af:f3:f5:46:bc:db:5e: 60:25:9c:41:ae:2c:e1:6d:03:54:63:5a:9f:33:7c:39:b8:00: 0b:2f:67:dd:6f:66:64:c1:70:f1:a6:65:49:a3:b8:ef:95:98: 41:fc:2c:6f:02:52:29:91:34:c4:00:35:62:2f:a3:40:17:6e: ac:b9:32:73 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWXxnPgfH7Ng4lGgpm2R7oC1UcDYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VFMjE4OTFCNkY1NzM2RkFBN0Q5QkVEMzgzMjQzRjNE RjM4MTc4MTAeFw0yNTA1MDQwMzU1NDRaFw0yNjA1MDMwNDAwNDRaMDMxMTAvBgNV BAMTKEREQThDQjhEMjc1NDE4NzQ1NUI1RkEyQTY0Q0JBRDFGMkVEMDRENzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU6E9E8M1+wVbM8gR9wJbP0QCf HJxk46laHmsresUYXunYbIhnzyqbZiT8KjndDH8nTlA0et/kBGy1Wbp/pkUBmD5W /VWztbOG73hEnjoObEikIw+3y8j/Xp5HX4E9Z4gcOMKi7/kQlQX2umn/+qimx/kI 7XU6dtaS3XYR+g2GMjQpqVVbf17Z50jzSHz2Xf2AvCuQDiPDsLLDJe3cVhhK2Pud qV5zCghDzuITtVhgqcch7gzaBtEWE4d0s0KO6erbFCPRiwcnqK26RMDJfnwl4art LnYu1S/Q6nzuH7uqjfd1gn1eZH4PjP99UOXQWqL92iqX8Cw8MJP2FMHd4TMJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU3ajLjSdUGHRVtfoqZMutHy7QTXYwHwYDVR0j BBgwFoAUzuIYkbb1c2+qfZvtODJD8984F4EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YWYwMDMxZS0yYTllLTQ3Y2EtOTI4My00MGU5MjdlMzU5OTMvMC9DRUUyMTg5MUI2 RjU3MzZGQUE3RDlCRUQzODMyNDNGM0RGMzgxNzgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0VFMjE4OTFCNkY1NzM2RkFBN0Q5QkVEMzgzMjQzRjNERjM4 MTc4MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhhZjAwMzFlLTJhOWUtNDdjYS05 MjgzLTQwZTkyN2UzNTk5My8wLzMxMzAzMzJlMzEzNjM4MmUzMTM4MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzIzMzMyMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqLowDQYJ KoZIhvcNAQELBQADggEBAJEVwQEJgsqPn2Vld0D9odUjYDZrRbfFGgHuEdlTCA4Q WKLIyFFrB6knEJFltMLWMf35HN64kYdGtTrDHYIp4nexlngfZgQjU2XtpCf4Jmz3 CI+Yr5A+ua8PnquxAdIAYACqlewc8skRl+uq+fhNrT0LlOzpyg1cwYCsjDznCz/r ZDoVOq7OQgJTj5kUJj5kNu2Y0cLLleFxH3D/MxgwO2jcQ3Vz+NXcINFWBoUSm9WG c2wC9A3aS5rMvFBEiXcer/P1RrzbXmAlnEGuLOFtA1RjWp8zfDm4AAsvZ91vZmTB cPGmZUmjuO+VmEH8LG8CUimRNMQANWIvo0AXbqy5MnM= -----END CERTIFICATE-----Generated at Sun May 11 10:27:49 2025 by rpki-client