$ rpki-client -vvf repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/3130332e36312e3233342e302f32332d3233203d3e20313530353130.roa File: 3130332e36312e3233342e302f32332d3233203d3e20313530353130.roa (raw, json) Hash identifier: eReb0WjJwBofXwNbDwmRqsCz1oLf4D/ET0XbS0nqqnk= Subject key identifier: 69:5C:FD:7E:3A:E2:8F:62:A5:83:5C:DD:CD:E2:DF:FC:DB:E0:DC:0E Certificate issuer: /CN=4F022459BA46CF30700E070671C752B44729E249 Certificate serial: 0CAAC59F258AEF52D60D05A5B515ECF79D0387CA Authority key identifier: 4F:02:24:59:BA:46:CF:30:70:0E:07:06:71:C7:52:B4:47:29:E2:49 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F022459BA46CF30700E070671C752B44729E249.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/3130332e36312e3233342e302f32332d3233203d3e20313530353130.roa Signing time: Tue 01 Apr 2025 08:00:00 +0000 ROA not before: Tue 01 Apr 2025 07:55:00 +0000 ROA not after: Tue 31 Mar 2026 08:00:00 +0000 asID: 150510 IP address blocks: 103.61.234.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/4F022459BA46CF30700E070671C752B44729E249.crl rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/4F022459BA46CF30700E070671C752B44729E249.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F022459BA46CF30700E070671C752B44729E249.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 21:02:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:aa:c5:9f:25:8a:ef:52:d6:0d:05:a5:b5:15:ec:f7:9d:03:87:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F022459BA46CF30700E070671C752B44729E249 Validity Not Before: Apr 1 07:55:00 2025 GMT Not After : Mar 31 08:00:00 2026 GMT Subject: CN=695CFD7E3AE28F62A5835CDDCDE2DFFCDBE0DC0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:6e:79:b0:3d:d8:2e:eb:20:df:f6:ed:87:61: ca:ed:c4:4e:ee:44:23:79:cf:86:d9:8d:85:71:1e: 7d:11:d3:05:af:0c:55:ca:64:bd:7c:81:f7:34:fa: 1b:82:bd:c6:28:97:89:26:5b:8d:b9:da:10:3c:1e: 97:5e:73:3b:4d:4e:29:8c:b3:25:2f:3f:c3:ec:25: ba:02:38:6c:a7:d1:f8:96:ec:85:03:3e:7f:a9:8f: ee:06:b9:8e:ae:37:02:4d:78:8d:a9:0b:57:a4:43: 49:c2:a6:3a:30:6d:76:82:33:ad:a1:b4:1c:13:18: 9a:57:51:99:50:a5:ee:e0:2e:9f:72:28:e1:ee:b5: 45:54:9f:27:52:bc:98:a1:1e:ba:15:28:4a:2a:21: 3c:86:9f:77:cc:26:f0:3b:5e:77:cf:7f:5c:a8:3c: 4e:38:15:95:b7:1e:bc:c5:a7:57:73:09:54:d3:92: ed:e1:a3:8e:c4:f1:0d:9b:89:56:fc:0c:0c:44:89: f3:e6:13:32:d0:11:f6:eb:31:b3:66:82:ba:81:9f: 9b:98:fe:1d:51:ab:c0:0d:6c:87:17:1b:41:34:39: c9:dd:05:e6:e6:19:ae:21:2a:7d:18:e0:74:7e:04: f9:96:84:61:a8:b9:31:87:6e:68:fb:d8:78:6b:08: a7:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:5C:FD:7E:3A:E2:8F:62:A5:83:5C:DD:CD:E2:DF:FC:DB:E0:DC:0E X509v3 Authority Key Identifier: keyid:4F:02:24:59:BA:46:CF:30:70:0E:07:06:71:C7:52:B4:47:29:E2:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/4F022459BA46CF30700E070671C752B44729E249.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F022459BA46CF30700E070671C752B44729E249.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/3130332e36312e3233342e302f32332d3233203d3e20313530353130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.61.234.0/23 Signature Algorithm: sha256WithRSAEncryption bb:59:e2:7b:f0:a8:96:11:b4:1d:d2:ac:25:d5:d1:3b:22:56: ae:fa:07:e0:0a:a1:8c:7d:5b:0e:46:d4:cb:25:45:af:d6:79: 9a:b6:99:c9:78:20:d7:3d:9c:83:5b:32:21:bf:ea:29:f9:29: 82:d5:0a:9e:69:01:6a:74:cb:69:f3:f0:d3:74:7a:eb:37:b5: 60:38:c5:67:48:45:33:13:82:ef:88:92:c1:dd:2b:57:8f:f4: 6a:66:8e:2e:14:2b:43:bc:50:60:9f:2a:b4:f4:58:bf:a7:76: ab:02:4c:6f:05:98:7a:ad:2c:99:0e:72:19:27:15:8f:35:ce: f8:9f:23:d0:7a:6e:c2:ff:ba:5d:91:69:ae:c9:86:3b:4f:d9: 26:08:8e:8b:bf:f9:fd:4b:78:6b:b1:5a:5e:f8:41:3d:47:e3: 37:7b:e9:50:a6:cf:b1:eb:e7:b4:d7:48:cf:90:2c:32:31:03: 13:db:31:99:07:52:b9:74:b5:d7:f7:a6:79:b1:08:cc:7e:ba: 08:cd:97:fe:43:33:e5:cf:8e:e2:04:11:f4:21:88:08:9c:d4: fd:15:8c:1f:cd:4c:27:98:94:a4:5d:bf:1d:af:81:0d:e6:81: 3c:bf:27:0d:32:46:30:ab:37:ef:36:65:f8:a8:6e:05:76:98: 78:3f:a0:90 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDKrFnyWK71LWDQWltRXs950Dh8owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEYwMjI0NTlCQTQ2Q0YzMDcwMEUwNzA2NzFDNzUyQjQ0 NzI5RTI0OTAeFw0yNTA0MDEwNzU1MDBaFw0yNjAzMzEwODAwMDBaMDMxMTAvBgNV BAMTKDY5NUNGRDdFM0FFMjhGNjJBNTgzNUNERENERTJERkZDREJFMERDMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2bnmwPdgu6yDf9u2HYcrtxE7u RCN5z4bZjYVxHn0R0wWvDFXKZL18gfc0+huCvcYol4kmW4252hA8HpdecztNTimM syUvP8PsJboCOGyn0fiW7IUDPn+pj+4GuY6uNwJNeI2pC1ekQ0nCpjowbXaCM62h tBwTGJpXUZlQpe7gLp9yKOHutUVUnydSvJihHroVKEoqITyGn3fMJvA7XnfPf1yo PE44FZW3HrzFp1dzCVTTku3ho47E8Q2biVb8DAxEifPmEzLQEfbrMbNmgrqBn5uY /h1Rq8ANbIcXG0E0OcndBebmGa4hKn0Y4HR+BPmWhGGouTGHbmj72HhrCKeJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUaVz9fjrij2Klg1zdzeLf/Nvg3A4wHwYDVR0j BBgwFoAUTwIkWbpGzzBwDgcGccdStEcp4kkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YTJiZmU5YS0zODIzLTQ0ZTktOTdjMC0yMTkxYTU2YmFmZDMvMC80RjAyMjQ1OUJB NDZDRjMwNzAwRTA3MDY3MUM3NTJCNDQ3MjlFMjQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEYwMjI0NTlCQTQ2Q0YzMDcwMEUwNzA2NzFDNzUyQjQ0NzI5 RTI0OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhMmJmZTlhLTM4MjMtNDRlOS05 N2MwLTIxOTFhNTZiYWZkMy8wLzMxMzAzMzJlMzYzMTJlMzIzMzM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMwMzUzMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZz3qMA0GCSqG SIb3DQEBCwUAA4IBAQC7WeJ78KiWEbQd0qwl1dE7Ilau+gfgCqGMfVsORtTLJUWv 1nmatpnJeCDXPZyDWzIhv+op+SmC1QqeaQFqdMtp8/DTdHrrN7VgOMVnSEUzE4Lv iJLB3StXj/RqZo4uFCtDvFBgnyq09Fi/p3arAkxvBZh6rSyZDnIZJxWPNc74nyPQ em7C/7pdkWmuyYY7T9kmCI6Lv/n9S3hrsVpe+EE9R+M3e+lQps+x6+e010jPkCwy MQMT2zGZB1K5dLXX96Z5sQjMfroIzZf+QzPlz47iBBH0IYgInNT9FYwfzUwnmJSk Xb8dr4EN5oE8vycNMkYwqzfvNmX4qG4Fdph4P6CQ -----END CERTIFICATE-----Generated at Sat May 10 20:10:33 2025 by rpki-client