$ rpki-client -vvf repo-rpki.idnic.net/repo/a43336f8-e546-462c-8410-b7732b6c8015/0/3130332e3138392e39372e302f32342d3234203d3e203435333035.roa File: 3130332e3138392e39372e302f32342d3234203d3e203435333035.roa (raw, json) Hash identifier: NSGM9TUDBLgn7kcSNJpmMZxpHG9VLSqJuwmSL+bAMEQ= Subject key identifier: D3:DF:72:02:CE:54:A6:68:FC:AF:4B:16:5B:1C:CA:9C:DD:CC:7C:82 Certificate issuer: /CN=A3969B26389933D7D21F3A8D757CB9C5687740E4 Certificate serial: 24B3DF401B92A005D18F8D1E3809223E860F4C42 Authority key identifier: A3:96:9B:26:38:99:33:D7:D2:1F:3A:8D:75:7C:B9:C5:68:77:40:E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A3969B26389933D7D21F3A8D757CB9C5687740E4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a43336f8-e546-462c-8410-b7732b6c8015/0/3130332e3138392e39372e302f32342d3234203d3e203435333035.roa Signing time: Wed 30 Apr 2025 10:00:00 +0000 ROA not before: Wed 30 Apr 2025 09:55:00 +0000 ROA not after: Wed 29 Apr 2026 10:00:00 +0000 asID: 45305 IP address blocks: 103.189.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a43336f8-e546-462c-8410-b7732b6c8015/0/A3969B26389933D7D21F3A8D757CB9C5687740E4.crl rsync://repo-rpki.idnic.net/repo/a43336f8-e546-462c-8410-b7732b6c8015/0/A3969B26389933D7D21F3A8D757CB9C5687740E4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A3969B26389933D7D21F3A8D757CB9C5687740E4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 May 2025 09:02:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:b3:df:40:1b:92:a0:05:d1:8f:8d:1e:38:09:22:3e:86:0f:4c:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A3969B26389933D7D21F3A8D757CB9C5687740E4 Validity Not Before: Apr 30 09:55:00 2025 GMT Not After : Apr 29 10:00:00 2026 GMT Subject: CN=D3DF7202CE54A668FCAF4B165B1CCA9CDDCC7C82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1c:60:66:a5:bd:4a:45:c3:f6:35:89:10:6f: 41:cc:95:c9:78:a6:58:a6:ec:d2:57:f2:b2:c5:78: 17:4c:7c:dc:ef:ac:2b:bf:01:8e:20:64:26:78:ea: a5:88:14:56:32:f0:0c:02:b4:49:45:e0:b5:07:d6: 04:8b:4a:b9:3c:6c:55:62:79:b4:30:c9:fd:51:77: 84:4d:f0:a2:30:d2:eb:3f:8c:c4:b3:96:9a:d7:3a: a2:8a:62:ed:0f:b1:ea:5e:4b:42:2a:ad:88:ea:ec: e9:36:a0:b9:ed:26:9f:d4:23:00:d2:81:11:9b:46: 7a:e8:f7:74:5b:f0:43:13:9b:3b:83:25:21:84:e2: 94:8b:d0:8c:cc:24:e0:78:03:d7:fd:44:e5:30:d5: 5e:1e:63:0f:8c:e0:c1:0b:aa:08:eb:cf:8b:ea:c8: 31:4d:95:fc:30:ff:f2:3d:f1:48:30:ac:f2:ca:3d: c1:32:aa:90:69:62:6d:83:d4:f5:f1:3f:8e:62:cc: 7f:3d:4f:01:b5:07:55:2b:43:c7:ea:18:1d:e4:47: 05:1a:ee:c2:80:b3:9d:e1:85:1a:b2:db:d8:0e:33: 19:73:24:12:dc:bb:0f:95:52:32:dc:bb:24:9c:e8: d7:ee:97:d0:8f:85:ec:81:c9:4f:56:37:e6:06:19: e2:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:DF:72:02:CE:54:A6:68:FC:AF:4B:16:5B:1C:CA:9C:DD:CC:7C:82 X509v3 Authority Key Identifier: keyid:A3:96:9B:26:38:99:33:D7:D2:1F:3A:8D:75:7C:B9:C5:68:77:40:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a43336f8-e546-462c-8410-b7732b6c8015/0/A3969B26389933D7D21F3A8D757CB9C5687740E4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A3969B26389933D7D21F3A8D757CB9C5687740E4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a43336f8-e546-462c-8410-b7732b6c8015/0/3130332e3138392e39372e302f32342d3234203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.97.0/24 Signature Algorithm: sha256WithRSAEncryption 37:e5:1d:52:4f:ac:b1:c3:bc:84:c6:a4:86:9f:85:b5:fc:c3: 78:2d:a3:79:0d:5f:e9:7d:69:ae:93:e3:4b:88:8e:10:d6:ec: 0a:44:82:2f:26:2c:72:ee:2c:1a:d2:43:7c:07:e3:34:7a:2c: be:24:83:76:86:2a:3f:55:cd:6c:bf:ea:b4:85:5f:04:42:8c: f6:d0:56:b1:f2:ce:18:7f:6f:cc:17:9d:3f:63:38:11:4d:49: 05:98:6e:41:bc:d0:b8:5a:87:c6:4b:da:08:de:72:0b:be:fd: 10:48:40:a6:fd:86:1e:3c:2f:c7:05:0a:b3:51:30:b6:08:87: df:bd:70:fc:2c:d6:9a:ad:e8:b6:72:2c:95:68:e5:72:e7:e4: 04:2d:1b:03:7d:1e:79:02:9b:3b:f1:6b:39:f9:8f:17:6f:0e: 54:6d:58:dc:e0:8e:60:36:a8:87:51:a1:f5:d6:b7:83:9c:51: 54:45:2d:77:b8:64:24:91:69:b3:71:8d:57:41:3c:83:2c:87: 20:aa:81:d0:30:f0:82:5f:74:df:f9:38:9f:e8:51:06:c7:c4: b8:e2:d9:45:1e:41:23:f3:d4:b6:8a:4f:68:c1:ea:9f:59:9f: 5a:69:90:92:7f:f9:03:9c:b1:2d:7e:35:73:fc:c1:5b:df:00: a6:8b:b6:e8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJLPfQBuSoAXRj40eOAkiPoYPTEIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTM5NjlCMjYzODk5MzNEN0QyMUYzQThENzU3Q0I5QzU2 ODc3NDBFNDAeFw0yNTA0MzAwOTU1MDBaFw0yNjA0MjkxMDAwMDBaMDMxMTAvBgNV BAMTKEQzREY3MjAyQ0U1NEE2NjhGQ0FGNEIxNjVCMUNDQTlDRERDQzdDODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9HGBmpb1KRcP2NYkQb0HMlcl4 plim7NJX8rLFeBdMfNzvrCu/AY4gZCZ46qWIFFYy8AwCtElF4LUH1gSLSrk8bFVi ebQwyf1Rd4RN8KIw0us/jMSzlprXOqKKYu0PsepeS0IqrYjq7Ok2oLntJp/UIwDS gRGbRnro93Rb8EMTmzuDJSGE4pSL0IzMJOB4A9f9ROUw1V4eYw+M4MELqgjrz4vq yDFNlfww//I98UgwrPLKPcEyqpBpYm2D1PXxP45izH89TwG1B1UrQ8fqGB3kRwUa 7sKAs53hhRqy29gOMxlzJBLcuw+VUjLcuySc6Nful9CPheyByU9WN+YGGeLnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU099yAs5Upmj8r0sWWxzKnN3MfIIwHwYDVR0j BBgwFoAUo5abJjiZM9fSHzqNdXy5xWh3QOQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NDMzMzZmOC1lNTQ2LTQ2MmMtODQxMC1iNzczMmI2YzgwMTUvMC9BMzk2OUIyNjM4 OTkzM0Q3RDIxRjNBOEQ3NTdDQjlDNTY4Nzc0MEU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTM5NjlCMjYzODk5MzNEN0QyMUYzQThENzU3Q0I5QzU2ODc3 NDBFNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E0MzMzNmY4LWU1NDYtNDYyYy04 NDEwLWI3NzMyYjZjODAxNS8wLzMxMzAzMzJlMzEzODM5MmUzOTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGe9YTANBgkqhkiG 9w0BAQsFAAOCAQEAN+UdUk+sscO8hMakhp+FtfzDeC2jeQ1f6X1prpPjS4iOENbs CkSCLyYscu4sGtJDfAfjNHosviSDdoYqP1XNbL/qtIVfBEKM9tBWsfLOGH9vzBed P2M4EU1JBZhuQbzQuFqHxkvaCN5yC779EEhApv2GHjwvxwUKs1EwtgiH371w/CzW mq3otnIslWjlcufkBC0bA30eeQKbO/FrOfmPF28OVG1Y3OCOYDaoh1Gh9da3g5xR VEUtd7hkJJFps3GNV0E8gyyHIKqB0DDwgl903/k4n+hRBsfEuOLZRR5BI/PUtopP aMHqn1mfWmmQkn/5A5yxLX41c/zBW98Apou26A== -----END CERTIFICATE-----Generated at Wed May 7 18:36:26 2025 by rpki-client