$ rpki-client -vvf repo-rpki.idnic.net/repo/a89a0661-31ee-49a2-ae9f-f6d573a17df7/0/3130332e3136312e3130382e302f32342d3234203d3e20313431393132.roa File: 3130332e3136312e3130382e302f32342d3234203d3e20313431393132.roa (raw, json) Hash identifier: uvIhcJu4c3esMkst4+88cWSmjSO0QaYXOH2ffUAXAVQ= Subject key identifier: F0:C0:06:18:F7:ED:8A:B1:68:9C:F7:A1:95:3E:3C:BD:2D:E5:60:12 Certificate issuer: /CN=FF1246B1AF5B158EA26E75654D7B7A6DED645787 Certificate serial: 606CBF7522660C113AB765BBD7CF963CCEE7FA2A Authority key identifier: FF:12:46:B1:AF:5B:15:8E:A2:6E:75:65:4D:7B:7A:6D:ED:64:57:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF1246B1AF5B158EA26E75654D7B7A6DED645787.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a89a0661-31ee-49a2-ae9f-f6d573a17df7/0/3130332e3136312e3130382e302f32342d3234203d3e20313431393132.roa Signing time: Thu 17 Apr 2025 10:02:03 +0000 ROA not before: Thu 17 Apr 2025 09:57:03 +0000 ROA not after: Thu 16 Apr 2026 10:02:03 +0000 asID: 141912 IP address blocks: 103.161.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a89a0661-31ee-49a2-ae9f-f6d573a17df7/0/FF1246B1AF5B158EA26E75654D7B7A6DED645787.crl rsync://repo-rpki.idnic.net/repo/a89a0661-31ee-49a2-ae9f-f6d573a17df7/0/FF1246B1AF5B158EA26E75654D7B7A6DED645787.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF1246B1AF5B158EA26E75654D7B7A6DED645787.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 May 2025 03:20:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:6c:bf:75:22:66:0c:11:3a:b7:65:bb:d7:cf:96:3c:ce:e7:fa:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF1246B1AF5B158EA26E75654D7B7A6DED645787 Validity Not Before: Apr 17 09:57:03 2025 GMT Not After : Apr 16 10:02:03 2026 GMT Subject: CN=F0C00618F7ED8AB1689CF7A1953E3CBD2DE56012 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:fa:52:c1:ab:d6:96:33:22:7d:43:e0:3d:48: f4:0d:05:34:0e:38:ff:c4:c9:0a:5c:80:0a:19:67: 4c:03:7c:ed:e8:5c:19:2c:29:86:c3:fa:86:a2:be: cc:48:08:8b:ab:5d:96:ba:6c:01:64:ef:e2:69:04: 65:af:75:ef:81:e1:d6:b9:e9:72:98:bc:46:50:5c: 64:52:86:04:61:36:52:f9:20:44:13:cc:11:56:89: d0:55:54:01:33:c8:14:a6:55:aa:b4:97:56:a3:ae: 25:28:08:68:90:f0:f8:23:a1:3f:f9:22:70:70:26: 1f:55:9d:38:44:48:70:d3:e3:a8:af:74:51:c7:13: 48:09:be:0a:a8:17:93:ec:54:82:e4:dd:20:03:76: ca:dd:23:0c:e2:59:48:03:d1:a9:cc:1a:06:bb:09: 63:d6:0c:4f:97:37:8b:14:9d:13:e1:68:ac:2e:fc: dc:53:6b:e8:95:3b:61:41:fe:69:3e:39:2b:9d:4b: 77:fd:1a:40:d7:ca:5b:e6:76:0f:b0:fa:51:09:3d: 56:5b:d8:76:b0:31:1b:55:50:08:2f:50:8b:bc:6c: f2:70:a4:95:03:f4:8c:9e:c5:e2:37:52:0a:a5:ee: 43:77:b1:d0:f1:2f:e2:4f:b8:9d:d2:c0:c6:bf:cf: d0:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:C0:06:18:F7:ED:8A:B1:68:9C:F7:A1:95:3E:3C:BD:2D:E5:60:12 X509v3 Authority Key Identifier: keyid:FF:12:46:B1:AF:5B:15:8E:A2:6E:75:65:4D:7B:7A:6D:ED:64:57:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a89a0661-31ee-49a2-ae9f-f6d573a17df7/0/FF1246B1AF5B158EA26E75654D7B7A6DED645787.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF1246B1AF5B158EA26E75654D7B7A6DED645787.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a89a0661-31ee-49a2-ae9f-f6d573a17df7/0/3130332e3136312e3130382e302f32342d3234203d3e20313431393132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.108.0/24 Signature Algorithm: sha256WithRSAEncryption 83:2a:69:60:35:00:35:3f:e9:89:a0:f2:c2:8c:e2:35:fa:f0: 52:5c:24:ed:e3:cd:85:2e:df:3c:e2:93:c4:33:1a:e1:5e:38: 41:59:62:16:2d:1f:5f:f4:62:d0:40:01:a8:ee:11:b6:23:0b: 75:03:2a:85:b0:0e:13:77:24:b0:8a:b6:2e:69:61:b3:1f:73: 8c:ed:98:96:72:fe:82:81:c4:de:b2:b5:ee:fc:44:1a:da:46: e6:ab:86:95:d4:33:a1:aa:a9:2e:f9:18:81:95:87:bf:80:75: 12:f6:c6:78:60:b2:54:57:fa:fd:f7:ce:30:47:10:70:9f:2f: 64:df:50:86:74:ee:44:63:61:9e:75:8e:9b:f8:d6:51:c2:da: 6b:5d:db:6d:87:32:0f:10:70:00:28:b7:eb:7f:9a:63:0b:a3: 59:98:3b:09:15:86:d0:1a:e1:ee:0c:ea:c3:b2:55:f0:96:b0: 4e:82:d7:9c:00:0b:1e:6b:7f:f8:c1:7f:dc:3c:71:0b:46:e5: b9:b4:44:db:68:86:71:73:de:a6:2d:52:51:3a:db:8e:29:24: 2b:dd:2a:0e:ec:7a:c4:fd:4a:72:41:26:c9:bc:d7:03:bd:36: 79:81:bf:b3:0f:a1:5f:02:e6:bc:5b:3d:c2:03:8d:a7:a3:dc: 11:e8:29:7f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYGy/dSJmDBE6t2W718+WPM7n+iowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkYxMjQ2QjFBRjVCMTU4RUEyNkU3NTY1NEQ3QjdBNkRF RDY0NTc4NzAeFw0yNTA0MTcwOTU3MDNaFw0yNjA0MTYxMDAyMDNaMDMxMTAvBgNV BAMTKEYwQzAwNjE4RjdFRDhBQjE2ODlDRjdBMTk1M0UzQ0JEMkRFNTYwMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN+lLBq9aWMyJ9Q+A9SPQNBTQO OP/EyQpcgAoZZ0wDfO3oXBksKYbD+oaivsxICIurXZa6bAFk7+JpBGWvde+B4da5 6XKYvEZQXGRShgRhNlL5IEQTzBFWidBVVAEzyBSmVaq0l1ajriUoCGiQ8PgjoT/5 InBwJh9VnThESHDT46ivdFHHE0gJvgqoF5PsVILk3SADdsrdIwziWUgD0anMGga7 CWPWDE+XN4sUnRPhaKwu/NxTa+iVO2FB/mk+OSudS3f9GkDXylvmdg+w+lEJPVZb 2HawMRtVUAgvUIu8bPJwpJUD9IyexeI3Ugql7kN3sdDxL+JPuJ3SwMa/z9DTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU8MAGGPftirFonPehlT48vS3lYBIwHwYDVR0j BBgwFoAU/xJGsa9bFY6ibnVlTXt6be1kV4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ODlhMDY2MS0zMWVlLTQ5YTItYWU5Zi1mNmQ1NzNhMTdkZjcvMC9GRjEyNDZCMUFG NUIxNThFQTI2RTc1NjU0RDdCN0E2REVENjQ1Nzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkYxMjQ2QjFBRjVCMTU4RUEyNkU3NTY1NEQ3QjdBNkRFRDY0 NTc4Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4OWEwNjYxLTMxZWUtNDlhMi1h ZTlmLWY2ZDU3M2ExN2RmNy8wLzMxMzAzMzJlMzEzNjMxMmUzMTMwMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTMxMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoWwwDQYJ KoZIhvcNAQELBQADggEBAIMqaWA1ADU/6Ymg8sKM4jX68FJcJO3jzYUu3zzik8Qz GuFeOEFZYhYtH1/0YtBAAajuEbYjC3UDKoWwDhN3JLCKti5pYbMfc4ztmJZy/oKB xN6yte78RBraRuarhpXUM6GqqS75GIGVh7+AdRL2xnhgslRX+v33zjBHEHCfL2Tf UIZ07kRjYZ51jpv41lHC2mtd222HMg8QcAAot+t/mmMLo1mYOwkVhtAa4e4M6sOy VfCWsE6C15wACx5rf/jBf9w8cQtG5bm0RNtohnFz3qYtUlE6244pJCvdKg7sesT9 SnJBJsm81wO9NnmBv7MPoV8C5rxbPcIDjaej3BHoKX8= -----END CERTIFICATE-----Generated at Tue May 6 18:54:27 2025 by rpki-client