$ rpki-client -vvf repo-rpki.idnic.net/repo/aaf6984f-ccf9-4c40-b114-380356a8cd88/0/3130332e3136322e3233382e302f32332d3233203d3e20313431363639.roa File: 3130332e3136322e3233382e302f32332d3233203d3e20313431363639.roa (raw, json) Hash identifier: pKHdGJHsGSGfDl46o2wosXGehRbXUqIap7Vy4E4vB9g= Subject key identifier: 63:E6:F9:8A:30:5B:30:36:CB:69:A8:57:0B:5C:A6:73:AE:93:D7:A9 Certificate issuer: /CN=9DDB1110A2DE9FA031620A330D94EEBAF4F5135B Certificate serial: 3C3CDAA081876F596F5E98989E1227A3A15612C1 Authority key identifier: 9D:DB:11:10:A2:DE:9F:A0:31:62:0A:33:0D:94:EE:BA:F4:F5:13:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DDB1110A2DE9FA031620A330D94EEBAF4F5135B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aaf6984f-ccf9-4c40-b114-380356a8cd88/0/3130332e3136322e3233382e302f32332d3233203d3e20313431363639.roa Signing time: Fri 09 May 2025 03:00:00 +0000 ROA not before: Fri 09 May 2025 02:55:00 +0000 ROA not after: Fri 08 May 2026 03:00:00 +0000 asID: 141669 IP address blocks: 103.162.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aaf6984f-ccf9-4c40-b114-380356a8cd88/0/9DDB1110A2DE9FA031620A330D94EEBAF4F5135B.crl rsync://repo-rpki.idnic.net/repo/aaf6984f-ccf9-4c40-b114-380356a8cd88/0/9DDB1110A2DE9FA031620A330D94EEBAF4F5135B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DDB1110A2DE9FA031620A330D94EEBAF4F5135B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 05:34:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:3c:da:a0:81:87:6f:59:6f:5e:98:98:9e:12:27:a3:a1:56:12:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9DDB1110A2DE9FA031620A330D94EEBAF4F5135B Validity Not Before: May 9 02:55:00 2025 GMT Not After : May 8 03:00:00 2026 GMT Subject: CN=63E6F98A305B3036CB69A8570B5CA673AE93D7A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c7:6d:34:fc:79:36:47:5d:95:bd:c1:81:35: ec:f3:27:ee:37:06:eb:ae:f1:39:3c:cb:6e:52:6a: fa:f8:e0:10:0a:1b:ff:9b:08:0b:f8:e0:49:ff:de: a5:bc:3c:33:c2:07:4d:65:2d:d4:37:d8:0d:97:9d: 28:68:ff:ac:6b:7c:04:16:af:9a:65:5e:b6:f7:ec: 4b:56:e0:fe:d0:3e:27:3b:5e:66:17:6f:4e:6c:76: 68:e2:47:5e:3c:ca:8e:04:9d:ef:fc:15:e5:c2:c2: 2b:e7:cf:1a:38:67:5f:b8:1e:06:70:41:34:6f:d0: 62:9e:ad:4d:fa:a1:21:d6:9e:f7:d9:78:57:51:ab: 1c:40:91:f3:5f:21:e3:09:3f:5b:89:85:a0:48:5c: fa:1a:28:f6:c5:fb:0b:c2:88:1a:9c:a7:79:8d:23: f0:c1:94:d4:59:1a:78:bf:75:ad:4b:55:fa:2a:07: 4a:4a:d3:f4:1f:15:9d:b7:f6:92:08:42:16:44:bf: 58:50:58:59:bc:ee:2e:ce:34:69:ca:f9:63:c4:f9: 68:d4:02:2f:e3:38:da:c6:8c:e5:d6:bd:30:8a:cf: b2:94:df:d8:69:45:96:85:bf:c0:3e:83:74:80:49: fc:38:df:7f:81:6d:b9:95:22:56:c7:8d:d5:7b:1b: e9:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:E6:F9:8A:30:5B:30:36:CB:69:A8:57:0B:5C:A6:73:AE:93:D7:A9 X509v3 Authority Key Identifier: keyid:9D:DB:11:10:A2:DE:9F:A0:31:62:0A:33:0D:94:EE:BA:F4:F5:13:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aaf6984f-ccf9-4c40-b114-380356a8cd88/0/9DDB1110A2DE9FA031620A330D94EEBAF4F5135B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DDB1110A2DE9FA031620A330D94EEBAF4F5135B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aaf6984f-ccf9-4c40-b114-380356a8cd88/0/3130332e3136322e3233382e302f32332d3233203d3e20313431363639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.238.0/23 Signature Algorithm: sha256WithRSAEncryption 16:bf:f4:f7:11:08:af:62:2a:a9:ac:8e:ab:af:d5:33:0c:7c: c6:d1:26:57:54:22:b3:46:b5:03:88:0a:77:58:dc:bb:53:50: 75:34:18:77:e0:ed:1d:db:32:d5:74:17:54:36:4c:e5:0d:d6: 40:22:94:f0:61:4e:a5:98:7c:b0:f8:27:a9:16:ea:b7:fc:60: 3c:b8:7f:d6:ce:46:43:f6:86:c3:c3:39:d5:69:1f:0e:ba:45: 7d:48:55:03:de:8c:d8:1b:f3:82:18:bc:27:c6:14:59:72:ad: a2:74:4b:6a:51:69:40:f8:87:9c:5d:70:5e:4b:16:f0:39:ee: 4c:34:2c:ac:b0:1c:35:a2:ac:47:58:d0:b8:e3:8e:ae:98:db: b2:f9:23:6d:92:9b:a4:bb:19:84:04:45:d6:2e:09:05:95:33: dd:e0:0d:e2:84:4d:1b:ef:d7:7b:7d:a4:63:a9:d0:b4:3e:2c: 12:67:c0:a7:ab:cc:2b:12:35:47:ce:3f:18:21:1b:4b:da:30: 9b:9a:f1:38:22:fd:54:4a:60:da:a4:3b:39:ee:2c:79:52:7e: 77:60:81:33:e0:d3:08:7f:c0:6e:28:36:2f:59:bc:b2:ec:be: 37:0e:ec:ba:09:ab:5a:db:3b:e4:c8:c1:46:4f:36:3d:4a:4d: 11:95:91:91 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPDzaoIGHb1lvXpiYnhIno6FWEsEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUREQjExMTBBMkRFOUZBMDMxNjIwQTMzMEQ5NEVFQkFG NEY1MTM1QjAeFw0yNTA1MDkwMjU1MDBaFw0yNjA1MDgwMzAwMDBaMDMxMTAvBgNV BAMTKDYzRTZGOThBMzA1QjMwMzZDQjY5QTg1NzBCNUNBNjczQUU5M0Q3QTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgx200/Hk2R12VvcGBNezzJ+43 Buuu8Tk8y25Savr44BAKG/+bCAv44En/3qW8PDPCB01lLdQ32A2XnSho/6xrfAQW r5plXrb37EtW4P7QPic7XmYXb05sdmjiR148yo4Ene/8FeXCwivnzxo4Z1+4HgZw QTRv0GKerU36oSHWnvfZeFdRqxxAkfNfIeMJP1uJhaBIXPoaKPbF+wvCiBqcp3mN I/DBlNRZGni/da1LVfoqB0pK0/QfFZ239pIIQhZEv1hQWFm87i7ONGnK+WPE+WjU Ai/jONrGjOXWvTCKz7KU39hpRZaFv8A+g3SASfw433+BbbmVIlbHjdV7G+mdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUY+b5ijBbMDbLaahXC1ymc66T16kwHwYDVR0j BBgwFoAUndsREKLen6AxYgozDZTuuvT1E1swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YWY2OTg0Zi1jY2Y5LTRjNDAtYjExNC0zODAzNTZhOGNkODgvMC85RERCMTExMEEy REU5RkEwMzE2MjBBMzMwRDk0RUVCQUY0RjUxMzVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUREQjExMTBBMkRFOUZBMDMxNjIwQTMzMEQ5NEVFQkFGNEY1 MTM1Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhZjY5ODRmLWNjZjktNGM0MC1i MTE0LTM4MDM1NmE4Y2Q4OC8wLzMxMzAzMzJlMzEzNjMyMmUzMjMzMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzNjM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnou4wDQYJ KoZIhvcNAQELBQADggEBABa/9PcRCK9iKqmsjquv1TMMfMbRJldUIrNGtQOICndY 3LtTUHU0GHfg7R3bMtV0F1Q2TOUN1kAilPBhTqWYfLD4J6kW6rf8YDy4f9bORkP2 hsPDOdVpHw66RX1IVQPejNgb84IYvCfGFFlyraJ0S2pRaUD4h5xdcF5LFvA57kw0 LKywHDWirEdY0Ljjjq6Y27L5I22Sm6S7GYQERdYuCQWVM93gDeKETRvv13t9pGOp 0LQ+LBJnwKerzCsSNUfOPxghG0vaMJua8Tgi/VRKYNqkOznuLHlSfndggTPg0wh/ wG4oNi9ZvLLsvjcO7LoJq1rbO+TIwUZPNj1KTRGVkZE= -----END CERTIFICATE-----Generated at Wed May 14 03:03:32 2025 by rpki-client