$ rpki-client -vvf repo-rpki.idnic.net/repo/d77a7fad-5442-4bc4-bc2f-0bf8c226d9db/0/3130332e36362e3139362e302f32322d3234203d3e20313331313131.roa File: 3130332e36362e3139362e302f32322d3234203d3e20313331313131.roa (raw, json) Hash identifier: H9yypLZLv8tpa7hHED33tyal4OpWf1DZSDERyCxUu54= Subject key identifier: 8E:6A:1D:FF:9A:F0:39:F8:0F:C8:11:AD:2E:D9:2F:1F:BA:89:79:E3 Certificate issuer: /CN=80481D732EEF797A2712002607F81D7DAF1F1F60 Certificate serial: 26DDA4A124F0CCAE15C9A81DBF00A99D4F859B93 Authority key identifier: 80:48:1D:73:2E:EF:79:7A:27:12:00:26:07:F8:1D:7D:AF:1F:1F:60 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80481D732EEF797A2712002607F81D7DAF1F1F60.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d77a7fad-5442-4bc4-bc2f-0bf8c226d9db/0/3130332e36362e3139362e302f32322d3234203d3e20313331313131.roa Signing time: Fri 02 May 2025 08:00:00 +0000 ROA not before: Fri 02 May 2025 07:55:00 +0000 ROA not after: Fri 01 May 2026 08:00:00 +0000 asID: 131111 IP address blocks: 103.66.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d77a7fad-5442-4bc4-bc2f-0bf8c226d9db/0/80481D732EEF797A2712002607F81D7DAF1F1F60.crl rsync://repo-rpki.idnic.net/repo/d77a7fad-5442-4bc4-bc2f-0bf8c226d9db/0/80481D732EEF797A2712002607F81D7DAF1F1F60.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80481D732EEF797A2712002607F81D7DAF1F1F60.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 14:07:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:dd:a4:a1:24:f0:cc:ae:15:c9:a8:1d:bf:00:a9:9d:4f:85:9b:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80481D732EEF797A2712002607F81D7DAF1F1F60 Validity Not Before: May 2 07:55:00 2025 GMT Not After : May 1 08:00:00 2026 GMT Subject: CN=8E6A1DFF9AF039F80FC811AD2ED92F1FBA8979E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ce:3e:62:63:8d:e5:95:7f:30:18:53:61:d4: 6c:ea:7a:67:24:26:b9:ac:b8:89:e4:45:4a:9e:a8: 29:c7:2d:01:80:33:41:83:a5:cf:32:97:eb:c9:0c: f1:4f:bb:94:66:74:24:75:f7:c0:4a:72:4a:97:d8: ac:fd:1c:23:39:0a:f3:c9:f8:24:05:f7:9e:e5:57: b0:e6:4d:06:72:c2:a4:85:d5:92:14:13:30:68:2b: d3:39:d5:f9:c8:58:2b:06:e5:c6:ba:38:db:75:2e: 9a:ac:9e:67:0b:19:0f:87:26:e9:e5:d4:ed:91:93: 58:5d:d4:19:35:ba:70:e6:8f:c5:80:ac:03:ad:ba: a0:a6:0b:37:0b:61:46:70:9a:8d:22:ae:0f:2e:42: 38:e6:a3:8a:9f:3c:50:eb:1a:ea:00:42:7a:e7:d5: a1:ab:b8:2d:a7:9d:53:1e:ab:0a:f1:46:e0:9f:ec: 8f:61:56:eb:a1:67:11:99:98:10:04:43:cb:85:5d: 08:6d:d6:ec:98:1a:f1:f2:73:2f:7e:71:1e:c4:69: d2:70:c6:de:ce:bf:38:23:9f:f0:1d:93:2c:fa:83: 9b:dd:75:08:31:70:28:69:cd:76:97:7c:94:63:23: 33:ad:c0:19:d0:2c:f1:6e:bd:93:50:cf:e8:c9:fb: 76:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:6A:1D:FF:9A:F0:39:F8:0F:C8:11:AD:2E:D9:2F:1F:BA:89:79:E3 X509v3 Authority Key Identifier: keyid:80:48:1D:73:2E:EF:79:7A:27:12:00:26:07:F8:1D:7D:AF:1F:1F:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d77a7fad-5442-4bc4-bc2f-0bf8c226d9db/0/80481D732EEF797A2712002607F81D7DAF1F1F60.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80481D732EEF797A2712002607F81D7DAF1F1F60.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d77a7fad-5442-4bc4-bc2f-0bf8c226d9db/0/3130332e36362e3139362e302f32322d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.66.196.0/22 Signature Algorithm: sha256WithRSAEncryption 26:1e:41:77:a9:e0:7f:bd:d6:cb:08:98:a1:f7:d5:fe:d5:10: 4e:4a:c3:fc:8a:53:e9:0b:e8:9c:12:6a:df:31:5c:a0:d3:e0: e3:e4:a8:06:34:b5:ba:f8:a9:f2:11:f5:b9:d3:73:1b:82:09: fc:2c:86:d8:27:98:fc:1c:4e:d3:59:8d:15:35:ed:d6:71:b7: 07:3c:49:e7:1d:5e:19:27:1e:e0:ce:1d:07:17:86:70:ad:4c: 59:32:86:d9:4d:20:de:75:80:99:41:7d:20:86:e1:cd:54:f3: 12:69:0d:2a:26:1a:b6:2b:6d:21:27:0a:1b:59:3a:4b:55:1c: 63:78:67:b4:64:04:22:70:0c:65:56:30:22:0c:4c:86:5b:43: 5c:fc:07:d7:5c:78:05:69:5f:5f:75:54:bd:50:39:ba:49:9c: 7a:3d:97:56:4d:ac:f8:b3:e7:de:79:04:66:5c:fd:c7:6c:5a: a3:96:49:74:f0:eb:c9:00:2a:60:c6:c1:81:b1:20:09:af:47: 7b:5e:55:95:7d:a5:fe:55:0f:c8:10:7b:be:6c:02:b9:11:8d: 50:1f:1a:55:09:a6:46:eb:51:24:ec:cd:de:fc:88:1a:7b:58: 58:bb:76:54:90:e0:76:1c:bd:57:fc:59:55:92:06:3e:9f:cd: 60:93:a9:de -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJt2koSTwzK4VyagdvwCpnU+Fm5MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODA0ODFENzMyRUVGNzk3QTI3MTIwMDI2MDdGODFEN0RB RjFGMUY2MDAeFw0yNTA1MDIwNzU1MDBaFw0yNjA1MDEwODAwMDBaMDMxMTAvBgNV BAMTKDhFNkExREZGOUFGMDM5RjgwRkM4MTFBRDJFRDkyRjFGQkE4OTc5RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1zj5iY43llX8wGFNh1Gzqemck JrmsuInkRUqeqCnHLQGAM0GDpc8yl+vJDPFPu5RmdCR198BKckqX2Kz9HCM5CvPJ +CQF957lV7DmTQZywqSF1ZIUEzBoK9M51fnIWCsG5ca6ONt1LpqsnmcLGQ+HJunl 1O2Rk1hd1Bk1unDmj8WArAOtuqCmCzcLYUZwmo0irg8uQjjmo4qfPFDrGuoAQnrn 1aGruC2nnVMeqwrxRuCf7I9hVuuhZxGZmBAEQ8uFXQht1uyYGvHycy9+cR7EadJw xt7Ovzgjn/Adkyz6g5vddQgxcChpzXaXfJRjIzOtwBnQLPFuvZNQz+jJ+3YBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjmod/5rwOfgPyBGtLtkvH7qJeeMwHwYDVR0j BBgwFoAUgEgdcy7veXonEgAmB/gdfa8fH2AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NzdhN2ZhZC01NDQyLTRiYzQtYmMyZi0wYmY4YzIyNmQ5ZGIvMC84MDQ4MUQ3MzJF RUY3OTdBMjcxMjAwMjYwN0Y4MUQ3REFGMUYxRjYwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODA0ODFENzMyRUVGNzk3QTI3MTIwMDI2MDdGODFEN0RBRjFG MUY2MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q3N2E3ZmFkLTU0NDItNGJjNC1i YzJmLTBiZjhjMjI2ZDlkYi8wLzMxMzAzMzJlMzYzNjJlMzEzOTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ0LEMA0GCSqG SIb3DQEBCwUAA4IBAQAmHkF3qeB/vdbLCJih99X+1RBOSsP8ilPpC+icEmrfMVyg 0+Dj5KgGNLW6+KnyEfW503Mbggn8LIbYJ5j8HE7TWY0VNe3WcbcHPEnnHV4ZJx7g zh0HF4ZwrUxZMobZTSDedYCZQX0ghuHNVPMSaQ0qJhq2K20hJwobWTpLVRxjeGe0 ZAQicAxlVjAiDEyGW0Nc/AfXXHgFaV9fdVS9UDm6SZx6PZdWTaz4s+feeQRmXP3H bFqjlkl08OvJACpgxsGBsSAJr0d7XlWVfaX+VQ/IEHu+bAK5EY1QHxpVCaZG61Ek 7M3e/Igae1hYu3ZUkOB2HL1X/FlVkgY+n81gk6ne -----END CERTIFICATE-----Generated at Sat May 10 08:31:25 2025 by rpki-client