$ rpki-client -vvf repo-rpki.idnic.net/repo/e523d060-b7a5-4455-9940-4fb7c704430f/0/3130332e3138352e3235322e302f32332d3234203d3e20313439363839.roa File: 3130332e3138352e3235322e302f32332d3234203d3e20313439363839.roa (raw, json) Hash identifier: HnJcM1pYTCQNaP5Phr+gH+vSqyaKDOtxhKznqfzli4w= Subject key identifier: D6:DF:2F:C0:9D:B5:9B:34:CF:2C:E3:76:76:6C:AD:77:FF:6D:94:9B Certificate issuer: /CN=2337E63A0142984FAFF0AD9D462EB6810AC6A036 Certificate serial: 5BC7DAA38C23FA2DC2AF628062A535F529B18A37 Authority key identifier: 23:37:E6:3A:01:42:98:4F:AF:F0:AD:9D:46:2E:B6:81:0A:C6:A0:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2337E63A0142984FAFF0AD9D462EB6810AC6A036.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e523d060-b7a5-4455-9940-4fb7c704430f/0/3130332e3138352e3235322e302f32332d3234203d3e20313439363839.roa Signing time: Fri 02 May 2025 12:00:00 +0000 ROA not before: Fri 02 May 2025 11:55:00 +0000 ROA not after: Fri 01 May 2026 12:00:00 +0000 asID: 149689 IP address blocks: 103.185.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e523d060-b7a5-4455-9940-4fb7c704430f/0/2337E63A0142984FAFF0AD9D462EB6810AC6A036.crl rsync://repo-rpki.idnic.net/repo/e523d060-b7a5-4455-9940-4fb7c704430f/0/2337E63A0142984FAFF0AD9D462EB6810AC6A036.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2337E63A0142984FAFF0AD9D462EB6810AC6A036.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 12:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:c7:da:a3:8c:23:fa:2d:c2:af:62:80:62:a5:35:f5:29:b1:8a:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2337E63A0142984FAFF0AD9D462EB6810AC6A036 Validity Not Before: May 2 11:55:00 2025 GMT Not After : May 1 12:00:00 2026 GMT Subject: CN=D6DF2FC09DB59B34CF2CE376766CAD77FF6D949B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:08:09:27:4d:bf:9c:f7:f8:db:e2:5c:c9:8c: fd:a8:ac:9f:a5:59:45:58:49:ad:ed:b3:f8:da:3b: 70:f9:59:3d:06:15:07:d8:6f:8c:96:eb:f7:64:8a: 73:33:cf:c0:2d:96:02:22:4e:c3:8c:9f:79:1c:19: 19:14:6e:20:14:7b:80:f6:bf:7f:3e:c4:e8:3b:d6: 02:5d:b5:78:dc:17:46:67:fe:d5:68:19:e5:60:d7: 68:f5:e3:5d:3b:ad:57:21:9a:55:8b:77:e8:bc:68: 33:15:dc:4f:78:c9:95:f8:0f:8e:e5:14:c9:be:e4: 06:6d:64:41:2b:66:66:fc:3c:c6:d4:e8:48:e5:56: 1c:5b:05:9d:1c:28:7b:9b:e3:bd:94:c9:66:95:41: 78:67:6a:86:38:2f:fd:0d:73:8d:8c:53:f7:23:32: 1c:85:dd:0f:9b:5c:cc:1d:44:2d:54:6b:3b:99:34: 76:c3:eb:61:2f:30:db:f4:96:13:7d:90:17:fb:9c: ee:cf:d8:ef:14:e1:28:a9:a2:ed:1a:a9:29:9d:ee: ad:c3:a0:65:19:66:a1:1e:b3:11:45:88:84:ff:fd: a4:e0:ad:cb:6e:8d:76:be:9d:20:7a:23:6c:1c:28: 0d:d7:64:f8:d5:ac:82:ec:8b:01:37:7c:82:7d:2f: 70:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:DF:2F:C0:9D:B5:9B:34:CF:2C:E3:76:76:6C:AD:77:FF:6D:94:9B X509v3 Authority Key Identifier: keyid:23:37:E6:3A:01:42:98:4F:AF:F0:AD:9D:46:2E:B6:81:0A:C6:A0:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e523d060-b7a5-4455-9940-4fb7c704430f/0/2337E63A0142984FAFF0AD9D462EB6810AC6A036.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2337E63A0142984FAFF0AD9D462EB6810AC6A036.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e523d060-b7a5-4455-9940-4fb7c704430f/0/3130332e3138352e3235322e302f32332d3234203d3e20313439363839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.185.252.0/23 Signature Algorithm: sha256WithRSAEncryption 06:c6:60:00:66:49:80:87:2c:81:83:f7:ba:87:ef:fa:4d:41: 33:6f:45:bb:7d:f3:e5:d7:36:5e:6f:7e:25:cd:b8:dc:69:17: 20:b9:7f:2c:4a:7e:f4:3e:b2:1d:24:26:94:56:48:ae:ab:46: 35:db:76:db:77:f6:ad:7e:ca:7f:29:d8:76:6d:8a:39:8e:cd: 96:e0:c0:35:19:8e:2c:ea:b3:16:e2:9b:1e:cc:c4:2b:70:ec: 9c:c7:4d:84:38:0b:8c:80:4c:53:13:23:ce:9b:15:81:db:ef: e4:4a:ed:cb:69:e2:a1:27:b7:31:38:10:24:4b:d8:2e:72:49: c7:14:9a:b3:85:63:2a:30:dc:ec:56:79:64:55:84:23:ab:fb: 2d:af:e8:9b:de:f9:69:42:87:97:17:03:eb:fe:8e:c1:37:f9: 72:58:98:8a:c6:68:c1:4a:2e:29:20:63:0f:78:64:c0:2e:da: 4a:30:8e:6f:2a:10:37:f4:6b:97:2d:4e:e7:d3:26:85:fc:b4: 09:c5:d4:2e:21:fd:af:fb:33:9f:0b:07:a7:af:8d:91:1c:e0: dd:1c:83:b6:82:85:3b:e4:43:0b:e1:84:bd:7d:05:64:92:74: 21:8b:02:4b:73:05:d9:1b:70:12:e7:90:5f:17:80:c6:56:a9: 00:aa:b7:90 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUW8fao4wj+i3Cr2KAYqU19SmxijcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjMzN0U2M0EwMTQyOTg0RkFGRjBBRDlENDYyRUI2ODEw QUM2QTAzNjAeFw0yNTA1MDIxMTU1MDBaFw0yNjA1MDExMjAwMDBaMDMxMTAvBgNV BAMTKEQ2REYyRkMwOURCNTlCMzRDRjJDRTM3Njc2NkNBRDc3RkY2RDk0OUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoCAknTb+c9/jb4lzJjP2orJ+l WUVYSa3ts/jaO3D5WT0GFQfYb4yW6/dkinMzz8AtlgIiTsOMn3kcGRkUbiAUe4D2 v38+xOg71gJdtXjcF0Zn/tVoGeVg12j14107rVchmlWLd+i8aDMV3E94yZX4D47l FMm+5AZtZEErZmb8PMbU6EjlVhxbBZ0cKHub472UyWaVQXhnaoY4L/0Nc42MU/cj MhyF3Q+bXMwdRC1UazuZNHbD62EvMNv0lhN9kBf7nO7P2O8U4Sipou0aqSmd7q3D oGUZZqEesxFFiIT//aTgrctujXa+nSB6I2wcKA3XZPjVrILsiwE3fIJ9L3DHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1t8vwJ21mzTPLON2dmytd/9tlJswHwYDVR0j BBgwFoAUIzfmOgFCmE+v8K2dRi62gQrGoDYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTIzZDA2MC1iN2E1LTQ0NTUtOTk0MC00ZmI3YzcwNDQzMGYvMC8yMzM3RTYzQTAx NDI5ODRGQUZGMEFEOUQ0NjJFQjY4MTBBQzZBMDM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjMzN0U2M0EwMTQyOTg0RkFGRjBBRDlENDYyRUI2ODEwQUM2 QTAzNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1MjNkMDYwLWI3YTUtNDQ1NS05 OTQwLTRmYjdjNzA0NDMwZi8wLzMxMzAzMzJlMzEzODM1MmUzMjM1MzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzkzNjM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnufwwDQYJ KoZIhvcNAQELBQADggEBAAbGYABmSYCHLIGD97qH7/pNQTNvRbt98+XXNl5vfiXN uNxpFyC5fyxKfvQ+sh0kJpRWSK6rRjXbdtt39q1+yn8p2HZtijmOzZbgwDUZjizq sxbimx7MxCtw7JzHTYQ4C4yATFMTI86bFYHb7+RK7ctp4qEntzE4ECRL2C5ySccU mrOFYyow3OxWeWRVhCOr+y2v6Jve+WlCh5cXA+v+jsE3+XJYmIrGaMFKLikgYw94 ZMAu2kowjm8qEDf0a5ctTufTJoX8tAnF1C4h/a/7M58LB6evjZEc4N0cg7aChTvk QwvhhL19BWSSdCGLAktzBdkbcBLnkF8XgMZWqQCqt5A= -----END CERTIFICATE-----Generated at Sun May 11 12:06:19 2025 by rpki-client