$ rpki-client -vvf repo-rpki.idnic.net/repo/9e30ac64-0f13-4162-968f-afe5cc714cf6/0/3130332e3138392e3136362e302f32332d3233203d3e20313439383835.roa File: 3130332e3138392e3136362e302f32332d3233203d3e20313439383835.roa (raw, json) Hash identifier: 6LXlbR4cNb7e/a5cj5XOa29IvaWvdwclgoGKyPVr99g= Subject key identifier: DF:03:53:FA:06:E6:89:94:5D:5E:5B:1A:51:24:CA:70:DC:81:25:B8 Certificate issuer: /CN=27C6A8841764185192D3B7E3FC6D1ABD2D137D51 Certificate serial: 397A5D8299B9CF5143CAA41328A598E2182224CD Authority key identifier: 27:C6:A8:84:17:64:18:51:92:D3:B7:E3:FC:6D:1A:BD:2D:13:7D:51 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27C6A8841764185192D3B7E3FC6D1ABD2D137D51.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9e30ac64-0f13-4162-968f-afe5cc714cf6/0/3130332e3138392e3136362e302f32332d3233203d3e20313439383835.roa Signing time: Fri 11 Apr 2025 03:00:02 +0000 ROA not before: Fri 11 Apr 2025 02:55:02 +0000 ROA not after: Fri 10 Apr 2026 03:00:02 +0000 asID: 149885 IP address blocks: 103.189.166.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9e30ac64-0f13-4162-968f-afe5cc714cf6/0/27C6A8841764185192D3B7E3FC6D1ABD2D137D51.crl rsync://repo-rpki.idnic.net/repo/9e30ac64-0f13-4162-968f-afe5cc714cf6/0/27C6A8841764185192D3B7E3FC6D1ABD2D137D51.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27C6A8841764185192D3B7E3FC6D1ABD2D137D51.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 10:42:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:7a:5d:82:99:b9:cf:51:43:ca:a4:13:28:a5:98:e2:18:22:24:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27C6A8841764185192D3B7E3FC6D1ABD2D137D51 Validity Not Before: Apr 11 02:55:02 2025 GMT Not After : Apr 10 03:00:02 2026 GMT Subject: CN=DF0353FA06E689945D5E5B1A5124CA70DC8125B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ac:fc:cf:47:c2:82:31:59:48:e3:cb:a2:2d: e1:aa:12:15:8a:30:2c:46:c8:16:f2:50:a5:89:02: 9d:8f:1a:a6:99:45:3d:aa:5a:39:78:b0:0e:b1:78: cb:c9:bd:ac:47:36:89:1a:03:fe:ba:e8:2b:2d:04: aa:40:7e:58:2a:80:a4:38:40:36:7e:b3:1b:9a:6e: 9c:68:26:da:ee:3e:3f:eb:aa:f9:cf:d2:42:e6:66: 36:52:15:90:ab:5f:d8:8f:bb:a1:87:b1:6a:f5:16: 3f:f6:ef:db:93:9a:72:c2:34:2d:2c:86:cb:97:74: 50:27:86:81:f5:b5:33:11:23:01:6c:64:df:6d:07: a9:13:15:34:31:73:0d:48:58:dc:f0:49:b5:c0:24: b3:42:cd:e6:51:5b:6a:2a:84:1f:b0:89:02:7d:fd: e7:28:16:67:0d:8c:d5:b3:de:27:c2:ac:3e:08:7f: e7:b8:9f:72:c5:ad:1a:e4:05:57:5b:05:63:86:94: 45:41:a7:15:ed:78:b2:01:b6:e6:97:80:dc:cf:d1: eb:83:20:fc:65:75:2e:6c:8c:b8:60:40:3c:96:d2: 3e:52:4d:33:ac:63:04:b1:ce:30:6e:12:22:62:89: cc:08:b6:9e:47:92:47:0b:dd:89:5b:c6:ca:70:f6: ef:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:03:53:FA:06:E6:89:94:5D:5E:5B:1A:51:24:CA:70:DC:81:25:B8 X509v3 Authority Key Identifier: keyid:27:C6:A8:84:17:64:18:51:92:D3:B7:E3:FC:6D:1A:BD:2D:13:7D:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9e30ac64-0f13-4162-968f-afe5cc714cf6/0/27C6A8841764185192D3B7E3FC6D1ABD2D137D51.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27C6A8841764185192D3B7E3FC6D1ABD2D137D51.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9e30ac64-0f13-4162-968f-afe5cc714cf6/0/3130332e3138392e3136362e302f32332d3233203d3e20313439383835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.166.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:2e:48:c9:82:dd:d6:9a:45:d9:32:c9:26:5a:58:3c:57:44: 34:17:5d:65:82:02:e4:4b:ea:79:67:78:82:00:23:e9:d0:29: f7:f3:4a:3d:c0:3f:d9:5f:35:44:19:b7:14:64:58:58:1b:ee: 10:b8:ab:4a:f7:9b:86:0a:35:b5:5c:6f:3e:5f:92:ab:f5:0c: 53:6d:4e:d6:14:f2:d8:d7:b8:e8:cd:02:b5:1e:6f:0f:eb:f6: 5e:4b:8f:73:63:1a:40:78:1c:71:44:29:57:60:fc:48:d2:30: 00:43:4d:a4:89:fb:b0:58:46:d3:f0:33:2b:42:8f:3c:4c:40: 45:9d:21:c9:61:eb:a1:1f:84:72:fd:2d:93:53:48:16:21:35: 5b:cc:3f:4e:ad:b9:b6:df:bd:82:20:b1:f3:c6:d7:f7:45:cb: 97:c3:52:d1:4f:c5:fc:0e:c2:90:cd:f2:f5:0e:f7:14:87:7a: 7a:df:91:79:19:c8:1b:07:41:4f:a3:e7:56:4d:af:5c:a4:e0: 1e:98:cc:74:10:e0:dd:f4:00:85:3e:cd:40:c9:1f:21:e4:de: 08:ae:f1:38:5d:52:44:dc:c1:de:65:2f:0d:d1:05:17:08:08: f1:1b:6c:ad:35:da:1b:8c:f2:97:2c:e0:01:43:45:88:b0:73: 2b:b6:92:38 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOXpdgpm5z1FDyqQTKKWY4hgiJM0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjdDNkE4ODQxNzY0MTg1MTkyRDNCN0UzRkM2RDFBQkQy RDEzN0Q1MTAeFw0yNTA0MTEwMjU1MDJaFw0yNjA0MTAwMzAwMDJaMDMxMTAvBgNV BAMTKERGMDM1M0ZBMDZFNjg5OTQ1RDVFNUIxQTUxMjRDQTcwREM4MTI1QjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGrPzPR8KCMVlI48uiLeGqEhWK MCxGyBbyUKWJAp2PGqaZRT2qWjl4sA6xeMvJvaxHNokaA/666CstBKpAflgqgKQ4 QDZ+sxuabpxoJtruPj/rqvnP0kLmZjZSFZCrX9iPu6GHsWr1Fj/279uTmnLCNC0s hsuXdFAnhoH1tTMRIwFsZN9tB6kTFTQxcw1IWNzwSbXAJLNCzeZRW2oqhB+wiQJ9 /ecoFmcNjNWz3ifCrD4If+e4n3LFrRrkBVdbBWOGlEVBpxXteLIBtuaXgNzP0euD IPxldS5sjLhgQDyW0j5STTOsYwSxzjBuEiJiicwItp5HkkcL3Ylbxspw9u/7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU3wNT+gbmiZRdXlsaUSTKcNyBJbgwHwYDVR0j BBgwFoAUJ8aohBdkGFGS07fj/G0avS0TfVEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZTMwYWM2NC0wZjEzLTQxNjItOTY4Zi1hZmU1Y2M3MTRjZjYvMC8yN0M2QTg4NDE3 NjQxODUxOTJEM0I3RTNGQzZEMUFCRDJEMTM3RDUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjdDNkE4ODQxNzY0MTg1MTkyRDNCN0UzRkM2RDFBQkQyRDEz N0Q1MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzllMzBhYzY0LTBmMTMtNDE2Mi05 NjhmLWFmZTVjYzcxNGNmNi8wLzMxMzAzMzJlMzEzODM5MmUzMTM2MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzkzODM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnvaYwDQYJ KoZIhvcNAQELBQADggEBAF8uSMmC3daaRdkyySZaWDxXRDQXXWWCAuRL6nlneIIA I+nQKffzSj3AP9lfNUQZtxRkWFgb7hC4q0r3m4YKNbVcbz5fkqv1DFNtTtYU8tjX uOjNArUebw/r9l5Lj3NjGkB4HHFEKVdg/EjSMABDTaSJ+7BYRtPwMytCjzxMQEWd Iclh66EfhHL9LZNTSBYhNVvMP06tubbfvYIgsfPG1/dFy5fDUtFPxfwOwpDN8vUO 9xSHenrfkXkZyBsHQU+j51ZNr1yk4B6YzHQQ4N30AIU+zUDJHyHk3giu8ThdUkTc wd5lLw3RBRcICPEbbK012huM8pcs4AFDRYiwcyu2kjg= -----END CERTIFICATE-----Generated at Thu Apr 24 11:25:12 2025 by rpki-client on console.sobornost.net