$ rpki-client -vvf repo-rpki.idnic.net/repo/73f75088-088e-41c0-bfce-edc69beafd4a/0/3130332e3138302e3139342e302f32332d3233203d3e2039333431.roa File: 3130332e3138302e3139342e302f32332d3233203d3e2039333431.roa (raw, json) Hash identifier: T5Fz3OXAuav/iqbItkD85kgf8QFMTkSpBn4rOH0yfRc= Subject key identifier: B6:29:BF:C5:56:17:E3:B6:F2:B5:F8:FB:9A:DF:B1:04:42:26:DC:55 Certificate issuer: /CN=FED49ABCDA1C9D097F52AD26D8001C0C36632C89 Certificate serial: 2FAF9D5D62649F5E6D3173CB98853E8CE7F70219 Authority key identifier: FE:D4:9A:BC:DA:1C:9D:09:7F:52:AD:26:D8:00:1C:0C:36:63:2C:89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED49ABCDA1C9D097F52AD26D8001C0C36632C89.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f75088-088e-41c0-bfce-edc69beafd4a/0/3130332e3138302e3139342e302f32332d3233203d3e2039333431.roa Signing time: Mon 20 Jan 2025 09:00:01 +0000 ROA not before: Mon 20 Jan 2025 08:55:01 +0000 ROA not after: Mon 19 Jan 2026 09:00:01 +0000 asID: 9341 IP address blocks: 103.180.194.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f75088-088e-41c0-bfce-edc69beafd4a/0/FED49ABCDA1C9D097F52AD26D8001C0C36632C89.crl rsync://repo-rpki.idnic.net/repo/73f75088-088e-41c0-bfce-edc69beafd4a/0/FED49ABCDA1C9D097F52AD26D8001C0C36632C89.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED49ABCDA1C9D097F52AD26D8001C0C36632C89.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 00:15:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:af:9d:5d:62:64:9f:5e:6d:31:73:cb:98:85:3e:8c:e7:f7:02:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FED49ABCDA1C9D097F52AD26D8001C0C36632C89 Validity Not Before: Jan 20 08:55:01 2025 GMT Not After : Jan 19 09:00:01 2026 GMT Subject: CN=B629BFC55617E3B6F2B5F8FB9ADFB1044226DC55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:1f:34:c6:cf:5e:70:c1:0f:e2:65:de:dc:e5: 5f:48:8c:6c:01:5f:b4:8c:d7:ec:f0:9a:85:78:42: b6:fc:94:14:8a:ea:44:7a:66:b2:c4:b2:53:b6:0b: 84:58:b5:74:cc:f5:24:4b:df:51:00:b0:69:03:ee: 3a:3d:1c:4c:0c:b6:50:b7:1d:ed:3b:db:9d:bd:79: 1d:c5:fa:64:6e:d3:b6:ce:28:6f:48:7d:48:b2:57: b7:67:cb:ce:81:0c:af:bd:81:ac:91:3d:e1:38:65: e3:02:49:55:c1:8b:7c:ea:2f:cc:93:17:2d:db:3b: 3d:35:b3:25:fa:ba:4c:7c:39:ea:8a:ca:f1:b0:d8: 1d:f5:d4:d0:32:64:8c:c2:7e:25:d0:a5:37:8c:6a: bf:d5:aa:fb:a9:7c:8a:35:9d:76:48:02:d6:05:ae: da:4a:3f:cc:91:0d:64:36:16:90:f5:a3:8c:2d:e8: 59:6b:90:6e:94:ca:8a:92:21:fa:9b:c5:d5:46:66: dc:98:8a:3f:87:35:88:f1:a0:44:01:e6:4b:02:35: 3f:a6:ed:91:be:83:6f:c1:e9:36:cd:51:b1:66:bb: 5f:3c:a6:7a:8b:76:17:75:fb:d3:d3:8b:e0:df:8e: 0c:b6:8b:71:4e:35:48:73:30:95:1f:a7:b4:c5:62: 16:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:29:BF:C5:56:17:E3:B6:F2:B5:F8:FB:9A:DF:B1:04:42:26:DC:55 X509v3 Authority Key Identifier: keyid:FE:D4:9A:BC:DA:1C:9D:09:7F:52:AD:26:D8:00:1C:0C:36:63:2C:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f75088-088e-41c0-bfce-edc69beafd4a/0/FED49ABCDA1C9D097F52AD26D8001C0C36632C89.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FED49ABCDA1C9D097F52AD26D8001C0C36632C89.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f75088-088e-41c0-bfce-edc69beafd4a/0/3130332e3138302e3139342e302f32332d3233203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.180.194.0/23 Signature Algorithm: sha256WithRSAEncryption 50:84:37:d9:d7:61:d6:12:3b:21:51:7b:36:5b:d7:8a:ba:88: f8:9f:8e:e4:02:7e:17:f1:0a:5e:1b:80:70:dc:88:b0:3a:7f: 69:3b:5f:9b:d7:59:87:ce:16:b8:51:d1:fa:fa:ef:ae:28:42: 93:dd:eb:fd:00:d5:35:12:d7:5f:41:ce:ef:32:c6:6b:50:4c: 24:96:84:1e:b8:9d:fb:e7:8e:aa:94:93:3f:fd:34:64:23:d0: 98:3e:9c:12:6f:6d:2f:af:fe:8b:d8:f6:c7:af:11:ae:2f:8b: 8a:a2:2a:6a:8f:e0:69:ce:98:38:89:35:1a:67:91:a8:0e:8b: ce:56:c4:89:29:2e:18:44:bd:da:e8:8f:32:56:7f:c8:2c:42: dc:01:0f:b7:c9:08:aa:aa:51:57:9d:59:b8:8b:1b:7e:54:8b: be:0e:64:67:88:9f:15:40:5e:af:ca:b0:60:7c:8c:62:c0:84: 10:ad:2f:e9:42:ad:8a:de:fa:fe:cb:3c:f8:e0:80:21:7f:0c: 39:ab:9b:e3:a5:79:b9:48:b7:48:5f:cb:fa:79:8c:23:15:9f: 24:1b:15:b6:c7:8e:62:da:ff:6e:f4:4e:0d:b1:ba:12:bd:bb: 38:3c:28:58:e9:f4:b7:49:c3:cc:d0:89:a3:08:ed:3f:35:ec: df:e3:da:37 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUL6+dXWJkn15tMXPLmIU+jOf3AhkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkVENDlBQkNEQTFDOUQwOTdGNTJBRDI2RDgwMDFDMEMz NjYzMkM4OTAeFw0yNTAxMjAwODU1MDFaFw0yNjAxMTkwOTAwMDFaMDMxMTAvBgNV BAMTKEI2MjlCRkM1NTYxN0UzQjZGMkI1RjhGQjlBREZCMTA0NDIyNkRDNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOHzTGz15wwQ/iZd7c5V9IjGwB X7SM1+zwmoV4Qrb8lBSK6kR6ZrLEslO2C4RYtXTM9SRL31EAsGkD7jo9HEwMtlC3 He072529eR3F+mRu07bOKG9IfUiyV7dny86BDK+9gayRPeE4ZeMCSVXBi3zqL8yT Fy3bOz01syX6ukx8OeqKyvGw2B311NAyZIzCfiXQpTeMar/VqvupfIo1nXZIAtYF rtpKP8yRDWQ2FpD1o4wt6FlrkG6UyoqSIfqbxdVGZtyYij+HNYjxoEQB5ksCNT+m 7ZG+g2/B6TbNUbFmu188pnqLdhd1+9PTi+Dfjgy2i3FONUhzMJUfp7TFYhY1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUtim/xVYX47bytfj7mt+xBEIm3FUwHwYDVR0j BBgwFoAU/tSavNocnQl/Uq0m2AAcDDZjLIkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y3NTA4OC0wODhlLTQxYzAtYmZjZS1lZGM2OWJlYWZkNGEvMC9GRUQ0OUFCQ0RB MUM5RDA5N0Y1MkFEMjZEODAwMUMwQzM2NjMyQzg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkVENDlBQkNEQTFDOUQwOTdGNTJBRDI2RDgwMDFDMEMzNjYz MkM4OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjc1MDg4LTA4OGUtNDFjMC1i ZmNlLWVkYzY5YmVhZmQ0YS8wLzMxMzAzMzJlMzEzODMwMmUzMTM5MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWe0wjANBgkqhkiG 9w0BAQsFAAOCAQEAUIQ32ddh1hI7IVF7NlvXirqI+J+O5AJ+F/EKXhuAcNyIsDp/ aTtfm9dZh84WuFHR+vrvrihCk93r/QDVNRLXX0HO7zLGa1BMJJaEHrid++eOqpST P/00ZCPQmD6cEm9tL6/+i9j2x68Rri+LiqIqao/gac6YOIk1GmeRqA6LzlbEiSku GES92uiPMlZ/yCxC3AEPt8kIqqpRV51ZuIsbflSLvg5kZ4ifFUBer8qwYHyMYsCE EK0v6UKtit76/ss8+OCAIX8MOaub46V5uUi3SF/L+nmMIxWfJBsVtseOYtr/bvRO DbG6Er27ODwoWOn0t0nDzNCJowjtPzXs3+PaNw== -----END CERTIFICATE-----Generated at Sat Apr 5 16:42:31 2025 by rpki-client