$ rpki-client -vvf repo-rpki.idnic.net/repo/876fdc60-8023-40cd-aaa4-cd6ed22c4d45/0/3130332e3138312e3133362e302f32342d3234203d3e2039333431.roa File: 3130332e3138312e3133362e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: b3wEoQmduATe2XsB1+5lzcIjLJ7k0E7+xb68g1ewVFQ= Subject key identifier: BE:46:18:47:60:5B:DF:CB:E7:F8:07:74:26:4D:46:2C:23:21:23:6E Certificate issuer: /CN=6437999FD06F2C7F0F16F8160CD6145F775884A4 Certificate serial: 0E19D0B5DA1DACD1C5A214D2EA820D556DB2D46B Authority key identifier: 64:37:99:9F:D0:6F:2C:7F:0F:16:F8:16:0C:D6:14:5F:77:58:84:A4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6437999FD06F2C7F0F16F8160CD6145F775884A4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/876fdc60-8023-40cd-aaa4-cd6ed22c4d45/0/3130332e3138312e3133362e302f32342d3234203d3e2039333431.roa Signing time: Wed 11 Dec 2024 19:02:09 +0000 ROA not before: Wed 11 Dec 2024 18:57:09 +0000 ROA not after: Wed 10 Dec 2025 19:02:09 +0000 asID: 9341 IP address blocks: 103.181.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/876fdc60-8023-40cd-aaa4-cd6ed22c4d45/0/6437999FD06F2C7F0F16F8160CD6145F775884A4.crl rsync://repo-rpki.idnic.net/repo/876fdc60-8023-40cd-aaa4-cd6ed22c4d45/0/6437999FD06F2C7F0F16F8160CD6145F775884A4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6437999FD06F2C7F0F16F8160CD6145F775884A4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:19:d0:b5:da:1d:ac:d1:c5:a2:14:d2:ea:82:0d:55:6d:b2:d4:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6437999FD06F2C7F0F16F8160CD6145F775884A4 Validity Not Before: Dec 11 18:57:09 2024 GMT Not After : Dec 10 19:02:09 2025 GMT Subject: CN=BE461847605BDFCBE7F80774264D462C2321236E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:90:cc:8f:47:92:dd:cb:d8:f5:f6:6a:ba:92: fa:4a:95:ff:79:63:09:fa:e3:30:f3:ac:24:77:08: 53:f2:3c:63:f6:f3:5b:f3:c3:54:62:88:af:0a:28: 8c:25:4f:9d:b1:e3:47:d0:96:2e:2b:6c:e0:8d:35: 4c:11:a4:05:5d:6c:23:fd:d0:6c:11:52:f2:00:ae: 4d:1b:21:8e:b0:ca:32:ae:14:51:de:0d:bb:b4:5b: 0c:f1:a0:2e:3f:34:4c:d2:25:df:3f:d9:d9:62:c8: 8b:cb:08:06:cb:07:e4:95:1a:f0:93:cc:1b:62:cc: c7:d0:aa:90:9d:de:92:24:66:2b:a2:55:e2:35:1d: f7:81:8a:f7:3a:c1:a4:1f:63:fd:8c:af:4c:c2:9c: d4:1b:99:1e:aa:69:6d:0a:d3:35:df:3e:10:7f:3b: 7a:02:3a:63:fc:e1:de:3e:9b:39:93:08:e7:49:b7: ef:8c:0d:e7:18:14:c2:de:cd:4c:07:d6:8b:4e:fd: a7:69:2e:71:1b:23:64:35:73:48:2a:20:88:d4:f8: be:5c:98:fb:87:64:5b:9a:99:d7:2f:89:b7:e1:42: d5:6f:a5:fb:6d:e7:0a:34:d2:13:8f:e3:e5:a4:64: c8:84:d1:f9:3c:a7:12:53:94:6a:35:a4:b9:9f:d0: 92:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:46:18:47:60:5B:DF:CB:E7:F8:07:74:26:4D:46:2C:23:21:23:6E X509v3 Authority Key Identifier: keyid:64:37:99:9F:D0:6F:2C:7F:0F:16:F8:16:0C:D6:14:5F:77:58:84:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/876fdc60-8023-40cd-aaa4-cd6ed22c4d45/0/6437999FD06F2C7F0F16F8160CD6145F775884A4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6437999FD06F2C7F0F16F8160CD6145F775884A4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/876fdc60-8023-40cd-aaa4-cd6ed22c4d45/0/3130332e3138312e3133362e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.181.136.0/24 Signature Algorithm: sha256WithRSAEncryption 64:72:b8:a9:9b:78:a7:ba:b8:62:28:5f:9b:48:4e:df:10:5e: e3:39:1a:3d:d7:ea:63:35:9d:47:f9:df:21:71:60:7d:8f:31: 22:c5:56:ad:a7:9b:89:be:cf:e4:ae:25:06:2a:2d:f3:da:6f: 6c:01:3b:0d:3f:af:6e:da:a8:0f:85:13:9d:78:03:98:66:e2: d5:4f:53:20:08:8d:05:90:e0:4b:0f:f6:11:9d:f5:bf:6e:11: 38:b4:3c:33:51:a8:43:b5:42:bc:e7:33:39:cd:b2:05:67:cb: b7:2c:ee:90:27:1f:5c:40:cf:f8:a7:f2:80:82:ef:b2:a5:04: 84:0e:4b:d6:32:46:53:1a:b9:33:9c:c6:8d:1f:89:3c:c0:56: 0c:f4:5d:3e:0a:a5:cc:68:23:c7:a6:a5:a4:3b:03:6c:c1:d9: 59:4d:4d:94:a0:95:9f:59:22:f0:c7:7e:b0:80:64:98:e5:7c: cc:49:e1:63:db:8e:14:cc:5d:67:ff:3e:a8:2f:f9:5f:fa:55: f5:ba:99:50:8b:6b:5c:6d:d5:90:c0:3e:74:0d:0f:cb:8f:ae: 47:95:f4:3f:04:06:59:aa:a5:9b:81:06:2d:e0:83:0f:61:22: ec:2e:03:dc:3a:8c:e4:84:97:2b:6a:14:d4:3c:81:02:fb:d2: 9f:0d:d7:88 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDhnQtdodrNHFohTS6oINVW2y1GswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjQzNzk5OUZEMDZGMkM3RjBGMTZGODE2MENENjE0NUY3 NzU4ODRBNDAeFw0yNDEyMTExODU3MDlaFw0yNTEyMTAxOTAyMDlaMDMxMTAvBgNV BAMTKEJFNDYxODQ3NjA1QkRGQ0JFN0Y4MDc3NDI2NEQ0NjJDMjMyMTIzNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDkMyPR5Ldy9j19mq6kvpKlf95 Ywn64zDzrCR3CFPyPGP281vzw1RiiK8KKIwlT52x40fQli4rbOCNNUwRpAVdbCP9 0GwRUvIArk0bIY6wyjKuFFHeDbu0WwzxoC4/NEzSJd8/2dliyIvLCAbLB+SVGvCT zBtizMfQqpCd3pIkZiuiVeI1HfeBivc6waQfY/2Mr0zCnNQbmR6qaW0K0zXfPhB/ O3oCOmP84d4+mzmTCOdJt++MDecYFMLezUwH1otO/adpLnEbI2Q1c0gqIIjU+L5c mPuHZFuamdcvibfhQtVvpftt5wo00hOP4+WkZMiE0fk8pxJTlGo1pLmf0JInAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUvkYYR2Bb38vn+Ad0Jk1GLCMhI24wHwYDVR0j BBgwFoAUZDeZn9BvLH8PFvgWDNYUX3dYhKQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NzZmZGM2MC04MDIzLTQwY2QtYWFhNC1jZDZlZDIyYzRkNDUvMC82NDM3OTk5RkQw NkYyQzdGMEYxNkY4MTYwQ0Q2MTQ1Rjc3NTg4NEE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjQzNzk5OUZEMDZGMkM3RjBGMTZGODE2MENENjE0NUY3NzU4 ODRBNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3NmZkYzYwLTgwMjMtNDBjZC1h YWE0LWNkNmVkMjJjNGQ0NS8wLzMxMzAzMzJlMzEzODMxMmUzMTMzMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGe1iDANBgkqhkiG 9w0BAQsFAAOCAQEAZHK4qZt4p7q4Yihfm0hO3xBe4zkaPdfqYzWdR/nfIXFgfY8x IsVWraebib7P5K4lBiot89pvbAE7DT+vbtqoD4UTnXgDmGbi1U9TIAiNBZDgSw/2 EZ31v24ROLQ8M1GoQ7VCvOczOc2yBWfLtyzukCcfXEDP+KfygILvsqUEhA5L1jJG Uxq5M5zGjR+JPMBWDPRdPgqlzGgjx6alpDsDbMHZWU1NlKCVn1ki8Md+sIBkmOV8 zEnhY9uOFMxdZ/8+qC/5X/pV9bqZUItrXG3VkMA+dA0Py4+uR5X0PwQGWaqlm4EG LeCDD2Ei7C4D3DqM5ISXK2oU1DyBAvvSnw3XiA== -----END CERTIFICATE-----Generated at Sat Apr 5 16:39:29 2025 by rpki-client