$ rpki-client -vvf repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/3130332e3134302e3130382e302f32332d3233203d3e203538333639.roa File: 3130332e3134302e3130382e302f32332d3233203d3e203538333639.roa (raw, json) Hash identifier: 3sAJshp+EPOwtrV5/4YJuemXpZyIihe64Jp+iK5G1jY= Subject key identifier: AC:A7:22:61:34:86:1A:46:F2:50:0E:89:5A:D4:97:55:90:8F:7B:98 Certificate issuer: /CN=0D5DCD544694BBE8DB99D2D8DAB98314745CD97F Certificate serial: 5B49A7C54A71CB3522462A17401CD1C5F2D928F7 Authority key identifier: 0D:5D:CD:54:46:94:BB:E8:DB:99:D2:D8:DA:B9:83:14:74:5C:D9:7F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/3130332e3134302e3130382e302f32332d3233203d3e203538333639.roa Signing time: Tue 25 Mar 2025 06:03:35 +0000 ROA not before: Tue 25 Mar 2025 05:58:35 +0000 ROA not after: Tue 24 Mar 2026 06:03:35 +0000 asID: 58369 IP address blocks: 103.140.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.crl rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 18:23:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:49:a7:c5:4a:71:cb:35:22:46:2a:17:40:1c:d1:c5:f2:d9:28:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D5DCD544694BBE8DB99D2D8DAB98314745CD97F Validity Not Before: Mar 25 05:58:35 2025 GMT Not After : Mar 24 06:03:35 2026 GMT Subject: CN=ACA7226134861A46F2500E895AD49755908F7B98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:02:9d:0c:68:1f:91:0e:5f:9d:06:4f:19:a8: 92:b1:d7:d8:f0:0e:04:4c:e2:b7:3b:b6:af:df:04: e5:8e:e7:08:56:80:55:8e:7a:78:58:7d:34:42:96: 90:d9:5f:40:f7:b8:14:fd:b2:52:bc:08:ef:c2:71: ed:66:94:d8:86:ec:bf:67:05:4d:dc:67:8b:81:71: c4:1b:fe:03:73:7e:dc:cf:4b:ec:93:47:02:95:22: 6b:33:dc:4e:f1:f0:cb:29:18:b1:89:4b:cb:1e:d6: a6:bc:f9:59:a5:2b:14:4f:c7:92:2d:81:2f:f1:2f: 0e:58:b0:cc:dd:63:88:5d:42:69:b4:ff:6b:a1:97: 6b:a4:47:50:aa:7c:dc:2b:b2:b2:88:27:0c:9c:02: 68:60:b8:fb:03:9b:87:c7:16:53:3c:7c:50:a6:98: f0:fd:cb:05:b0:c0:d4:af:d5:79:bd:18:c5:dc:e7: f6:b7:99:6d:94:cf:1d:9b:aa:2f:ab:d6:f7:cb:bd: fb:e5:49:ee:a9:81:8f:09:74:ce:74:5e:a3:73:3c: 14:09:3c:33:f6:49:00:9d:e4:a5:a1:1d:79:99:50: 07:a0:a9:83:27:08:31:8a:ec:13:c2:39:de:7f:26: d8:2a:82:9e:35:66:ee:f1:4a:7b:8f:de:6a:45:ac: 48:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:A7:22:61:34:86:1A:46:F2:50:0E:89:5A:D4:97:55:90:8F:7B:98 X509v3 Authority Key Identifier: keyid:0D:5D:CD:54:46:94:BB:E8:DB:99:D2:D8:DA:B9:83:14:74:5C:D9:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/3130332e3134302e3130382e302f32332d3233203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.108.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:72:24:2b:85:4a:1d:f6:5b:0b:19:f3:d6:37:30:b0:8e:60: 26:dd:6a:74:ac:b3:01:32:9f:2a:f6:a2:d3:ca:b4:26:7d:c9: e4:3b:32:cf:9d:34:d6:16:4a:c1:46:df:91:b3:01:3c:4b:aa: f5:91:6a:d6:bd:4d:ec:24:cc:e6:e7:b3:3e:30:cb:9b:3e:19: 8b:cf:7c:b5:f1:18:d4:fb:aa:c8:8f:a9:b9:f7:bc:29:9d:fb: 3d:41:e7:7e:db:7b:0b:9e:7d:fb:fc:84:09:0f:a1:87:61:0b: ee:c2:73:7a:7e:21:47:e4:5b:98:d1:57:31:98:d5:7a:0e:86: 6f:9c:d2:58:86:20:a8:b8:05:76:f2:a5:15:87:37:75:87:b2: 2a:1b:5c:4e:1b:69:a6:a8:9a:e8:95:16:0a:6e:d8:c7:bd:b9: cc:dc:5c:b4:06:4c:1e:d4:8a:dd:88:df:5b:f1:c8:58:31:e6: 0d:2d:f5:20:d9:71:e1:4e:36:34:f5:50:c8:50:30:41:53:65: 76:bb:39:8e:0d:58:4e:93:5b:1d:4b:c1:84:47:5a:97:e6:81: 83:da:3d:71:79:6a:15:1d:90:78:54:8c:eb:dc:19:a3:2f:c8: 50:f9:de:d4:0f:97:53:9f:35:71:9c:e0:5d:d6:d8:33:89:77: 31:fe:f7:c5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUW0mnxUpxyzUiRioXQBzRxfLZKPcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEQ1RENENTQ0Njk0QkJFOERCOTlEMkQ4REFCOTgzMTQ3 NDVDRDk3RjAeFw0yNTAzMjUwNTU4MzVaFw0yNjAzMjQwNjAzMzVaMDMxMTAvBgNV BAMTKEFDQTcyMjYxMzQ4NjFBNDZGMjUwMEU4OTVBRDQ5NzU1OTA4RjdCOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyAp0MaB+RDl+dBk8ZqJKx19jw DgRM4rc7tq/fBOWO5whWgFWOenhYfTRClpDZX0D3uBT9slK8CO/Cce1mlNiG7L9n BU3cZ4uBccQb/gNzftzPS+yTRwKVImsz3E7x8MspGLGJS8se1qa8+VmlKxRPx5It gS/xLw5YsMzdY4hdQmm0/2uhl2ukR1CqfNwrsrKIJwycAmhguPsDm4fHFlM8fFCm mPD9ywWwwNSv1Xm9GMXc5/a3mW2Uzx2bqi+r1vfLvfvlSe6pgY8JdM50XqNzPBQJ PDP2SQCd5KWhHXmZUAegqYMnCDGK7BPCOd5/Jtgqgp41Zu7xSnuP3mpFrEhRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrKciYTSGGkbyUA6JWtSXVZCPe5gwHwYDVR0j BBgwFoAUDV3NVEaUu+jbmdLY2rmDFHRc2X8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YTRhMjFiOS1mOTEyLTQxZjMtYjYyYy0xMjE3NTgxYzk0OGEvMC8wRDVEQ0Q1NDQ2 OTRCQkU4REI5OUQyRDhEQUI5ODMxNDc0NUNEOTdGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEQ1RENENTQ0Njk0QkJFOERCOTlEMkQ4REFCOTgzMTQ3NDVD RDk3Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhNGEyMWI5LWY5MTItNDFmMy1i NjJjLTEyMTc1ODFjOTQ4YS8wLzMxMzAzMzJlMzEzNDMwMmUzMTMwMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4xsMA0GCSqG SIb3DQEBCwUAA4IBAQBsciQrhUod9lsLGfPWNzCwjmAm3Wp0rLMBMp8q9qLTyrQm fcnkOzLPnTTWFkrBRt+RswE8S6r1kWrWvU3sJMzm57M+MMubPhmLz3y18RjU+6rI j6m597wpnfs9Qed+23sLnn37/IQJD6GHYQvuwnN6fiFH5FuY0VcxmNV6DoZvnNJY hiCouAV28qUVhzd1h7IqG1xOG2mmqJrolRYKbtjHvbnM3Fy0Bkwe1IrdiN9b8chY MeYNLfUg2XHhTjY09VDIUDBBU2V2uzmODVhOk1sdS8GER1qX5oGD2j1xeWoVHZB4 VIzr3BmjL8hQ+d7UD5dTnzVxnOBd1tgziXcx/vfF -----END CERTIFICATE-----Generated at Sun Apr 6 08:28:16 2025 by rpki-client