$ rpki-client -vvf repo-rpki.idnic.net/repo/0b9e6da4-dc46-470f-b0e9-16e6e57d479a/0/3130332e3137362e3139382e302f32342d3234203d3e20313437313334.roa File: 3130332e3137362e3139382e302f32342d3234203d3e20313437313334.roa (raw, json) Hash identifier: fmmesiS1WcI4ovgUB3oEnMzQaroROS18Jh1l+/FK5Mw= Subject key identifier: 36:4E:65:49:F5:F5:5D:3F:96:38:28:0F:81:2F:34:E3:58:24:C6:CD Certificate issuer: /CN=1D5FBED26611C99226941DBD91139C594B399F46 Certificate serial: 79591DA07A5E8634440CEC83DC2C9D720985F825 Authority key identifier: 1D:5F:BE:D2:66:11:C9:92:26:94:1D:BD:91:13:9C:59:4B:39:9F:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D5FBED26611C99226941DBD91139C594B399F46.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0b9e6da4-dc46-470f-b0e9-16e6e57d479a/0/3130332e3137362e3139382e302f32342d3234203d3e20313437313334.roa Signing time: Sat 22 Feb 2025 16:00:01 +0000 ROA not before: Sat 22 Feb 2025 15:55:01 +0000 ROA not after: Sat 21 Feb 2026 16:00:01 +0000 asID: 147134 IP address blocks: 103.176.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0b9e6da4-dc46-470f-b0e9-16e6e57d479a/0/1D5FBED26611C99226941DBD91139C594B399F46.crl rsync://repo-rpki.idnic.net/repo/0b9e6da4-dc46-470f-b0e9-16e6e57d479a/0/1D5FBED26611C99226941DBD91139C594B399F46.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D5FBED26611C99226941DBD91139C594B399F46.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 04:37:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:59:1d:a0:7a:5e:86:34:44:0c:ec:83:dc:2c:9d:72:09:85:f8:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D5FBED26611C99226941DBD91139C594B399F46 Validity Not Before: Feb 22 15:55:01 2025 GMT Not After : Feb 21 16:00:01 2026 GMT Subject: CN=364E6549F5F55D3F9638280F812F34E35824C6CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ea:d3:65:8a:a7:ea:1c:ac:4a:bb:f7:e4:6f: 38:7c:95:c0:be:69:38:b1:fc:09:e9:ea:6f:96:e2: 40:83:4f:d8:49:b9:7d:eb:eb:3d:31:c1:53:fa:9e: e6:7e:05:9d:6c:0d:6d:d8:57:94:c1:30:b2:90:49: 69:f0:15:2c:2b:dc:f5:e2:13:41:e2:e3:5e:ed:c5: 44:78:11:14:ce:75:44:52:de:71:34:60:78:53:4b: ab:dd:1f:32:9d:27:c9:3d:20:b4:50:88:5f:2a:4c: 3c:26:73:02:3e:27:89:31:ac:e0:24:83:f7:05:9d: 26:03:ce:ed:96:40:03:a2:55:38:1f:e5:22:0e:8f: b2:0b:12:84:9b:15:5b:60:eb:35:01:1d:92:4a:2a: 97:60:84:06:30:eb:93:2e:7f:22:6b:35:29:1c:ae: f1:06:f8:f5:22:0f:ec:e8:e4:2a:12:d5:23:3a:86: 72:c9:f4:e9:12:e0:48:60:58:32:fe:34:e2:00:e8: c5:d6:ba:af:f5:64:57:d6:1b:47:c6:82:f3:6f:8d: a3:47:ff:01:54:02:8d:11:0a:fa:a2:9f:fc:cd:a6: b3:a7:1c:dd:a6:17:db:95:eb:8b:f2:02:83:db:21: 67:fc:9c:2a:59:0f:db:ed:93:5f:58:c7:f2:a9:bf: fc:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:4E:65:49:F5:F5:5D:3F:96:38:28:0F:81:2F:34:E3:58:24:C6:CD X509v3 Authority Key Identifier: keyid:1D:5F:BE:D2:66:11:C9:92:26:94:1D:BD:91:13:9C:59:4B:39:9F:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0b9e6da4-dc46-470f-b0e9-16e6e57d479a/0/1D5FBED26611C99226941DBD91139C594B399F46.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D5FBED26611C99226941DBD91139C594B399F46.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0b9e6da4-dc46-470f-b0e9-16e6e57d479a/0/3130332e3137362e3139382e302f32342d3234203d3e20313437313334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.198.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:2e:a1:25:aa:72:17:ab:de:e6:19:8b:fb:88:b9:19:22:40: ce:fb:56:3c:a2:d4:6e:fe:1d:0f:ac:c6:59:43:4c:16:03:60: ed:c4:80:bd:f6:80:d8:4d:4e:a7:b6:5d:5e:a6:7c:2b:ec:60: 3e:68:bb:ed:ff:7d:61:55:24:82:fe:c4:ac:07:19:79:4b:97: a0:65:55:c6:61:08:8a:0f:fd:91:3c:a3:11:2c:b0:9f:d6:14: ec:a7:35:cd:dc:1c:3e:d1:e1:9c:82:73:03:82:da:ce:61:53: c7:83:45:d0:97:a6:a1:88:53:88:be:f8:c2:03:31:1b:a5:5e: b8:fc:89:8e:22:4a:14:cd:42:ed:4f:96:5e:f3:a1:b2:26:3f: 8a:06:30:bd:85:a8:7a:a3:17:0c:9d:6b:3d:b6:c6:84:44:4c: 94:35:d9:07:6c:3b:ae:e5:d5:23:a2:38:ab:8b:b4:10:08:4c: 30:f6:bf:b9:ec:56:3c:d2:c4:e9:e2:94:ed:54:8c:fb:4b:43: ec:fa:82:2d:2c:ed:29:ff:2d:84:2f:7c:b6:da:2c:d0:a9:50: 4a:2c:f5:14:11:62:3c:4d:1e:c7:48:4e:f3:94:7c:8f:a4:ee: 4c:6c:25:86:0d:a9:26:be:4e:d3:0e:90:00:ab:5c:cc:87:fb: ca:be:35:09 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeVkdoHpehjREDOyD3CydcgmF+CUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ1RkJFRDI2NjExQzk5MjI2OTQxREJEOTExMzlDNTk0 QjM5OUY0NjAeFw0yNTAyMjIxNTU1MDFaFw0yNjAyMjExNjAwMDFaMDMxMTAvBgNV BAMTKDM2NEU2NTQ5RjVGNTVEM0Y5NjM4MjgwRjgxMkYzNEUzNTgyNEM2Q0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi6tNliqfqHKxKu/fkbzh8lcC+ aTix/Anp6m+W4kCDT9hJuX3r6z0xwVP6nuZ+BZ1sDW3YV5TBMLKQSWnwFSwr3PXi E0Hi417txUR4ERTOdURS3nE0YHhTS6vdHzKdJ8k9ILRQiF8qTDwmcwI+J4kxrOAk g/cFnSYDzu2WQAOiVTgf5SIOj7ILEoSbFVtg6zUBHZJKKpdghAYw65MufyJrNSkc rvEG+PUiD+zo5CoS1SM6hnLJ9OkS4EhgWDL+NOIA6MXWuq/1ZFfWG0fGgvNvjaNH /wFUAo0RCvqin/zNprOnHN2mF9uV64vyAoPbIWf8nCpZD9vtk19Yx/Kpv/zJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUNk5lSfX1XT+WOCgPgS8041gkxs0wHwYDVR0j BBgwFoAUHV++0mYRyZImlB29kROcWUs5n0YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YjllNmRhNC1kYzQ2LTQ3MGYtYjBlOS0xNmU2ZTU3ZDQ3OWEvMC8xRDVGQkVEMjY2 MTFDOTkyMjY5NDFEQkQ5MTEzOUM1OTRCMzk5RjQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUQ1RkJFRDI2NjExQzk5MjI2OTQxREJEOTExMzlDNTk0QjM5 OUY0Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBiOWU2ZGE0LWRjNDYtNDcwZi1i MGU5LTE2ZTZlNTdkNDc5YS8wLzMxMzAzMzJlMzEzNzM2MmUzMTM5MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMTMzMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnsMYwDQYJ KoZIhvcNAQELBQADggEBACsuoSWqcher3uYZi/uIuRkiQM77Vjyi1G7+HQ+sxllD TBYDYO3EgL32gNhNTqe2XV6mfCvsYD5ou+3/fWFVJIL+xKwHGXlLl6BlVcZhCIoP /ZE8oxEssJ/WFOynNc3cHD7R4ZyCcwOC2s5hU8eDRdCXpqGIU4i++MIDMRulXrj8 iY4iShTNQu1Pll7zobImP4oGML2FqHqjFwydaz22xoRETJQ12QdsO67l1SOiOKuL tBAITDD2v7nsVjzSxOnilO1UjPtLQ+z6gi0s7Sn/LYQvfLbaLNCpUEos9RQRYjxN HsdITvOUfI+k7kxsJYYNqSa+TtMOkACrXMyH+8q+NQk= -----END CERTIFICATE-----Generated at Mon Apr 7 09:28:15 2025 by rpki-client