$ rpki-client -vvf repo-rpki.idnic.net/repo/0e330876-7e68-4707-a53d-92bbfdb2f23c/0/3130332e38392e3234322e302f32342d3234203d3e20313530393133.roa File: 3130332e38392e3234322e302f32342d3234203d3e20313530393133.roa (raw, json) Hash identifier: Wq0HxmVMzepldSWl2tLo0jkVOCM3LQ2XSCQDbU6pmew= Subject key identifier: BE:50:F7:84:57:F0:C7:17:EB:5C:D5:2C:39:17:01:4D:2F:67:0B:7C Certificate issuer: /CN=E377371E82C6C53C7A5796B49B085190AFB64B4C Certificate serial: 046918621D173605563344A93AB4C80849024CBF Authority key identifier: E3:77:37:1E:82:C6:C5:3C:7A:57:96:B4:9B:08:51:90:AF:B6:4B:4C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E377371E82C6C53C7A5796B49B085190AFB64B4C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0e330876-7e68-4707-a53d-92bbfdb2f23c/0/3130332e38392e3234322e302f32342d3234203d3e20313530393133.roa Signing time: Mon 13 Jan 2025 03:00:00 +0000 ROA not before: Mon 13 Jan 2025 02:55:00 +0000 ROA not after: Mon 12 Jan 2026 03:00:00 +0000 asID: 150913 IP address blocks: 103.89.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0e330876-7e68-4707-a53d-92bbfdb2f23c/0/E377371E82C6C53C7A5796B49B085190AFB64B4C.crl rsync://repo-rpki.idnic.net/repo/0e330876-7e68-4707-a53d-92bbfdb2f23c/0/E377371E82C6C53C7A5796B49B085190AFB64B4C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E377371E82C6C53C7A5796B49B085190AFB64B4C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 09:10:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:69:18:62:1d:17:36:05:56:33:44:a9:3a:b4:c8:08:49:02:4c:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E377371E82C6C53C7A5796B49B085190AFB64B4C Validity Not Before: Jan 13 02:55:00 2025 GMT Not After : Jan 12 03:00:00 2026 GMT Subject: CN=BE50F78457F0C717EB5CD52C3917014D2F670B7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:56:ef:bf:71:a9:cf:69:bc:88:09:3a:75:15: fa:39:51:8b:14:05:57:7e:b3:e2:85:9c:1f:33:e7: a6:61:1c:36:08:39:a2:0f:18:d4:b1:56:2f:c3:d1: 00:6e:3b:90:67:5f:9c:ce:70:d0:b7:ce:89:67:25: 40:fd:aa:b8:11:84:40:3e:a1:ee:05:16:00:f6:4c: 08:ed:02:c9:e0:b2:f7:c7:5e:36:1f:1b:0f:64:3e: b8:e9:7b:08:25:18:f8:0f:43:23:28:7a:92:ad:b3: 9a:42:da:97:20:db:41:b3:ed:7a:a2:4c:0e:b9:6e: de:11:54:40:d5:6d:9c:ff:5c:dc:25:ab:17:7d:d0: 6f:1a:7b:b0:7f:d1:84:ca:de:d1:78:9d:56:a0:75: 92:79:a6:29:45:d0:e1:0d:46:c6:ee:f1:82:70:a2: 5c:a1:b3:be:51:77:3a:da:b8:37:1b:42:37:cc:f5: fd:99:50:ce:71:83:d3:af:02:6f:7f:50:2e:19:3b: 73:2f:15:c1:6b:1e:4e:ee:12:39:75:3c:09:32:37: 5e:96:36:00:b4:1c:23:de:73:60:09:35:70:31:59: e6:94:14:22:d2:2b:2c:ed:d1:93:ea:0b:f6:2a:bc: 6c:53:c4:d4:cc:0b:a9:50:08:8c:cf:62:d4:87:ce: 3a:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:50:F7:84:57:F0:C7:17:EB:5C:D5:2C:39:17:01:4D:2F:67:0B:7C X509v3 Authority Key Identifier: keyid:E3:77:37:1E:82:C6:C5:3C:7A:57:96:B4:9B:08:51:90:AF:B6:4B:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0e330876-7e68-4707-a53d-92bbfdb2f23c/0/E377371E82C6C53C7A5796B49B085190AFB64B4C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E377371E82C6C53C7A5796B49B085190AFB64B4C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0e330876-7e68-4707-a53d-92bbfdb2f23c/0/3130332e38392e3234322e302f32342d3234203d3e20313530393133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.89.242.0/24 Signature Algorithm: sha256WithRSAEncryption ce:d1:a0:47:27:b8:63:11:49:bd:73:a9:6f:d6:9f:93:0d:c1: 54:df:9a:f7:ee:95:3b:e5:bd:17:e1:b7:3e:3d:b9:0a:9f:56: d2:29:f0:93:1e:7f:2c:3f:e0:0c:ec:1d:c1:e8:da:98:05:1e: ac:c9:30:6e:51:6a:f8:47:41:1f:3b:f4:eb:bf:6c:10:31:74: c3:7e:b4:3a:a0:ec:39:83:9e:97:3b:2e:59:a8:e1:83:7c:1a: 7c:ee:7c:2c:03:7a:70:f3:df:d0:13:b9:bc:e5:21:e9:3d:ff: a5:48:27:a0:db:46:d3:9d:3d:3b:83:de:0b:68:52:cf:57:b6: 59:9c:6e:9b:2a:ee:f9:f3:f8:d3:2f:1f:5e:52:4d:eb:61:5d: 40:25:94:ba:a7:c7:80:62:d2:b4:fc:68:6a:8d:33:5a:2f:a9: 0a:7d:3b:12:6c:23:6c:fb:b6:ad:58:ef:d0:7e:7b:ca:76:08: 34:23:0d:0a:99:c7:4a:c3:06:a2:f9:84:ad:a5:20:20:ca:27: 36:65:d3:f5:0d:2c:9b:61:e7:09:06:f0:1b:73:c5:d5:9e:a9: f0:bd:0e:98:1a:55:3a:f7:e2:80:72:e1:4a:b2:47:c6:11:ea: 43:2f:86:86:8c:b4:5f:1e:ea:ea:3f:b4:83:46:17:a6:85:5f: 27:bc:18:11 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBGkYYh0XNgVWM0SpOrTICEkCTL8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTM3NzM3MUU4MkM2QzUzQzdBNTc5NkI0OUIwODUxOTBB RkI2NEI0QzAeFw0yNTAxMTMwMjU1MDBaFw0yNjAxMTIwMzAwMDBaMDMxMTAvBgNV BAMTKEJFNTBGNzg0NTdGMEM3MTdFQjVDRDUyQzM5MTcwMTREMkY2NzBCN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7Vu+/canPabyICTp1Ffo5UYsU BVd+s+KFnB8z56ZhHDYIOaIPGNSxVi/D0QBuO5BnX5zOcNC3zolnJUD9qrgRhEA+ oe4FFgD2TAjtAsngsvfHXjYfGw9kPrjpewglGPgPQyMoepKts5pC2pcg20Gz7Xqi TA65bt4RVEDVbZz/XNwlqxd90G8ae7B/0YTK3tF4nVagdZJ5pilF0OENRsbu8YJw olyhs75RdzrauDcbQjfM9f2ZUM5xg9OvAm9/UC4ZO3MvFcFrHk7uEjl1PAkyN16W NgC0HCPec2AJNXAxWeaUFCLSKyzt0ZPqC/YqvGxTxNTMC6lQCIzPYtSHzjoDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvlD3hFfwxxfrXNUsORcBTS9nC3wwHwYDVR0j BBgwFoAU43c3HoLGxTx6V5a0mwhRkK+2S0wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZTMzMDg3Ni03ZTY4LTQ3MDctYTUzZC05MmJiZmRiMmYyM2MvMC9FMzc3MzcxRTgy QzZDNTNDN0E1Nzk2QjQ5QjA4NTE5MEFGQjY0QjRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTM3NzM3MUU4MkM2QzUzQzdBNTc5NkI0OUIwODUxOTBBRkI2 NEI0Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlMzMwODc2LTdlNjgtNDcwNy1h NTNkLTkyYmJmZGIyZjIzYy8wLzMxMzAzMzJlMzgzOTJlMzIzNDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzMTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1nyMA0GCSqG SIb3DQEBCwUAA4IBAQDO0aBHJ7hjEUm9c6lv1p+TDcFU35r37pU75b0X4bc+PbkK n1bSKfCTHn8sP+AM7B3B6NqYBR6syTBuUWr4R0EfO/Trv2wQMXTDfrQ6oOw5g56X Oy5ZqOGDfBp87nwsA3pw89/QE7m85SHpPf+lSCeg20bTnT07g94LaFLPV7ZZnG6b Ku758/jTLx9eUk3rYV1AJZS6p8eAYtK0/GhqjTNaL6kKfTsSbCNs+7atWO/QfnvK dgg0Iw0KmcdKwwai+YStpSAgyic2ZdP1DSybYecJBvAbc8XVnqnwvQ6YGlU69+KA cuFKskfGEepDL4aGjLRfHurqP7SDRhemhV8nvBgR -----END CERTIFICATE-----Generated at Sun Apr 6 10:34:50 2025 by rpki-client