$ rpki-client -vvf repo-rpki.idnic.net/repo/0e330876-7e68-4707-a53d-92bbfdb2f23c/0/3130332e38392e3234332e302f32342d3234203d3e20313530393133.roa File: 3130332e38392e3234332e302f32342d3234203d3e20313530393133.roa (raw, json) Hash identifier: otr3kFi0uUngcjSenFt7w7igUVSs51cTPJ2XyknCg2A= Subject key identifier: 30:32:9C:AA:04:02:02:8D:B6:70:72:62:9F:B0:59:4A:B6:0C:0C:A4 Certificate issuer: /CN=E377371E82C6C53C7A5796B49B085190AFB64B4C Certificate serial: 05D8B5607E96709ED16BDA094906587489310330 Authority key identifier: E3:77:37:1E:82:C6:C5:3C:7A:57:96:B4:9B:08:51:90:AF:B6:4B:4C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E377371E82C6C53C7A5796B49B085190AFB64B4C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0e330876-7e68-4707-a53d-92bbfdb2f23c/0/3130332e38392e3234332e302f32342d3234203d3e20313530393133.roa Signing time: Mon 13 Jan 2025 02:00:00 +0000 ROA not before: Mon 13 Jan 2025 01:55:00 +0000 ROA not after: Mon 12 Jan 2026 02:00:00 +0000 asID: 150913 IP address blocks: 103.89.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0e330876-7e68-4707-a53d-92bbfdb2f23c/0/E377371E82C6C53C7A5796B49B085190AFB64B4C.crl rsync://repo-rpki.idnic.net/repo/0e330876-7e68-4707-a53d-92bbfdb2f23c/0/E377371E82C6C53C7A5796B49B085190AFB64B4C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E377371E82C6C53C7A5796B49B085190AFB64B4C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 09:10:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:d8:b5:60:7e:96:70:9e:d1:6b:da:09:49:06:58:74:89:31:03:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E377371E82C6C53C7A5796B49B085190AFB64B4C Validity Not Before: Jan 13 01:55:00 2025 GMT Not After : Jan 12 02:00:00 2026 GMT Subject: CN=30329CAA0402028DB67072629FB0594AB60C0CA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:31:08:31:f5:61:66:b6:82:12:d3:7a:82:2b: 86:1d:1f:ae:40:03:56:ad:bb:a0:8b:8d:fc:1c:80: ec:24:19:dd:ca:92:1c:48:bd:96:b6:55:01:92:c1: 27:4e:71:ac:34:71:ba:a1:5e:43:91:03:2c:51:c7: 57:97:5a:2e:81:dc:af:a3:e7:28:c6:4d:f9:d7:27: 43:20:e8:74:bf:16:64:56:72:0c:a3:c4:b1:d5:a9: 86:e1:b9:5e:48:53:cf:21:58:64:95:e6:4c:2d:b7: f9:dc:09:22:dc:8a:50:eb:52:97:3a:80:ec:1c:cb: 0b:be:55:93:9e:57:f5:ce:b1:8a:3b:bf:bf:66:5a: 36:05:1e:3a:65:5b:d5:2c:e1:a7:78:e7:52:73:e2: 6c:83:39:da:d5:99:2b:98:db:25:43:8e:d9:de:54: 73:17:87:53:d6:5b:b6:a5:6c:f8:ae:a2:69:8f:f8: d0:54:a9:74:81:c1:fa:15:6c:70:8e:eb:0d:62:b2: 19:75:67:3c:1d:18:59:95:4b:0a:b2:aa:f1:d0:e9: 86:8e:d2:4d:99:77:2f:7f:6e:a5:b4:9e:74:5b:d8: 1e:b6:2e:c8:c0:88:e3:37:82:ce:f9:48:64:15:bc: b3:f6:d1:e3:c4:bc:b2:36:0b:d7:6c:9b:fd:b9:57: 4c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:32:9C:AA:04:02:02:8D:B6:70:72:62:9F:B0:59:4A:B6:0C:0C:A4 X509v3 Authority Key Identifier: keyid:E3:77:37:1E:82:C6:C5:3C:7A:57:96:B4:9B:08:51:90:AF:B6:4B:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0e330876-7e68-4707-a53d-92bbfdb2f23c/0/E377371E82C6C53C7A5796B49B085190AFB64B4C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E377371E82C6C53C7A5796B49B085190AFB64B4C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0e330876-7e68-4707-a53d-92bbfdb2f23c/0/3130332e38392e3234332e302f32342d3234203d3e20313530393133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.89.243.0/24 Signature Algorithm: sha256WithRSAEncryption cc:ca:ea:da:69:4c:c2:d4:87:4b:f9:86:19:31:8f:e8:e3:f0: 8c:3e:9c:51:14:24:3a:41:95:52:21:02:78:c2:c7:f0:58:21: 1f:fa:48:e5:38:76:42:de:80:4f:78:8a:84:1b:13:4e:d2:24: af:73:45:b8:0c:ef:b5:a3:03:5a:be:2a:f2:9b:dc:59:c0:2b: b4:b6:77:08:9a:4d:9d:e3:0e:41:07:7b:18:24:34:86:45:da: c7:31:b3:66:1e:cf:d2:01:88:b0:1b:ec:f0:d5:45:71:bb:58: 04:c1:67:67:46:f7:30:ae:27:bd:fc:3c:4c:a8:3e:eb:3d:9c: f6:97:b1:e2:11:41:4d:11:41:db:bb:b4:a8:a9:2a:91:46:b2: 4b:99:0e:0e:f7:eb:07:d5:c2:91:f3:08:b8:3f:49:ab:30:4c: 17:bf:73:23:c6:90:a5:b6:f7:d7:56:60:5d:e9:3a:29:6f:a5: 80:62:89:f1:de:a0:65:24:79:8d:85:05:c3:41:58:10:57:b2: f3:cc:89:aa:32:84:ed:4e:e5:30:58:b5:2b:91:6c:e5:e5:c4: 9a:16:22:4f:eb:bb:9e:25:fb:d3:f2:2d:f2:1a:d9:85:0d:e9: 83:ce:7e:b1:d4:ed:c4:b1:02:e7:8c:68:ed:b3:f5:4c:6b:ea: 93:c0:19:3e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBdi1YH6WcJ7Ra9oJSQZYdIkxAzAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTM3NzM3MUU4MkM2QzUzQzdBNTc5NkI0OUIwODUxOTBB RkI2NEI0QzAeFw0yNTAxMTMwMTU1MDBaFw0yNjAxMTIwMjAwMDBaMDMxMTAvBgNV BAMTKDMwMzI5Q0FBMDQwMjAyOERCNjcwNzI2MjlGQjA1OTRBQjYwQzBDQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcMQgx9WFmtoIS03qCK4YdH65A A1atu6CLjfwcgOwkGd3KkhxIvZa2VQGSwSdOcaw0cbqhXkORAyxRx1eXWi6B3K+j 5yjGTfnXJ0Mg6HS/FmRWcgyjxLHVqYbhuV5IU88hWGSV5kwtt/ncCSLcilDrUpc6 gOwcywu+VZOeV/XOsYo7v79mWjYFHjplW9Us4ad451Jz4myDOdrVmSuY2yVDjtne VHMXh1PWW7albPiuommP+NBUqXSBwfoVbHCO6w1ishl1ZzwdGFmVSwqyqvHQ6YaO 0k2Zdy9/bqW0nnRb2B62LsjAiOM3gs75SGQVvLP20ePEvLI2C9dsm/25V0y7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMDKcqgQCAo22cHJin7BZSrYMDKQwHwYDVR0j BBgwFoAU43c3HoLGxTx6V5a0mwhRkK+2S0wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZTMzMDg3Ni03ZTY4LTQ3MDctYTUzZC05MmJiZmRiMmYyM2MvMC9FMzc3MzcxRTgy QzZDNTNDN0E1Nzk2QjQ5QjA4NTE5MEFGQjY0QjRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTM3NzM3MUU4MkM2QzUzQzdBNTc5NkI0OUIwODUxOTBBRkI2 NEI0Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlMzMwODc2LTdlNjgtNDcwNy1h NTNkLTkyYmJmZGIyZjIzYy8wLzMxMzAzMzJlMzgzOTJlMzIzNDMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzMTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1nzMA0GCSqG SIb3DQEBCwUAA4IBAQDMyuraaUzC1IdL+YYZMY/o4/CMPpxRFCQ6QZVSIQJ4wsfw WCEf+kjlOHZC3oBPeIqEGxNO0iSvc0W4DO+1owNavirym9xZwCu0tncImk2d4w5B B3sYJDSGRdrHMbNmHs/SAYiwG+zw1UVxu1gEwWdnRvcwrie9/DxMqD7rPZz2l7Hi EUFNEUHbu7SoqSqRRrJLmQ4O9+sH1cKR8wi4P0mrMEwXv3MjxpCltvfXVmBd6Top b6WAYonx3qBlJHmNhQXDQVgQV7LzzImqMoTtTuUwWLUrkWzl5cSaFiJP67ueJfvT 8i3yGtmFDemDzn6x1O3EsQLnjGjts/VMa+qTwBk+ -----END CERTIFICATE-----Generated at Sun Apr 6 14:41:41 2025 by rpki-client