$ rpki-client -vvf repo-rpki.idnic.net/repo/1dee126f-8192-4d28-b25e-deabdb79eb21/0/3130332e3139302e33302e302f32342d3234203d3e20313439383931.roa File: 3130332e3139302e33302e302f32342d3234203d3e20313439383931.roa (raw, json) Hash identifier: 42y3l7yp2lQIcyswjsolGN8lKdsqqlwrtR0fdv/FhBo= Subject key identifier: 43:FD:DF:7C:3B:1F:1E:BE:FC:F8:87:EC:0F:86:50:F6:78:C1:31:0C Certificate issuer: /CN=146B42876A5C2AB0705F67F1A3918D76984989AF Certificate serial: 50BFA608759D011A5B49A3411E6AB9E5EF8FF666 Authority key identifier: 14:6B:42:87:6A:5C:2A:B0:70:5F:67:F1:A3:91:8D:76:98:49:89:AF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/146B42876A5C2AB0705F67F1A3918D76984989AF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1dee126f-8192-4d28-b25e-deabdb79eb21/0/3130332e3139302e33302e302f32342d3234203d3e20313439383931.roa Signing time: Fri 28 Jun 2024 02:00:00 +0000 ROA not before: Fri 28 Jun 2024 01:55:00 +0000 ROA not after: Fri 27 Jun 2025 02:00:00 +0000 asID: 149891 IP address blocks: 103.190.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1dee126f-8192-4d28-b25e-deabdb79eb21/0/146B42876A5C2AB0705F67F1A3918D76984989AF.crl rsync://repo-rpki.idnic.net/repo/1dee126f-8192-4d28-b25e-deabdb79eb21/0/146B42876A5C2AB0705F67F1A3918D76984989AF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/146B42876A5C2AB0705F67F1A3918D76984989AF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 11:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:bf:a6:08:75:9d:01:1a:5b:49:a3:41:1e:6a:b9:e5:ef:8f:f6:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=146B42876A5C2AB0705F67F1A3918D76984989AF Validity Not Before: Jun 28 01:55:00 2024 GMT Not After : Jun 27 02:00:00 2025 GMT Subject: CN=43FDDF7C3B1F1EBEFCF887EC0F8650F678C1310C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b0:c6:d3:34:28:44:38:9b:a8:74:b0:9d:ae: 4d:64:c6:5a:70:ad:59:0e:4b:f2:19:b4:ba:b8:49: a7:6a:12:44:8f:53:d0:f8:74:37:c0:08:02:de:ca: e3:81:0b:c2:67:1e:82:5d:09:43:74:82:6b:1f:fb: 38:3f:22:e0:6d:de:b2:8e:76:5b:18:16:b1:40:d5: 5a:e3:cf:50:f7:04:47:79:4e:2a:84:c0:8c:44:10: 69:c4:74:ee:39:b9:75:25:e8:99:52:88:1b:15:a4: ba:82:b0:60:ca:7c:16:79:8d:e5:a2:3b:e9:96:cf: 11:0d:c1:9d:17:ba:30:4a:c4:d4:a7:b8:c6:53:d2: bf:fe:7f:bf:1b:66:49:7d:94:75:99:ca:21:93:93: 03:e7:71:ce:f8:0e:20:fc:e7:d9:84:b6:ce:ea:cf: 41:35:ca:7b:39:9a:cb:63:51:6b:72:37:30:f5:5b: c0:5a:9a:11:73:7b:4d:dd:c3:64:0c:89:84:ec:d0: 59:e8:d7:3d:a1:e2:c0:79:83:3f:e4:93:38:0d:b4: 14:7e:bc:f6:ff:c0:d6:4e:ec:bf:5e:d2:fd:73:7a: 12:a4:3e:1f:44:93:a8:f7:11:7e:b0:6c:f2:76:15: e3:c6:c4:87:b3:17:9a:c6:31:c2:5e:64:a9:cb:e5: ee:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:FD:DF:7C:3B:1F:1E:BE:FC:F8:87:EC:0F:86:50:F6:78:C1:31:0C X509v3 Authority Key Identifier: keyid:14:6B:42:87:6A:5C:2A:B0:70:5F:67:F1:A3:91:8D:76:98:49:89:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1dee126f-8192-4d28-b25e-deabdb79eb21/0/146B42876A5C2AB0705F67F1A3918D76984989AF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/146B42876A5C2AB0705F67F1A3918D76984989AF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1dee126f-8192-4d28-b25e-deabdb79eb21/0/3130332e3139302e33302e302f32342d3234203d3e20313439383931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.30.0/24 Signature Algorithm: sha256WithRSAEncryption 17:95:77:1d:ae:86:f8:df:02:30:9a:30:ad:76:f3:93:22:88: 2d:c7:bc:7f:9a:de:3a:3d:06:42:e9:86:9f:cd:3e:19:80:3e: 14:5f:1c:d4:2a:53:ca:fe:4f:dd:b9:a4:3d:99:1b:a3:90:2c: 89:a0:aa:c5:08:52:98:4f:7f:e4:31:c2:1a:b6:7e:f1:78:8a: bf:cd:f6:bc:bf:53:6f:30:97:f7:bd:32:e6:6b:6f:05:52:5c: bd:74:0a:65:1b:dc:55:7f:49:3a:b5:98:58:e0:06:d8:29:99: e2:27:51:54:da:cc:6e:49:99:9c:50:78:88:89:5d:95:ff:d7: ef:5f:fa:39:66:22:8b:8b:a9:42:20:6c:03:ac:cf:d9:ed:42: fa:06:93:b7:69:79:60:1f:c3:18:35:84:18:61:ff:f0:0f:34: 2f:c5:77:2f:80:b4:00:de:88:17:75:6c:66:1e:7d:0f:44:76: fe:2b:57:93:d1:02:a5:90:c2:46:d0:64:74:98:1b:05:7c:17: 78:8a:4a:d6:ef:ae:82:70:19:1f:5f:21:50:4c:1a:82:c2:59: cd:46:02:8d:c7:35:4e:3a:fb:7f:14:67:ad:9b:7b:3e:23:51: d8:43:b4:1d:1d:0b:8f:c5:25:57:b5:59:7f:7f:40:0a:38:20: b2:44:2e:06 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUL+mCHWdARpbSaNBHmq55e+P9mYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTQ2QjQyODc2QTVDMkFCMDcwNUY2N0YxQTM5MThENzY5 ODQ5ODlBRjAeFw0yNDA2MjgwMTU1MDBaFw0yNTA2MjcwMjAwMDBaMDMxMTAvBgNV BAMTKDQzRkRERjdDM0IxRjFFQkVGQ0Y4ODdFQzBGODY1MEY2NzhDMTMxMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9sMbTNChEOJuodLCdrk1kxlpw rVkOS/IZtLq4SadqEkSPU9D4dDfACALeyuOBC8JnHoJdCUN0gmsf+zg/IuBt3rKO dlsYFrFA1Vrjz1D3BEd5TiqEwIxEEGnEdO45uXUl6JlSiBsVpLqCsGDKfBZ5jeWi O+mWzxENwZ0XujBKxNSnuMZT0r/+f78bZkl9lHWZyiGTkwPncc74DiD859mEts7q z0E1yns5mstjUWtyNzD1W8BamhFze03dw2QMiYTs0Fno1z2h4sB5gz/kkzgNtBR+ vPb/wNZO7L9e0v1zehKkPh9Ek6j3EX6wbPJ2FePGxIezF5rGMcJeZKnL5e7rAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQ/3ffDsfHr78+IfsD4ZQ9njBMQwwHwYDVR0j BBgwFoAUFGtCh2pcKrBwX2fxo5GNdphJia8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVlMTI2Zi04MTkyLTRkMjgtYjI1ZS1kZWFiZGI3OWViMjEvMC8xNDZCNDI4NzZB NUMyQUIwNzA1RjY3RjFBMzkxOEQ3Njk4NDk4OUFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTQ2QjQyODc2QTVDMkFCMDcwNUY2N0YxQTM5MThENzY5ODQ5 ODlBRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWUxMjZmLTgxOTItNGQyOC1i MjVlLWRlYWJkYjc5ZWIyMS8wLzMxMzAzMzJlMzEzOTMwMmUzMzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzgzOTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ74eMA0GCSqG SIb3DQEBCwUAA4IBAQAXlXcdrob43wIwmjCtdvOTIogtx7x/mt46PQZC6YafzT4Z gD4UXxzUKlPK/k/duaQ9mRujkCyJoKrFCFKYT3/kMcIatn7xeIq/zfa8v1NvMJf3 vTLma28FUly9dAplG9xVf0k6tZhY4AbYKZniJ1FU2sxuSZmcUHiIiV2V/9fvX/o5 ZiKLi6lCIGwDrM/Z7UL6BpO3aXlgH8MYNYQYYf/wDzQvxXcvgLQA3ogXdWxmHn0P RHb+K1eT0QKlkMJG0GR0mBsFfBd4ikrW766CcBkfXyFQTBqCwlnNRgKNxzVOOvt/ FGetm3s+I1HYQ7QdHQuPxSVXtVl/f0AKOCCyRC4G -----END CERTIFICATE-----Generated at Sun Apr 20 13:03:49 2025 by rpki-client