$ rpki-client -vvf repo-rpki.idnic.net/repo/1ed46f82-cf11-4e32-b051-6ac334a92622/0/3130332e3233332e3131302e302f32342d3234203d3e203338373538.roa File: 3130332e3233332e3131302e302f32342d3234203d3e203338373538.roa (raw, json) Hash identifier: XkLmfviGVp2EGPILR+re9nqIYX0YPT0FpVRTvK0kmBs= Subject key identifier: E2:FC:9D:32:22:9D:B0:79:AF:89:17:1B:8E:16:3F:EB:CE:78:39:A9 Certificate issuer: /CN=4A4CC1D625A4519B23D73717C879F10A6173AEAB Certificate serial: 569B09706FE1E5574502918FC64FBF90A506D879 Authority key identifier: 4A:4C:C1:D6:25:A4:51:9B:23:D7:37:17:C8:79:F1:0A:61:73:AE:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A4CC1D625A4519B23D73717C879F10A6173AEAB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ed46f82-cf11-4e32-b051-6ac334a92622/0/3130332e3233332e3131302e302f32342d3234203d3e203338373538.roa Signing time: Mon 17 Mar 2025 14:00:02 +0000 ROA not before: Mon 17 Mar 2025 13:55:02 +0000 ROA not after: Mon 16 Mar 2026 14:00:02 +0000 asID: 38758 IP address blocks: 103.233.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ed46f82-cf11-4e32-b051-6ac334a92622/0/4A4CC1D625A4519B23D73717C879F10A6173AEAB.crl rsync://repo-rpki.idnic.net/repo/1ed46f82-cf11-4e32-b051-6ac334a92622/0/4A4CC1D625A4519B23D73717C879F10A6173AEAB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A4CC1D625A4519B23D73717C879F10A6173AEAB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 19:31:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:9b:09:70:6f:e1:e5:57:45:02:91:8f:c6:4f:bf:90:a5:06:d8:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A4CC1D625A4519B23D73717C879F10A6173AEAB Validity Not Before: Mar 17 13:55:02 2025 GMT Not After : Mar 16 14:00:02 2026 GMT Subject: CN=E2FC9D32229DB079AF89171B8E163FEBCE7839A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:14:ff:82:86:50:1b:bc:30:e5:e6:c7:9c:43: dc:e6:88:ae:d7:bd:b8:24:da:5d:86:b6:43:1b:9b: 97:1e:61:7c:e4:c8:6d:95:d9:c8:0d:09:17:28:8f: 7e:e0:cd:ff:68:8e:c8:70:a7:23:fd:da:3a:8a:92: 53:6b:8b:aa:ab:9b:67:2e:0c:ad:1f:24:9e:ea:70: 02:28:61:67:de:5c:4c:87:ae:62:37:43:38:a7:e1: 7d:06:1c:de:bd:71:06:ee:12:d0:62:fe:9a:63:95: f2:4f:db:76:02:98:f2:09:e1:8d:39:90:4c:fe:13: 9e:8d:16:52:c4:02:1c:51:b7:c7:03:b0:f6:f2:36: 16:98:5a:7e:48:af:53:12:c4:a6:bb:f0:e6:ec:f2: 2b:1a:d5:d5:4e:c6:41:5b:11:dc:e4:25:f2:bd:fa: df:1b:26:6b:50:78:bb:bf:c2:65:ae:66:aa:c7:5e: 0e:0f:09:35:5d:c6:e7:fe:51:7a:69:01:0d:6d:24: a7:56:55:6f:5d:1c:ac:e9:c3:89:21:ad:dc:6c:da: dd:ea:24:dd:1f:51:f9:9f:6b:5f:a4:75:1b:d6:2b: 53:ab:4d:9f:3f:cb:0c:68:aa:77:9b:05:75:e1:04: 9a:4f:30:aa:7b:79:60:4d:27:5f:ec:41:2b:c5:3b: 99:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:FC:9D:32:22:9D:B0:79:AF:89:17:1B:8E:16:3F:EB:CE:78:39:A9 X509v3 Authority Key Identifier: keyid:4A:4C:C1:D6:25:A4:51:9B:23:D7:37:17:C8:79:F1:0A:61:73:AE:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ed46f82-cf11-4e32-b051-6ac334a92622/0/4A4CC1D625A4519B23D73717C879F10A6173AEAB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A4CC1D625A4519B23D73717C879F10A6173AEAB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ed46f82-cf11-4e32-b051-6ac334a92622/0/3130332e3233332e3131302e302f32342d3234203d3e203338373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.233.110.0/24 Signature Algorithm: sha256WithRSAEncryption 31:2e:f1:5c:33:7c:a3:a7:bc:a7:6b:75:79:cc:67:d3:cb:c8: fe:65:d4:84:33:49:29:51:29:97:c2:af:e4:05:ab:10:32:09: 9c:9d:d9:c1:3a:16:7b:f2:d4:51:62:fb:62:f2:c7:71:3e:99: c7:66:1c:ea:06:d9:50:9b:a5:f1:f2:3e:c7:33:99:36:f6:33: 92:8a:53:1a:88:f2:2f:91:3a:12:9d:38:96:48:01:1d:93:aa: fb:c4:a9:e3:c9:5f:e2:33:41:7a:92:71:af:4f:83:d1:82:a6: 40:c2:29:51:fb:1e:32:84:1b:7a:23:37:95:2a:82:ce:c7:4b: eb:c6:ba:f3:15:99:2c:69:03:fe:a1:ab:f5:c2:3d:57:95:39: f4:4e:d0:cd:d1:30:fc:8e:09:0c:b5:91:ce:c9:1f:c9:b2:1e: 95:2a:30:3a:c6:6b:6b:27:1e:36:ad:29:cd:ee:d6:ef:d0:95: 29:16:57:86:6e:7e:c0:32:eb:5b:57:a6:1e:d6:5e:f9:a8:3e: be:81:1e:9a:25:8b:6e:d9:9b:b7:3a:cc:3e:6b:ae:23:e8:49: 05:c4:15:ec:dc:5f:5a:ed:92:1c:f9:5b:f1:53:e6:4e:e7:75: f6:aa:13:18:9c:04:aa:7c:c0:58:64:69:f5:c5:2c:e9:94:39: c8:62:f6:ae -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVpsJcG/h5VdFApGPxk+/kKUG2HkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEE0Q0MxRDYyNUE0NTE5QjIzRDczNzE3Qzg3OUYxMEE2 MTczQUVBQjAeFw0yNTAzMTcxMzU1MDJaFw0yNjAzMTYxNDAwMDJaMDMxMTAvBgNV BAMTKEUyRkM5RDMyMjI5REIwNzlBRjg5MTcxQjhFMTYzRkVCQ0U3ODM5QTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2FP+ChlAbvDDl5secQ9zmiK7X vbgk2l2GtkMbm5ceYXzkyG2V2cgNCRcoj37gzf9ojshwpyP92jqKklNri6qrm2cu DK0fJJ7qcAIoYWfeXEyHrmI3Qzin4X0GHN69cQbuEtBi/ppjlfJP23YCmPIJ4Y05 kEz+E56NFlLEAhxRt8cDsPbyNhaYWn5Ir1MSxKa78Obs8isa1dVOxkFbEdzkJfK9 +t8bJmtQeLu/wmWuZqrHXg4PCTVdxuf+UXppAQ1tJKdWVW9dHKzpw4khrdxs2t3q JN0fUfmfa1+kdRvWK1OrTZ8/ywxoqnebBXXhBJpPMKp7eWBNJ1/sQSvFO5kRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4vydMiKdsHmviRcbjhY/6854OakwHwYDVR0j BBgwFoAUSkzB1iWkUZsj1zcXyHnxCmFzrqswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZWQ0NmY4Mi1jZjExLTRlMzItYjA1MS02YWMzMzRhOTI2MjIvMC80QTRDQzFENjI1 QTQ1MTlCMjNENzM3MTdDODc5RjEwQTYxNzNBRUFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEE0Q0MxRDYyNUE0NTE5QjIzRDczNzE3Qzg3OUYxMEE2MTcz QUVBQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlZDQ2ZjgyLWNmMTEtNGUzMi1i MDUxLTZhYzMzNGE5MjYyMi8wLzMxMzAzMzJlMzIzMzMzMmUzMTMxMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+luMA0GCSqG SIb3DQEBCwUAA4IBAQAxLvFcM3yjp7yna3V5zGfTy8j+ZdSEM0kpUSmXwq/kBasQ MgmcndnBOhZ78tRRYvti8sdxPpnHZhzqBtlQm6Xx8j7HM5k29jOSilMaiPIvkToS nTiWSAEdk6r7xKnjyV/iM0F6knGvT4PRgqZAwilR+x4yhBt6IzeVKoLOx0vrxrrz FZksaQP+oav1wj1XlTn0TtDN0TD8jgkMtZHOyR/Jsh6VKjA6xmtrJx42rSnN7tbv 0JUpFleGbn7AMutbV6Ye1l75qD6+gR6aJYtu2Zu3Osw+a64j6EkFxBXs3F9a7ZIc +VvxU+ZO53X2qhMYnASqfMBYZGn1xSzplDnIYvau -----END CERTIFICATE-----Generated at Sun Apr 6 10:46:05 2025 by rpki-client