$ rpki-client -vvf repo-rpki.idnic.net/repo/2e05ab66-66af-40a4-89a5-8069402839a9/0/3130332e3138352e33382e302f32332d3234203d3e20313339343536.roa File: 3130332e3138352e33382e302f32332d3234203d3e20313339343536.roa (raw, json) Hash identifier: 17GkwMI8n2+iBGNp+2muXCL7ItlUGULiv1HjDHqDmB0= Subject key identifier: 9A:39:D4:85:34:CB:6A:63:F4:27:92:5F:57:EA:BF:E8:E4:27:8B:D2 Certificate issuer: /CN=EA581458C8710B7F2862361DF5BE327D72423B7F Certificate serial: 6C202D44A35E2BD6B517F70268313CF6B3C2126F Authority key identifier: EA:58:14:58:C8:71:0B:7F:28:62:36:1D:F5:BE:32:7D:72:42:3B:7F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EA581458C8710B7F2862361DF5BE327D72423B7F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2e05ab66-66af-40a4-89a5-8069402839a9/0/3130332e3138352e33382e302f32332d3234203d3e20313339343536.roa Signing time: Tue 07 Jan 2025 05:03:08 +0000 ROA not before: Tue 07 Jan 2025 04:58:08 +0000 ROA not after: Tue 06 Jan 2026 05:03:08 +0000 asID: 139456 IP address blocks: 103.185.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2e05ab66-66af-40a4-89a5-8069402839a9/0/EA581458C8710B7F2862361DF5BE327D72423B7F.crl rsync://repo-rpki.idnic.net/repo/2e05ab66-66af-40a4-89a5-8069402839a9/0/EA581458C8710B7F2862361DF5BE327D72423B7F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EA581458C8710B7F2862361DF5BE327D72423B7F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 05:49:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:20:2d:44:a3:5e:2b:d6:b5:17:f7:02:68:31:3c:f6:b3:c2:12:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EA581458C8710B7F2862361DF5BE327D72423B7F Validity Not Before: Jan 7 04:58:08 2025 GMT Not After : Jan 6 05:03:08 2026 GMT Subject: CN=9A39D48534CB6A63F427925F57EABFE8E4278BD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b8:cd:e8:73:82:7c:19:51:ae:a2:a5:57:e7: e9:91:a2:88:71:e1:42:44:07:9f:0e:47:80:1c:4a: 11:4a:fa:88:64:2b:5c:d4:e5:3e:e1:82:7b:b0:8a: 3d:86:ff:0f:3b:ca:a4:1f:21:cc:50:6e:df:46:5c: 76:ae:4a:78:0d:d7:06:7f:84:66:56:d4:f7:95:7e: 07:dd:00:14:7a:4e:1f:c5:6f:a1:e6:ba:da:da:d6: 91:9f:79:e3:f1:c1:63:a6:e3:af:1e:c8:b4:eb:2e: 36:56:61:4c:07:b4:ac:fa:91:c1:eb:65:fd:87:3f: eb:6e:c3:84:a5:41:4e:bc:4b:22:a6:ec:87:80:e5: bd:92:7d:26:a2:84:80:a0:9f:4d:51:fd:04:32:02: 00:a5:33:ca:28:cf:56:62:94:c7:5c:1c:57:a4:c5: cc:0a:ab:dd:a9:bf:e4:1f:c0:f7:d2:3c:78:14:25: 3e:c1:57:62:26:39:d3:a7:44:b1:7d:1b:a9:de:0a: 9c:37:50:f6:24:0e:7c:d2:4b:b3:d7:07:31:aa:a2: d1:b2:af:22:61:b0:63:dd:be:18:bc:03:e8:c7:da: be:b5:64:7f:2a:03:e5:c9:61:d9:69:c7:83:94:7d: 3a:3f:c5:43:0c:41:56:14:e9:b4:50:0f:1d:84:d4: 99:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:39:D4:85:34:CB:6A:63:F4:27:92:5F:57:EA:BF:E8:E4:27:8B:D2 X509v3 Authority Key Identifier: keyid:EA:58:14:58:C8:71:0B:7F:28:62:36:1D:F5:BE:32:7D:72:42:3B:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2e05ab66-66af-40a4-89a5-8069402839a9/0/EA581458C8710B7F2862361DF5BE327D72423B7F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EA581458C8710B7F2862361DF5BE327D72423B7F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2e05ab66-66af-40a4-89a5-8069402839a9/0/3130332e3138352e33382e302f32332d3234203d3e20313339343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.185.38.0/23 Signature Algorithm: sha256WithRSAEncryption 31:0c:e9:83:06:01:3b:9a:bf:e3:ad:3f:ab:c4:6e:e6:9b:51: 23:cb:ad:86:e0:e0:4d:e6:8e:b8:a9:70:fd:2f:8d:c9:ce:b0: 1b:14:64:3b:e2:df:f6:15:27:29:f5:57:0e:10:53:d1:1a:57: a6:13:a4:6b:7f:b0:a7:81:5f:8d:d6:94:59:4c:f1:95:ba:07: 5b:4b:25:ba:14:c0:ac:c6:e3:02:b9:80:39:0c:c9:89:a9:bc: 25:be:83:a8:d9:b1:77:48:03:cc:8c:80:38:22:2b:ff:ae:69: 8c:e6:19:54:5c:5b:47:b7:4b:32:c8:d7:20:9a:62:62:70:92: 3e:db:ac:c0:ee:53:b2:01:e2:82:43:ed:fb:ad:6c:4a:10:76: 8a:1f:6f:ba:23:0d:72:1c:96:bf:a1:18:20:9f:33:96:78:43: 63:b3:b6:68:25:9a:ff:ac:15:57:38:0a:18:85:c9:20:f5:0b: e8:8f:e6:c4:61:1e:88:5e:c5:b8:1d:2f:61:d6:ce:8a:a9:38: 09:b0:98:1d:82:43:a6:d8:62:af:ce:cb:5b:4a:48:6f:9a:60: aa:78:e3:6b:6d:4e:75:8f:9a:af:91:3f:9b:77:70:8a:d7:81: 6c:89:dd:c3:5a:d5:54:2c:a0:3a:51:2e:4c:aa:ee:ba:c9:c1: 3a:5f:0b:b7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbCAtRKNeK9a1F/cCaDE89rPCEm8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUE1ODE0NThDODcxMEI3RjI4NjIzNjFERjVCRTMyN0Q3 MjQyM0I3RjAeFw0yNTAxMDcwNDU4MDhaFw0yNjAxMDYwNTAzMDhaMDMxMTAvBgNV BAMTKDlBMzlENDg1MzRDQjZBNjNGNDI3OTI1RjU3RUFCRkU4RTQyNzhCRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTuM3oc4J8GVGuoqVX5+mRoohx 4UJEB58OR4AcShFK+ohkK1zU5T7hgnuwij2G/w87yqQfIcxQbt9GXHauSngN1wZ/ hGZW1PeVfgfdABR6Th/Fb6Hmutra1pGfeePxwWOm468eyLTrLjZWYUwHtKz6kcHr Zf2HP+tuw4SlQU68SyKm7IeA5b2SfSaihICgn01R/QQyAgClM8ooz1ZilMdcHFek xcwKq92pv+QfwPfSPHgUJT7BV2ImOdOnRLF9G6neCpw3UPYkDnzSS7PXBzGqotGy ryJhsGPdvhi8A+jH2r61ZH8qA+XJYdlpx4OUfTo/xUMMQVYU6bRQDx2E1JmxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmjnUhTTLamP0J5JfV+q/6OQni9IwHwYDVR0j BBgwFoAU6lgUWMhxC38oYjYd9b4yfXJCO38wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZTA1YWI2Ni02NmFmLTQwYTQtODlhNS04MDY5NDAyODM5YTkvMC9FQTU4MTQ1OEM4 NzEwQjdGMjg2MjM2MURGNUJFMzI3RDcyNDIzQjdGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUE1ODE0NThDODcxMEI3RjI4NjIzNjFERjVCRTMyN0Q3MjQy M0I3Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlMDVhYjY2LTY2YWYtNDBhNC04 OWE1LTgwNjk0MDI4MzlhOS8wLzMxMzAzMzJlMzEzODM1MmUzMzM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7kmMA0GCSqG SIb3DQEBCwUAA4IBAQAxDOmDBgE7mr/jrT+rxG7mm1Ejy62G4OBN5o64qXD9L43J zrAbFGQ74t/2FScp9VcOEFPRGlemE6Rrf7CngV+N1pRZTPGVugdbSyW6FMCsxuMC uYA5DMmJqbwlvoOo2bF3SAPMjIA4Iiv/rmmM5hlUXFtHt0syyNcgmmJicJI+26zA 7lOyAeKCQ+37rWxKEHaKH2+6Iw1yHJa/oRggnzOWeENjs7ZoJZr/rBVXOAoYhckg 9Qvoj+bEYR6IXsW4HS9h1s6KqTgJsJgdgkOm2GKvzstbSkhvmmCqeONrbU51j5qv kT+bd3CK14Fsid3DWtVULKA6US5Mqu66ycE6Xwu3 -----END CERTIFICATE-----Generated at Sun Apr 6 14:51:58 2025 by rpki-client