$ rpki-client -vvf repo-rpki.idnic.net/repo/362bacc9-d25d-4610-aee4-655a14ea2fd6/0/3130332e34332e3136342e302f32342d3234203d3e20313530323834.roa File: 3130332e34332e3136342e302f32342d3234203d3e20313530323834.roa (raw, json) Hash identifier: OhIKqdGLlbYOYf2QSJaf1Zp1dQFPdS35U6UJ3Ooje5Q= Subject key identifier: E2:84:92:41:B6:D3:AB:2B:F6:34:B4:DF:21:94:B8:3E:13:E4:79:42 Certificate issuer: /CN=44221B3D145FCC17734F7C523353CB67A0B8D3B3 Certificate serial: 467FA4B517C98FB13776ED37CDBD1114395C72A9 Authority key identifier: 44:22:1B:3D:14:5F:CC:17:73:4F:7C:52:33:53:CB:67:A0:B8:D3:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44221B3D145FCC17734F7C523353CB67A0B8D3B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/362bacc9-d25d-4610-aee4-655a14ea2fd6/0/3130332e34332e3136342e302f32342d3234203d3e20313530323834.roa Signing time: Thu 15 May 2025 17:00:00 +0000 ROA not before: Thu 15 May 2025 16:55:00 +0000 ROA not after: Thu 14 May 2026 17:00:00 +0000 asID: 150284 IP address blocks: 103.43.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/362bacc9-d25d-4610-aee4-655a14ea2fd6/0/44221B3D145FCC17734F7C523353CB67A0B8D3B3.crl rsync://repo-rpki.idnic.net/repo/362bacc9-d25d-4610-aee4-655a14ea2fd6/0/44221B3D145FCC17734F7C523353CB67A0B8D3B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44221B3D145FCC17734F7C523353CB67A0B8D3B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:29:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:7f:a4:b5:17:c9:8f:b1:37:76:ed:37:cd:bd:11:14:39:5c:72:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44221B3D145FCC17734F7C523353CB67A0B8D3B3 Validity Not Before: May 15 16:55:00 2025 GMT Not After : May 14 17:00:00 2026 GMT Subject: CN=E2849241B6D3AB2BF634B4DF2194B83E13E47942 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:80:2c:62:ee:03:cb:d9:d1:dc:28:32:db:ef: e6:e5:42:d6:9a:8b:1d:58:d2:a3:8f:86:57:45:97: fe:de:18:12:1d:33:60:6f:5c:b5:0b:12:81:b0:92: ab:4d:11:5b:c3:2f:87:39:d7:79:ae:53:f3:aa:9d: dc:e0:a8:26:64:e6:fb:57:0a:fd:77:99:30:18:6f: c0:55:f6:e4:95:4d:05:84:7a:04:47:5b:1e:5c:c9: 37:9a:42:3b:a6:4f:bf:fa:2a:7e:69:82:d4:ee:c3: 0e:f3:45:d8:27:b7:55:9c:b5:62:88:55:73:95:3e: ec:58:03:c5:44:bd:05:48:79:a5:2f:d0:3a:f5:ea: 8b:49:dd:94:04:81:6a:28:3d:6f:4d:6d:ac:fd:31: bd:95:44:c3:ea:42:5c:19:00:9a:2a:af:65:f8:3f: 04:44:f7:60:b0:86:64:92:fe:77:20:7a:b9:16:a4: 8b:54:e6:68:be:3e:e8:62:ad:ac:8b:9a:18:63:eb: e7:aa:5d:3a:7a:2b:ab:af:47:b2:96:30:12:43:b7: aa:81:0e:13:cc:ff:ed:e1:54:90:3a:c2:e6:0b:77: 55:24:53:38:bd:b8:5e:1e:04:ad:a2:f2:ad:06:59: 4f:87:42:0c:94:fc:cf:07:4e:12:a6:92:37:31:c2: fb:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:84:92:41:B6:D3:AB:2B:F6:34:B4:DF:21:94:B8:3E:13:E4:79:42 X509v3 Authority Key Identifier: keyid:44:22:1B:3D:14:5F:CC:17:73:4F:7C:52:33:53:CB:67:A0:B8:D3:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/362bacc9-d25d-4610-aee4-655a14ea2fd6/0/44221B3D145FCC17734F7C523353CB67A0B8D3B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44221B3D145FCC17734F7C523353CB67A0B8D3B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/362bacc9-d25d-4610-aee4-655a14ea2fd6/0/3130332e34332e3136342e302f32342d3234203d3e20313530323834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.43.164.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:61:2e:6b:6d:61:0f:69:12:5b:99:d2:ae:1d:40:18:05:d0: 1e:cc:e3:bc:a7:68:6e:52:b0:64:6e:fb:6e:74:1b:ae:2c:60: 74:1b:d9:cc:1c:39:69:09:81:40:a0:57:20:ef:c4:6b:ac:fe: 64:53:31:ba:8b:08:df:4d:54:2d:40:17:fa:9c:85:1f:1f:c9: d5:80:ea:69:cf:eb:8a:01:85:2c:71:cf:e4:dd:d3:81:ce:33: 8f:df:60:0b:8d:75:97:38:50:ed:41:9d:09:58:b0:ec:f7:e0: bb:f5:73:43:6b:26:c4:73:b7:a4:9e:03:36:14:ab:6d:d4:02: 3d:8e:a9:fb:10:a4:c9:22:d1:d1:40:57:ad:12:c5:79:60:48: 3a:e9:ad:a8:2a:f0:28:ce:b5:25:ac:79:fa:01:4a:69:dc:e9: 19:c6:48:35:46:d0:88:7a:99:b4:19:c9:8a:be:07:1a:bf:5c: b7:d6:8d:e3:42:d9:75:78:ab:f4:13:db:19:e4:b9:d4:6f:ec: 7a:1c:ff:da:45:e6:6c:cd:51:6c:d1:a1:5a:7d:05:c2:c2:2d: 9d:23:0b:bf:38:0b:52:3b:b6:53:2e:dd:4a:96:0d:10:5f:23: 5b:a9:eb:48:b2:fa:e1:c5:87:a0:a7:61:c6:64:51:13:21:11: bb:c1:7f:0b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURn+ktRfJj7E3du03zb0RFDlccqkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDQyMjFCM0QxNDVGQ0MxNzczNEY3QzUyMzM1M0NCNjdB MEI4RDNCMzAeFw0yNTA1MTUxNjU1MDBaFw0yNjA1MTQxNzAwMDBaMDMxMTAvBgNV BAMTKEUyODQ5MjQxQjZEM0FCMkJGNjM0QjRERjIxOTRCODNFMTNFNDc5NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkgCxi7gPL2dHcKDLb7+blQtaa ix1Y0qOPhldFl/7eGBIdM2BvXLULEoGwkqtNEVvDL4c513muU/OqndzgqCZk5vtX Cv13mTAYb8BV9uSVTQWEegRHWx5cyTeaQjumT7/6Kn5pgtTuww7zRdgnt1WctWKI VXOVPuxYA8VEvQVIeaUv0Dr16otJ3ZQEgWooPW9Nbaz9Mb2VRMPqQlwZAJoqr2X4 PwRE92CwhmSS/ncgerkWpItU5mi+PuhirayLmhhj6+eqXTp6K6uvR7KWMBJDt6qB DhPM/+3hVJA6wuYLd1UkUzi9uF4eBK2i8q0GWU+HQgyU/M8HThKmkjcxwvtNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4oSSQbbTqyv2NLTfIZS4PhPkeUIwHwYDVR0j BBgwFoAURCIbPRRfzBdzT3xSM1PLZ6C407MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NjJiYWNjOS1kMjVkLTQ2MTAtYWVlNC02NTVhMTRlYTJmZDYvMC80NDIyMUIzRDE0 NUZDQzE3NzM0RjdDNTIzMzUzQ0I2N0EwQjhEM0IzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDQyMjFCM0QxNDVGQ0MxNzczNEY3QzUyMzM1M0NCNjdBMEI4 RDNCMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM2MmJhY2M5LWQyNWQtNDYxMC1h ZWU0LTY1NWExNGVhMmZkNi8wLzMxMzAzMzJlMzQzMzJlMzEzNjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzIzODM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZyukMA0GCSqG SIb3DQEBCwUAA4IBAQAeYS5rbWEPaRJbmdKuHUAYBdAezOO8p2huUrBkbvtudBuu LGB0G9nMHDlpCYFAoFcg78RrrP5kUzG6iwjfTVQtQBf6nIUfH8nVgOppz+uKAYUs cc/k3dOBzjOP32ALjXWXOFDtQZ0JWLDs9+C79XNDaybEc7ekngM2FKtt1AI9jqn7 EKTJItHRQFetEsV5YEg66a2oKvAozrUlrHn6AUpp3OkZxkg1RtCIepm0GcmKvgca v1y31o3jQtl1eKv0E9sZ5LnUb+x6HP/aReZszVFs0aFafQXCwi2dIwu/OAtSO7ZT Lt1Klg0QXyNbqetIsvrhxYegp2HGZFETIRG7wX8L -----END CERTIFICATE-----Generated at Thu Jun 5 18:14:28 2025 by rpki-client