$ rpki-client -vvf repo-rpki.idnic.net/repo/37224360-245d-4a1a-af36-f9befcdb70b7/0/3130332e3136322e3130352e302f32342d3234203d3e20313337333136.roa File: 3130332e3136322e3130352e302f32342d3234203d3e20313337333136.roa (raw, json) Hash identifier: Z02qYLbu+fqT+S+IFEtpkymUO2aEWa64c4ptZIYiefo= Subject key identifier: 8A:BD:34:C3:F9:5C:4F:AA:8A:8F:6C:2A:F1:89:8E:CB:86:BE:C0:6B Certificate issuer: /CN=ED137633BAEE661A0ACBBF277089F107CB59439A Certificate serial: 771A85A68C0D0696A4F3061181463B85914623BB Authority key identifier: ED:13:76:33:BA:EE:66:1A:0A:CB:BF:27:70:89:F1:07:CB:59:43:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ED137633BAEE661A0ACBBF277089F107CB59439A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/37224360-245d-4a1a-af36-f9befcdb70b7/0/3130332e3136322e3130352e302f32342d3234203d3e20313337333136.roa Signing time: Sat 23 Nov 2024 03:00:01 +0000 ROA not before: Sat 23 Nov 2024 02:55:01 +0000 ROA not after: Sat 22 Nov 2025 03:00:01 +0000 asID: 137316 IP address blocks: 103.162.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/37224360-245d-4a1a-af36-f9befcdb70b7/0/ED137633BAEE661A0ACBBF277089F107CB59439A.crl rsync://repo-rpki.idnic.net/repo/37224360-245d-4a1a-af36-f9befcdb70b7/0/ED137633BAEE661A0ACBBF277089F107CB59439A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ED137633BAEE661A0ACBBF277089F107CB59439A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 10:55:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:1a:85:a6:8c:0d:06:96:a4:f3:06:11:81:46:3b:85:91:46:23:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED137633BAEE661A0ACBBF277089F107CB59439A Validity Not Before: Nov 23 02:55:01 2024 GMT Not After : Nov 22 03:00:01 2025 GMT Subject: CN=8ABD34C3F95C4FAA8A8F6C2AF1898ECB86BEC06B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:c7:fd:9d:73:c0:e2:97:30:74:5e:18:c3:2d: 7a:36:87:17:e4:bc:c0:12:a3:60:38:a1:cf:1a:dc: 3e:b8:a8:81:b7:07:a6:50:46:69:d9:6f:f5:d4:dd: 60:73:8d:7a:07:eb:f4:65:ce:a6:b7:ac:17:3d:97: 50:e4:f7:fe:b3:bf:1c:16:90:18:51:da:d9:3d:8d: 6b:d0:b4:74:67:b0:58:7d:dd:63:e2:c0:cc:88:ce: 37:16:5d:6b:4a:e4:b9:e0:55:df:77:12:01:2d:1c: a0:3e:97:cf:96:dd:a7:82:ae:6b:a8:8f:a2:4e:0a: de:02:5e:7c:da:69:c1:a3:78:34:09:db:f3:6b:ce: e0:11:57:a4:1a:5d:ff:f1:c7:97:c1:32:40:b7:d7: 08:e3:50:1f:b4:e6:f7:34:ac:66:fe:8d:19:07:84: a3:6c:8c:0d:3e:88:09:bc:d3:59:c3:bd:c4:55:9b: 07:7c:b8:60:f0:36:08:24:0e:df:4d:1a:80:53:f3: 32:18:12:ff:12:12:81:8b:51:d0:f2:5d:dc:51:bb: d5:61:99:a9:6c:59:68:14:98:bd:b2:d0:7e:d8:ca: 4c:c9:25:55:c4:13:93:7e:b3:15:4a:b4:29:12:dd: 57:c9:a6:e1:94:de:ac:24:df:b6:02:42:2e:f1:17: bd:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:BD:34:C3:F9:5C:4F:AA:8A:8F:6C:2A:F1:89:8E:CB:86:BE:C0:6B X509v3 Authority Key Identifier: keyid:ED:13:76:33:BA:EE:66:1A:0A:CB:BF:27:70:89:F1:07:CB:59:43:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/37224360-245d-4a1a-af36-f9befcdb70b7/0/ED137633BAEE661A0ACBBF277089F107CB59439A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ED137633BAEE661A0ACBBF277089F107CB59439A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/37224360-245d-4a1a-af36-f9befcdb70b7/0/3130332e3136322e3130352e302f32342d3234203d3e20313337333136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.105.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:0f:00:c1:21:69:f9:26:18:e4:89:39:b3:a9:b3:cc:59:dc: 60:c3:da:3a:51:68:98:e1:6e:13:f4:f2:ba:8c:a0:d2:46:5a: 4b:31:5b:db:12:e8:2e:c3:06:76:9b:d3:29:ba:f1:32:90:8a: 66:86:1b:32:c7:47:11:ce:66:c7:70:6f:e0:b8:37:42:86:eb: 01:d5:f4:fa:52:f1:23:36:dc:d9:28:81:a7:24:da:41:ad:a6: c6:24:bf:ed:b3:05:19:1b:35:1f:b0:61:09:9e:9c:8c:17:36: 39:05:f6:d5:fc:ee:e8:41:c1:8a:af:cf:79:ca:d0:52:20:69: 05:d1:a2:76:50:10:e4:d5:f9:fd:23:dc:24:84:5c:47:2b:c5: 45:24:2a:25:6b:c1:5b:b7:88:46:4d:8e:48:02:34:af:16:32: 86:db:1c:15:84:b4:54:8e:54:1c:6e:9e:d9:ef:f1:fc:45:aa: b6:1e:f8:17:46:e2:5a:5b:4f:34:ff:13:a7:77:a1:34:0e:f7: 33:20:da:cb:cd:c3:8b:71:80:b1:94:f3:77:5e:8c:ef:36:38: 62:aa:5a:e9:b7:8c:8a:70:5d:2a:4f:69:21:0e:9a:bc:51:b4: 1a:0f:7b:a4:46:3c:18:37:d8:c3:62:20:24:96:8d:70:a5:6f: e7:91:8e:68 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdxqFpowNBpak8wYRgUY7hZFGI7swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUQxMzc2MzNCQUVFNjYxQTBBQ0JCRjI3NzA4OUYxMDdD QjU5NDM5QTAeFw0yNDExMjMwMjU1MDFaFw0yNTExMjIwMzAwMDFaMDMxMTAvBgNV BAMTKDhBQkQzNEMzRjk1QzRGQUE4QThGNkMyQUYxODk4RUNCODZCRUMwNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmx/2dc8DilzB0XhjDLXo2hxfk vMASo2A4oc8a3D64qIG3B6ZQRmnZb/XU3WBzjXoH6/Rlzqa3rBc9l1Dk9/6zvxwW kBhR2tk9jWvQtHRnsFh93WPiwMyIzjcWXWtK5LngVd93EgEtHKA+l8+W3aeCrmuo j6JOCt4CXnzaacGjeDQJ2/NrzuARV6QaXf/xx5fBMkC31wjjUB+05vc0rGb+jRkH hKNsjA0+iAm801nDvcRVmwd8uGDwNggkDt9NGoBT8zIYEv8SEoGLUdDyXdxRu9Vh malsWWgUmL2y0H7YykzJJVXEE5N+sxVKtCkS3VfJpuGU3qwk37YCQi7xF71rAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUir00w/lcT6qKj2wq8YmOy4a+wGswHwYDVR0j BBgwFoAU7RN2M7ruZhoKy78ncInxB8tZQ5owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NzIyNDM2MC0yNDVkLTRhMWEtYWYzNi1mOWJlZmNkYjcwYjcvMC9FRDEzNzYzM0JB RUU2NjFBMEFDQkJGMjc3MDg5RjEwN0NCNTk0MzlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUQxMzc2MzNCQUVFNjYxQTBBQ0JCRjI3NzA4OUYxMDdDQjU5 NDM5QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM3MjI0MzYwLTI0NWQtNGExYS1h ZjM2LWY5YmVmY2RiNzBiNy8wLzMxMzAzMzJlMzEzNjMyMmUzMTMwMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMxMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnomkwDQYJ KoZIhvcNAQELBQADggEBAH4PAMEhafkmGOSJObOps8xZ3GDD2jpRaJjhbhP08rqM oNJGWksxW9sS6C7DBnab0ym68TKQimaGGzLHRxHOZsdwb+C4N0KG6wHV9PpS8SM2 3Nkogack2kGtpsYkv+2zBRkbNR+wYQmenIwXNjkF9tX87uhBwYqvz3nK0FIgaQXR onZQEOTV+f0j3CSEXEcrxUUkKiVrwVu3iEZNjkgCNK8WMobbHBWEtFSOVBxuntnv 8fxFqrYe+BdG4lpbTzT/E6d3oTQO9zMg2svNw4txgLGU83dejO82OGKqWum3jIpw XSpPaSEOmrxRtBoPe6RGPBg32MNiICSWjXClb+eRjmg= -----END CERTIFICATE-----Generated at Sun Apr 6 11:13:16 2025 by rpki-client