$ rpki-client -vvf repo-rpki.idnic.net/repo/3b3df6af-d9ee-4076-81a4-264872748970/0/3130332e3137392e3133342e302f32332d3234203d3e20313531303030.roa File: 3130332e3137392e3133342e302f32332d3234203d3e20313531303030.roa (raw, json) Hash identifier: FhrbA6uuINHjqQzXHar/bpnjqFBEO5FZuzZ3IIsB7qk= Subject key identifier: A4:47:E7:23:5D:4E:EF:68:69:CC:C5:F6:96:5C:BA:E2:EE:E1:48:B9 Certificate issuer: /CN=402D9F1E05A26B41164E25B73A5B07C88E32AB43 Certificate serial: 41FA8877FFC06AE3C8614D2920B4E6A3FD3D3DDE Authority key identifier: 40:2D:9F:1E:05:A2:6B:41:16:4E:25:B7:3A:5B:07:C8:8E:32:AB:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/402D9F1E05A26B41164E25B73A5B07C88E32AB43.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3b3df6af-d9ee-4076-81a4-264872748970/0/3130332e3137392e3133342e302f32332d3234203d3e20313531303030.roa Signing time: Mon 24 Feb 2025 02:00:00 +0000 ROA not before: Mon 24 Feb 2025 01:55:00 +0000 ROA not after: Mon 23 Feb 2026 02:00:00 +0000 asID: 151000 IP address blocks: 103.179.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3b3df6af-d9ee-4076-81a4-264872748970/0/402D9F1E05A26B41164E25B73A5B07C88E32AB43.crl rsync://repo-rpki.idnic.net/repo/3b3df6af-d9ee-4076-81a4-264872748970/0/402D9F1E05A26B41164E25B73A5B07C88E32AB43.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/402D9F1E05A26B41164E25B73A5B07C88E32AB43.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 18:12:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:fa:88:77:ff:c0:6a:e3:c8:61:4d:29:20:b4:e6:a3:fd:3d:3d:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=402D9F1E05A26B41164E25B73A5B07C88E32AB43 Validity Not Before: Feb 24 01:55:00 2025 GMT Not After : Feb 23 02:00:00 2026 GMT Subject: CN=A447E7235D4EEF6869CCC5F6965CBAE2EEE148B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:93:dc:58:31:f5:c7:d2:f2:57:04:6b:89:ab: 9e:5b:b4:34:16:e8:2c:19:2d:4a:0a:02:e5:02:72: 72:ff:b2:1a:3c:1f:37:db:f3:15:a2:22:ad:49:ea: 3d:37:de:c9:f9:d0:53:08:a1:39:fe:6c:87:42:8a: 85:30:08:4b:1e:1d:ef:0a:8c:4f:54:87:34:ab:76: 36:bd:4c:ec:12:8e:b2:42:29:e2:a4:80:7a:26:20: 59:a7:34:61:c0:85:77:17:14:20:b5:b4:57:a0:5e: 0a:30:ef:51:d6:cb:16:44:9b:af:20:df:e1:c4:15: e2:b0:dc:aa:93:db:b2:43:6e:d4:36:eb:d1:db:28: 16:64:e1:ec:b1:c2:bc:f5:17:07:c0:19:01:b7:ed: 9b:73:d5:0b:98:74:3c:16:ea:73:5d:87:e4:03:a2: f1:4b:3b:3e:0c:3f:59:5d:44:11:0e:24:34:36:58: 3d:b2:14:e4:87:1d:17:b2:f0:27:2a:82:8e:75:4a: eb:18:41:78:5f:d9:7d:d3:c0:c9:5c:8a:5c:44:24: 5c:90:20:5c:b3:49:97:44:1d:ba:d1:08:f5:ab:28: 24:13:88:75:11:83:88:00:aa:d6:99:8a:ac:c2:9b: 18:f8:98:28:ac:24:9e:8b:cb:91:52:6f:89:49:ad: d2:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:47:E7:23:5D:4E:EF:68:69:CC:C5:F6:96:5C:BA:E2:EE:E1:48:B9 X509v3 Authority Key Identifier: keyid:40:2D:9F:1E:05:A2:6B:41:16:4E:25:B7:3A:5B:07:C8:8E:32:AB:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3b3df6af-d9ee-4076-81a4-264872748970/0/402D9F1E05A26B41164E25B73A5B07C88E32AB43.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/402D9F1E05A26B41164E25B73A5B07C88E32AB43.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3b3df6af-d9ee-4076-81a4-264872748970/0/3130332e3137392e3133342e302f32332d3234203d3e20313531303030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.134.0/23 Signature Algorithm: sha256WithRSAEncryption 16:05:96:a8:c3:2e:6e:1b:ce:c5:89:5c:1e:88:ff:75:45:e9: 11:38:7e:fb:55:1f:7c:da:e4:60:cd:9f:98:96:12:90:cb:ab: 01:a1:69:9e:6f:2d:7f:1e:01:d7:ad:97:11:34:42:dd:5e:37: 1b:81:57:ae:34:d7:ee:31:8b:f6:be:e8:66:65:e9:29:3c:9b: 2b:18:19:93:4b:3b:2b:87:bc:ca:ef:96:db:88:f8:1d:9e:6c: 35:a1:b2:c0:25:64:2b:56:38:71:80:80:5f:a1:76:0c:2a:81: 5c:2a:7f:a1:f2:88:ad:94:c5:27:a3:2e:7e:05:10:47:73:16: ad:d4:35:e0:90:7d:29:09:bb:07:cb:d9:a6:53:07:76:84:ee: 89:73:6a:74:ea:51:9d:2c:be:99:11:81:0a:1c:87:e4:5b:39: bf:54:c8:40:b5:86:44:17:d0:c1:e4:76:83:c9:f7:2c:2b:90: f5:f1:93:eb:8a:52:43:9b:6e:f9:c3:36:34:ce:4f:1f:b2:e8: 4b:86:27:e0:17:68:f9:91:4f:5b:3a:b5:1b:17:40:56:84:bd: 6f:5b:39:fa:ca:d4:4c:35:17:42:95:8c:e9:b9:c8:5f:a6:93: 54:4b:fb:44:03:80:31:3e:16:a1:8f:3b:57:5d:ee:d7:a6:42: d5:99:3a:0d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQfqId//AauPIYU0pILTmo/09Pd4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDAyRDlGMUUwNUEyNkI0MTE2NEUyNUI3M0E1QjA3Qzg4 RTMyQUI0MzAeFw0yNTAyMjQwMTU1MDBaFw0yNjAyMjMwMjAwMDBaMDMxMTAvBgNV BAMTKEE0NDdFNzIzNUQ0RUVGNjg2OUNDQzVGNjk2NUNCQUUyRUVFMTQ4QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGk9xYMfXH0vJXBGuJq55btDQW 6CwZLUoKAuUCcnL/sho8Hzfb8xWiIq1J6j033sn50FMIoTn+bIdCioUwCEseHe8K jE9UhzSrdja9TOwSjrJCKeKkgHomIFmnNGHAhXcXFCC1tFegXgow71HWyxZEm68g 3+HEFeKw3KqT27JDbtQ269HbKBZk4eyxwrz1FwfAGQG37Ztz1QuYdDwW6nNdh+QD ovFLOz4MP1ldRBEOJDQ2WD2yFOSHHRey8Ccqgo51SusYQXhf2X3TwMlcilxEJFyQ IFyzSZdEHbrRCPWrKCQTiHURg4gAqtaZiqzCmxj4mCisJJ6Ly5FSb4lJrdKtAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUpEfnI11O72hpzMX2lly64u7hSLkwHwYDVR0j BBgwFoAUQC2fHgWia0EWTiW3OlsHyI4yq0MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YjNkZjZhZi1kOWVlLTQwNzYtODFhNC0yNjQ4NzI3NDg5NzAvMC80MDJEOUYxRTA1 QTI2QjQxMTY0RTI1QjczQTVCMDdDODhFMzJBQjQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDAyRDlGMUUwNUEyNkI0MTE2NEUyNUI3M0E1QjA3Qzg4RTMy QUI0My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiM2RmNmFmLWQ5ZWUtNDA3Ni04 MWE0LTI2NDg3Mjc0ODk3MC8wLzMxMzAzMzJlMzEzNzM5MmUzMTMzMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM1MzEzMDMwMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFns4YwDQYJ KoZIhvcNAQELBQADggEBABYFlqjDLm4bzsWJXB6I/3VF6RE4fvtVH3za5GDNn5iW EpDLqwGhaZ5vLX8eAdetlxE0Qt1eNxuBV6401+4xi/a+6GZl6Sk8mysYGZNLOyuH vMrvltuI+B2ebDWhssAlZCtWOHGAgF+hdgwqgVwqf6HyiK2UxSejLn4FEEdzFq3U NeCQfSkJuwfL2aZTB3aE7olzanTqUZ0svpkRgQoch+RbOb9UyEC1hkQX0MHkdoPJ 9ywrkPXxk+uKUkObbvnDNjTOTx+y6EuGJ+AXaPmRT1s6tRsXQFaEvW9bOfrK1Ew1 F0KVjOm5yF+mk1RL+0QDgDE+FqGPO1dd7temQtWZOg0= -----END CERTIFICATE-----Generated at Sun Apr 6 07:49:15 2025 by rpki-client