$ rpki-client -vvf repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/3130332e3134382e37362e302f32332d3233203d3e20313339393839.roa File: 3130332e3134382e37362e302f32332d3233203d3e20313339393839.roa (raw, json) Hash identifier: tHgBQBHZyelL12LDcNEGOIdBk1KUkf5Y80WNybt6NLU= Subject key identifier: 98:93:7D:C1:76:13:9C:CC:D5:59:CC:9C:5A:4B:18:A1:C6:69:80:75 Certificate issuer: /CN=5A0CBE2DBCF9883569F8C24BFB9E595442D835D0 Certificate serial: 35780D4D89E8F64D268ADDA08271900373D2ED16 Authority key identifier: 5A:0C:BE:2D:BC:F9:88:35:69:F8:C2:4B:FB:9E:59:54:42:D8:35:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/3130332e3134382e37362e302f32332d3233203d3e20313339393839.roa Signing time: Tue 04 Mar 2025 05:00:33 +0000 ROA not before: Tue 04 Mar 2025 04:55:33 +0000 ROA not after: Tue 03 Mar 2026 05:00:33 +0000 asID: 139989 IP address blocks: 103.148.76.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.crl rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 16:10:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:78:0d:4d:89:e8:f6:4d:26:8a:dd:a0:82:71:90:03:73:d2:ed:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A0CBE2DBCF9883569F8C24BFB9E595442D835D0 Validity Not Before: Mar 4 04:55:33 2025 GMT Not After : Mar 3 05:00:33 2026 GMT Subject: CN=98937DC176139CCCD559CC9C5A4B18A1C6698075 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c7:5e:95:99:cb:d7:49:aa:aa:30:8e:55:ed: a0:9b:d2:a5:58:03:ce:67:80:23:92:9c:21:db:33: 48:cd:ae:67:5d:4f:fa:35:bf:59:cf:46:8a:f9:80: 1b:f6:c8:9f:96:0e:6a:fd:d4:7d:cc:c5:18:25:f3: 9f:dc:eb:77:fa:18:2d:4b:e6:2e:0b:83:e4:83:5b: 0c:af:1f:68:4d:86:73:09:23:e2:ee:52:e9:dc:5b: 60:1d:e3:6c:86:99:db:e1:32:70:12:7a:40:62:11: ad:57:4d:75:e9:5d:73:d9:71:25:93:df:e3:fe:09: e3:b2:8f:3d:10:12:7f:f3:0a:bd:a7:67:55:25:73: 7e:dc:27:b0:f8:0c:e7:11:f2:6c:a7:3e:03:22:25: 1a:d3:86:91:3c:56:b4:1d:46:4f:5c:c2:50:58:85: 89:a4:95:51:d4:62:58:da:20:48:52:34:0a:80:75: 07:ab:b8:64:b4:9f:00:1a:5e:79:fd:bd:bc:41:9e: 90:66:ed:4d:de:b7:d5:f7:ee:be:0f:e9:a2:39:14: 95:df:93:89:4b:67:21:47:37:4d:b6:7f:d6:6b:cf: 21:ab:01:33:a9:4d:43:79:a7:87:60:15:5c:89:71: b1:81:5d:57:5a:70:95:4c:54:ca:64:62:39:fc:70: 73:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:93:7D:C1:76:13:9C:CC:D5:59:CC:9C:5A:4B:18:A1:C6:69:80:75 X509v3 Authority Key Identifier: keyid:5A:0C:BE:2D:BC:F9:88:35:69:F8:C2:4B:FB:9E:59:54:42:D8:35:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/3130332e3134382e37362e302f32332d3233203d3e20313339393839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.76.0/23 Signature Algorithm: sha256WithRSAEncryption 85:cf:fe:6d:09:bc:86:df:1d:11:ce:d7:bd:a8:7f:a9:85:13: 90:bb:30:5e:fd:6e:7a:67:7c:50:3c:da:65:ae:bf:91:76:61: bf:b2:76:b5:57:3b:bb:25:fa:7a:3d:b3:68:67:0e:ee:fc:bd: 2e:1c:b8:d3:28:70:4f:4d:a0:19:45:5f:65:ac:ce:bd:9f:e2: 36:cc:e4:26:bb:15:3e:a1:6b:37:b4:76:2a:48:93:44:52:05: b5:86:f8:b1:05:f9:87:83:3f:49:7a:c0:c6:cc:0c:72:34:eb: 24:3b:a1:5e:70:78:ce:51:30:53:2c:db:1c:78:98:d3:b1:74: 47:cd:16:8a:63:6b:9e:5d:6b:5a:ee:5d:43:15:f1:5a:de:ec: 3e:e9:50:fa:13:72:e1:5f:db:5c:92:02:c4:17:76:38:54:57: a6:f9:50:fa:bc:71:e7:3c:a3:70:e7:0d:02:d0:9f:a3:b2:82: 71:3f:f2:ef:4a:12:f0:e9:36:6d:3b:31:0f:7d:44:7d:34:7f: d0:f0:2c:2f:3e:0a:54:26:85:d8:67:3a:0e:a2:bd:21:1a:8d: fc:30:c6:ae:e5:62:30:b4:46:48:e4:32:fd:88:33:09:de:2c: 0b:25:fa:5c:76:de:6b:ba:a1:1d:ad:5b:d6:9f:dc:80:b7:04: 03:5f:a7:c0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNXgNTYno9k0mit2ggnGQA3PS7RYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUEwQ0JFMkRCQ0Y5ODgzNTY5RjhDMjRCRkI5RTU5NTQ0 MkQ4MzVEMDAeFw0yNTAzMDQwNDU1MzNaFw0yNjAzMDMwNTAwMzNaMDMxMTAvBgNV BAMTKDk4OTM3REMxNzYxMzlDQ0NENTU5Q0M5QzVBNEIxOEExQzY2OTgwNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRx16VmcvXSaqqMI5V7aCb0qVY A85ngCOSnCHbM0jNrmddT/o1v1nPRor5gBv2yJ+WDmr91H3MxRgl85/c63f6GC1L 5i4Lg+SDWwyvH2hNhnMJI+LuUuncW2Ad42yGmdvhMnASekBiEa1XTXXpXXPZcSWT 3+P+CeOyjz0QEn/zCr2nZ1Ulc37cJ7D4DOcR8mynPgMiJRrThpE8VrQdRk9cwlBY hYmklVHUYljaIEhSNAqAdQeruGS0nwAaXnn9vbxBnpBm7U3et9X37r4P6aI5FJXf k4lLZyFHN022f9ZrzyGrATOpTUN5p4dgFVyJcbGBXVdacJVMVMpkYjn8cHOLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmJN9wXYTnMzVWcycWksYocZpgHUwHwYDVR0j BBgwFoAUWgy+Lbz5iDVp+MJL+55ZVELYNdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MDMxNzQ2ZS1iMGY2LTQ4MjctOGM0ZS1iODE5MmRlY2MzOWEvMC81QTBDQkUyREJD Rjk4ODM1NjlGOEMyNEJGQjlFNTk1NDQyRDgzNUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUEwQ0JFMkRCQ0Y5ODgzNTY5RjhDMjRCRkI5RTU5NTQ0MkQ4 MzVEMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQwMzE3NDZlLWIwZjYtNDgyNy04 YzRlLWI4MTkyZGVjYzM5YS8wLzMxMzAzMzJlMzEzNDM4MmUzNzM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM5MzkzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5RMMA0GCSqG SIb3DQEBCwUAA4IBAQCFz/5tCbyG3x0Rzte9qH+phROQuzBe/W56Z3xQPNplrr+R dmG/sna1Vzu7Jfp6PbNoZw7u/L0uHLjTKHBPTaAZRV9lrM69n+I2zOQmuxU+oWs3 tHYqSJNEUgW1hvixBfmHgz9JesDGzAxyNOskO6FecHjOUTBTLNsceJjTsXRHzRaK Y2ueXWta7l1DFfFa3uw+6VD6E3LhX9tckgLEF3Y4VFem+VD6vHHnPKNw5w0C0J+j soJxP/LvShLw6TZtOzEPfUR9NH/Q8CwvPgpUJoXYZzoOor0hGo38MMau5WIwtEZI 5DL9iDMJ3iwLJfpcdt5ruqEdrVvWn9yAtwQDX6fA -----END CERTIFICATE-----Generated at Sun Apr 6 05:13:59 2025 by rpki-client